$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: MArzrIeibbO3uK9v4/bBp5it2mfMF6NN979+A5weVg4= Subject key identifier: 8C:97:D6:E0:34:C9:A2:1A:BF:08:7B:99:31:A8:5C:55:DC:D4:0D:84 Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: B9 Signing time: Thu 03 Jul 2025 06:06:47 +0000 Manifest this update: Thu 03 Jul 2025 06:06:46 +0000 Manifest next update: Thu 10 Jul 2025 06:06:46 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: l7OEy2Pj40Tz3oMCefx6/XNzDOIs/aZuhwT7gtf4d9I=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Jul 3 06:06:46 2025 GMT Not After : Jul 10 06:06:46 2025 GMT Subject: CN=68661df7-160b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:12:c3:1d:4f:7a:3b:e5:6a:bd:1d:ec:24:46: 9d:6c:3f:07:c1:7c:6d:2b:3d:25:4a:4a:b9:74:72: e4:74:eb:53:7f:44:6c:08:a3:fb:95:d0:90:1d:70: 93:89:5a:90:26:d3:4a:e8:cc:21:56:e4:b4:56:7f: 89:24:33:05:f1:fa:e0:23:c8:d7:43:68:6b:97:08: e0:8d:1d:a8:28:a1:c8:c8:58:8b:7f:f0:99:f3:44: 17:f9:e9:b5:37:a6:0c:20:71:67:4c:3e:2f:7a:72: d4:25:b8:7c:76:2f:b5:bc:79:39:44:3b:3b:8a:06: 5e:ba:fc:66:f9:10:b3:79:46:0b:aa:43:31:d3:6f: 28:8c:b9:5b:21:b2:9b:e9:34:0e:3b:a5:4f:5a:6f: 6f:65:e5:ac:c2:d7:3e:ca:b2:12:f2:81:69:3d:49: f8:b8:c0:af:4c:04:1a:bb:d4:0a:79:11:6c:34:66: 51:ea:0f:54:31:b1:17:ea:db:7e:2e:15:1d:5d:2a: 0d:25:74:88:54:dc:59:ea:7e:26:b9:8e:19:df:8c: 24:09:5e:53:7a:88:f9:63:fd:27:e9:4d:eb:90:54: 24:1b:63:d4:af:b3:8a:90:ed:be:64:dc:f1:1a:19: 25:b9:ba:e8:1d:06:b6:e6:a6:f5:ca:e2:5b:45:89: 67:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:97:D6:E0:34:C9:A2:1A:BF:08:7B:99:31:A8:5C:55:DC:D4:0D:84 X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:a9:fa:f2:22:60:8a:24:5d:1b:4b:02:37:33:6e:17:8d:5f: 96:0f:8b:71:f0:c2:59:1b:64:53:25:1f:81:3b:0c:3a:d0:a6: 72:71:20:a8:fd:5a:38:df:28:7b:ac:24:ca:03:86:a9:01:d9: 6f:ac:d2:04:9d:62:fd:28:55:2c:8b:72:45:31:1b:37:49:94: 5f:f5:14:05:15:88:20:fc:ef:07:94:b4:6f:a0:86:0c:3a:27: 5c:26:3b:8f:f2:ee:95:fb:41:85:29:9a:c2:fe:6f:ca:fe:4f: 3e:d2:f1:9f:f0:e3:e3:e7:4e:fc:f6:96:c7:c2:6e:bd:eb:9f: db:d8:2a:d4:d4:7a:09:c0:8c:0e:e5:c3:1b:0f:a0:3f:46:c2: bb:5c:f5:e5:af:ee:58:49:ed:b6:c5:01:e3:ac:74:38:54:c5: ac:57:e0:f6:cf:ea:17:2b:73:dc:89:40:c3:26:d3:11:aa:87: 68:5a:4d:19:97:0a:b7:09:8e:d6:93:85:d9:f2:7e:1a:6f:2f: be:a2:03:86:29:59:1c:af:3c:66:b7:9b:9f:4d:30:e9:f7:c4: 47:04:00:f6:d2:f1:b3:74:05:dd:4d:58:87:54:83:c5:6f:6b: 5a:a2:6e:48:98:15:30:de:24:72:c9:a4:5c:21:58:39:dc:73: 29:fb:8b:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUwNzAzMDYwNjQ2WhcNMjUwNzEwMDYwNjQ2WjAYMRYwFAYD VQQDEw02ODY2MWRmNy0xNjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9hLDHU96O+VqvR3sJEadbD8HwXxtKz0lSkq5dHLkdOtTf0RsCKP7ldCQHXCT iVqQJtNK6MwhVuS0Vn+JJDMF8frgI8jXQ2hrlwjgjR2oKKHIyFiLf/CZ80QX+em1 N6YMIHFnTD4venLUJbh8di+1vHk5RDs7igZeuvxm+RCzeUYLqkMx028ojLlbIbKb 6TQOO6VPWm9vZeWswtc+yrIS8oFpPUn4uMCvTAQau9QKeRFsNGZR6g9UMbEX6tt+ LhUdXSoNJXSIVNxZ6n4muY4Z34wkCV5Teoj5Y/0n6U3rkFQkG2PUr7OKkO2+ZNzx GhklubroHQa25qb1yuJbRYlnbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIyX1uA0 yaIavwh7mTGoXFXc1A2EMB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUqfryImCKJF0bSwI3M24XjV+WD4tx8MJZG2RTJR+BOww60KZycSCo /Vo43yh7rCTKA4apAdlvrNIEnWL9KFUsi3JFMRs3SZRf9RQFFYgg/O8HlLRvoIYM OidcJjuP8u6V+0GFKZrC/m/K/k8+0vGf8OPj50789pbHwm6965/b2CrU1HoJwIwO 5cMbD6A/RsK7XPXlr+5YSe22xQHjrHQ4VMWsV+D2z+oXK3PciUDDJtMRqodoWk0Z lwq3CY7Wk4XZ8n4aby++ogOGKVkcrzxmt5ufTTDp98RHBAD20vGzdAXdTViHVIPF b2taom5ImBUw3iRyyaRcIVg53HMp+4tA -----END CERTIFICATE-----Generated at Thu Jul 3 11:33:07 2025 by rpki-client