$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: qH0c/XS84kvGbIEwr7Q3QOshcWys2jJIgtdOEAMPpA4= Subject key identifier: FA:4A:85:5F:06:1C:C9:A7:D5:70:E2:6D:E0:49:E4:27:37:26:51:8C Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 06F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 06F0 Signing time: Mon 30 Jun 2025 22:15:29 +0000 Manifest this update: Mon 30 Jun 2025 22:15:29 +0000 Manifest next update: Mon 07 Jul 2025 22:15:29 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: RwKLIIH7w9O+FJXN7vesMvSPNdvUrZB4NOVTiaITLMs=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 22:15:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1785 (0x6f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Jun 30 22:15:29 2025 GMT Not After : Jul 7 22:15:29 2025 GMT Subject: CN=68630c81-9606 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:47:c1:f6:77:14:49:b1:d7:85:ad:c1:b0:f4: e2:ac:fb:d5:21:ce:18:e1:5e:74:b3:b8:f9:7f:6b: e7:94:cf:cc:f8:2e:f7:3c:ba:02:4c:61:00:ea:4b: 37:43:47:9f:d0:b6:73:1c:58:f2:ce:8c:31:11:68: 45:7b:d0:3e:df:16:b7:f9:e8:f2:13:46:0d:7a:90: 45:f4:bd:51:12:31:bd:89:54:0e:63:94:af:dd:c6: 8c:73:07:7a:23:82:6e:13:aa:a9:8d:39:14:10:3a: 6f:74:bc:a9:dc:49:e8:9a:e8:7f:f8:bc:69:a3:c1: 5d:c9:f0:e9:b0:64:18:b0:4e:2c:ce:ac:88:4d:1a: 21:93:19:6a:58:d8:40:71:f9:f9:82:73:17:3a:20: 37:6d:91:4f:d2:e5:dc:20:50:a4:1a:89:90:4b:9e: 73:62:d1:d4:a0:00:d7:13:8e:a4:1d:15:d8:da:e3: 02:64:db:4e:15:6a:b2:62:ac:d2:05:c6:12:a3:0f: 12:04:79:58:d6:8f:98:4a:95:fa:92:a0:45:35:45: a8:54:1f:c5:92:a6:be:cf:cf:72:8f:e8:4b:9f:c3: 79:85:bd:f6:09:12:09:4c:26:af:ca:f6:12:2a:ed: 67:d8:b5:df:5f:04:06:b4:6f:90:df:17:63:12:e3: f3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:4A:85:5F:06:1C:C9:A7:D5:70:E2:6D:E0:49:E4:27:37:26:51:8C X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:aa:f0:96:6a:98:39:0b:32:ae:3c:2a:d4:f1:ce:da:ef:b2: 9b:8c:e8:a2:0a:6a:6e:22:55:22:08:6d:3b:25:7d:30:33:2c: ed:ff:0f:77:f2:c2:05:88:0d:79:df:3d:c8:9b:6a:a5:a0:fa: bf:a7:d6:57:b0:ee:96:0b:3b:ce:5f:f2:f2:ac:8d:af:51:3f: f3:fb:5c:ad:13:47:ca:53:3d:05:31:f1:4b:81:4d:96:e1:9c: b5:6e:aa:a5:2c:80:9e:eb:b7:f5:df:c1:ea:06:44:55:15:71: 95:30:69:f7:2a:34:cf:88:e4:25:20:94:9e:ec:b4:ea:83:93: 98:50:d0:1d:e0:ec:0a:8c:27:c0:24:05:dc:cb:05:58:13:86: 44:d3:75:1b:04:42:97:04:80:27:07:dc:0a:9f:a7:24:36:5c: 59:36:c9:ab:01:e2:89:aa:23:d1:52:85:f4:b4:bf:74:d2:d6: 7c:76:67:35:56:3f:e7:9b:b1:27:b9:89:57:dc:8c:f7:c3:b7: 88:dd:8b:5a:8f:97:fa:4b:89:eb:84:d1:c8:a1:fc:f0:32:5a: b6:75:cc:48:a0:7c:c5:56:76:52:06:45:fc:48:50:54:55:61: 12:85:8b:0c:18:d0:02:ed:03:f5:e2:d5:2f:4a:2e:d9:eb:ea: b1:5d:40:bd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwNjMwMjIxNTI5WhcNMjUwNzA3MjIxNTI5WjAYMRYwFAYD VQQDEw02ODYzMGM4MS05NjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmkfB9ncUSbHXha3BsPTirPvVIc4Y4V50s7j5f2vnlM/M+C73PLoCTGEA6ks3 Q0ef0LZzHFjyzowxEWhFe9A+3xa3+ejyE0YNepBF9L1REjG9iVQOY5Sv3caMcwd6 I4JuE6qpjTkUEDpvdLyp3Enomuh/+Lxpo8FdyfDpsGQYsE4szqyITRohkxlqWNhA cfn5gnMXOiA3bZFP0uXcIFCkGomQS55zYtHUoADXE46kHRXY2uMCZNtOFWqyYqzS BcYSow8SBHlY1o+YSpX6kqBFNUWoVB/Fkqa+z89yj+hLn8N5hb32CRIJTCavyvYS Ku1n2LXfXwQGtG+Q3xdjEuPzCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPpKhV8G HMmn1XDibeBJ5Cc3JlGMMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCrqvCWapg5CzKuPCrU8c7a77KbjOiiCmpuIlUiCG07JX0wMyzt/w93 8sIFiA153z3Im2qloPq/p9ZXsO6WCzvOX/LyrI2vUT/z+1ytE0fKUz0FMfFLgU2W 4Zy1bqqlLICe67f138HqBkRVFXGVMGn3KjTPiOQlIJSe7LTqg5OYUNAd4OwKjCfA JAXcywVYE4ZE03UbBEKXBIAnB9wKn6ckNlxZNsmrAeKJqiPRUoX0tL900tZ8dmc1 Vj/nm7EnuYlX3Iz3w7eI3Ytaj5f6S4nrhNHIofzwMlq2dcxIoHzFVnZSBkX8SFBU VWEShYsMGNAC7QP14tUvSi7Z6+qxXUC9 -----END CERTIFICATE-----Generated at Wed Jul 2 22:29:15 2025 by rpki-client