$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: ueJKhv5kx2VqImyULkqDaz3gYVY3mDIorHhSgGKQGfc= Subject key identifier: CF:CC:6E:18:03:51:5E:91:3D:D9:FE:A5:FD:5B:61:1B:1E:78:3B:27 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: EC Signing time: Thu 05 Jun 2025 04:57:44 +0000 Manifest this update: Thu 05 Jun 2025 04:57:44 +0000 Manifest next update: Thu 12 Jun 2025 04:57:44 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: +GJSAhvRLESgDS9dVHZOi7nobgmWvjOpvKKKT6SrsT0=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: fhHN+wika6qw4BQ5YkJmWVk33R5FKnY5aL2UuUzBHhw=) 3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: /1+2xPWqZMP3cO+rD339mV/1/rVWVDweL8VvbjIWd3Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:57:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Jun 5 04:57:44 2025 GMT Not After : Jun 12 04:57:44 2025 GMT Subject: CN=684123c8-b383 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:d8:8c:3d:f4:e6:96:f4:fd:91:0e:c9:48: 4a:96:e1:b5:0f:b5:6e:94:2c:63:a8:5f:10:3d:5d: 35:f0:91:f4:f2:14:33:7b:24:fc:1f:dc:48:82:07: 76:33:14:8b:ec:61:bc:b7:e3:ea:d1:8e:01:ee:ec: 0a:64:07:39:67:4c:90:12:a9:60:38:82:7a:cd:db: 78:16:49:bf:99:bb:30:fb:d9:69:1f:28:73:d9:83: 29:fc:54:6c:f6:64:f8:ab:89:31:5f:b0:47:99:d9: 4b:f7:be:c4:f6:13:3a:d6:3d:d5:d2:1f:2c:f8:63: 07:c3:f6:cf:e2:98:51:e4:56:e4:a9:00:fb:4d:c8: d5:d6:ff:df:85:5f:47:07:5b:17:ef:d6:6d:e5:8d: 01:f1:2e:f5:af:5f:16:dc:62:66:78:c3:43:cb:e0: f2:49:d0:7e:c7:6a:74:36:75:b0:30:96:16:ed:d3: 28:ac:07:bd:ca:64:20:7e:0a:0c:36:41:bc:18:33: 22:bd:3d:75:c0:ee:a3:a9:e6:fd:6b:69:5e:d0:52: a7:08:5c:3f:a2:ba:6c:d5:20:ca:fe:42:61:c3:64: 90:79:12:8e:c7:51:30:c3:66:b9:be:06:2f:1f:c1: 09:65:06:da:be:96:a4:f3:32:e8:3b:ac:4d:0e:df: 81:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:CC:6E:18:03:51:5E:91:3D:D9:FE:A5:FD:5B:61:1B:1E:78:3B:27 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:8f:8a:fc:6a:eb:7c:26:eb:9f:c3:eb:65:d0:62:2f:1e:48: d6:3f:29:94:be:94:28:2f:40:cc:27:de:49:e4:87:fe:de:2c: 08:85:43:9f:69:3d:41:e9:86:a0:03:a0:13:e0:e8:a1:8c:b0: 83:e3:bc:03:83:d6:45:85:e6:55:08:83:64:c2:31:29:ed:21: 25:8e:64:eb:f3:2b:e6:36:fe:8f:c4:1c:d2:36:de:37:79:38: eb:97:e1:bb:9e:ac:96:b8:bc:7d:9d:81:e1:01:cd:0f:2f:17: be:fc:ea:f8:e0:2a:7c:59:6e:b9:41:3a:e9:a8:1e:51:64:89: 09:6a:05:77:4b:89:a6:95:b7:08:7a:ad:f7:be:00:a1:04:5f: 06:6f:49:14:2c:a3:ec:96:52:2d:7c:f3:85:b7:f1:b8:8f:c2: 02:fa:e4:a2:18:00:ff:2b:f1:88:03:27:9e:03:07:e1:f7:d4: e6:43:d7:3e:d8:11:14:98:b6:0f:0b:e3:25:be:b5:df:d9:fd: a2:e4:70:7e:9f:ea:e4:28:fe:c2:fb:42:06:31:22:48:be:95: 74:0c:1d:80:79:fa:02:49:23:c1:fb:4e:bf:78:4c:68:13:77: 08:c7:a7:63:26:f4:93:b9:ef:04:9a:47:15:a2:ed:59:f4:b6: bc:25:8c:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUwNjA1MDQ1NzQ0WhcNMjUwNjEyMDQ1NzQ0WjAYMRYwFAYD VQQDEw02ODQxMjNjOC1iMzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxLYjD305pb0/ZEOyUhKluG1D7VulCxjqF8QPV018JH08hQzeyT8H9xIggd2 MxSL7GG8t+Pq0Y4B7uwKZAc5Z0yQEqlgOIJ6zdt4Fkm/mbsw+9lpHyhz2YMp/FRs 9mT4q4kxX7BHmdlL977E9hM61j3V0h8s+GMHw/bP4phR5FbkqQD7TcjV1v/fhV9H B1sX79Zt5Y0B8S71r18W3GJmeMNDy+DySdB+x2p0NnWwMJYW7dMorAe9ymQgfgoM NkG8GDMivT11wO6jqeb9a2le0FKnCFw/orps1SDK/kJhw2SQeRKOx1Eww2a5vgYv H8EJZQbavpak8zLoO6xNDt+BNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/MbhgD UV6RPdn+pf1bYRseeDsnMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhj4r8aut8Juufw+tl0GIvHkjWPymUvpQoL0DMJ95J5If+3iwIhUOf aT1B6YagA6AT4OihjLCD47wDg9ZFheZVCINkwjEp7SEljmTr8yvmNv6PxBzSNt43 eTjrl+G7nqyWuLx9nYHhAc0PLxe+/Or44Cp8WW65QTrpqB5RZIkJagV3S4mmlbcI eq33vgChBF8Gb0kULKPsllItfPOFt/G4j8IC+uSiGAD/K/GIAyeeAwfh99TmQ9c+ 2BEUmLYPC+MlvrXf2f2i5HB+n+rkKP7C+0IGMSJIvpV0DB2AefoCSSPB+06/eExo E3cIx6djJvSTue8EmkcVou1Z9La8JYwO -----END CERTIFICATE-----Generated at Thu Jun 5 18:39:32 2025 by rpki-client