$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft File: kKozD4l2v2xASeZzwoIf0pHUO8E.mft (raw, json) Hash identifier: Q1kZ8cJ/H5Bc1Xt1gRZ5nyC9bn1JnNjoMg64rv4GP4k= Subject key identifier: 33:53:3D:F2:24:57:72:2D:7C:55:5A:34:D1:CB:A6:3F:E5:AF:E6:EA Authority key identifier: 90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 Certificate issuer: /CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Certificate serial: 0557 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft Manifest number: 0557 Signing time: Mon 02 Jun 2025 14:19:17 +0000 Manifest this update: Mon 02 Jun 2025 14:19:16 +0000 Manifest next update: Mon 09 Jun 2025 14:19:16 +0000 Files and hashes: 1: kKozD4l2v2xASeZzwoIf0pHUO8E.crl (hash: OaDuRG5pmk9InssysvPim+pSFsfpP2Qq5PJ5OLi5d64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 05:53:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1367 (0x557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Validity Not Before: Jun 2 14:19:16 2025 GMT Not After : Jun 9 14:19:16 2025 GMT Subject: CN=683db2e4-212c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:b1:d5:80:e0:a4:96:ae:04:38:ba:75:e4:dc: 4e:25:11:ec:a4:d9:6f:2d:e0:26:af:b2:fa:88:ae: 6a:3b:1d:ba:eb:5e:41:4f:97:88:b9:b5:37:af:bd: d2:eb:78:68:e1:b0:3a:55:77:19:68:d6:31:78:c7: 3c:97:8b:aa:8b:f1:5b:b0:5a:6f:45:29:29:0d:8e: fe:ab:03:3f:62:4a:55:bd:81:f2:9c:93:45:cb:32: 1b:fd:0e:e6:88:98:a0:c9:8f:d8:ce:38:e9:48:bc: 4c:98:95:c7:45:f1:ae:d3:21:50:75:61:5d:63:50: b7:27:c8:5a:2d:d9:dc:24:ba:3c:8a:45:fa:b2:73: 81:a3:2a:81:f7:4e:1f:6a:8f:48:0a:67:99:38:6c: 6a:90:d5:8f:ee:cc:25:0b:ae:f4:e2:c7:b6:bf:42: a1:a9:8d:8d:69:50:68:af:59:17:57:51:ab:8c:01: 17:be:b7:10:11:b9:0e:ab:5e:6c:88:e2:18:1d:6e: 58:bb:e7:1d:ac:0d:a6:c9:99:5d:12:30:e9:61:6a: 1b:c6:f3:51:43:df:c9:58:37:c4:bc:55:2d:68:e9: fb:bd:61:2b:ad:99:1a:f1:4d:58:db:23:86:aa:07: 91:8c:28:ea:23:d0:93:55:82:70:6d:5f:a8:12:83: 53:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:53:3D:F2:24:57:72:2D:7C:55:5A:34:D1:CB:A6:3F:E5:AF:E6:EA X509v3 Authority Key Identifier: keyid:90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:1d:89:db:d0:f7:c1:53:45:4e:a7:0f:00:df:7a:fd:46:0f: 52:9c:54:2f:c9:59:4c:04:7e:15:76:48:55:e3:30:63:89:67: d5:0c:28:2d:87:00:d2:73:07:38:95:1f:1d:f3:a8:75:49:42: 34:c4:89:69:de:b6:44:0e:56:ca:fe:c6:a8:53:18:d0:8c:ad: c2:8b:f2:df:0b:90:b5:a8:d7:cb:6f:ef:ff:ab:6c:14:e1:10: fd:74:6b:ff:a0:c2:53:ce:b8:9d:55:99:8d:2a:50:56:af:33: 81:05:b1:92:55:4f:3e:2d:ed:94:73:f6:34:f6:84:1e:84:fa: b0:40:2e:45:fa:ed:88:42:cb:76:8d:fa:bf:4b:6e:e6:fc:d5: e3:3e:0a:79:1f:b8:f3:ea:85:82:28:5f:31:0c:7e:c5:74:84: 22:ab:51:7b:c8:df:f6:3b:62:86:f1:b7:d4:91:1b:d1:41:dc: ac:8d:b0:c2:0d:3e:d4:50:e4:e5:0c:a5:d2:36:73:aa:c7:7d: e9:68:99:29:3c:b2:a5:e1:00:60:b8:a0:61:d1:5d:40:c4:86: 87:f7:c9:95:9b:e4:60:7e:26:54:cf:e0:9c:9a:34:46:e6:61: 28:d4:57:6f:f6:b6:1f:13:da:50:43:a8:78:59:90:3e:97:34: 5a:e7:de:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDkwQUEzMzBGODk3NkJGNkM0MDQ5RTY3M0MyODIxRkQy OTFENDNCQzEwHhcNMjUwNjAyMTQxOTE2WhcNMjUwNjA5MTQxOTE2WjAYMRYwFAYD VQQDEw02ODNkYjJlNC0yMTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7LHVgOCklq4EOLp15NxOJRHspNlvLeAmr7L6iK5qOx26615BT5eIubU3r73S 63ho4bA6VXcZaNYxeMc8l4uqi/FbsFpvRSkpDY7+qwM/YkpVvYHynJNFyzIb/Q7m iJigyY/YzjjpSLxMmJXHRfGu0yFQdWFdY1C3J8haLdncJLo8ikX6snOBoyqB904f ao9ICmeZOGxqkNWP7swlC6704se2v0KhqY2NaVBor1kXV1GrjAEXvrcQEbkOq15s iOIYHW5Yu+cdrA2myZldEjDpYWobxvNRQ9/JWDfEvFUtaOn7vWErrZka8U1Y2yOG qgeRjCjqI9CTVYJwbV+oEoNTpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNTPfIk V3ItfFVaNNHLpj/lr+bqMB8GA1UdIwQYMBaAFJCqMw+Jdr9sQEnmc8KCH9KR1DvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8xQTE2RUI4NkYz RUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYyeEFTZVp6d29JZjBwSFVP OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tLb3pENGwydjJ4QVNlWnp3b0lmMHBIVU84RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8xQTE2RUI4NkYzRUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYy eEFTZVp6d29JZjBwSFVPOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5HYnb0PfBU0VOpw8A33r9Rg9SnFQvyVlMBH4VdkhV4zBjiWfVDCgt hwDScwc4lR8d86h1SUI0xIlp3rZEDlbK/saoUxjQjK3Ci/LfC5C1qNfLb+//q2wU 4RD9dGv/oMJTzridVZmNKlBWrzOBBbGSVU8+Le2Uc/Y09oQehPqwQC5F+u2IQst2 jfq/S27m/NXjPgp5H7jz6oWCKF8xDH7FdIQiq1F7yN/2O2KG8bfUkRvRQdysjbDC DT7UUOTlDKXSNnOqx33paJkpPLKl4QBguKBh0V1AxIaH98mVm+RgfiZUz+CcmjRG 5mEo1Fdv9rYfE9pQQ6h4WZA+lzRa595R -----END CERTIFICATE-----Generated at Mon Jun 2 19:58:16 2025 by rpki-client