$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: ztqLv7f+DmwSTuLr4YQkC+Ur+0aWeAelNGXURRM4Qpc= Subject key identifier: 33:11:2E:04:73:16:D3:22:C5:66:B3:EC:D0:0C:6A:66:45:F2:B9:4D Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C0E Signing time: Wed 04 Jun 2025 18:42:07 +0000 Manifest this update: Wed 04 Jun 2025 18:42:07 +0000 Manifest next update: Wed 11 Jun 2025 18:42:07 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: 0mgOkafM5XmiZs/KVopnu8y059w31Ci502QV5VqgH8Y=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 18:42:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Jun 4 18:42:07 2025 GMT Not After : Jun 11 18:42:07 2025 GMT Subject: CN=6840937f-363b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:9d:20:82:a6:a8:c5:26:97:31:1d:2f:c8: a4:f3:89:36:56:77:57:38:c7:98:2c:04:ee:16:c6: d4:8b:b0:13:4f:30:c3:56:db:68:e3:68:fa:64:bd: 45:51:9d:3d:f9:7c:f5:22:0b:88:9d:d4:91:c4:dd: 92:49:3a:5f:13:ba:2d:a2:f8:93:2d:2d:1a:a9:03: 5e:c8:a0:ea:a5:de:01:4e:f9:76:e6:02:bb:e1:3f: e4:20:80:86:d3:ee:52:3e:c4:fa:03:02:38:68:0d: 29:d9:fa:ff:2e:bc:46:08:27:35:ff:32:87:fb:d7: 9c:36:76:5b:a9:12:8b:52:a7:d5:65:f8:84:71:ac: 29:c1:a1:d8:f2:c2:ec:08:90:a6:93:81:a3:fc:d4: 7a:63:ad:92:6c:4e:5f:27:65:b0:e7:ca:42:a0:0b: 66:ab:76:4b:1e:f1:66:3a:57:4a:8b:dc:be:bf:e8: a1:d4:c9:8d:6a:99:df:ab:fa:42:b3:63:dd:63:08: c1:77:71:a4:c4:ec:a9:04:59:cf:95:79:cf:74:d9: 3c:97:88:d4:cb:8f:a0:2c:07:17:45:6b:f5:48:f1: 5f:b8:59:9d:b9:4d:fb:bd:94:f0:25:9d:fd:60:c6: c0:c5:85:b5:c6:16:5b:b1:c5:db:b7:f0:b4:7c:cd: fb:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:11:2E:04:73:16:D3:22:C5:66:B3:EC:D0:0C:6A:66:45:F2:B9:4D X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:4c:16:d4:36:23:df:5f:bc:a4:e4:24:ec:18:96:77:23:5d: 20:26:49:c8:5c:3a:71:c0:d0:44:7e:bc:d8:38:5b:b0:1f:c8: ab:c0:e4:63:d5:db:5f:3c:d9:f7:ec:2c:27:be:8f:4f:eb:bc: 50:1a:7d:81:f8:60:bd:df:6c:6b:b7:0f:87:69:2e:ff:f7:53: ae:ce:00:ce:81:f5:0c:2d:d4:27:ec:fc:42:b6:b8:a9:d8:fe: 49:8d:67:4e:e4:84:d1:11:22:d4:20:61:fa:1e:a9:42:df:0f: 0e:8b:a4:34:47:8c:c8:16:74:a0:ea:91:c6:58:73:ba:48:e9: 0e:e0:15:09:85:35:cd:2b:ca:c9:aa:85:8a:ab:b6:f4:d8:dc: 58:cb:cd:d5:57:10:7b:9c:65:84:59:11:65:68:3a:c7:03:1f: 26:b3:94:cb:f9:84:49:59:f4:39:8c:17:01:cc:67:73:8e:c9: d5:c2:10:14:ba:4a:dc:97:ca:b7:40:61:88:32:03:d7:6d:4f: 8e:bb:9d:05:63:e2:54:33:86:80:65:e8:33:18:08:cc:11:ed: 60:b6:7e:b4:5b:47:57:af:35:5c:58:5b:26:2b:37:70:47:1d: 20:6b:c6:b3:b5:7c:fa:25:e1:77:ad:62:0c:cf:1b:0e:09:a8: 76:05:93:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwNjA0MTg0MjA3WhcNMjUwNjExMTg0MjA3WjAYMRYwFAYD VQQDEw02ODQwOTM3Zi0zNjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOedIIKmqMUmlzEdL8ik84k2VndXOMeYLATuFsbUi7ATTzDDVtto42j6ZL1F UZ09+Xz1IguIndSRxN2SSTpfE7otoviTLS0aqQNeyKDqpd4BTvl25gK74T/kIICG 0+5SPsT6AwI4aA0p2fr/LrxGCCc1/zKH+9ecNnZbqRKLUqfVZfiEcawpwaHY8sLs CJCmk4Gj/NR6Y62SbE5fJ2Ww58pCoAtmq3ZLHvFmOldKi9y+v+ih1MmNapnfq/pC s2PdYwjBd3GkxOypBFnPlXnPdNk8l4jUy4+gLAcXRWv1SPFfuFmduU37vZTwJZ39 YMbAxYW1xhZbscXbt/C0fM37jwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDMRLgRz FtMixWaz7NAMamZF8rlNMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjTBbUNiPfX7yk5CTsGJZ3I10gJknIXDpxwNBEfrzYOFuwH8irwORj 1dtfPNn37Cwnvo9P67xQGn2B+GC932xrtw+HaS7/91OuzgDOgfUMLdQn7PxCtrip 2P5JjWdO5ITRESLUIGH6HqlC3w8Oi6Q0R4zIFnSg6pHGWHO6SOkO4BUJhTXNK8rJ qoWKq7b02NxYy83VVxB7nGWEWRFlaDrHAx8ms5TL+YRJWfQ5jBcBzGdzjsnVwhAU ukrcl8q3QGGIMgPXbU+Ou50FY+JUM4aAZegzGAjMEe1gtn60W0dXrzVcWFsmKzdw Rx0ga8aztXz6JeF3rWIMzxsOCah2BZMN -----END CERTIFICATE-----Generated at Thu Jun 5 20:08:16 2025 by rpki-client