$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: HHX/p+osFDOxCXmHhNl1Di+CEvUDAzA/Mw96QZlDNCQ= Subject key identifier: 9F:32:C2:43:A9:2B:B0:6B:35:88:CB:E4:CD:18:D2:D2:E9:B3:4C:95 Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 0136 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 0133 Signing time: Sat 31 May 2025 04:10:21 +0000 Manifest this update: Sat 31 May 2025 04:10:21 +0000 Manifest next update: Sat 07 Jun 2025 04:10:21 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: uqZWRVLYsh3ISyA/vmJRulXqa3Pc7oqXH5I9m8uAiy4=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 04:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 310 (0x136) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: May 31 04:10:21 2025 GMT Not After : Jun 7 04:10:21 2025 GMT Subject: CN=683a812d-731f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:05:c3:81:a5:b7:ac:52:8d:56:d5:7e:28:36: 9f:b0:e9:19:c0:3c:94:3b:09:a7:65:3d:98:bc:99: 17:82:92:cf:78:b1:ba:46:04:a7:a6:d4:30:97:5a: 91:3b:91:66:c1:6d:42:51:0f:4a:03:14:d3:f9:28: 50:82:c1:9a:d1:cd:77:96:51:44:09:f1:d6:93:77: 94:3b:4f:fc:0b:7a:9e:98:61:e9:cb:1f:66:2f:ca: cc:86:95:93:9c:37:d6:e5:58:40:8d:c1:12:ca:12: 34:d7:61:45:e3:08:79:43:c0:e5:13:13:76:07:3d: c3:b7:b7:a4:3d:2b:54:d8:6c:19:98:29:1e:06:af: 04:f0:6b:3f:c2:f2:ce:74:d3:6e:5e:cf:bf:92:0a: e1:27:7c:a2:c2:7b:57:60:b0:d2:22:4a:55:91:cc: 55:45:d7:22:d8:e0:c7:06:31:d5:ad:f1:70:a0:cc: 09:ea:cd:14:f3:4e:68:c4:02:0a:7d:32:75:4b:54: a7:95:c2:7c:aa:c9:8e:15:77:5c:ea:56:bf:a8:15: c8:44:c6:cb:e4:24:4c:a1:55:ed:ac:be:fa:22:6b: cf:10:03:0e:3e:05:d6:a0:83:2a:95:5f:a6:39:a8: 06:36:3b:fb:ec:e4:75:12:5e:b5:75:ff:e2:10:2a: f5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:32:C2:43:A9:2B:B0:6B:35:88:CB:E4:CD:18:D2:D2:E9:B3:4C:95 X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:96:77:01:ea:74:f7:19:cb:b9:f1:90:33:7f:f9:7b:19:94: 15:16:48:de:9a:0c:7c:40:d5:3e:c8:81:1c:2e:3b:1b:85:9e: 74:04:6e:22:80:c0:eb:47:28:79:99:98:50:c2:a0:e6:a7:89: db:45:9d:ea:8c:78:36:42:00:7f:c2:da:1a:8d:b5:77:1c:05: 17:ab:b9:5c:5c:56:11:6c:d7:e5:37:17:7b:34:a4:63:7b:1a: 42:8b:67:65:16:45:a1:f8:27:b9:bd:ff:02:f2:b3:93:38:5b: aa:51:97:1d:86:63:1e:5a:a4:6f:a5:8d:d8:b0:d9:bc:bf:58: 74:6e:e2:f4:30:4e:7d:10:c0:bb:fb:fe:e2:e0:9d:27:e2:20: 2d:77:2e:86:69:e4:2d:5f:76:7b:65:8a:74:9b:69:22:ea:db: 2d:43:a4:81:e0:8f:da:b4:44:65:2c:cb:b1:91:94:04:8f:33: 6a:cb:48:a6:0b:fd:91:e1:4d:cb:d0:92:ed:30:0c:26:28:76: 01:58:55:a1:ad:5f:bd:7a:6d:e3:25:8d:5f:c4:ed:0e:a5:56: 6b:98:b7:d1:4d:83:46:c2:0c:fa:7f:d2:33:ff:be:82:77:8d: 30:78:0d:bb:d7:66:8e:ba:61:fa:90:35:15:2d:ac:14:89:e2: 6a:74:f2:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUwNTMxMDQxMDIxWhcNMjUwNjA3MDQxMDIxWjAYMRYwFAYD VQQDEw02ODNhODEyZC03MzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gXDgaW3rFKNVtV+KDafsOkZwDyUOwmnZT2YvJkXgpLPeLG6RgSnptQwl1qR O5FmwW1CUQ9KAxTT+ShQgsGa0c13llFECfHWk3eUO0/8C3qemGHpyx9mL8rMhpWT nDfW5VhAjcESyhI012FF4wh5Q8DlExN2Bz3Dt7ekPStU2GwZmCkeBq8E8Gs/wvLO dNNuXs+/kgrhJ3yiwntXYLDSIkpVkcxVRdci2ODHBjHVrfFwoMwJ6s0U805oxAIK fTJ1S1SnlcJ8qsmOFXdc6la/qBXIRMbL5CRMoVXtrL76ImvPEAMOPgXWoIMqlV+m OagGNjv77OR1El61df/iECr1lQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ8ywkOp K7BrNYjL5M0Y0tLps0yVMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADlncB6nT3Gcu58ZAzf/l7GZQVFkjemgx8QNU+yIEcLjsbhZ50BG4i gMDrRyh5mZhQwqDmp4nbRZ3qjHg2QgB/wtoajbV3HAUXq7lcXFYRbNflNxd7NKRj expCi2dlFkWh+Ce5vf8C8rOTOFuqUZcdhmMeWqRvpY3YsNm8v1h0buL0ME59EMC7 +/7i4J0n4iAtdy6GaeQtX3Z7ZYp0m2ki6tstQ6SB4I/atERlLMuxkZQEjzNqy0im C/2R4U3L0JLtMAwmKHYBWFWhrV+9em3jJY1fxO0OpVZrmLfRTYNGwgz6f9Iz/76C d40weA2712aOumH6kDUVLawUieJqdPJZ -----END CERTIFICATE-----Generated at Sat May 31 16:00:18 2025 by rpki-client