$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: xobitiQJ1s3aCATC3poK87UHe64d4KE4qkiI0Hpkh14= Subject key identifier: 40:48:2E:FD:64:A5:A9:DF:98:FE:EA:50:C1:04:64:C4:BD:CE:99:38 Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: 5D Signing time: Thu 03 Jul 2025 07:18:29 +0000 Manifest this update: Thu 03 Jul 2025 07:18:28 +0000 Manifest next update: Thu 10 Jul 2025 07:18:28 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: I9tsHSLuEbZ6SwZMSk0CRIQo2tmc984XgSrXtmuIw10=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: fGNbEo2HZuTyhLS2iozgIgHjOEWzYtgGTZax02Zo+d8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Jul 3 07:18:28 2025 GMT Not After : Jul 10 07:18:28 2025 GMT Subject: CN=68662ec4-2e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:ba:26:95:59:d2:e6:63:ea:5f:59:48:1f:0a: 18:ec:66:77:0e:0c:be:81:17:91:2a:86:46:20:dc: 07:73:09:9b:fd:d0:91:03:28:f0:9a:42:7f:45:40: d2:b2:2f:72:73:3e:15:3f:9b:e5:5f:44:dd:1a:77: 6f:5a:75:d2:95:01:23:db:b0:71:99:04:10:e5:62: 5b:fc:96:c6:7a:03:0d:00:15:b0:c6:dc:fd:8f:0f: 85:17:a3:5a:39:fb:96:00:4a:bb:28:24:38:42:a4: ba:63:90:9e:fc:d0:bf:86:e0:d8:56:46:21:41:ed: 24:47:14:02:bc:dd:82:3b:46:d9:55:ba:1f:7c:52: 69:d5:9b:d8:8e:dd:99:90:8a:72:85:28:16:71:d2: 58:fd:9d:fe:5b:12:cb:61:c3:cb:58:cc:47:b7:2b: 71:a0:07:3a:80:f5:b0:79:a0:d2:f3:1b:93:11:cd: 08:55:55:53:8d:0a:f5:52:46:34:b1:a6:a4:c0:bd: 19:41:aa:08:bc:b5:7a:7f:94:61:c8:f5:64:7c:6a: 83:0e:a5:d3:b8:b7:87:3d:b9:d4:7e:ab:77:dd:70: f0:36:61:e1:9d:49:5a:3f:e8:21:2a:7e:2e:6d:e9: 75:69:35:44:84:7e:c9:e8:86:e9:33:4f:36:be:ab: 66:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:48:2E:FD:64:A5:A9:DF:98:FE:EA:50:C1:04:64:C4:BD:CE:99:38 X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:ea:35:fd:d1:1f:9b:48:02:2f:3e:6c:3f:8b:55:f2:4d:1b: b8:49:d3:dc:c4:86:6b:f5:f0:97:72:88:9a:d1:2e:4e:48:75: a4:7e:c1:4c:68:2a:f6:e3:1a:cd:94:15:3c:f4:c3:ba:9b:84: 9a:05:9d:9f:77:d3:e3:e5:55:2d:67:1b:10:b7:26:64:9b:13: 66:5c:dd:b2:9c:6c:ee:fa:89:47:31:eb:1d:5b:9e:0e:a7:31: fb:f6:d6:71:ed:fe:ba:1a:45:80:65:c2:d7:a3:b9:ec:aa:c6: 1d:78:9e:88:13:e1:ab:a5:73:33:08:90:c1:0f:e0:1c:3f:3c: 04:73:11:69:fb:c7:ad:6e:1b:9b:f3:4a:75:23:85:bf:4e:97: 4e:e3:0d:56:c5:f9:44:86:28:0f:d0:0a:78:c4:e7:22:82:b8: eb:69:ac:4a:c1:1c:94:8d:45:cd:20:ab:2b:5e:de:a5:b6:59: 2c:5f:cc:12:c4:f6:f3:bf:e0:ec:d2:37:50:8c:90:43:ed:8b: 02:a3:9f:16:e6:85:a1:71:c8:c3:37:1b:83:d2:43:2d:44:69: d7:fc:e8:83:de:a7:76:0f:92:97:67:76:a9:3e:a5:f4:93:d9: e8:7a:10:3f:61:3a:b1:92:f0:f4:5e:94:a3:b6:cb:f3:53:1d: 78:2e:d7:09 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjUzNjExMC8GA1UEBRMoMkFFOTg1ODE1QTEwREQ2RDA0NTIzRkM4MUQ4REFGRDcy NkJFNzgxNjAeFw0yNTA3MDMwNzE4MjhaFw0yNTA3MTAwNzE4MjhaMBgxFjAUBgNV BAMTDTY4NjYyZWM0LTJlNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkuiaVWdLmY+pfWUgfChjsZncODL6BF5EqhkYg3AdzCZv90JEDKPCaQn9FQNKy L3JzPhU/m+VfRN0ad29addKVASPbsHGZBBDlYlv8lsZ6Aw0AFbDG3P2PD4UXo1o5 +5YASrsoJDhCpLpjkJ780L+G4NhWRiFB7SRHFAK83YI7RtlVuh98UmnVm9iO3ZmQ inKFKBZx0lj9nf5bEsthw8tYzEe3K3GgBzqA9bB5oNLzG5MRzQhVVVONCvVSRjSx pqTAvRlBqgi8tXp/lGHI9WR8aoMOpdO4t4c9udR+q3fdcPA2YeGdSVo/6CEqfi5t 6XVpNUSEfsnohukzTza+q2YzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUQEgu/WSl qd+Y/upQwQRkxL3OmTgwHwYDVR0jBBgwFoAUKumFgVoQ3W0EUj/IHY2v1ya+eBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNTM2LzlBODZEQkQwQzk5 QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3VtRmdWb1EzVzBFVWpfSUhZMnYxeWEtZUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NTM2LzlBODZEQkQwQzk5QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cw RVVqX0lIWTJ2MXlhLWVCWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAA3qNf3RH5tIAi8+bD+LVfJNG7hJ09zEhmv18JdyiJrRLk5IdaR+wUxo KvbjGs2UFTz0w7qbhJoFnZ930+PlVS1nGxC3JmSbE2Zc3bKcbO76iUcx6x1bng6n Mfv21nHt/roaRYBlwtejueyqxh14nogT4aulczMIkMEP4Bw/PARzEWn7x61uG5vz SnUjhb9Ol07jDVbF+USGKA/QCnjE5yKCuOtprErBHJSNRc0gqyte3qW2WSxfzBLE 9vO/4OzSN1CMkEPtiwKjnxbmhaFxyMM3G4PSQy1Eadf86IPep3YPkpdndqk+pfST 2eh6ED9hOrGS8PRelKO2y/NTHXgu1wk= -----END CERTIFICATE-----Generated at Thu Jul 3 23:23:34 2025 by rpki-client