$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft File: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft (raw, json) Hash identifier: pzPOZD29SllZc0lYKVEzsRSu8gPKjlLBlxuFL8dWR8g= Subject key identifier: BB:09:9F:B9:FC:67:78:40:E3:41:63:D9:18:87:91:85:23:85:8A:0C Authority key identifier: 91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 Certificate issuer: /CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Certificate serial: 105D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft Manifest number: 1056 Signing time: Sun 08 Jun 2025 17:16:12 +0000 Manifest this update: Sun 08 Jun 2025 17:16:11 +0000 Manifest next update: Sun 15 Jun 2025 17:16:11 +0000 Files and hashes: 1: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl (hash: rh1QvvMGyEtV9+KVZetBrBFRlZfEMnZsFu5cEkW0Dxs=) 2: 4178B83237ED11E99B3C9C4AC4F9AE02.roa (hash: Zx1NZFaobsMkPgZlMNZ8S9A1zmjC7C3D22JCgStrQxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 17:16:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4189 (0x105d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC1CE, serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Validity Not Before: Jun 8 17:16:11 2025 GMT Not After : Jun 15 17:16:11 2025 GMT Subject: CN=6845c55b-82f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7b:e3:2e:29:6f:20:ff:47:16:b5:a0:f1:ce: bc:f9:ef:5b:95:02:08:06:2e:78:b6:48:72:d2:55: 8e:61:51:e2:73:49:5a:dc:4f:ac:07:74:e1:eb:29: 0c:e5:2d:b3:ad:ed:79:7d:b7:b7:6f:4c:a8:a6:e7: 0e:2b:9d:c9:2c:dc:4c:f4:72:14:50:20:b7:5b:d1: 2f:8b:b8:4c:2c:26:de:1e:b5:70:14:6d:da:1a:e1: f4:f8:8c:f5:b2:fc:87:e7:47:e4:47:d2:5a:0e:88: d8:8e:6f:bf:a5:f8:37:32:8a:8a:4f:f2:a7:13:ae: af:f6:f4:70:44:0e:ea:2b:48:e2:80:ab:93:ea:e8: fb:e0:1c:a8:81:15:60:1e:b5:3a:47:51:f0:90:84: cc:ea:88:8d:fe:27:99:96:68:85:4c:47:9d:c5:05: c8:9f:e0:e5:72:9a:4d:06:42:e5:07:d2:c2:c1:8f: 44:60:78:9e:3e:be:de:a8:d1:3a:31:de:92:71:10: 48:c6:59:b5:05:19:87:8b:aa:28:43:7d:6d:85:65: f7:7e:d5:7b:7d:d8:91:70:00:32:f2:60:61:e5:16: 2d:0c:8b:c2:4f:cf:3f:43:2d:aa:61:bd:1f:b9:2e: 43:aa:17:7c:8e:ec:13:3a:9a:29:13:6e:2f:81:19: a4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:09:9F:B9:FC:67:78:40:E3:41:63:D9:18:87:91:85:23:85:8A:0C X509v3 Authority Key Identifier: keyid:91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:0d:29:51:b5:ed:55:6c:35:d4:44:f4:63:9e:7c:ed:bc:bc: 8d:80:71:8b:91:2f:9f:f6:13:c8:f8:d7:48:12:71:35:c8:cd: 13:78:9d:e1:8b:a7:5a:c5:8d:ad:f3:e3:b1:84:53:5c:fe:91: 1d:c9:4d:7c:53:99:70:96:c2:a7:f9:50:a7:74:21:35:95:cf: 28:28:e4:3c:13:3e:fb:32:d0:32:17:2d:70:94:c0:09:15:b5: 34:61:7a:6c:c7:32:46:a1:ef:de:c9:5a:93:a1:5b:0e:6b:9e: ce:13:e3:41:e7:21:d5:92:f9:51:81:25:d7:f7:cd:cb:56:0c: 4f:8b:f4:3a:5d:74:6b:cc:2d:92:a8:5f:4f:c5:de:12:cb:95: 95:0f:13:98:5f:ed:1c:54:53:dd:1d:e3:3b:c2:80:bf:6e:42: d7:57:cd:c5:e5:32:c5:6c:83:5f:18:b4:1a:65:4f:7d:43:fa: 2c:04:ef:ad:2c:3d:52:21:65:a0:ff:8f:fe:4a:5d:e3:84:72: 0d:b2:ba:a9:78:82:02:1f:32:9e:45:02:10:5f:e4:85:7f:0d: 59:d3:34:a5:64:0c:cb:1c:ea:bc:99:00:d9:6f:d4:2c:64:c6: 23:61:91:b7:c0:d4:aa:ee:e0:6b:ab:8d:2b:32:2c:23:b3:f9: 04:25:45:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxQ0UxMTAvBgNVBAUTKDkxRjJERTY3QzhFNjVCQjUzM0VEOEYzQzY0RjMyREY5 QzY5NUMwNTcwHhcNMjUwNjA4MTcxNjExWhcNMjUwNjE1MTcxNjExWjAYMRYwFAYD VQQDEw02ODQ1YzU1Yi04MmYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHvjLilvIP9HFrWg8c68+e9blQIIBi54tkhy0lWOYVHic0la3E+sB3Th6ykM 5S2zre15fbe3b0yopucOK53JLNxM9HIUUCC3W9Evi7hMLCbeHrVwFG3aGuH0+Iz1 svyH50fkR9JaDojYjm+/pfg3MoqKT/KnE66v9vRwRA7qK0jigKuT6uj74ByogRVg HrU6R1HwkITM6oiN/ieZlmiFTEedxQXIn+DlcppNBkLlB9LCwY9EYHiePr7eqNE6 Md6ScRBIxlm1BRmHi6ooQ31thWX3ftV7fdiRcAAy8mBh5RYtDIvCT88/Qy2qYb0f uS5Dqhd8juwTOpopE24vgRmkOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsJn7n8 Z3hA40Fj2RiHkYUjhYoMMB8GA1UdIwQYMBaAFJHy3mfI5lu1M+2PPGTzLfnGlcBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzFDRS8yNEZBNjBFNDM3 RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3VXo3WTg4WlBNdC1jYVZ3 RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmTGVaOGptVzdVejdZODhaUE10LWNhVndGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzFDRS8yNEZBNjBFNDM3RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3 VXo3WTg4WlBNdC1jYVZ3RmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDFDSlRte1VbDXURPRjnnztvLyNgHGLkS+f9hPI+NdIEnE1yM0TeJ3h i6daxY2t8+OxhFNc/pEdyU18U5lwlsKn+VCndCE1lc8oKOQ8Ez77MtAyFy1wlMAJ FbU0YXpsxzJGoe/eyVqToVsOa57OE+NB5yHVkvlRgSXX983LVgxPi/Q6XXRrzC2S qF9Pxd4Sy5WVDxOYX+0cVFPdHeM7woC/bkLXV83F5TLFbINfGLQaZU99Q/osBO+t LD1SIWWg/4/+Sl3jhHINsrqpeIICHzKeRQIQX+SFfw1Z0zSlZAzLHOq8mQDZb9Qs ZMYjYZG3wNSq7uBrq40rMiwjs/kEJUUS -----END CERTIFICATE-----Generated at Sun Jun 8 20:04:07 2025 by rpki-client