$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: XinXxM0gWwEexbedUJNq7+ff0GMMfBxuANNicwisxkI= Subject key identifier: 01:B8:D1:7F:52:95:DE:CF:F5:C6:39:8C:66:CB:82:9D:B8:DF:17:21 Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 0152 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 014B Signing time: Sun 01 Jun 2025 04:02:28 +0000 Manifest this update: Sun 01 Jun 2025 04:02:27 +0000 Manifest next update: Sun 08 Jun 2025 04:02:27 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: VdsQU/Vz+JtB7ND7p6hde7GAD9GACRpEcH8VBHE9Nq4=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:02:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Jun 1 04:02:27 2025 GMT Not After : Jun 8 04:02:27 2025 GMT Subject: CN=683bd0d4-5dc9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:13:ba:61:9b:62:26:91:df:9c:d0:6a:35:8d: 9e:ae:86:36:b4:84:39:d5:d0:8d:f6:a0:12:87:96: 0d:59:03:9a:9e:33:d3:2c:ca:88:e5:8c:b8:81:98: 94:80:4e:ae:d5:43:00:d2:3f:4a:bc:85:f1:98:2d: 32:c6:f9:9d:9f:a6:01:c4:9f:a9:4e:cd:3c:e6:86: af:39:b2:8f:f2:94:36:06:38:b9:48:8b:32:e9:eb: 51:24:79:ac:03:20:3a:13:d8:5a:d6:bc:6e:1d:b8: d9:b9:cd:74:e5:c0:1f:bb:29:ab:e4:7f:66:dd:4c: 78:50:b2:f7:5a:56:22:d6:e8:99:63:d6:94:2c:51: 5b:01:04:92:76:e3:cc:94:a1:42:ab:0e:21:8d:d8: 2a:96:8f:28:98:41:43:59:d8:82:2b:8f:c0:ab:ad: b4:93:4d:a9:16:b6:47:13:2c:2b:69:23:2f:b0:b6: 95:f8:d1:80:8f:82:76:37:3a:7e:21:fe:19:d2:18: ae:8a:79:18:08:a5:9f:cd:a4:16:9d:e7:1b:28:db: 5f:7b:d7:52:dd:66:d3:41:fd:c1:ae:e5:f5:08:d7: 06:3a:79:45:e5:67:4c:d3:3a:83:65:2f:c6:34:96: 13:06:d8:f9:c0:ba:12:35:40:88:19:44:2a:a8:3e: 63:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B8:D1:7F:52:95:DE:CF:F5:C6:39:8C:66:CB:82:9D:B8:DF:17:21 X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:6c:3d:2d:13:17:8e:a5:24:80:07:3d:d9:c3:09:b0:cc:66: b7:66:c4:51:c8:86:e3:d7:ca:5d:ed:2f:51:41:33:31:1c:cb: 36:93:0d:87:3c:88:fd:7d:df:78:cd:f0:97:2f:98:80:bd:44: 95:61:1a:3c:c1:27:d3:04:55:f6:b8:25:eb:98:a8:d5:b7:81: 02:ff:58:aa:51:c0:b7:dd:67:f4:5d:53:69:49:38:e1:7b:a9: 4f:14:55:f7:6d:bf:c5:82:1d:a7:e1:5f:97:36:ec:a5:b8:0d: 90:7f:33:7d:95:c5:8f:77:0b:81:c6:9f:fd:20:e7:30:bf:1e: dc:70:94:9e:c3:38:64:02:3d:04:c3:c7:7f:ec:62:1e:47:66: 3f:e5:b6:37:bb:7e:4f:87:8e:fe:a8:fb:e3:33:47:87:08:62: 2d:ea:82:c4:03:f9:2e:e3:0f:b5:33:bc:64:ca:49:b3:0d:e0: 35:01:0e:97:bd:d1:43:a4:7c:94:a0:20:ca:36:84:b4:e1:c8: 20:e7:d4:2b:69:10:ea:88:a3:cc:03:c5:52:c9:b0:82:ff:ad: 67:ad:f7:b2:43:a1:73:3f:e9:7a:09:63:bb:af:e4:62:36:b6: bb:51:bb:16:84:64:5a:ec:d7:5b:e6:30:fa:e2:ab:24:dd:a8: 62:8c:08:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUwNjAxMDQwMjI3WhcNMjUwNjA4MDQwMjI3WjAYMRYwFAYD VQQDEw02ODNiZDBkNC01ZGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxRO6YZtiJpHfnNBqNY2eroY2tIQ51dCN9qASh5YNWQOanjPTLMqI5Yy4gZiU gE6u1UMA0j9KvIXxmC0yxvmdn6YBxJ+pTs085oavObKP8pQ2Bji5SIsy6etRJHms AyA6E9ha1rxuHbjZuc105cAfuymr5H9m3Ux4ULL3WlYi1uiZY9aULFFbAQSSduPM lKFCqw4hjdgqlo8omEFDWdiCK4/Aq620k02pFrZHEywraSMvsLaV+NGAj4J2Nzp+ If4Z0hiuinkYCKWfzaQWnecbKNtfe9dS3WbTQf3BruX1CNcGOnlF5WdM0zqDZS/G NJYTBtj5wLoSNUCIGUQqqD5jHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAG40X9S ld7P9cY5jGbLgp243xchMB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYbD0tExeOpSSABz3ZwwmwzGa3ZsRRyIbj18pd7S9RQTMxHMs2kw2H PIj9fd94zfCXL5iAvUSVYRo8wSfTBFX2uCXrmKjVt4EC/1iqUcC33Wf0XVNpSTjh e6lPFFX3bb/Fgh2n4V+XNuyluA2QfzN9lcWPdwuBxp/9IOcwvx7ccJSewzhkAj0E w8d/7GIeR2Y/5bY3u35Ph47+qPvjM0eHCGIt6oLEA/ku4w+1M7xkykmzDeA1AQ6X vdFDpHyUoCDKNoS04cgg59QraRDqiKPMA8VSybCC/61nrfeyQ6FzP+l6CWO7r+Ri Nra7UbsWhGRa7Ndb5jD64qsk3ahijAgY -----END CERTIFICATE-----Generated at Mon Jun 2 07:15:29 2025 by rpki-client