$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft File: k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft (raw, json) Hash identifier: D6SSlQRw0ZYtHIznAQdT8am0YlGwUGE63ogcegDDzNw= Subject key identifier: 85:7F:5D:DA:8D:94:E0:DD:FB:43:6A:72:65:75:98:11:3E:48:13:C4 Authority key identifier: 93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 Certificate issuer: /CN=A91E3D15/serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Certificate serial: 13CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft Manifest number: 13B1 Signing time: Thu 12 Jun 2025 16:54:21 +0000 Manifest this update: Thu 12 Jun 2025 16:54:20 +0000 Manifest next update: Thu 19 Jun 2025 16:54:20 +0000 Files and hashes: 1: k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl (hash: 8odSdGzOxTLletRvDnamCewdEVSeEXPBl/I12LaV/pg=) 2: A04E05E42CE911EC8F99F486C4F9AE02.roa (hash: bw4oyTaqoqfdp29e2lYAU370gy2twH+W8CpSCQrTXLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 16:54:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5068 (0x13cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3D15, serialNumber=93C4D74D18F52CEA585280BB3312F310E120C0E9 Validity Not Before: Jun 12 16:54:20 2025 GMT Not After : Jun 19 16:54:20 2025 GMT Subject: CN=684b063c-d9d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:98:5f:ac:0f:a2:93:a3:a0:01:5d:8b:5d:c8: b5:e3:b5:02:7e:6c:09:db:d6:09:79:79:bd:e2:dc: 50:c2:ee:18:47:9d:38:3b:9d:33:e4:5c:7d:c5:8d: ee:5c:a3:45:e5:b2:0b:f4:62:36:8b:8f:b3:a1:81: a6:6e:60:b8:7d:44:28:90:9b:09:09:eb:33:7a:4c: e0:e9:f8:8f:44:8c:c2:46:95:dc:3e:24:63:d2:b5: c8:73:8a:4f:85:36:e1:ea:f1:b3:78:61:46:56:f1: c6:88:9d:5f:f7:d4:4d:ad:67:39:39:47:f4:a5:02: dd:da:92:8d:82:ea:45:dd:ae:ce:71:78:a1:6f:c5: 97:25:4e:5e:cf:b0:83:a3:a7:fb:9a:2a:ac:98:c7: d3:72:17:83:36:97:7c:18:a8:42:33:af:05:fb:ae: 3f:fd:1d:13:df:a6:37:53:e4:8c:15:87:f9:03:15: 9c:d5:20:74:83:f0:71:39:fd:6c:21:0f:b0:c4:57: 1b:61:67:d2:57:b9:5a:11:cb:70:c2:bd:0c:f7:7e: be:2e:db:d3:8a:3b:d7:52:bd:4c:e5:69:6e:4d:38: 16:5f:59:1b:2b:62:aa:66:89:b7:75:38:56:2a:f6: f5:23:33:17:45:5d:36:14:84:2d:4f:a5:c3:99:e9: ba:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7F:5D:DA:8D:94:E0:DD:FB:43:6A:72:65:75:98:11:3E:48:13:C4 X509v3 Authority Key Identifier: keyid:93:C4:D7:4D:18:F5:2C:EA:58:52:80:BB:33:12:F3:10:E1:20:C0:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k8TXTRj1LOpYUoC7MxLzEOEgwOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3D15/7C685A8295B911E8A688B60EC4F9AE02/k8TXTRj1LOpYUoC7MxLzEOEgwOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:2f:31:41:22:c5:29:4a:8c:67:5d:7b:e2:2f:11:fc:4f:5d: b6:8f:e5:71:da:a0:cc:91:f0:ae:75:ce:2a:de:83:b7:b3:c1: aa:07:68:13:16:79:08:c2:a0:d9:37:7a:6f:e7:ce:79:dc:b0: d0:50:b3:3a:84:80:8e:d9:51:0a:1f:70:18:c5:ba:b6:1c:df: 04:99:c1:3f:40:ee:af:0a:e7:e3:fe:8d:23:49:3f:cd:2d:b0: c7:9f:a1:01:e5:cc:cb:d5:b4:4e:96:53:11:da:3f:f3:9f:7b: 17:52:18:9f:87:ee:05:89:ef:73:47:05:f2:9c:26:3b:18:a0: da:4b:f9:2c:d5:5d:16:c1:a1:66:33:c2:39:d3:b1:82:3b:a1: 26:20:16:b1:02:ba:ea:40:11:ca:90:26:2e:dd:61:09:c3:a8: 10:e0:4e:5a:ac:46:35:fd:f0:22:06:cd:ae:d2:48:ae:58:d4: 7f:b6:64:22:27:c3:1b:14:cc:b7:01:bb:40:05:70:f5:1e:52: 3f:37:87:1f:73:8c:18:bd:c4:95:41:87:ac:87:93:91:78:4c: a3:66:54:0b:41:4c:1b:ce:a6:24:22:2d:88:87:d0:91:38:56: 7b:8c:2f:d4:e9:14:38:93:0a:55:35:fa:2d:19:1c:ca:59:a4: 7b:e6:a6:78 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNEMTUxMTAvBgNVBAUTKDkzQzRENzREMThGNTJDRUE1ODUyODBCQjMzMTJGMzEw RTEyMEMwRTkwHhcNMjUwNjEyMTY1NDIwWhcNMjUwNjE5MTY1NDIwWjAYMRYwFAYD VQQDEw02ODRiMDYzYy1kOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA15hfrA+ik6OgAV2LXci147UCfmwJ29YJeXm94txQwu4YR504O50z5Fx9xY3u XKNF5bIL9GI2i4+zoYGmbmC4fUQokJsJCeszekzg6fiPRIzCRpXcPiRj0rXIc4pP hTbh6vGzeGFGVvHGiJ1f99RNrWc5OUf0pQLd2pKNgupF3a7OcXihb8WXJU5ez7CD o6f7miqsmMfTcheDNpd8GKhCM68F+64//R0T36Y3U+SMFYf5AxWc1SB0g/BxOf1s IQ+wxFcbYWfSV7laEctwwr0M936+LtvTijvXUr1M5WluTTgWX1kbK2KqZom3dThW Kvb1IzMXRV02FIQtT6XDmem6ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIV/XdqN lODd+0NqcmV1mBE+SBPEMB8GA1UdIwQYMBaAFJPE100Y9SzqWFKAuzMS8xDhIMDp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0QxNS83QzY4NUE4Mjk1 QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxPcFlVb0M3TXhMekVPRWd3 T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s4VFhUUmoxTE9wWVVvQzdNeEx6RU9FZ3dPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF M0QxNS83QzY4NUE4Mjk1QjkxMUU4QTY4OEI2MEVDNEY5QUUwMi9rOFRYVFJqMUxP cFlVb0M3TXhMekVPRWd3T2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASLzFBIsUpSoxnXXviLxH8T122j+Vx2qDMkfCudc4q3oO3s8GqB2gT FnkIwqDZN3pv58553LDQULM6hICO2VEKH3AYxbq2HN8EmcE/QO6vCufj/o0jST/N LbDHn6EB5czL1bROllMR2j/zn3sXUhifh+4Fie9zRwXynCY7GKDaS/ks1V0WwaFm M8I507GCO6EmIBaxArrqQBHKkCYu3WEJw6gQ4E5arEY1/fAiBs2u0kiuWNR/tmQi J8MbFMy3AbtABXD1HlI/N4cfc4wYvcSVQYesh5OReEyjZlQLQUwbzqYkIi2Ih9CR OFZ7jC/U6RQ4kwpVNfotGRzKWaR75qZ4 -----END CERTIFICATE-----Generated at Fri Jun 13 17:33:09 2025 by rpki-client