$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: r5XDifCDgdaygBmaH85Q/AkJnWGKWD2mvpWOkllZcyg= Subject key identifier: 5E:C5:8E:D0:38:BF:59:2F:B2:59:B5:A3:B0:5C:66:30:70:D2:87:59 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09A6 Signing time: Fri 30 May 2025 20:14:57 +0000 Manifest this update: Fri 30 May 2025 20:14:57 +0000 Manifest next update: Fri 06 Jun 2025 20:14:57 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: 6OLuv3RkN9HqZK0dD4QLBgDnRPN2Pk5PJwoPvk7qHuk=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 20:14:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2476 (0x9ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: May 30 20:14:57 2025 GMT Not After : Jun 6 20:14:57 2025 GMT Subject: CN=683a11c1-9345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:c1:25:e4:4a:95:52:e0:40:38:2b:f7:f7:74: 7d:66:70:65:48:40:ec:62:15:b5:f8:11:43:48:f0: d8:bb:81:ef:2a:53:e6:20:8f:3e:19:c7:48:e1:82: e3:80:6c:f3:99:e8:da:17:fa:76:89:97:4b:5f:25: 9f:fa:7e:0a:4b:5f:1a:aa:a2:88:40:e5:5f:81:52: ee:a3:fe:c0:cf:3f:f4:57:d6:49:0e:33:df:27:b8: d6:3f:65:a9:7f:b7:7b:9c:13:c8:02:7d:a3:96:7b: d8:77:ec:c6:80:ba:0f:f2:9f:2b:b4:c9:1c:9f:0c: 79:ff:e5:a1:83:e6:5a:83:b6:00:ca:2e:da:7a:e6: ff:e3:fc:04:47:c8:00:30:47:af:f2:0a:1d:8a:a4: 69:62:5f:7c:9e:8e:e0:9c:78:cc:16:7a:b4:d9:67: df:25:83:02:a3:8e:27:d2:3f:cc:5b:11:f0:3b:50: f6:9b:2f:ed:84:3c:2b:70:58:1d:9b:07:9b:8f:bd: c9:e3:f4:37:c0:42:66:04:2f:c8:b4:48:6e:70:6c: aa:b3:73:21:53:d4:ae:fa:a5:14:07:5d:4d:b7:63: 4e:ec:4f:09:54:4a:95:14:52:ce:17:2b:b2:10:ce: ee:3e:79:84:03:18:da:85:7f:b6:bf:cf:e4:24:5e: a9:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:C5:8E:D0:38:BF:59:2F:B2:59:B5:A3:B0:5C:66:30:70:D2:87:59 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:09:7d:b4:11:c7:1b:02:58:d4:64:65:92:0c:fc:bf:6e:4e: f2:81:b9:2d:97:d2:d7:90:7b:75:ce:e7:37:07:81:fd:63:14: f6:b6:76:00:82:c8:20:37:2a:b6:25:20:c2:fe:70:40:7d:3e: e3:11:d6:02:33:c3:b2:7a:3f:cb:02:d9:c7:c2:e3:fd:ec:f1: 13:94:c0:68:23:26:02:5c:ad:75:14:7b:a5:6d:38:fc:4c:9d: da:55:26:7c:4f:3f:f4:6e:51:40:6d:a5:69:76:de:bc:31:e6: 38:3c:4b:08:84:7f:a2:40:85:93:be:1f:75:da:eb:bc:74:53: da:ff:3d:dd:ad:25:7d:a8:72:0e:c6:f0:a4:19:08:50:0a:40: 32:97:45:d6:36:b1:0d:74:7e:c5:aa:21:b4:8d:d3:5a:21:38: fa:1f:85:e2:2a:40:f9:f9:a0:31:a0:01:31:10:66:3a:fd:88: e2:b8:c6:b8:f9:f0:5b:39:9e:9f:91:5a:8d:18:f1:06:a3:6f: 03:24:8a:7a:6b:77:c4:19:15:56:ab:24:c7:e8:9d:40:4b:86: f3:74:8c:1f:09:d5:75:a0:c6:84:1e:3a:f4:3d:5d:15:8d:2b: dc:92:9d:56:72:fc:0a:92:e0:bb:02:de:ed:cd:46:11:3e:f8: 85:af:36:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwNTMwMjAxNDU3WhcNMjUwNjA2MjAxNDU3WjAYMRYwFAYD VQQDEw02ODNhMTFjMS05MzQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4MEl5EqVUuBAOCv393R9ZnBlSEDsYhW1+BFDSPDYu4HvKlPmII8+GcdI4YLj gGzzmejaF/p2iZdLXyWf+n4KS18aqqKIQOVfgVLuo/7Azz/0V9ZJDjPfJ7jWP2Wp f7d7nBPIAn2jlnvYd+zGgLoP8p8rtMkcnwx5/+Whg+Zag7YAyi7aeub/4/wER8gA MEev8godiqRpYl98no7gnHjMFnq02WffJYMCo44n0j/MWxHwO1D2my/thDwrcFgd mwebj73J4/Q3wEJmBC/ItEhucGyqs3MhU9Su+qUUB11Nt2NO7E8JVEqVFFLOFyuy EM7uPnmEAxjahX+2v8/kJF6pdQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF7FjtA4 v1kvslm1o7BcZjBw0odZMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeCX20EccbAljUZGWSDPy/bk7ygbktl9LXkHt1zuc3B4H9YxT2tnYA gsggNyq2JSDC/nBAfT7jEdYCM8Oyej/LAtnHwuP97PETlMBoIyYCXK11FHulbTj8 TJ3aVSZ8Tz/0blFAbaVpdt68MeY4PEsIhH+iQIWTvh912uu8dFPa/z3drSV9qHIO xvCkGQhQCkAyl0XWNrENdH7FqiG0jdNaITj6H4XiKkD5+aAxoAExEGY6/YjiuMa4 +fBbOZ6fkVqNGPEGo28DJIp6a3fEGRVWqyTH6J1AS4bzdIwfCdV1oMaEHjr0PV0V jSvckp1WcvwKkuC7At7tzUYRPviFrzaG -----END CERTIFICATE-----Generated at Sat May 31 17:03:34 2025 by rpki-client