$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: /IJi78pvtliuO2UnIs2IJ6VJysAkvJnHLTV8oY+rdk0= Subject key identifier: 5D:74:93:5B:A9:8B:73:63:6D:C9:9E:BD:FF:3E:65:54:49:35:C9:6A Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 02FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 02F9 Signing time: Sat 31 May 2025 01:27:56 +0000 Manifest this update: Sat 31 May 2025 01:27:56 +0000 Manifest next update: Sat 07 Jun 2025 01:27:56 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: NgLFvHgYPVLSObS1INl+FLj8arbb7a6xz3tpSMgqJIc=) 2: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: Crj6EQEsFsVZ7Rl37tD7+KlB9qlhMrOAHvL0KyIGgkI=) 3: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: 16TIMxSDuDuwbvd9GQ+m4o06d2DMg8lDV7WSYdSxPbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 01:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2, serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: May 31 01:27:56 2025 GMT Not After : Jun 7 01:27:56 2025 GMT Subject: CN=683a5b1c-a10e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ee:b4:67:38:da:33:f0:03:ae:b0:fb:a6:e2: 6d:b9:a4:20:e0:46:82:a7:51:52:b9:74:30:f0:49: f9:d6:b1:7f:5b:ef:a3:f2:80:66:93:4c:c4:28:c8: 13:57:ec:d8:20:d1:58:04:65:19:f4:ca:3e:e7:a6: 36:9a:c8:0a:1b:55:f6:9e:76:43:56:64:53:4e:7f: ce:35:fc:6a:31:c6:90:2d:a1:60:84:28:05:a2:c3: 72:a8:fe:62:4f:fc:7a:07:bd:8a:3d:ee:5d:58:48: 46:00:24:8d:f6:b7:a9:12:d5:84:97:4c:bd:4d:9b: 7e:e0:8e:5d:67:87:c2:1c:f9:10:59:7e:d9:6e:bc: 8b:31:26:29:d3:8e:06:b4:ae:e9:f2:b9:77:85:7c: 65:4a:f1:af:c0:91:47:46:a8:83:af:ee:f1:54:97: 9b:8b:2c:98:2e:c3:58:55:64:ab:2c:a8:89:d1:05: 01:7a:25:1d:29:75:54:83:f8:fa:ee:3d:38:63:89: 4e:45:c4:34:9a:c7:b1:9c:8e:33:7c:2a:7d:7f:2b: dd:93:cc:6c:f2:86:74:a8:5f:76:5d:65:0e:4f:2c: b6:d0:02:39:61:54:dd:ab:45:36:ca:e6:cc:c8:12: cb:ce:2a:ad:0d:48:c8:e9:08:28:5f:c2:67:55:4f: ce:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:74:93:5B:A9:8B:73:63:6D:C9:9E:BD:FF:3E:65:54:49:35:C9:6A X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:07:92:ab:0c:67:09:f2:68:85:14:86:ea:e8:01:d6:c4:63: 6d:f1:cd:7e:b8:0d:d8:23:30:4e:3e:d3:c4:55:f9:93:c7:34: 11:68:65:45:9b:db:b3:c8:cb:f5:aa:84:d1:de:29:d3:02:34: bc:d6:5a:15:48:c6:ba:a3:2b:95:f6:2b:42:3c:6e:58:99:d8: 03:74:5d:ed:d1:ba:c5:4c:38:b8:79:b2:f9:d8:2e:84:6f:a0: bf:1a:df:d8:df:be:0b:53:82:86:b5:bd:7c:5d:8e:12:0e:db: 3d:2e:ad:bd:a1:98:10:6f:2f:40:d2:67:29:64:e9:b6:01:88: 93:57:19:b2:c8:32:e4:72:a6:78:96:41:ca:89:ce:e3:c2:8b: 92:a9:17:bb:52:7e:94:89:f1:cd:3b:8c:10:1f:a8:68:78:b0: b7:a6:ef:2e:0c:da:c8:23:d5:c5:2a:92:4d:6b:5f:15:65:e5: 40:2f:87:8f:14:0c:33:b9:88:e5:f2:6e:47:07:95:26:42:3e: 16:00:0f:5b:38:20:2a:ca:23:58:a6:0d:31:4e:31:f0:cd:06: a9:9b:f9:82:37:9c:e0:b4:e2:26:43:d8:33:af:72:16:2a:08: 4f:27:fd:25:35:9a:77:41:ca:63:79:7d:05:20:f4:13:45:24: c8:76:2d:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjUwNTMxMDEyNzU2WhcNMjUwNjA3MDEyNzU2WjAYMRYwFAYD VQQDEw02ODNhNWIxYy1hMTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAse60ZzjaM/ADrrD7puJtuaQg4EaCp1FSuXQw8En51rF/W++j8oBmk0zEKMgT V+zYINFYBGUZ9Mo+56Y2msgKG1X2nnZDVmRTTn/ONfxqMcaQLaFghCgFosNyqP5i T/x6B72KPe5dWEhGACSN9repEtWEl0y9TZt+4I5dZ4fCHPkQWX7ZbryLMSYp044G tK7p8rl3hXxlSvGvwJFHRqiDr+7xVJebiyyYLsNYVWSrLKiJ0QUBeiUdKXVUg/j6 7j04Y4lORcQ0msexnI4zfCp9fyvdk8xs8oZ0qF92XWUOTyy20AI5YVTdq0U2yubM yBLLziqtDUjI6QgoX8JnVU/ObwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF10k1up i3Njbcmevf8+ZVRJNclqMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXB5KrDGcJ8miFFIbq6AHWxGNt8c1+uA3YIzBOPtPEVfmTxzQRaGVF m9uzyMv1qoTR3inTAjS81loVSMa6oyuV9itCPG5YmdgDdF3t0brFTDi4ebL52C6E b6C/Gt/Y374LU4KGtb18XY4SDts9Lq29oZgQby9A0mcpZOm2AYiTVxmyyDLkcqZ4 lkHKic7jwouSqRe7Un6UifHNO4wQH6hoeLC3pu8uDNrII9XFKpJNa18VZeVAL4eP FAwzuYjl8m5HB5UmQj4WAA9bOCAqyiNYpg0xTjHwzQapm/mCN5zgtOImQ9gzr3IW KghPJ/0lNZp3QcpjeX0FIPQTRSTIdi1w -----END CERTIFICATE-----Generated at Sat May 31 17:08:54 2025 by rpki-client