$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft File: k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json) Hash identifier: RKJEeY0q81OYBjbr35DOVLCe0Ptm8u5rTyT6+64FNSA= Subject key identifier: 2A:21:9E:4B:6C:31:41:40:FF:72:84:F8:7C:4E:6D:01:51:43:0B:D9 Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 13CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft Manifest number: 13B0 Signing time: Tue 10 Jun 2025 17:18:30 +0000 Manifest this update: Tue 10 Jun 2025 17:18:30 +0000 Manifest next update: Tue 17 Jun 2025 17:18:30 +0000 Files and hashes: 1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: fG5mfqc66xji8x0bOP5n0g19YyGzpuiAsbHMO/PZh80=) 2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: bw4oyTaqoqfdp29e2lYAU370gy2twH+W8CpSCQrTXLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 17 Jun 2025 17:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5067 (0x13cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: Jun 10 17:18:30 2025 GMT Not After : Jun 17 17:18:30 2025 GMT Subject: CN=684868e6-a92f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:27:a8:27:02:aa:58:d9:8b:40:c7:92:2c:2c: 0a:35:4c:5f:6b:b8:a9:d1:00:78:b8:27:bd:2e:e1: ee:8e:e4:cc:2d:76:90:d3:9a:ea:14:07:f0:7a:5c: fc:81:6c:46:2e:62:86:12:c6:93:6f:15:18:ac:07: 6c:56:a4:df:ce:76:6b:35:57:7f:0e:55:2f:34:7f: 75:65:29:83:80:4c:d4:15:fc:20:6c:cc:31:28:2d: cf:c5:0e:fa:92:8a:97:c5:b8:24:b9:46:0f:f1:e7: 24:e7:08:4f:d9:d3:15:b2:b8:a5:0a:60:09:70:1f: bf:72:8b:8e:f9:2a:a9:c2:46:a0:c1:15:b1:a5:a8: 15:82:85:9f:5e:bd:ce:91:c1:70:c4:04:ba:9d:a8: f0:53:5a:e4:6d:54:87:93:ff:8a:1f:1f:cf:d9:4e: 5a:e3:5a:5f:2e:d3:7d:3d:ed:a3:e3:9a:28:43:65: 5c:1b:30:6f:7a:aa:c0:f7:05:55:84:86:8a:a2:c7: 9c:c7:f8:2f:b1:84:66:2c:bf:25:cb:9b:9f:07:0d: f9:c9:c2:53:44:25:0a:3d:0a:ea:92:d7:58:02:21: 01:7b:78:99:0f:90:75:44:8c:20:07:4d:74:65:48: f7:d0:0d:db:bb:18:0f:d2:7e:24:74:f7:25:07:97: 08:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:21:9E:4B:6C:31:41:40:FF:72:84:F8:7C:4E:6D:01:51:43:0B:D9 X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:a6:2d:17:f0:df:ae:f5:c0:84:3a:7b:93:9a:45:0e:62:b3: 50:51:bd:68:25:4f:cd:ad:0a:17:5e:d2:0b:46:6f:4c:93:81: 37:a9:8c:2f:1c:72:fa:b6:72:47:7d:ee:a4:a9:12:5d:c1:97: 38:bc:02:f1:e1:ae:d4:df:d8:51:af:76:a2:fd:cf:fa:3a:31: b3:c2:0a:07:b1:ab:11:e4:a1:52:8b:48:74:53:9e:2f:55:ad: ad:78:58:9a:a4:ef:ae:2d:f0:4a:28:b5:57:05:03:78:36:90: e7:60:3d:c8:b5:da:9c:9e:ce:7f:cf:dc:cf:2b:0a:b0:de:be: 6c:f6:41:de:d0:a1:2b:25:7d:dd:70:d7:9e:6f:47:85:96:9c: 73:71:29:25:e9:5a:9b:dc:3c:8b:d6:33:74:a3:d4:13:0f:11: 45:f9:a7:9c:d0:17:d7:e4:aa:49:6f:93:e3:3a:28:b7:d8:7f: 59:83:38:1c:65:25:61:bc:c7:3f:36:2a:87:9d:cd:20:c7:79: 69:ae:2f:9b:44:69:84:ad:4f:db:8d:f7:ad:19:de:90:2a:b5: 44:2d:ca:b5:bf:c8:47:e1:91:fa:0f:c5:52:6b:ce:68:92:b3: c3:81:10:05:cd:44:05:80:8c:01:cc:e5:8f:f1:ff:8c:2c:32: 25:cd:5d:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjUwNjEwMTcxODMwWhcNMjUwNjE3MTcxODMwWjAYMRYwFAYD VQQDEw02ODQ4NjhlNi1hOTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzyeoJwKqWNmLQMeSLCwKNUxfa7ip0QB4uCe9LuHujuTMLXaQ05rqFAfwelz8 gWxGLmKGEsaTbxUYrAdsVqTfznZrNVd/DlUvNH91ZSmDgEzUFfwgbMwxKC3PxQ76 koqXxbgkuUYP8eck5whP2dMVsrilCmAJcB+/couO+SqpwkagwRWxpagVgoWfXr3O kcFwxAS6najwU1rkbVSHk/+KHx/P2U5a41pfLtN9Pe2j45ooQ2VcGzBveqrA9wVV hIaKosecx/gvsYRmLL8ly5ufBw35ycJTRCUKPQrqktdYAiEBe3iZD5B1RIwgB010 ZUj30A3buxgP0n4kdPclB5cI3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCohnkts MUFA/3KE+HxObQFRQwvZMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QxNS83QzY4NUE4Mjk1QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxP cFlVb0M3TXhMekVPRWd3T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSpi0X8N+u9cCEOnuTmkUOYrNQUb1oJU/NrQoXXtILRm9Mk4E3qYwv HHL6tnJHfe6kqRJdwZc4vALx4a7U39hRr3ai/c/6OjGzwgoHsasR5KFSi0h0U54v Va2teFiapO+uLfBKKLVXBQN4NpDnYD3Itdqcns5/z9zPKwqw3r5s9kHe0KErJX3d cNeeb0eFlpxzcSkl6Vqb3DyL1jN0o9QTDxFF+aec0BfX5KpJb5PjOii32H9Zgzgc ZSVhvMc/NiqHnc0gx3lpri+bRGmErU/bjfetGd6QKrVELcq1v8hH4ZH6D8VSa85o krPDgRAFzUQFgIwBzOWP8f+MLDIlzV2H -----END CERTIFICATE-----Generated at Thu Jun 12 16:05:13 2025 by rpki-client