$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: JD9OGRIOO/tQ79ig8/VZ0biZiGhbFXY/WVNvhHbebmo= Subject key identifier: C6:61:1C:D0:19:FB:AD:66:8F:4C:5B:AF:2D:A6:30:F6:59:41:D0:0B Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 0831 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0C40 Signing time: Fri 30 May 2025 21:00:18 +0000 Manifest this update: Fri 30 May 2025 21:00:17 +0000 Manifest next update: Fri 06 Jun 2025 21:00:17 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: H1cRcpn1yNL9K6Bj6P1G8K4w+1KFuCN8UdyS8QTTyNQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2097 (0x831) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: May 30 21:00:17 2025 GMT Not After : Jun 6 21:00:17 2025 GMT Subject: CN=683a1c62-65dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d5:c9:25:98:49:f9:e3:3c:96:29:62:99:bf: 61:5f:c5:44:3a:df:09:16:cc:d1:bb:ab:e2:2d:73: 1c:2e:d0:fb:26:02:f0:4e:39:b6:26:23:e5:e8:56: 0e:98:2f:bb:01:08:6f:59:29:93:ec:a6:29:10:1b: 20:70:41:ec:8f:06:cb:c6:b6:e3:e4:68:3b:3a:3e: 83:86:e9:39:fa:76:d5:5f:4b:93:b9:46:38:38:34: d1:98:9a:d1:a5:f8:6c:14:80:ab:b4:b3:99:8b:bc: a9:c1:4b:24:07:07:d3:4d:bd:10:2d:9a:fc:c6:c8: ac:68:2c:ab:26:37:5a:06:6e:03:3c:91:72:9e:33: 08:a9:65:9e:b2:e6:73:23:fe:07:e9:f5:11:00:69: b0:93:5c:00:ac:52:2a:19:a1:4d:de:79:00:54:2e: 4b:57:e6:b0:d4:4f:c0:f1:10:6e:cd:23:eb:2a:14: f2:2c:73:fe:70:f0:d5:20:f4:31:a3:fb:05:51:bb: ce:db:13:34:a2:28:40:48:69:6e:20:46:63:d7:be: 62:fa:7b:83:76:5b:e0:5e:06:98:20:a7:05:43:d4: 4f:4e:a2:21:dc:3c:b3:56:dc:62:fd:fd:07:b2:de: 25:0c:cb:b8:4b:5b:38:d7:85:8a:88:7c:3d:c8:37: 66:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:61:1C:D0:19:FB:AD:66:8F:4C:5B:AF:2D:A6:30:F6:59:41:D0:0B X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:00:88:96:f5:92:1a:5a:c5:c9:53:36:9b:f8:d6:6c:db:d2: 8d:bf:a9:60:4e:35:4d:4c:78:5d:9b:89:95:6f:8a:13:91:f2: db:bc:a1:5f:03:88:01:d4:80:75:a1:db:b5:4e:85:e5:03:d7: c2:86:52:83:3c:c4:14:47:30:30:84:1b:03:eb:a4:7c:6b:e8: f0:b2:32:f2:ea:65:2f:a1:ef:ed:d5:51:4f:09:c0:f5:f6:52: f8:04:c1:ea:00:7f:fc:39:5b:92:9a:23:2c:92:f4:63:6f:9b: e4:d0:fb:2e:3d:51:d4:a5:02:a6:6f:f7:4a:1f:33:5f:5d:e7: eb:04:13:98:9e:c3:f9:7a:9b:66:f0:c2:a7:10:4e:ef:84:05: 76:ce:da:ed:e5:0e:6c:59:65:17:2e:63:92:ba:48:d4:42:90: 2a:66:54:2a:49:aa:2e:63:b7:40:25:d4:0c:39:13:11:ab:96: c2:95:a6:9d:e2:44:d4:8c:0a:66:3d:1c:9d:39:ba:da:34:65: 5d:a2:91:47:6d:6c:7f:8c:81:a9:b2:f9:3e:b0:5b:c8:5f:74: 6c:5e:b8:99:5d:43:11:27:50:4a:29:b1:35:6f:20:94:88:71: 5d:b5:40:5c:6b:17:d4:60:cd:ce:6c:71:2f:49:f9:00:bb:ad: 24:7c:fc:95 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjUwNTMwMjEwMDE3WhcNMjUwNjA2MjEwMDE3WjAYMRYwFAYD VQQDEw02ODNhMWM2Mi02NWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm9XJJZhJ+eM8lilimb9hX8VEOt8JFszRu6viLXMcLtD7JgLwTjm2JiPl6FYO mC+7AQhvWSmT7KYpEBsgcEHsjwbLxrbj5Gg7Oj6Dhuk5+nbVX0uTuUY4ODTRmJrR pfhsFICrtLOZi7ypwUskBwfTTb0QLZr8xsisaCyrJjdaBm4DPJFynjMIqWWesuZz I/4H6fURAGmwk1wArFIqGaFN3nkAVC5LV+aw1E/A8RBuzSPrKhTyLHP+cPDVIPQx o/sFUbvO2xM0oihASGluIEZj175i+nuDdlvgXgaYIKcFQ9RPTqIh3DyzVtxi/f0H st4lDMu4S1s414WKiHw9yDdm6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMZhHNAZ +61mj0xbry2mMPZZQdALMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjAIiW9ZIaWsXJUzab+NZs29KNv6lgTjVNTHhdm4mVb4oTkfLbvKFf A4gB1IB1odu1ToXlA9fChlKDPMQURzAwhBsD66R8a+jwsjLy6mUvoe/t1VFPCcD1 9lL4BMHqAH/8OVuSmiMskvRjb5vk0PsuPVHUpQKmb/dKHzNfXefrBBOYnsP5eptm 8MKnEE7vhAV2ztrt5Q5sWWUXLmOSukjUQpAqZlQqSaouY7dAJdQMORMRq5bClaad 4kTUjApmPRydObraNGVdopFHbWx/jIGpsvk+sFvIX3RsXriZXUMRJ1BKKbE1byCU iHFdtUBcaxfUYM3ObHEvSfkAu60kfPyV -----END CERTIFICATE-----Generated at Sat May 31 14:48:14 2025 by rpki-client