$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft File: keKklwM5j7IArA6fpHZpFddL-eU.mft (raw, json) Hash identifier: bFPx/GXW7rc4fAA2BVoGmmJkKRv7trkv70Gv8lHpGZc= Subject key identifier: 21:AC:4C:0B:FF:4D:7D:4A:6E:BA:6E:CC:2C:25:34:28:65:55:34:D4 Authority key identifier: 91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 Certificate issuer: /CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Certificate serial: 0167 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft Manifest number: 0164 Signing time: Sat 31 May 2025 03:37:51 +0000 Manifest this update: Sat 31 May 2025 03:37:50 +0000 Manifest next update: Sat 07 Jun 2025 03:37:50 +0000 Files and hashes: 1: keKklwM5j7IArA6fpHZpFddL-eU.crl (hash: FjbbuNPiHLO43bCVh51363+2yJinBIYQsb4qXoh3BTw=) 2: 345AD30E1E1311EE846A3261C4F9AE02.roa (hash: zTYXuX3GDZ63v54RvQHdui7ccszwzNrfqOTF6/FnToE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:37:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 359 (0x167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6E4, serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Validity Not Before: May 31 03:37:50 2025 GMT Not After : Jun 7 03:37:50 2025 GMT Subject: CN=683a798f-8948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5f:7c:80:4b:f0:9a:85:57:cd:a2:2d:86:e4: 64:15:60:29:d8:32:39:87:28:04:19:8c:40:3d:78: 2e:3c:62:a2:74:15:e0:1d:69:c5:7b:2e:b7:e0:4d: e7:61:cf:04:fa:8c:7d:51:10:87:e2:3d:95:0c:60: b8:6c:a0:1c:4a:25:41:b5:79:26:b2:48:63:b2:5e: df:5d:3e:62:5f:c4:e4:30:c5:43:56:e3:cb:b9:b1: 59:1f:10:75:51:dc:15:9f:33:90:39:ce:bc:fb:ea: 1c:19:eb:88:5c:32:90:1d:d9:50:af:01:a6:11:1f: a5:66:4e:9f:85:6d:3e:a4:ac:1b:d9:55:4b:1e:66: bb:f2:79:06:70:ca:d6:3c:14:b5:2a:f6:a3:a4:dd: 92:4a:79:51:cb:14:fd:ec:7a:f7:81:ee:4b:66:bd: 5a:48:58:3c:72:53:8c:f0:c2:c3:d4:e4:3a:7b:dd: 8d:9e:db:0a:8e:b5:5f:87:29:0b:7c:5a:7c:d4:1e: de:67:68:f4:b9:66:16:2e:2b:da:61:80:29:f6:4c: 9b:70:46:4a:df:93:f6:e5:29:83:70:e8:0f:26:db: 5d:bc:05:09:49:fa:a4:83:46:b3:b6:68:c4:12:9f: a6:89:a4:c1:a2:77:36:12:ed:73:5b:62:af:54:2d: d8:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:AC:4C:0B:FF:4D:7D:4A:6E:BA:6E:CC:2C:25:34:28:65:55:34:D4 X509v3 Authority Key Identifier: keyid:91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:a2:61:4a:cb:67:01:00:95:3a:75:c4:e0:99:6a:54:c0:ba: 87:ef:a2:60:45:06:c5:05:f0:d3:32:46:1f:36:22:4f:1a:9e: 31:ff:1f:5b:9c:71:51:d9:46:77:fc:d7:7f:e9:62:cb:44:dc: 64:aa:38:8f:11:ed:2d:2e:d1:02:6b:16:c3:27:98:42:aa:d6: 20:b6:1b:5d:f6:83:bf:64:25:fe:51:b1:d2:b9:8b:a6:1a:21: 95:fe:37:cc:80:14:c4:ce:96:09:3a:02:89:4c:b6:12:e0:5c: e9:a7:d3:36:34:57:dc:97:99:5f:d7:bb:3e:9f:a3:3c:09:0e: dd:25:25:28:78:c5:10:39:b9:cc:4d:e8:97:aa:b7:ba:b7:5f: c6:c6:e8:fc:4c:34:62:02:5d:25:78:3a:c7:c4:c5:5d:54:6c: 83:a5:c1:c6:bd:6f:29:b3:19:a2:70:30:39:fe:a9:8a:21:68: 5e:f6:4c:0c:3a:f9:ab:d9:ff:fe:27:01:5b:f6:93:3f:75:c8: 47:29:62:e2:b0:da:a5:d1:09:ac:ef:7d:a0:ab:1c:6e:93:11: b0:fb:e3:01:1b:2d:6e:a7:0d:47:4f:cb:39:f4:ae:5d:f7:9e: 5c:78:3d:5a:f7:04:94:f7:f7:ac:a5:25:83:12:11:7f:30:bb: 8d:a8:63:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2RTQxMTAvBgNVBAUTKDkxRTJBNDk3MDMzOThGQjIwMEFDMEU5RkE0NzY2OTE1 RDc0QkY5RTUwHhcNMjUwNTMxMDMzNzUwWhcNMjUwNjA3MDMzNzUwWjAYMRYwFAYD VQQDEw02ODNhNzk4Zi04OTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz198gEvwmoVXzaIthuRkFWAp2DI5hygEGYxAPXguPGKidBXgHWnFey634E3n Yc8E+ox9URCH4j2VDGC4bKAcSiVBtXkmskhjsl7fXT5iX8TkMMVDVuPLubFZHxB1 UdwVnzOQOc68++ocGeuIXDKQHdlQrwGmER+lZk6fhW0+pKwb2VVLHma78nkGcMrW PBS1KvajpN2SSnlRyxT97Hr3ge5LZr1aSFg8clOM8MLD1OQ6e92NntsKjrVfhykL fFp81B7eZ2j0uWYWLivaYYAp9kybcEZK35P25SmDcOgPJttdvAUJSfqkg0aztmjE Ep+miaTBonc2Eu1zW2KvVC3Y4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCGsTAv/ TX1KbrpuzCwlNChlVTTUMB8GA1UdIwQYMBaAFJHipJcDOY+yAKwOn6R2aRXXS/nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDZFNC9BQkU3RTA1NjFF MEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3SUFyQTZmcEhacEZkZEwt ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlS2tsd001ajdJQXJBNmZwSFpwRmRkTC1lVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZFNC9BQkU3RTA1NjFFMEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3 SUFyQTZmcEhacEZkZEwtZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgomFKy2cBAJU6dcTgmWpUwLqH76JgRQbFBfDTMkYfNiJPGp4x/x9b nHFR2UZ3/Nd/6WLLRNxkqjiPEe0tLtECaxbDJ5hCqtYgthtd9oO/ZCX+UbHSuYum GiGV/jfMgBTEzpYJOgKJTLYS4Fzpp9M2NFfcl5lf17s+n6M8CQ7dJSUoeMUQObnM TeiXqre6t1/Gxuj8TDRiAl0leDrHxMVdVGyDpcHGvW8psxmicDA5/qmKIWhe9kwM Ovmr2f/+JwFb9pM/dchHKWLisNql0Qms732gqxxukxGw++MBGy1upw1HT8s59K5d 955ceD1a9wSU9/espSWDEhF/MLuNqGMe -----END CERTIFICATE-----Generated at Sat May 31 16:44:51 2025 by rpki-client