$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: CuMX8YWydE8G6pnmWU1jpKEDEPHfEmdhEzsAC8b4Yhk= Subject key identifier: 97:B9:D7:54:EA:87:5B:CA:86:0C:20:20:E3:E0:48:97:C9:78:8D:0F Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 010F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 010D Signing time: Thu 03 Jul 2025 05:08:42 +0000 Manifest this update: Thu 03 Jul 2025 05:08:42 +0000 Manifest next update: Thu 10 Jul 2025 05:08:42 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: Up0ByWDku3hvir3CeQ0ZquNrHRoRnQnAT01+ACQR5qw=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Jul 3 05:08:42 2025 GMT Not After : Jul 10 05:08:42 2025 GMT Subject: CN=6866105a-bdbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:42:32:0a:4d:c3:6b:30:64:73:6a:92:de: 21:03:42:4c:e8:0f:c3:3a:12:88:47:05:fc:3d:b1: 8e:6c:a7:06:46:3a:b5:bd:fe:78:e5:3a:76:bf:fd: f7:4b:4f:d7:3b:81:75:7d:40:f7:d1:92:a3:57:e0: b1:e3:e5:52:dc:a0:1b:fc:77:2f:4a:e0:08:d0:f0: d7:0d:6e:de:5d:b2:0b:b7:ad:4e:1b:f7:bf:c3:e7: 76:6b:d0:55:a6:f7:c0:86:1f:36:cd:a2:79:fc:5d: 03:9d:47:0a:b6:62:64:e2:df:22:30:75:81:13:8a: aa:fc:6b:4d:f6:37:64:45:02:2e:62:3d:e3:06:59: 93:7d:bb:52:8e:c7:a4:61:9f:75:0b:cd:c2:f4:19: 13:e9:db:25:c3:08:d5:75:90:1d:76:35:1f:33:ab: 63:09:ba:6d:d2:8d:0a:b9:cb:66:bf:b7:d2:88:62: 0a:2c:94:7a:f9:9c:4c:ac:fe:f2:a9:a7:31:2f:54: f1:38:da:f7:94:27:ad:f3:4e:c7:3d:31:8b:fc:54: 63:2a:ef:2b:f4:0f:93:27:3f:60:1d:8b:0e:f8:f5: 40:0f:ca:68:c7:0f:6d:f0:11:e5:91:65:2b:45:52: 5f:b1:95:9e:4b:c8:7c:f1:fc:91:90:45:7e:73:0f: fb:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B9:D7:54:EA:87:5B:CA:86:0C:20:20:E3:E0:48:97:C9:78:8D:0F X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:02:fc:c9:c8:f2:39:2f:d7:a9:e2:88:05:f4:e7:66:e1:87: 43:1c:e4:1a:23:25:1c:29:76:27:76:85:0d:93:56:d2:04:c2: 24:34:0c:1e:c9:aa:4c:ab:a8:39:74:26:c0:4b:b0:36:e3:d0: 89:1a:8b:6d:2b:ef:55:08:1c:69:8e:fc:9a:be:58:1a:5e:04: 05:9d:99:d7:4a:95:1e:a4:58:d4:a5:5e:e6:b8:38:05:86:0e: ec:eb:67:61:22:6b:bf:03:d7:69:4c:e3:06:a0:22:4c:5b:93: 51:fe:e7:9b:3f:f3:07:74:a7:85:4c:22:fa:2e:e1:b7:dc:cb: 38:55:88:92:26:00:93:df:7e:ec:f8:54:c6:2c:e8:d3:e9:58: 75:b6:71:de:bc:dc:00:4d:ae:13:bd:94:7c:06:f6:4e:23:8c: 03:ec:1b:c4:c8:ea:2d:e2:e5:10:2b:e0:a1:4a:53:08:c9:53: e1:c8:65:6f:45:c4:86:2e:fb:ad:28:ea:8e:9f:77:0c:47:7e: 65:d6:26:32:20:c5:12:38:eb:41:bf:2e:92:fe:7e:ac:cc:05: 12:24:9d:85:87:39:76:6d:aa:78:b9:0c:53:fc:cc:8d:74:a0: d6:25:db:e7:37:8f:a1:e4:c1:85:59:d3:17:0d:fa:c1:69:8d: 70:36:11:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNzAzMDUwODQyWhcNMjUwNzEwMDUwODQyWjAYMRYwFAYD VQQDEw02ODY2MTA1YS1iZGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWpCMgpNw2swZHNqkt4hA0JM6A/DOhKIRwX8PbGObKcGRjq1vf545Tp2v/33 S0/XO4F1fUD30ZKjV+Cx4+VS3KAb/HcvSuAI0PDXDW7eXbILt61OG/e/w+d2a9BV pvfAhh82zaJ5/F0DnUcKtmJk4t8iMHWBE4qq/GtN9jdkRQIuYj3jBlmTfbtSjsek YZ91C83C9BkT6dslwwjVdZAddjUfM6tjCbpt0o0Kuctmv7fSiGIKLJR6+ZxMrP7y qacxL1TxONr3lCet807HPTGL/FRjKu8r9A+TJz9gHYsO+PVAD8poxw9t8BHlkWUr RVJfsZWeS8h88fyRkEV+cw/7XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJe511Tq h1vKhgwgIOPgSJfJeI0PMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCdAvzJyPI5L9ep4ogF9Odm4YdDHOQaIyUcKXYndoUNk1bSBMIkNAwe yapMq6g5dCbAS7A249CJGottK+9VCBxpjvyavlgaXgQFnZnXSpUepFjUpV7muDgF hg7s62dhImu/A9dpTOMGoCJMW5NR/uebP/MHdKeFTCL6LuG33Ms4VYiSJgCT337s +FTGLOjT6Vh1tnHevNwATa4TvZR8BvZOI4wD7BvEyOot4uUQK+ChSlMIyVPhyGVv RcSGLvutKOqOn3cMR35l1iYyIMUSOOtBvy6S/n6szAUSJJ2Fhzl2bap4uQxT/MyN dKDWJdvnN4+h5MGFWdMXDfrBaY1wNhGO -----END CERTIFICATE-----Generated at Thu Jul 3 23:36:42 2025 by rpki-client