$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: Kz/1Pk2vSEpEs7GkhDAEEjSYVCmr8ao6PsHjh/nXrb8= Subject key identifier: 08:E4:FF:1A:65:B6:6A:50:34:3F:BD:31:64:9B:C3:73:CB:A4:0E:8E Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 03F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03F4 Signing time: Thu 03 Jul 2025 00:50:05 +0000 Manifest this update: Thu 03 Jul 2025 00:50:04 +0000 Manifest next update: Thu 10 Jul 2025 00:50:04 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: f1FMm1qn6KrA1FYvFQxPZ0cwEFLeotxPqS0EjXaxKxk=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 00:50:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1016 (0x3f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Jul 3 00:50:04 2025 GMT Not After : Jul 10 00:50:04 2025 GMT Subject: CN=6865d3bc-1163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2e:a1:1d:08:b3:d0:c1:58:e0:6c:b7:cf:ae: d0:fe:f4:57:95:b3:06:b0:fa:2b:2d:ad:aa:68:45: 12:09:5f:fe:64:0e:fd:e2:f8:94:43:70:1a:83:ec: b7:d8:8a:81:48:4d:37:5d:f6:49:d3:0d:6e:9d:0c: 0a:5a:a6:68:80:d3:3f:fa:b9:6e:e7:25:36:8d:90: c3:f7:ac:23:6c:f5:d2:dd:32:1e:26:4a:3c:a0:9f: c2:5f:fd:dc:bf:3e:10:e6:0b:b3:0c:47:b6:93:15: 18:42:9f:95:09:48:eb:ad:67:1f:2a:23:d3:a7:49: e9:83:31:e3:28:6a:cd:c8:e2:65:17:ef:5d:c5:17: 5c:8f:6e:62:4f:44:9e:ad:83:a4:7d:1d:8e:2e:3b: a1:b3:30:26:11:6d:b4:4e:2e:66:5e:f0:09:32:c5: 7e:3a:f5:ad:dc:49:2f:32:65:03:d9:50:1b:68:18: 58:d1:e6:80:5e:1d:33:8f:60:50:7b:c2:c9:e4:f6: b7:df:f9:d7:0b:2e:55:f3:0f:c3:67:76:de:dd:9b: c6:01:3d:9a:94:52:61:9c:8b:45:6f:f1:86:96:78: 41:64:aa:f9:d1:84:4e:4d:e9:79:4a:d9:d1:18:c5: 82:1c:07:32:5f:a5:b4:3b:71:53:12:03:8d:6c:dd: ca:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:E4:FF:1A:65:B6:6A:50:34:3F:BD:31:64:9B:C3:73:CB:A4:0E:8E X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:73:a5:a4:58:ef:f9:3f:bd:ce:f0:92:71:3e:a6:6a:b4:82: 2e:03:7e:57:4e:85:de:ee:32:13:a5:66:c6:8d:ad:d2:18:6e: 5f:65:2c:87:16:54:84:b4:ff:1c:4f:09:33:13:eb:d7:12:77: 73:54:db:54:0c:a4:ba:c5:54:9c:ae:b7:1c:81:ad:cf:a5:52: 70:dd:f8:d9:78:d6:99:cd:f4:93:98:cc:1d:ff:0b:5a:23:8d: 42:1e:e8:8b:76:a2:71:bd:8d:bd:39:d4:d4:1a:17:a7:ce:fa: 4c:15:22:72:d5:01:68:92:0d:cc:16:8e:0c:0a:d6:b3:61:dd: 8d:a4:23:ac:34:19:3e:66:44:4e:3e:e0:1b:8b:f6:b1:c2:16: 30:1b:f0:b2:42:56:4e:cc:8a:01:6c:da:13:26:0f:d7:7e:bb: 71:c7:e1:ae:03:e7:96:e0:85:2a:4f:29:54:ea:84:dc:08:99: e8:72:2c:fe:78:de:4d:10:13:60:02:c4:f3:8a:83:c8:29:80: 98:b5:7c:a2:85:5f:2f:97:d5:bd:3a:6e:f4:e3:db:dc:2d:83: b0:4b:79:9f:1c:72:0d:0c:24:e5:28:62:0e:79:9d:03:ef:66: b6:61:95:0c:8f:66:71:ce:db:6b:8d:68:5c:91:d1:ca:00:b9: 7d:f3:61:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwNzAzMDA1MDA0WhcNMjUwNzEwMDA1MDA0WjAYMRYwFAYD VQQDEw02ODY1ZDNiYy0xMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuy6hHQiz0MFY4Gy3z67Q/vRXlbMGsPorLa2qaEUSCV/+ZA794viUQ3Aag+y3 2IqBSE03XfZJ0w1unQwKWqZogNM/+rlu5yU2jZDD96wjbPXS3TIeJko8oJ/CX/3c vz4Q5guzDEe2kxUYQp+VCUjrrWcfKiPTp0npgzHjKGrNyOJlF+9dxRdcj25iT0Se rYOkfR2OLjuhszAmEW20Ti5mXvAJMsV+OvWt3EkvMmUD2VAbaBhY0eaAXh0zj2BQ e8LJ5Pa33/nXCy5V8w/DZ3be3ZvGAT2alFJhnItFb/GGlnhBZKr50YROTel5StnR GMWCHAcyX6W0O3FTEgONbN3KNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAjk/xpl tmpQND+9MWSbw3PLpA6OMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCec6WkWO/5P73O8JJxPqZqtIIuA35XToXe7jITpWbGja3SGG5fZSyH FlSEtP8cTwkzE+vXEndzVNtUDKS6xVScrrccga3PpVJw3fjZeNaZzfSTmMwd/wta I41CHuiLdqJxvY29OdTUGhenzvpMFSJy1QFokg3MFo4MCtazYd2NpCOsNBk+ZkRO PuAbi/axwhYwG/CyQlZOzIoBbNoTJg/Xfrtxx+GuA+eW4IUqTylU6oTcCJnociz+ eN5NEBNgAsTzioPIKYCYtXyihV8vl9W9Om7049vcLYOwS3mfHHINDCTlKGIOeZ0D 72a2YZUMj2ZxzttrjWhckdHKALl982HD -----END CERTIFICATE-----Generated at Thu Jul 3 18:50:48 2025 by rpki-client