$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: kwTaZgd1UzxkHOzcowWR/GG1F2ld9mLOUqtSXbAi1bc= Subject key identifier: C8:64:FE:DE:B5:65:09:2D:E1:06:B0:27:C0:7B:8C:D2:6B:E9:FA:CD Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11CF Signing time: Wed 02 Jul 2025 17:22:16 +0000 Manifest this update: Wed 02 Jul 2025 17:22:15 +0000 Manifest next update: Wed 09 Jul 2025 17:22:15 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: X0ignQGGfCxohhf+jH7BjNmwEBm07XPmmFkwdOyGtCA=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:22:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4570 (0x11da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Jul 2 17:22:15 2025 GMT Not After : Jul 9 17:22:15 2025 GMT Subject: CN=68656ac7-9822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a8:1c:d3:d1:05:6a:19:80:57:69:13:1b:16: 86:3f:0c:fb:7a:ce:45:0b:46:d1:b0:2c:d8:76:61: dc:e9:20:8d:7d:b4:47:4e:38:b4:f4:18:8d:33:42: 3c:26:da:bb:46:e2:61:94:b9:48:24:9b:47:1f:79: 5a:d6:9c:48:54:3e:73:64:f6:6e:7c:a7:ef:9a:bb: 55:f5:ed:0c:45:f4:43:6d:68:b0:64:5c:d8:ff:94: a8:b1:a2:00:46:64:e0:e3:ab:94:e6:d5:25:12:08: d2:77:e4:a6:cc:8e:40:37:95:15:a6:a8:d3:5e:ad: fa:95:a2:97:44:2c:e7:1f:b3:32:ca:e9:ef:08:aa: d5:c6:2d:7f:ea:d8:46:6b:bc:d0:77:f0:e6:c7:4c: 17:f6:86:fa:85:8e:ca:33:00:a0:dd:49:fb:95:75: 4e:44:24:12:c0:83:3f:36:16:d5:86:e7:d8:db:27: 2d:70:75:f3:cb:e6:43:4d:e2:a8:20:bf:70:4e:26: 01:b8:4a:fb:a9:52:fe:0a:0a:51:34:2f:de:5d:05: 64:a2:02:04:59:d4:d8:71:45:18:27:ba:bf:a6:7f: 00:ca:df:2e:6a:4a:86:b1:7c:10:11:a7:39:d9:c8: 22:09:86:36:25:34:af:27:82:02:a9:c7:29:fd:05: 36:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:64:FE:DE:B5:65:09:2D:E1:06:B0:27:C0:7B:8C:D2:6B:E9:FA:CD X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:bb:cd:24:8a:71:d4:2f:8b:fd:51:2c:d1:71:40:79:1e:dc: bf:06:0a:7c:1c:c7:bb:67:3b:90:d6:eb:ad:c4:ca:66:4b:95: e1:94:45:9c:9e:63:80:8d:d5:58:61:3f:14:e5:22:1c:a4:f7: df:1d:4b:69:81:4c:66:fe:0f:76:8b:92:34:12:c3:d5:29:54: ab:11:9e:31:55:1a:d8:ef:96:54:5b:d3:87:a9:ea:74:6a:3f: b8:ec:f7:93:33:47:1e:9a:c3:5d:4a:28:cf:39:28:26:3d:07: ff:68:18:c6:2b:07:b4:85:12:0a:d8:24:27:82:72:de:94:5f: f7:e8:6b:23:77:57:cb:0c:a1:f6:2f:25:e0:04:e3:d7:8f:9a: 60:98:31:d1:c3:ed:4f:c6:9e:36:db:b8:20:dc:93:c8:3a:b2: 6d:40:5e:ba:fa:2b:ae:c6:d7:b1:62:86:9d:ed:9f:4d:c3:85: e9:38:c5:fb:be:88:36:7e:ec:bb:32:25:a4:76:93:a6:1e:d6: a9:5c:27:7b:70:78:b5:3d:27:23:2e:bc:d7:f0:ae:79:15:00: ee:a1:9b:ca:f4:16:5e:e7:7a:30:28:8c:ad:c2:b9:02:33:76: 59:8d:7c:2d:75:cc:6f:6f:77:73:13:9d:03:51:8e:44:e2:ca: 98:44:a6:af -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwNzAyMTcyMjE1WhcNMjUwNzA5MTcyMjE1WjAYMRYwFAYD VQQDEw02ODY1NmFjNy05ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp6gc09EFahmAV2kTGxaGPwz7es5FC0bRsCzYdmHc6SCNfbRHTji09BiNM0I8 Jtq7RuJhlLlIJJtHH3la1pxIVD5zZPZufKfvmrtV9e0MRfRDbWiwZFzY/5SosaIA RmTg46uU5tUlEgjSd+SmzI5AN5UVpqjTXq36laKXRCznH7MyyunvCKrVxi1/6thG a7zQd/Dmx0wX9ob6hY7KMwCg3Un7lXVORCQSwIM/NhbVhufY2yctcHXzy+ZDTeKo IL9wTiYBuEr7qVL+CgpRNC/eXQVkogIEWdTYcUUYJ7q/pn8Ayt8uakqGsXwQEac5 2cgiCYY2JTSvJ4ICqccp/QU2DwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhk/t61 ZQkt4QawJ8B7jNJr6frNMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGu80kinHUL4v9USzRcUB5Hty/Bgp8HMe7ZzuQ1uutxMpmS5XhlEWc nmOAjdVYYT8U5SIcpPffHUtpgUxm/g92i5I0EsPVKVSrEZ4xVRrY75ZUW9OHqep0 aj+47PeTM0cemsNdSijPOSgmPQf/aBjGKwe0hRIK2CQngnLelF/36Gsjd1fLDKH2 LyXgBOPXj5pgmDHRw+1Pxp4227gg3JPIOrJtQF66+iuuxtexYoad7Z9Nw4XpOMX7 vog2fuy7MiWkdpOmHtapXCd7cHi1PScjLrzX8K55FQDuoZvK9BZe53owKIytwrkC M3ZZjXwtdcxvb3dzE50DUY5E4sqYRKav -----END CERTIFICATE-----Generated at Fri Jul 4 18:32:42 2025 by rpki-client