$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: ai22PAoJeeY9LB2EbgKs0YGDxHyoDO8EhldCoNG2N24= Subject key identifier: 00:FA:46:F0:16:60:49:10:96:E0:18:06:97:C0:71:75:42:8F:FF:F1 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0E9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E51 Signing time: Fri 30 May 2025 17:59:29 +0000 Manifest this update: Fri 30 May 2025 17:59:29 +0000 Manifest next update: Fri 06 Jun 2025 17:59:29 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: yCkGYI/4MgFjp+jDxVLZJflm4N7jlHaAABy1fWm4QtE=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: q8VjbfesBfjBXJ1O+TtlGTvZbuy2Q6Gq6lc9iUM1cKc=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: L+aUrfi/IHEm4FCCzrEf6AdJOcO/5KYjXAI+VHu0xCQ=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: mlWu4QI6RV3Fazg24ou9fVsCNac8uNLMWZTkxYffaU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 17:59:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3740 (0xe9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: May 30 17:59:29 2025 GMT Not After : Jun 6 17:59:29 2025 GMT Subject: CN=6839f201-e3cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cd:44:57:5b:34:47:f4:7f:1b:17:66:80:d8: e9:98:26:ef:dd:74:59:2b:da:bb:6e:51:72:89:66: 6b:c6:71:59:88:e3:f6:af:43:3f:e1:1b:aa:c5:08: 67:f0:87:c3:54:97:14:46:84:3d:4d:90:db:77:58: b6:dc:55:4e:b8:8b:d1:43:aa:f5:9e:20:fb:82:c1: 25:09:5f:8b:ce:71:90:88:ed:fc:17:39:cf:07:12: b0:e0:1c:62:47:c7:2d:f8:39:14:35:b4:11:3c:5c: 72:5c:37:12:0b:bd:74:91:df:63:06:9f:2d:1e:81: 95:c6:d8:02:9e:fd:c0:82:23:65:f0:b9:65:f9:57: c6:28:20:d4:c1:12:86:eb:af:7e:fe:5b:ef:3e:a7: b1:db:06:a8:e5:0d:16:db:48:aa:f9:3c:43:cc:96: 28:3e:37:86:7a:c1:43:92:1b:33:54:e9:17:f5:6f: 72:83:b3:39:fb:88:93:ed:54:5d:5b:76:1c:64:c9: 1c:3b:dd:4f:44:62:c9:30:8d:50:5c:5b:bc:8b:fa: 59:47:b3:e7:3d:b7:58:16:9e:f6:80:70:15:08:f5: 81:c3:f5:8b:f7:03:5e:7f:e6:1a:65:0e:6b:b8:e8: 3b:e7:bb:d1:8c:61:2d:dc:ec:40:be:a1:8f:ea:40: d9:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:FA:46:F0:16:60:49:10:96:E0:18:06:97:C0:71:75:42:8F:FF:F1 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:09:ea:14:3f:45:24:f2:f6:e7:7e:1f:c7:fc:79:75:68:ac: dd:fd:29:7a:1e:b9:6e:a0:68:56:c5:b9:d2:74:2a:6e:f5:f1: 28:66:c8:27:80:df:3e:12:80:05:fb:8c:c7:7a:3f:8b:2c:19: c0:ed:19:53:99:e2:09:77:97:0b:d4:09:c6:a6:dc:d7:ce:d8: f3:0a:37:a3:aa:54:d8:2f:1f:95:3b:3f:f1:62:4f:b3:53:27: 40:7a:db:dd:d7:c5:51:9b:e8:35:f7:ca:c5:de:ad:8b:2b:fe: 8e:42:29:cd:50:8e:cd:6b:9a:cd:c6:c1:ae:3a:fc:87:3b:6e: 7a:5d:84:aa:cb:8c:8b:d8:b7:99:8c:38:2d:cf:ed:95:c6:95: cd:f1:0a:82:46:41:56:3f:7d:d0:09:37:1f:7a:b0:c1:70:ea: e4:f8:09:61:b3:20:ae:ba:6d:db:46:dc:f0:7b:97:8b:c2:97: 24:ca:29:94:8f:d1:b9:8d:29:b4:5e:d1:af:0a:9e:fb:2b:21: eb:28:c7:01:1a:7a:a3:1e:ed:26:5e:ad:31:f0:cf:6c:4b:d0: d8:78:0d:8e:f5:e5:41:11:59:e9:53:a6:54:89:e4:53:10:a6: da:5d:51:37:aa:be:89:ba:8e:72:f3:2a:53:d5:9d:5c:2a:1b: 3e:76:d7:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwNTMwMTc1OTI5WhcNMjUwNjA2MTc1OTI5WjAYMRYwFAYD VQQDEw02ODM5ZjIwMS1lM2NkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAws1EV1s0R/R/GxdmgNjpmCbv3XRZK9q7blFyiWZrxnFZiOP2r0M/4RuqxQhn 8IfDVJcURoQ9TZDbd1i23FVOuIvRQ6r1niD7gsElCV+LznGQiO38FznPBxKw4Bxi R8ct+DkUNbQRPFxyXDcSC710kd9jBp8tHoGVxtgCnv3AgiNl8Lll+VfGKCDUwRKG 669+/lvvPqex2wao5Q0W20iq+TxDzJYoPjeGesFDkhszVOkX9W9yg7M5+4iT7VRd W3YcZMkcO91PRGLJMI1QXFu8i/pZR7PnPbdYFp72gHAVCPWBw/WL9wNef+YaZQ5r uOg757vRjGEt3OxAvqGP6kDZewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAD6RvAW YEkQluAYBpfAcXVCj//xMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPCeoUP0Uk8vbnfh/H/Hl1aKzd/Sl6HrluoGhWxbnSdCpu9fEoZsgn gN8+EoAF+4zHej+LLBnA7RlTmeIJd5cL1AnGptzXztjzCjejqlTYLx+VOz/xYk+z UydAetvd18VRm+g198rF3q2LK/6OQinNUI7Na5rNxsGuOvyHO256XYSqy4yL2LeZ jDgtz+2VxpXN8QqCRkFWP33QCTcferDBcOrk+AlhsyCuum3bRtzwe5eLwpckyimU j9G5jSm0XtGvCp77KyHrKMcBGnqjHu0mXq0x8M9sS9DYeA2O9eVBEVnpU6ZUieRT EKbaXVE3qr6Juo5y8ypT1Z1cKhs+dtfN -----END CERTIFICATE-----Generated at Sat May 31 17:48:43 2025 by rpki-client