$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: FmcdgCa3SKqOQcyYNDTDreKwAry34UfAlDglSqHxZTM= Subject key identifier: B2:3A:94:4E:CE:70:8A:1C:B4:7E:A1:C5:7E:A0:7D:18:C9:00:4F:52 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0792 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 078C Signing time: Mon 30 Jun 2025 21:38:26 +0000 Manifest this update: Mon 30 Jun 2025 21:38:25 +0000 Manifest next update: Mon 07 Jul 2025 21:38:25 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: ra8YjxNxXYW3kMI3Z52KmupANJqgHTh9h748nttt16Q=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1938 (0x792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Jun 30 21:38:25 2025 GMT Not After : Jul 7 21:38:25 2025 GMT Subject: CN=686303d1-af81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:b2:9e:38:6a:d0:68:09:2a:49:bb:ee:bc:a8: 13:7a:9b:42:89:fe:fc:03:d4:85:02:8d:8f:ae:ed: f3:0b:4b:d9:0b:c4:2f:d4:78:6c:2a:c1:ca:3f:47: 37:68:1d:53:5e:b7:2f:c4:d7:9f:d1:1e:c1:b7:36: 0f:60:e3:6a:c8:62:8f:6c:24:47:45:92:13:e8:b7: d0:9b:d4:92:a4:b0:31:98:11:41:5c:9e:d0:5a:67: d7:c9:58:3f:1d:6f:e2:72:de:a1:e9:90:e7:e0:12: 85:16:25:39:99:a2:11:e7:83:9a:84:00:37:10:92: ee:06:85:a4:d2:05:19:3f:d7:6b:5f:d1:d5:1c:39: 43:b1:58:1c:ae:d9:63:17:a8:ad:90:ad:a8:75:00: e3:70:63:18:ce:53:6b:0f:98:7e:f3:24:2e:4e:85: 73:0e:c6:10:27:85:ad:9f:4e:97:82:85:24:6e:80: ef:74:ad:33:4d:df:30:77:c4:5b:1b:47:04:b7:c0: 63:37:23:31:66:41:ff:d8:94:da:4c:5f:b3:91:e5: ab:4b:d6:9b:ff:0e:1d:35:05:a5:b8:4a:7f:b2:18: ab:86:34:9e:76:77:df:92:28:a9:84:08:94:46:37: 33:e4:90:7d:29:1a:d1:a6:7d:9c:9c:98:e5:33:da: 2c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3A:94:4E:CE:70:8A:1C:B4:7E:A1:C5:7E:A0:7D:18:C9:00:4F:52 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:9f:9d:d0:47:0f:eb:6d:6c:02:90:9a:e0:60:e0:7a:1e:24: bf:02:9c:75:25:36:d0:b9:02:26:4c:fd:da:64:d7:e8:3c:4c: 8f:7c:f3:1e:45:22:99:f6:8e:35:0c:d6:0d:31:20:9e:03:ad: e8:c1:e6:2e:16:c1:f8:99:78:4c:42:50:5b:e1:bc:d5:4d:1d: 9e:46:a2:ef:a2:65:3a:b4:80:12:45:f8:e0:f0:18:0b:fd:07: 56:2d:f7:6e:57:63:d0:d2:02:1c:9b:61:35:76:de:3f:f6:78: 86:1f:50:57:6c:dc:95:c7:45:cc:ec:3d:a5:de:96:ff:75:5a: 51:99:a2:fd:51:b0:28:39:fd:b3:09:53:3a:1b:92:10:69:e6: 0b:37:c5:ad:58:29:2e:a4:8d:86:48:b2:5c:d1:b7:fe:7b:f4: 0f:ce:51:f3:eb:0e:d5:02:a1:38:a2:12:20:b7:11:b3:6b:38: 93:87:4c:1e:bf:07:d2:91:b4:11:1b:5f:77:ea:a9:23:94:0d: 29:52:69:05:94:98:29:96:46:04:68:12:07:a7:a5:c3:8f:5c: b1:64:e6:b0:11:bb:7c:96:d7:08:33:2c:b2:bb:1c:c4:10:a3: 53:e1:e0:d0:8c:c1:1c:8d:73:14:47:67:ee:d2:08:cc:6f:8d: 78:b2:83:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwNjMwMjEzODI1WhcNMjUwNzA3MjEzODI1WjAYMRYwFAYD VQQDEw02ODYzMDNkMS1hZjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbKeOGrQaAkqSbvuvKgTeptCif78A9SFAo2Pru3zC0vZC8Qv1HhsKsHKP0c3 aB1TXrcvxNef0R7BtzYPYONqyGKPbCRHRZIT6LfQm9SSpLAxmBFBXJ7QWmfXyVg/ HW/ict6h6ZDn4BKFFiU5maIR54OahAA3EJLuBoWk0gUZP9drX9HVHDlDsVgcrtlj F6itkK2odQDjcGMYzlNrD5h+8yQuToVzDsYQJ4Wtn06XgoUkboDvdK0zTd8wd8Rb G0cEt8BjNyMxZkH/2JTaTF+zkeWrS9ab/w4dNQWluEp/shirhjSednffkiiphAiU Rjcz5JB9KRrRpn2cnJjlM9oslQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLI6lE7O cIoctH6hxX6gfRjJAE9SMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC5n53QRw/rbWwCkJrgYOB6HiS/Apx1JTbQuQImTP3aZNfoPEyPfPMe RSKZ9o41DNYNMSCeA63oweYuFsH4mXhMQlBb4bzVTR2eRqLvomU6tIASRfjg8BgL /QdWLfduV2PQ0gIcm2E1dt4/9niGH1BXbNyVx0XM7D2l3pb/dVpRmaL9UbAoOf2z CVM6G5IQaeYLN8WtWCkupI2GSLJc0bf+e/QPzlHz6w7VAqE4ohIgtxGzaziTh0we vwfSkbQRG1936qkjlA0pUmkFlJgplkYEaBIHp6XDj1yxZOawEbt8ltcIMyyyuxzE EKNT4eDQjMEcjXMUR2fu0gjMb414soMK -----END CERTIFICATE-----Generated at Tue Jul 1 19:52:11 2025 by rpki-client