$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: N3FeWhmZ0LtcSUaNGy+9+YYK7x0OBB8sAm+47hMsnR0= Subject key identifier: 48:42:1A:9A:06:2B:29:99:69:AC:12:65:E8:61:1E:85:DD:C6:B2:A0 Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 0115 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 0115 Signing time: Thu 03 Jul 2025 04:59:36 +0000 Manifest this update: Thu 03 Jul 2025 04:59:36 +0000 Manifest next update: Thu 10 Jul 2025 04:59:36 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: /A4sWdgHYKa4XCaysk/RfQXk44f0ry2rF4PNhfJxy38=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 277 (0x115) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Jul 3 04:59:36 2025 GMT Not After : Jul 10 04:59:36 2025 GMT Subject: CN=68660e38-4842 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:6d:90:2b:3f:39:c4:20:7f:f5:68:a4:c4:44: 68:07:be:08:07:c7:9c:6e:dc:6f:ad:b4:38:f0:e2: f2:b6:00:26:93:a9:53:94:0d:21:ed:30:67:d0:c5: 71:78:e2:8a:88:96:21:c0:d1:be:9c:9c:11:20:26: 62:9f:ab:92:d5:21:18:ba:ac:1d:04:10:e8:b9:12: 7c:85:ec:f2:1b:93:19:9c:2e:65:a1:29:fb:e7:1a: b4:7e:ed:f5:a7:0a:ad:eb:55:1a:99:72:75:83:18: f9:4b:c1:18:35:2e:d5:b3:31:35:37:d8:6b:13:e7: e5:db:45:a8:ee:81:ce:90:63:5c:f5:a3:59:66:4e: 32:af:92:b4:32:04:90:a4:29:8f:4b:a3:0b:78:26: d6:07:23:3d:01:a0:57:66:9c:c6:a1:dd:f3:b7:32: 84:f4:8b:30:c0:fd:a2:e6:de:8f:4d:04:c2:2c:c3: e7:2d:eb:d1:1b:56:de:a5:e5:19:c3:66:e5:36:70: b8:a0:e2:34:1f:51:40:68:82:68:4d:97:ea:a3:08: e5:0a:9b:f9:f9:05:4e:69:78:e2:c3:4e:10:12:72: 59:d9:bf:a3:96:01:bb:cd:1c:83:a0:5b:51:34:02: 93:5d:ec:c2:a8:89:74:ae:b4:20:c0:c4:b5:00:2d: d9:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:42:1A:9A:06:2B:29:99:69:AC:12:65:E8:61:1E:85:DD:C6:B2:A0 X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:df:7d:47:68:4a:44:62:86:cd:5f:4f:c5:f6:5e:69:2c:f2: 01:78:2e:8b:e6:c6:cb:e3:6a:42:5b:6b:61:2b:60:7d:10:13: 38:84:7b:7e:53:62:43:a8:99:2a:01:f0:6f:eb:5d:ae:fa:b4: 9c:f3:e4:0a:8a:50:48:f0:c0:df:88:82:3c:da:ad:47:82:e9: e7:4f:cc:9b:83:f5:b4:ac:ab:81:83:fe:18:71:07:d7:23:35: 94:05:26:a1:f9:ec:e0:d1:a2:21:39:26:dc:49:e5:63:7d:d6: ec:67:2c:1c:87:cd:f6:7e:8a:c8:8f:b4:51:cd:41:8b:8f:b5: 0a:7a:3b:18:08:45:f4:77:94:e8:5b:f6:18:37:c9:44:b5:03: d2:68:73:5e:6b:5a:51:0d:ec:09:39:34:80:f7:f5:e6:43:9f: 3d:14:ea:4c:49:d6:8e:4e:c4:d5:34:74:e6:be:3d:19:ef:cd: d2:55:4b:2d:d0:14:dc:41:62:eb:a9:88:22:dc:a9:53:fa:61: d1:67:d6:70:9e:70:60:f9:76:42:65:35:3a:e7:e3:35:3f:62: c6:22:86:54:1d:8a:ef:96:40:5b:de:8e:6e:02:d0:50:47:5c: ae:67:c7:5c:19:1c:64:1e:f1:3e:65:0e:5f:f6:c4:df:e5:4b: 3e:91:3f:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjUwNzAzMDQ1OTM2WhcNMjUwNzEwMDQ1OTM2WjAYMRYwFAYD VQQDEw02ODY2MGUzOC00ODQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsG2QKz85xCB/9WikxERoB74IB8ecbtxvrbQ48OLytgAmk6lTlA0h7TBn0MVx eOKKiJYhwNG+nJwRICZin6uS1SEYuqwdBBDouRJ8hezyG5MZnC5loSn75xq0fu31 pwqt61UamXJ1gxj5S8EYNS7VszE1N9hrE+fl20Wo7oHOkGNc9aNZZk4yr5K0MgSQ pCmPS6MLeCbWByM9AaBXZpzGod3ztzKE9IswwP2i5t6PTQTCLMPnLevRG1bepeUZ w2blNnC4oOI0H1FAaIJoTZfqowjlCpv5+QVOaXjiw04QEnJZ2b+jlgG7zRyDoFtR NAKTXezCqIl0rrQgwMS1AC3ZjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEhCGpoG KymZaawSZehhHoXdxrKgMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg331HaEpEYobNX0/F9l5pLPIBeC6L5sbL42pCW2thK2B9EBM4hHt+ U2JDqJkqAfBv612u+rSc8+QKilBI8MDfiII82q1HgunnT8ybg/W0rKuBg/4YcQfX IzWUBSah+ezg0aIhOSbcSeVjfdbsZywch832forIj7RRzUGLj7UKejsYCEX0d5To W/YYN8lEtQPSaHNea1pRDewJOTSA9/XmQ589FOpMSdaOTsTVNHTmvj0Z783SVUst 0BTcQWLrqYgi3KlT+mHRZ9ZwnnBg+XZCZTU65+M1P2LGIoZUHYrvlkBb3o5uAtBQ R1yuZ8dcGRxkHvE+ZQ5f9sTf5Us+kT81 -----END CERTIFICATE-----Generated at Thu Jul 3 06:38:32 2025 by rpki-client