$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: t7TpChblXeqD0uFb/6hd8oDBGgjLJieob5JSINFy78E= Subject key identifier: A3:EE:27:2F:79:71:97:2E:75:B8:3E:15:F5:DA:64:4C:0A:09:37:0C Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0331 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 032D Signing time: Tue 03 Jun 2025 01:02:51 +0000 Manifest this update: Tue 03 Jun 2025 01:02:50 +0000 Manifest next update: Tue 10 Jun 2025 01:02:50 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: J3weSN2AJDjjqTa5Ukfxl0VD47guRXRExrnZXvgTp7o=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:02:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 817 (0x331) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Jun 3 01:02:50 2025 GMT Not After : Jun 10 01:02:50 2025 GMT Subject: CN=683e49bb-d793 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:1b:fd:72:26:e2:46:e7:a3:c2:df:5b:67:a1: b4:78:2a:94:14:43:ee:d3:df:34:aa:f1:36:fd:19: 57:13:64:d1:5a:b5:cf:2a:24:1e:7d:8d:12:fc:62: f1:eb:7e:b0:2d:a1:78:06:2d:db:f5:a3:f8:e2:3f: 93:c4:9e:de:3d:5d:6a:97:1e:87:0f:81:88:47:84: d5:9a:a9:45:0d:29:a2:d2:f7:69:6c:54:b6:c5:50: 5c:d5:67:d8:f7:d3:20:9d:bb:6f:55:03:6c:37:a6: 33:b4:27:7e:35:16:6d:08:3f:f2:bf:35:5b:d6:71: 87:3c:64:2e:99:03:9a:8c:69:cd:78:ed:07:4a:a7: 0c:7f:af:3f:6a:c8:1c:5d:c9:5c:ea:f6:ad:91:0c: c3:5c:83:b2:99:d2:f9:db:ef:31:e6:45:3c:c3:c9: 9b:fb:5a:fa:67:33:fc:88:71:88:61:86:e1:a1:74: 2b:9c:d2:80:54:4f:36:69:a3:46:b0:b4:24:e1:6a: 8f:ab:c2:3d:72:d3:31:de:f2:ab:1e:1a:95:ce:69: 45:c6:39:19:71:f7:07:ad:1c:76:da:9e:ec:1c:7c: 39:d8:69:bc:ec:6c:08:2e:3d:6a:ac:66:a0:ee:81: 56:38:58:82:39:08:4a:28:ba:ba:8b:b0:38:a4:91: a9:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:EE:27:2F:79:71:97:2E:75:B8:3E:15:F5:DA:64:4C:0A:09:37:0C X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:50:32:50:33:fe:76:c3:55:fb:f7:64:c8:f1:0d:37:05:0c: 7f:d9:b2:68:c2:7b:06:31:8e:51:ab:d6:87:82:f1:f1:0e:f9: 9b:c3:26:ac:1a:c5:bb:6a:82:70:6d:f6:01:1d:17:b3:45:1f: ff:83:a1:b8:33:3d:58:f7:a7:d6:df:4f:fb:d9:7f:58:f4:ee: e3:ce:7e:99:89:e0:13:cf:14:c7:78:34:23:a7:95:46:de:08: 1c:bc:3b:1d:8e:2e:1d:a3:94:1f:e3:b1:37:4f:84:3c:27:e7: 1c:86:41:df:c0:94:eb:59:19:3f:5b:64:f1:23:43:5a:ce:31: 3a:63:b9:2d:63:a8:59:f3:13:38:35:68:34:e1:06:34:dc:5d: fa:a5:d0:9b:41:60:0d:14:2c:ef:29:44:47:8a:81:fb:65:4d: fb:55:28:60:ba:e4:03:37:39:0b:97:07:fa:b6:41:53:d0:12: 08:45:3a:3a:db:02:84:f8:05:47:d0:c5:a1:9e:c5:ea:57:6b: 11:10:2d:3d:4a:63:5f:d1:51:c0:0c:55:69:25:9f:66:ac:00: 0c:f6:b0:f6:6b:30:eb:56:4a:31:ba:13:39:90:98:3f:66:55: 57:cc:fc:51:a3:18:a9:63:8d:34:29:05:fb:bc:77:60:4d:31: d2:64:8b:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUwNjAzMDEwMjUwWhcNMjUwNjEwMDEwMjUwWjAYMRYwFAYD VQQDEw02ODNlNDliYi1kNzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxv9cibiRuejwt9bZ6G0eCqUFEPu0980qvE2/RlXE2TRWrXPKiQefY0S/GLx 636wLaF4Bi3b9aP44j+TxJ7ePV1qlx6HD4GIR4TVmqlFDSmi0vdpbFS2xVBc1WfY 99MgnbtvVQNsN6YztCd+NRZtCD/yvzVb1nGHPGQumQOajGnNeO0HSqcMf68/asgc Xclc6vatkQzDXIOymdL52+8x5kU8w8mb+1r6ZzP8iHGIYYbhoXQrnNKAVE82aaNG sLQk4WqPq8I9ctMx3vKrHhqVzmlFxjkZcfcHrRx22p7sHHw52Gm87GwILj1qrGag 7oFWOFiCOQhKKLq6i7A4pJGpZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKPuJy95 cZcudbg+FfXaZEwKCTcMMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaUDJQM/52w1X792TI8Q03BQx/2bJownsGMY5Rq9aHgvHxDvmbwyas GsW7aoJwbfYBHRezRR//g6G4Mz1Y96fW30/72X9Y9O7jzn6ZieATzxTHeDQjp5VG 3ggcvDsdji4do5Qf47E3T4Q8J+cchkHfwJTrWRk/W2TxI0NazjE6Y7ktY6hZ8xM4 NWg04QY03F36pdCbQWANFCzvKURHioH7ZU37VShguuQDNzkLlwf6tkFT0BIIRTo6 2wKE+AVH0MWhnsXqV2sREC09SmNf0VHADFVpJZ9mrAAM9rD2azDrVkoxuhM5kJg/ ZlVXzPxRoxipY400KQX7vHdgTTHSZIvs -----END CERTIFICATE-----Generated at Tue Jun 3 23:41:42 2025 by rpki-client