$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: ne/OpFckHvCgRXyIIOv9Df1zqIbv7t47J27Hpvnr5NY= Subject key identifier: DB:24:03:A6:C9:6E:B6:F0:2F:80:C5:3B:75:82:E4:AD:46:C4:79:7C Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: A1 Signing time: Sat 31 May 2025 05:49:41 +0000 Manifest this update: Sat 31 May 2025 05:49:40 +0000 Manifest next update: Sat 07 Jun 2025 05:49:40 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: ve9Nj5bZD0IzvNvtZZAz5s1rff5AtDwrRzCbbVzBjxg=) 2: 77BDF1A0497B11EFAE69D243C4F9AE02.roa (hash: EAkL+z2TTbEwn03dT2Ny9vtbrcbH4dnoXpbzZjpawbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 05:49:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 163 (0xa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: May 31 05:49:40 2025 GMT Not After : Jun 7 05:49:40 2025 GMT Subject: CN=683a9874-63e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:28:48:1b:75:75:d9:e3:51:7d:0c:32:ae:a9: 6c:d2:c3:89:d5:0e:58:e8:92:15:eb:c7:3d:ae:5a: 07:a0:be:93:72:68:59:e4:15:68:29:78:45:0c:da: c0:42:05:3a:fd:7c:7c:db:88:81:7d:a3:cc:bf:1b: 23:1f:de:1c:69:a7:e0:93:4c:7e:20:51:7b:99:9e: 8c:4c:59:1e:7f:40:2a:1c:50:fe:ca:9f:de:ca:db: 52:1e:b4:af:90:de:d0:19:a3:15:11:21:87:b8:4a: 79:71:8a:78:1a:03:31:20:0d:8c:15:f7:9a:cf:ea: 3d:0a:d9:07:88:f4:c5:14:33:9c:10:c9:c2:a0:e0: 23:f7:62:e0:56:c7:34:3e:24:c4:28:d7:5b:de:d2: 24:39:47:b8:1c:c8:52:f3:df:e9:55:74:a3:4c:db: 0d:0d:d7:bf:02:b9:cf:71:d9:8b:76:4a:f4:65:19: c0:08:74:44:1b:72:e8:4b:ae:ef:3d:37:a1:c7:76: cd:24:9f:af:35:9d:10:8c:80:31:fe:94:ab:77:67: 6e:87:5a:5a:1e:4d:37:4b:11:82:f5:3d:a0:61:c8: ee:4e:c9:37:14:e7:f6:e8:ca:b4:99:d8:ba:ac:08: 80:6e:ba:ef:75:e5:fb:19:88:7c:45:56:15:17:d0: 8f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:24:03:A6:C9:6E:B6:F0:2F:80:C5:3B:75:82:E4:AD:46:C4:79:7C X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6b:9b:e4:80:0a:79:0c:52:9b:9d:7b:87:65:b7:98:f4:ad:16: da:98:e3:8e:30:f9:1a:c1:b5:ba:d2:de:ea:93:18:e0:5d:db: 42:41:92:ea:ef:14:ba:fb:bb:1c:6a:74:48:52:77:00:15:4d: a5:71:48:f4:5a:ee:4c:c7:37:2e:f9:55:06:94:dd:f9:bf:a5: b9:c7:06:87:91:76:8f:94:fb:1c:f1:9e:35:94:6f:8e:92:f1: 00:5a:8b:83:4e:a7:ee:eb:48:a3:76:21:b1:f6:ea:38:48:87: 06:07:d9:f2:63:36:d9:7b:6b:d0:8f:5e:b8:16:6f:21:f6:50: d7:df:aa:21:9c:c0:91:fa:91:01:27:c7:5c:0b:a0:98:5a:8e: d4:82:d3:79:30:51:97:8e:90:27:5a:f6:64:eb:0f:e6:28:f0: b7:22:9e:df:2d:2d:98:a2:4f:69:23:fa:7c:27:38:89:01:6d: 42:6e:98:32:5d:62:c2:d3:50:8e:7a:f7:1f:bb:45:5d:af:b8: 0f:41:09:bf:c2:f2:54:4f:be:6b:75:a2:97:18:1d:76:9c:c6: 75:f2:a1:a0:db:27:85:d3:30:9f:d6:44:56:b6:8b:17:30:70: a7:a8:79:fb:5c:c8:34:8e:38:e0:56:5c:37:e5:31:bb:fa:28: f8:76:3a:eb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwNTMxMDU0OTQwWhcNMjUwNjA3MDU0OTQwWjAYMRYwFAYD VQQDEw02ODNhOTg3NC02M2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoihIG3V12eNRfQwyrqls0sOJ1Q5Y6JIV68c9rloHoL6TcmhZ5BVoKXhFDNrA QgU6/Xx824iBfaPMvxsjH94caafgk0x+IFF7mZ6MTFkef0AqHFD+yp/eyttSHrSv kN7QGaMVESGHuEp5cYp4GgMxIA2MFfeaz+o9CtkHiPTFFDOcEMnCoOAj92LgVsc0 PiTEKNdb3tIkOUe4HMhS89/pVXSjTNsNDde/ArnPcdmLdkr0ZRnACHREG3LoS67v PTehx3bNJJ+vNZ0QjIAx/pSrd2duh1paHk03SxGC9T2gYcjuTsk3FOf26Mq0mdi6 rAiAbrrvdeX7GYh8RVYVF9CPTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNskA6bJ brbwL4DFO3WC5K1GxHl8MB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBrm+SACnkMUpude4dlt5j0rRbamOOOMPkawbW60t7qkxjgXdtCQZLq 7xS6+7scanRIUncAFU2lcUj0Wu5Mxzcu+VUGlN35v6W5xwaHkXaPlPsc8Z41lG+O kvEAWouDTqfu60ijdiGx9uo4SIcGB9nyYzbZe2vQj164Fm8h9lDX36ohnMCR+pEB J8dcC6CYWo7UgtN5MFGXjpAnWvZk6w/mKPC3Ip7fLS2Yok9pI/p8JziJAW1Cbpgy XWLC01COevcfu0Vdr7gPQQm/wvJUT75rdaKXGB12nMZ18qGg2yeF0zCf1kRWtosX MHCnqHn7XMg0jjjgVlw35TG7+ij4djrr -----END CERTIFICATE-----Generated at Sat May 31 17:44:08 2025 by rpki-client