$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: TIoHdGNhvnLwSgTEbIAI5utwnmRZQfI5oryoDxTF4O8= Subject key identifier: 2D:FD:92:8D:B4:91:2C:9F:D2:4D:77:80:99:C7:B6:B7:7B:F8:31:B2 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 0448 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 0435 Signing time: Sat 31 May 2025 00:35:08 +0000 Manifest this update: Sat 31 May 2025 00:35:08 +0000 Manifest next update: Sat 07 Jun 2025 00:35:08 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: aB49BoNZp4fsVKwkLCQ2AYKdgG3H0x2Qr4iISRHu9mU=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 00:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1096 (0x448) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: May 31 00:35:08 2025 GMT Not After : Jun 7 00:35:08 2025 GMT Subject: CN=683a4ebc-698a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e3:2a:01:a6:42:bb:aa:0d:74:1f:34:e1:39: 66:1f:53:4a:39:3f:1d:81:26:6f:cd:d9:ad:a8:06: 64:7a:da:f4:dd:b4:72:1e:5d:06:bf:74:00:56:5c: c0:7f:1d:e7:8d:cb:d0:31:db:06:08:65:1d:b8:ac: 7d:a9:e2:e2:ac:12:cb:45:10:6c:85:a5:48:39:00: ea:e9:67:c4:8d:a0:73:0e:89:24:3c:3f:9f:3f:ae: 8e:dc:4b:ff:72:27:2d:26:d2:2e:f0:e1:53:20:4e: 86:19:cf:85:45:99:46:b0:69:d6:d7:d9:85:f9:89: 05:95:e7:53:51:5a:07:5f:27:04:a1:12:96:72:49: 24:a5:ea:7c:47:7c:36:e0:b7:59:3e:7e:c5:f2:ac: a1:6f:75:12:17:da:e7:ed:d7:61:5b:21:6a:fe:ea: c2:13:69:26:cc:12:e3:0d:22:36:58:de:c0:95:55: 84:7b:58:05:13:81:9a:2c:0c:b4:ae:9e:4f:72:96: ee:a4:73:b2:cf:71:5f:5d:94:8d:a5:f4:f2:62:e2: 07:be:2a:10:51:7a:89:9f:9f:b5:52:27:c4:6e:53: ae:51:a1:26:7f:09:4d:35:7f:ad:d9:bf:a2:84:09: a3:5e:e9:cd:dd:05:81:a9:b4:24:2f:71:8a:46:c9: 4d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FD:92:8D:B4:91:2C:9F:D2:4D:77:80:99:C7:B6:B7:7B:F8:31:B2 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:f0:4f:cc:72:ff:a6:85:de:be:d8:4e:03:69:51:5e:91:f7: 6b:88:50:74:f4:6f:34:8f:0e:bf:5b:9b:17:8f:e3:00:77:73: 55:79:8b:ef:aa:56:9e:5a:f0:66:d0:83:c3:82:c5:f3:8f:54: bf:c3:1a:b6:e6:de:d7:48:d0:b2:13:bb:78:69:31:90:be:0f: 62:b2:0c:53:80:d8:2e:bb:7c:27:32:d1:b4:81:2c:1d:c1:97: 4e:b0:a3:0e:66:81:79:5f:7c:86:2e:25:22:d4:b6:3b:a3:21: 30:6b:e4:04:94:07:17:5c:05:13:43:81:50:e2:f1:35:b7:4e: 5a:8c:6b:23:ba:e2:15:30:cb:f5:9f:b4:26:d3:8e:c0:3c:a9: 5c:5e:84:22:0c:69:1e:fa:33:d2:35:e4:5b:ab:25:d0:9a:0b: af:b7:a0:84:3f:2e:8f:2d:0c:4f:e6:64:de:1d:4e:8e:ef:63: 39:b9:ae:34:43:07:03:d8:73:2a:1c:37:61:f5:9c:5c:e0:a0: 9b:0c:cd:fa:8c:20:d8:29:8b:a5:10:72:9e:f2:b7:04:b6:0d: a5:ca:93:63:10:f3:be:b8:ec:ac:65:21:69:1c:f6:ec:af:3c: 66:d4:e8:26:40:a3:38:e7:01:c3:53:85:d8:14:2a:84:aa:b3: bc:ff:df:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUwNTMxMDAzNTA4WhcNMjUwNjA3MDAzNTA4WjAYMRYwFAYD VQQDEw02ODNhNGViYy02OThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0eMqAaZCu6oNdB804TlmH1NKOT8dgSZvzdmtqAZketr03bRyHl0Gv3QAVlzA fx3njcvQMdsGCGUduKx9qeLirBLLRRBshaVIOQDq6WfEjaBzDokkPD+fP66O3Ev/ cictJtIu8OFTIE6GGc+FRZlGsGnW19mF+YkFledTUVoHXycEoRKWckkkpep8R3w2 4LdZPn7F8qyhb3USF9rn7ddhWyFq/urCE2kmzBLjDSI2WN7AlVWEe1gFE4GaLAy0 rp5PcpbupHOyz3FfXZSNpfTyYuIHvioQUXqJn5+1UifEblOuUaEmfwlNNX+t2b+i hAmjXunN3QWBqbQkL3GKRslNCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC39ko20 kSyf0k13gJnHtrd7+DGyMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAa8E/Mcv+mhd6+2E4DaVFekfdriFB09G80jw6/W5sXj+MAd3NVeYvv qlaeWvBm0IPDgsXzj1S/wxq25t7XSNCyE7t4aTGQvg9isgxTgNguu3wnMtG0gSwd wZdOsKMOZoF5X3yGLiUi1LY7oyEwa+QElAcXXAUTQ4FQ4vE1t05ajGsjuuIVMMv1 n7Qm047APKlcXoQiDGke+jPSNeRbqyXQmguvt6CEPy6PLQxP5mTeHU6O72M5ua40 QwcD2HMqHDdh9Zxc4KCbDM36jCDYKYulEHKe8rcEtg2lypNjEPO+uOysZSFpHPbs rzxm1OgmQKM45wHDU4XYFCqEqrO8/99+ -----END CERTIFICATE-----Generated at Sat May 31 16:56:13 2025 by rpki-client