$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: mFYw4R+RY4s+J1n5lbaQFZzBnXXQ4Htyb8/4rTk6ulg= Subject key identifier: 05:02:20:2E:93:CB:DF:F7:CD:8B:E0:A1:C2:E8:05:E1:A0:A1:BA:BD Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 60 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: 5F Signing time: Tue 03 Jun 2025 06:55:34 +0000 Manifest this update: Tue 03 Jun 2025 06:55:33 +0000 Manifest next update: Tue 10 Jun 2025 06:55:33 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: lTf9v81O3o80kbLUIez0LTsPYhhv1+VsV0GLpULajjc=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:55:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Jun 3 06:55:33 2025 GMT Not After : Jun 10 06:55:33 2025 GMT Subject: CN=683e9c66-ecf3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:85:2c:5e:25:45:ee:18:65:6f:97:7e:28:d6: a6:ea:ee:fa:71:28:95:4b:82:b3:d2:b3:20:72:5d: 3d:f1:ac:d6:11:87:7e:82:c5:0f:06:2a:e3:17:8b: a9:2f:1b:e5:36:a6:f6:89:21:fa:de:ea:79:18:eb: 97:ed:bc:23:77:29:54:e9:77:09:61:31:66:13:02: 36:31:e5:ff:d3:65:29:43:24:d0:06:f3:80:7c:e8: 76:a9:23:26:3c:60:f7:9c:ad:0d:fe:a3:a7:f5:73: 46:11:bf:ac:14:de:4d:ad:ad:4d:a3:07:43:4a:b6: 32:f5:33:a0:9e:a7:34:05:e1:28:8d:36:25:a1:48: f6:5d:43:49:64:5a:f5:4d:22:15:1f:8d:28:c6:5a: 20:6e:c4:ba:3f:60:81:a8:a7:ee:fe:39:63:cf:cd: 21:ef:f8:df:fa:d7:ef:69:bb:a2:a3:20:a9:75:22: 57:8c:51:10:70:0c:02:68:2d:69:7d:e8:2e:df:ea: 73:ef:82:51:31:f2:13:07:6c:70:07:e1:66:48:e0: dd:33:c3:df:47:70:19:a2:59:f4:6c:d4:ab:32:0d: 0b:06:b6:ae:54:90:ef:a8:e9:25:98:7d:d4:81:24: 04:3b:ac:21:3b:24:4a:4d:ef:79:4c:64:ff:53:52: 5c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:02:20:2E:93:CB:DF:F7:CD:8B:E0:A1:C2:E8:05:E1:A0:A1:BA:BD X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:00:e0:63:30:35:a9:e2:7a:60:03:78:ff:d3:c2:d0:93:5d: 75:65:18:aa:81:66:52:73:43:75:7d:f8:03:4b:0c:e5:a2:a6: 28:5a:4f:08:97:ce:e4:e4:cb:60:96:56:a6:60:bf:13:7c:11: 94:76:92:e8:e9:32:40:be:07:64:13:05:be:c0:4d:da:71:7b: 33:a3:0d:b3:47:8d:e3:48:08:cf:47:59:d4:0c:84:35:9a:a6: 2b:13:40:9b:37:26:14:2b:bf:01:9e:a0:df:03:18:f3:2b:17: 89:8d:21:9e:1a:3a:0d:2b:cb:3b:5c:90:81:17:01:a6:6b:8e: 5e:83:75:51:34:56:ed:de:a2:c9:99:d6:8a:28:1b:ed:88:21: 8a:b0:90:25:40:a3:8e:4c:f3:92:73:db:a1:08:e9:2b:60:f6: 9a:ff:6d:96:26:51:95:19:34:2b:e0:2f:c4:32:82:a5:6f:90: 26:fd:f5:df:94:16:21:6a:1d:96:75:3c:00:81:71:29:32:b9: 92:c1:44:13:48:8a:58:c0:23:20:d1:38:e6:f4:11:3b:2e:8e: d0:cf:fd:79:e5:08:4e:95:cd:4a:14:eb:18:73:86:f8:f0:b2: 93:c1:f6:46:ad:b2:4a:36:35:46:fd:5a:55:dd:e4:e2:b4:f4: 3b:ef:88:51 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTIzRjExMC8GA1UEBRMoMkE1OUI5NkMzMEE1NUZCRDYxRDIyMzAzNzNDRUI4OUQx REIwMUE4QjAeFw0yNTA2MDMwNjU1MzNaFw0yNTA2MTAwNjU1MzNaMBgxFjAUBgNV BAMTDTY4M2U5YzY2LWVjZjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDahSxeJUXuGGVvl34o1qbq7vpxKJVLgrPSsyByXT3xrNYRh36CxQ8GKuMXi6kv G+U2pvaJIfre6nkY65ftvCN3KVTpdwlhMWYTAjYx5f/TZSlDJNAG84B86HapIyY8 YPecrQ3+o6f1c0YRv6wU3k2trU2jB0NKtjL1M6CepzQF4SiNNiWhSPZdQ0lkWvVN IhUfjSjGWiBuxLo/YIGop+7+OWPPzSHv+N/61+9pu6KjIKl1IleMURBwDAJoLWl9 6C7f6nPvglEx8hMHbHAH4WZI4N0zw99HcBmiWfRs1KsyDQsGtq5UkO+o6SWYfdSB JAQ7rCE7JEpN73lMZP9TUlyfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUBQIgLpPL 3/fNi+ChwugF4aChur0wHwYDVR0jBBgwFoAUKlm5bDClX71h0iMDc864nR2wGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzRFQkE2QjMyQjA1 MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xtNWJEQ2xYNzFoMGlNRGM4NjRuUjJ3R29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 MjNGLzRFQkE2QjMyQjA1MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcx aDBpTURjODY0blIyd0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACoA4GMwNaniemADeP/TwtCTXXVlGKqBZlJzQ3V9+ANLDOWipihaTwiX zuTky2CWVqZgvxN8EZR2kujpMkC+B2QTBb7ATdpxezOjDbNHjeNICM9HWdQMhDWa pisTQJs3JhQrvwGeoN8DGPMrF4mNIZ4aOg0ryztckIEXAaZrjl6DdVE0Vu3eosmZ 1oooG+2IIYqwkCVAo45M85Jz26EI6Stg9pr/bZYmUZUZNCvgL8QygqVvkCb99d+U FiFqHZZ1PACBcSkyuZLBRBNIiljAIyDROOb0ETsujtDP/XnlCE6VzUoU6xhzhvjw spPB9katsko2NUb9WlXd5OK09DvviFE= -----END CERTIFICATE-----Generated at Tue Jun 3 23:31:51 2025 by rpki-client