$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: siAhJMi5f42GlAqum3/aUR7YkeEfOIbC764wTcAsHSk= Subject key identifier: 9E:80:D3:44:F4:D0:44:F8:90:A8:9E:83:2F:CC:B2:5E:88:E7:27:0E Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 37 Signing time: Thu 03 Jul 2025 07:50:04 +0000 Manifest this update: Thu 03 Jul 2025 07:50:03 +0000 Manifest next update: Thu 10 Jul 2025 07:50:03 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: PyKBWYKFWS59brrjc8Yuoy6zbx0zEL59yHUNz53Idyc=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Jul 3 07:50:03 2025 GMT Not After : Jul 10 07:50:03 2025 GMT Subject: CN=6866362c-2a79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:3f:ad:1d:b5:96:17:aa:ea:45:78:9b:fc:14: d8:16:f6:f1:9f:06:eb:a3:f8:6b:1f:de:e5:e4:f0: aa:3d:11:83:9b:12:f4:31:97:56:fd:95:f9:2c:ca: 59:04:70:49:36:6b:2d:cd:f3:42:ab:20:0d:02:ef: 5f:9a:25:80:f9:3d:24:8a:52:db:cc:6b:ee:98:61: 4e:2a:98:cd:d4:cb:34:37:73:91:9d:49:d1:39:63: 2f:fc:ce:c1:e4:cc:f2:52:dd:7a:bf:02:35:2a:36: ad:64:3b:fa:e0:fc:72:3d:82:84:f8:dd:32:9a:7d: 6f:f4:4b:28:c2:aa:b6:fb:7f:c0:dc:b9:2e:36:78: 08:ad:b4:74:c7:f3:05:19:fa:1f:90:77:ce:cd:fd: 80:f7:ef:dc:59:60:7c:ca:97:c3:27:ed:c1:0f:3b: 04:7c:22:f3:14:ba:89:ba:f6:eb:e9:ed:da:e0:65: c8:b0:71:33:cf:34:3b:01:41:79:02:d4:f6:86:13: 60:37:36:c6:bb:28:3c:5b:3c:85:00:95:59:41:9c: 00:5a:fe:15:0e:e3:2e:35:51:94:cf:ec:3d:36:b6: 05:32:99:83:4a:cc:20:b7:72:be:28:0d:bb:88:cb: e7:89:a3:71:15:bf:78:ff:c8:a8:0d:08:9f:97:59: 72:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:80:D3:44:F4:D0:44:F8:90:A8:9E:83:2F:CC:B2:5E:88:E7:27:0E X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f5:98:b0:d8:b9:4a:75:85:f9:6c:a1:85:61:c9:e8:d5:0b: bc:3c:0a:ae:b1:e7:8b:b0:3b:4c:6b:0f:4d:63:81:41:d8:53: 17:e5:a4:bf:ce:c6:22:e7:97:9e:8d:dd:a1:49:b7:42:cd:63: 81:60:dc:12:6e:e7:83:6d:cb:ea:4b:35:7c:1a:ab:47:a5:3b: f5:c0:95:27:55:5b:bd:0f:d2:88:b7:78:8f:8c:1f:08:1b:38: 92:b0:f7:3d:f9:d2:a0:4e:8e:23:a9:19:2f:51:55:18:52:c3: 3d:d2:4e:9a:3e:be:51:e0:01:5b:4d:98:cd:43:ba:8f:dd:e7: eb:d4:96:ac:ec:07:cd:7a:9b:d0:4c:24:24:08:11:19:24:6b: 40:90:ff:40:18:94:23:91:43:d1:38:77:ee:4a:38:60:6f:20: d8:64:32:46:07:85:8a:fe:0f:0c:52:a6:b7:98:6c:7d:5b:91: 04:a2:68:27:16:94:b8:f7:31:0a:5a:2d:de:4a:c3:1d:62:19: 59:50:19:b1:f8:8e:d6:09:85:12:2a:3a:e0:f8:06:76:78:78: 9a:4f:3e:b8:3a:b1:74:55:cb:14:1e:bc:12:c7:5c:71:c5:29: a1:88:f9:19:33:f1:41:5b:38:0b:85:81:3c:1c:2f:6a:8d:52: 63:84:cb:97 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBODANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTA3MDMwNzUwMDNaFw0yNTA3MTAwNzUwMDNaMBgxFjAUBgNV BAMTDTY4NjYzNjJjLTJhNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOP60dtZYXqupFeJv8FNgW9vGfBuuj+Gsf3uXk8Ko9EYObEvQxl1b9lfksylkE cEk2ay3N80KrIA0C71+aJYD5PSSKUtvMa+6YYU4qmM3UyzQ3c5GdSdE5Yy/8zsHk zPJS3Xq/AjUqNq1kO/rg/HI9goT43TKafW/0SyjCqrb7f8DcuS42eAittHTH8wUZ +h+Qd87N/YD379xZYHzKl8Mn7cEPOwR8IvMUuom69uvp7drgZciwcTPPNDsBQXkC 1PaGE2A3Nsa7KDxbPIUAlVlBnABa/hUO4y41UZTP7D02tgUymYNKzCC3cr4oDbuI y+eJo3EVv3j/yKgNCJ+XWXLfAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUnoDTRPTQ RPiQqJ6DL8yyXojnJw4wHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Mjg3LzM3Mjc4QzE2MDQ2RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFU VDNUbklieFM4V1FDSVAwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHP1mLDYuUp1hflsoYVhyejVC7w8Cq6x54uwO0xrD01jgUHYUxflpL/O xiLnl56N3aFJt0LNY4Fg3BJu54Nty+pLNXwaq0elO/XAlSdVW70P0oi3eI+MHwgb OJKw9z350qBOjiOpGS9RVRhSwz3STpo+vlHgAVtNmM1Duo/d5+vUlqzsB816m9BM JCQIERkka0CQ/0AYlCORQ9E4d+5KOGBvINhkMkYHhYr+DwxSpreYbH1bkQSiaCcW lLj3MQpaLd5Kwx1iGVlQGbH4jtYJhRIqOuD4BnZ4eJpPPrg6sXRVyxQevBLHXHHF KaGI+Rkz8UFbOAuFgTwcL2qNUmOEy5c= -----END CERTIFICATE-----Generated at Thu Jul 3 09:04:13 2025 by rpki-client