$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: 64xMWkxbgZODuUKg5j4YKir1isr5UgFCy/NPVwc2M9Y= Subject key identifier: 91:5B:42:8F:F5:BF:0F:95:0C:12:87:3A:16:2F:91:6F:92:D2:2B:99 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1336 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 132E Signing time: Wed 02 Jul 2025 17:12:37 +0000 Manifest this update: Wed 02 Jul 2025 17:12:37 +0000 Manifest next update: Wed 09 Jul 2025 17:12:37 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: Cq9F751HtLrbyqfwKmNYLRfjOshHfh/UQnqJB+Pn0eM=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: Uautv1XlrGIKG3uUq9YoWLtURxeqWmVrl93Jj3fy9ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:12:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4918 (0x1336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Jul 2 17:12:37 2025 GMT Not After : Jul 9 17:12:37 2025 GMT Subject: CN=68656885-b792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fb:e5:99:8f:f7:f4:13:00:f2:e4:f3:f4:b3: 46:e2:60:b4:5b:cf:e4:c2:93:10:37:47:c6:1c:55: f0:eb:0e:68:aa:35:ca:f4:eb:19:b8:c0:cb:7c:cd: bd:0c:08:62:74:1d:00:d2:42:8e:41:59:66:9c:ae: 1f:39:fe:06:b7:74:67:f4:c4:1b:99:5d:c7:d8:78: 96:5b:5e:28:7e:e8:e0:7b:66:51:de:6b:89:bd:7c: cf:08:87:5f:19:c9:a0:83:03:d6:a6:ee:b1:8a:27: 85:c6:b9:94:04:b4:f6:da:c0:1f:61:a6:ba:b5:e0: c4:ff:2e:1d:44:57:8b:75:8c:bb:45:24:8f:09:2c: 2a:2a:b8:92:e0:0c:cd:ae:e5:c0:2b:8c:28:04:b7: 5b:e0:5f:65:7e:03:8d:ae:45:e9:90:5e:50:9a:10: cf:16:55:a0:08:27:ec:55:5a:56:64:e5:c5:54:24: f9:25:ce:d9:c6:ad:74:16:18:56:72:a5:97:9e:ea: 41:65:14:ab:55:36:a2:89:ce:b7:8c:a7:45:09:ce: 1c:16:85:16:41:fe:78:ea:6e:08:0a:06:ec:66:6e: 1d:0a:b1:4d:80:29:02:5f:f6:38:b0:ff:8b:65:50: 6c:24:dc:33:1b:3a:13:25:86:32:e5:ce:d7:31:3b: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:5B:42:8F:F5:BF:0F:95:0C:12:87:3A:16:2F:91:6F:92:D2:2B:99 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:9e:3b:68:23:e4:89:fa:31:5c:36:78:11:40:6a:85:b2:98: d5:67:38:1a:57:85:0a:72:1d:ac:4c:30:09:a9:b0:20:a0:65: 8a:2f:eb:81:f3:59:6f:3b:83:8e:6a:a6:c8:52:cf:f3:2e:a0: 35:9c:5c:b7:13:91:f4:bc:95:a7:4f:bf:77:3d:f6:d2:33:04: 2c:be:80:71:10:d0:a1:29:e3:a3:42:d7:c3:7e:d8:5d:2d:41: 88:70:d3:34:1c:54:f2:76:cb:ec:1e:69:2f:15:61:44:43:1b: cf:df:c2:9e:8e:d7:df:b6:e6:81:d4:8a:7e:c6:82:4a:37:24: f9:45:31:d9:a7:ab:60:7f:5b:f8:90:c4:b0:8b:72:cc:70:2b: 47:b3:ed:a5:5f:2d:45:36:cc:e1:18:29:b5:dd:9e:c0:fb:ed: 0c:38:61:ba:c8:04:13:29:1f:c0:fb:06:46:ff:b5:c3:a7:25: a8:2c:91:42:2c:d6:15:a0:0c:49:79:b6:f3:44:68:72:25:21: 2a:15:29:f6:2c:46:a5:83:7c:68:dd:88:60:07:33:33:6d:d3: 73:b4:da:53:40:1d:66:62:bb:95:c8:b2:dd:bc:7c:0d:d9:fe: 31:55:40:a2:bc:60:61:88:42:a4:ec:f1:96:97:27:52:db:b1: be:8f:60:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEzYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUwNzAyMTcxMjM3WhcNMjUwNzA5MTcxMjM3WjAYMRYwFAYD VQQDEw02ODY1Njg4NS1iNzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmvvlmY/39BMA8uTz9LNG4mC0W8/kwpMQN0fGHFXw6w5oqjXK9OsZuMDLfM29 DAhidB0A0kKOQVlmnK4fOf4Gt3Rn9MQbmV3H2HiWW14ofujge2ZR3muJvXzPCIdf GcmggwPWpu6xiieFxrmUBLT22sAfYaa6teDE/y4dRFeLdYy7RSSPCSwqKriS4AzN ruXAK4woBLdb4F9lfgONrkXpkF5QmhDPFlWgCCfsVVpWZOXFVCT5Jc7Zxq10FhhW cqWXnupBZRSrVTaiic63jKdFCc4cFoUWQf546m4ICgbsZm4dCrFNgCkCX/Y4sP+L ZVBsJNwzGzoTJYYy5c7XMTvE7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJFbQo/1 vw+VDBKHOhYvkW+S0iuZMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAenjtoI+SJ+jFcNngRQGqFspjVZzgaV4UKch2sTDAJqbAgoGWKL+uB 81lvO4OOaqbIUs/zLqA1nFy3E5H0vJWnT793PfbSMwQsvoBxENChKeOjQtfDfthd LUGIcNM0HFTydsvsHmkvFWFEQxvP38KejtfftuaB1Ip+xoJKNyT5RTHZp6tgf1v4 kMSwi3LMcCtHs+2lXy1FNszhGCm13Z7A++0MOGG6yAQTKR/A+wZG/7XDpyWoLJFC LNYVoAxJebbzRGhyJSEqFSn2LEalg3xo3YhgBzMzbdNztNpTQB1mYruVyLLdvHwN 2f4xVUCivGBhiEKk7PGWlydS27G+j2CY -----END CERTIFICATE-----Generated at Thu Jul 3 19:21:53 2025 by rpki-client