$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: invTPfOnwO1hLR8/NGpczyzr0F2YAsk4iWHDfr2Mx48= Subject key identifier: 00:17:3F:88:E0:82:E7:F9:07:ED:4C:AA:3A:E1:87:D5:7F:D4:7E:61 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: AB Signing time: Thu 03 Jul 2025 06:15:21 +0000 Manifest this update: Thu 03 Jul 2025 06:15:21 +0000 Manifest next update: Thu 10 Jul 2025 06:15:21 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: /B1n2MpD3vEiLzS+rdiUxCdD7vKnFG/JVl/z5x1TNew=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: 7cyDiCG+GWMMc47d/9wE/tr8+3lmCjNtDuQzc5Jy9ng=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Jul 3 06:15:21 2025 GMT Not After : Jul 10 06:15:21 2025 GMT Subject: CN=68661ff9-854b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:bf:a5:4a:c0:09:cd:2f:87:45:95:31:17:68: 5e:7e:59:76:22:a3:af:87:e6:9d:cc:d8:46:90:07: 6c:8f:0e:03:52:76:dc:37:f0:99:c5:49:ab:69:63: b8:f3:d3:41:fb:30:e5:72:63:dc:5c:e2:24:af:9a: fd:21:d7:2e:9c:05:43:bd:55:96:07:d2:b6:d1:cb: 0a:32:d5:48:3c:bb:f1:16:4a:d1:13:62:cf:21:01: 04:58:e2:c8:44:4f:4b:0b:c9:2b:59:73:ee:7c:8b: e7:a5:08:4a:1a:4c:89:3f:dd:9c:42:c7:27:99:8d: b9:34:32:c5:07:19:0c:e1:a5:a2:40:b3:09:7e:e1: a7:6c:30:18:7a:65:25:2f:f6:1d:d6:57:cf:ed:6f: 6c:c5:e6:7a:e1:ad:44:28:1f:d9:92:86:22:c4:2c: 7a:5e:49:e7:f5:d4:84:f0:cd:b8:9f:f6:ca:a7:49: 8b:8b:8b:14:7f:fa:5e:41:66:af:c2:9b:bb:dc:ec: 70:68:10:48:ec:69:f5:07:df:41:57:25:3f:59:c6: e2:bb:7e:90:f6:ea:31:58:50:dc:d4:60:59:4d:f2: 63:9d:97:5c:0f:6d:cc:b2:dd:28:13:09:bc:39:9e: 02:44:fd:de:1a:81:1c:b4:e8:4e:00:8f:a9:35:b4: 82:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:17:3F:88:E0:82:E7:F9:07:ED:4C:AA:3A:E1:87:D5:7F:D4:7E:61 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:c3:f6:31:3c:57:57:b7:0b:1f:57:03:89:b6:7f:75:dd:f1: 57:c5:78:b8:81:e0:a7:e5:39:ea:98:e6:36:99:c2:e1:70:9b: 15:96:10:af:8e:f8:fa:69:c4:c8:0b:e6:8e:dc:f2:b1:1d:f0: 01:b5:a4:cd:c4:d0:f4:4e:cc:ad:60:ea:77:6d:0d:4b:ff:bb: 02:cf:8d:3d:d9:af:8c:6c:94:0e:f6:ea:4b:5a:99:db:bf:19: 08:93:f4:ff:8a:20:ec:05:88:b1:ad:38:17:2b:67:fe:92:83: 0a:d9:c5:1d:18:31:4b:93:c3:40:93:7f:d7:bc:79:4d:d6:e1: 8e:3f:0f:66:d6:3f:f1:3e:f2:0b:67:0f:10:59:0d:dd:0e:58: 06:75:2d:86:67:11:37:50:f4:ee:19:c1:46:d3:a4:79:a8:2a: 1c:2f:23:b3:47:0d:f3:8b:bd:a0:a6:b0:41:0c:4c:1f:87:52: 97:26:a5:22:2d:5b:1b:df:9d:eb:a8:b2:9c:da:42:ef:ad:8b: 2a:1f:2e:fa:ca:cc:86:ee:28:85:8e:70:99:41:b3:b6:41:15: 23:e0:51:2a:31:d3:0a:76:a5:f9:be:74:47:61:97:5e:2f:25: 88:86:3a:48:fd:c3:c8:66:0f:42:5d:20:8a:d3:ef:d2:1c:a1: 44:c3:51:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwNzAzMDYxNTIxWhcNMjUwNzEwMDYxNTIxWjAYMRYwFAYD VQQDEw02ODY2MWZmOS04NTRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyb+lSsAJzS+HRZUxF2hefll2IqOvh+adzNhGkAdsjw4DUnbcN/CZxUmraWO4 89NB+zDlcmPcXOIkr5r9IdcunAVDvVWWB9K20csKMtVIPLvxFkrRE2LPIQEEWOLI RE9LC8krWXPufIvnpQhKGkyJP92cQscnmY25NDLFBxkM4aWiQLMJfuGnbDAYemUl L/Yd1lfP7W9sxeZ64a1EKB/ZkoYixCx6Xknn9dSE8M24n/bKp0mLi4sUf/peQWav wpu73OxwaBBI7Gn1B99BVyU/Wcbiu36Q9uoxWFDc1GBZTfJjnZdcD23Mst0oEwm8 OZ4CRP3eGoEctOhOAI+pNbSCcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAAXP4jg guf5B+1Mqjrhh9V/1H5hMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2w/YxPFdXtwsfVwOJtn913fFXxXi4geCn5TnqmOY2mcLhcJsVlhCv jvj6acTIC+aO3PKxHfABtaTNxND0TsytYOp3bQ1L/7sCz4092a+MbJQO9upLWpnb vxkIk/T/iiDsBYixrTgXK2f+koMK2cUdGDFLk8NAk3/XvHlN1uGOPw9m1j/xPvIL Zw8QWQ3dDlgGdS2GZxE3UPTuGcFG06R5qCocLyOzRw3zi72gprBBDEwfh1KXJqUi LVsb353rqLKc2kLvrYsqHy76ysyG7iiFjnCZQbO2QRUj4FEqMdMKdqX5vnRHYZde LyWIhjpI/cPIZg9CXSCK0+/SHKFEw1H0 -----END CERTIFICATE-----Generated at Thu Jul 3 14:33:38 2025 by rpki-client