$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: ZmNkZzQEtZOmDQuNB3n/iKfSUDIv6g6jh7QkXHj/xfs= Subject key identifier: CD:91:0E:A8:D8:22:E3:FD:DD:E7:B1:72:4B:0D:C0:4C:D6:45:F5:B9 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 1015 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 1004 Signing time: Wed 02 Jul 2025 17:39:22 +0000 Manifest this update: Wed 02 Jul 2025 17:39:21 +0000 Manifest next update: Wed 09 Jul 2025 17:39:21 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: kfYOVRXFwPDdlOKvw9nuQjv6E6YsgMRvNeQaIZEGTJ4=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 17:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4117 (0x1015) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Jul 2 17:39:21 2025 GMT Not After : Jul 9 17:39:21 2025 GMT Subject: CN=68656eca-0316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3e:5a:61:6b:06:fb:1e:da:33:b3:a3:fa:12: 6b:02:83:cc:83:16:23:38:d5:a5:32:8a:f1:46:65: 4e:2f:43:ee:05:01:cb:3b:7b:57:10:c3:dc:ff:64: b8:50:c1:3f:f9:65:53:e3:f9:55:a7:ce:1c:11:ee: 37:76:53:88:4a:ea:dd:c0:f5:07:c6:12:60:de:2c: 50:60:e2:56:e0:20:88:0f:01:92:d2:fd:b8:a1:75: 27:41:1b:51:8e:78:02:a8:29:f9:0f:ce:86:df:9f: be:80:81:77:f2:33:f5:e2:60:6a:b7:a4:13:3f:07: 47:be:84:5d:31:78:af:1f:dc:3c:65:6b:11:3c:95: ae:6a:9c:ce:37:71:5f:d4:ec:0f:d5:1b:fd:20:75: fa:fa:5b:93:40:55:95:1e:a2:20:cd:48:0e:80:b5: f2:e0:70:7f:b3:59:99:60:c5:29:26:08:3f:84:b0: 42:78:7f:97:52:39:f1:72:dc:8d:87:fe:c1:df:28: b0:41:d2:7f:5e:63:f3:a5:99:9e:64:9b:b7:c8:d5: b0:b6:ba:54:97:0b:33:19:d8:f0:42:0a:93:88:ef: 6e:1f:80:0d:bf:1a:bd:0b:2e:60:2d:9a:da:6c:97: 8f:78:51:91:7c:30:5a:31:5d:ff:eb:73:fb:2c:4e: b2:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:91:0E:A8:D8:22:E3:FD:DD:E7:B1:72:4B:0D:C0:4C:D6:45:F5:B9 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:94:46:52:13:b7:4c:81:af:2a:67:0d:d0:e7:d5:39:98:3e: 84:2f:e6:6d:6b:62:ec:9c:60:ea:5f:4d:14:13:71:0f:b5:bd: 28:2f:55:f5:ce:24:63:ff:67:10:48:a9:85:b0:0c:cb:47:cf: 10:07:1c:59:a7:a6:b8:57:f4:43:9f:12:a7:24:46:9f:f8:43: 48:66:bb:7e:f4:8c:05:b9:28:19:b9:93:bd:f7:e1:38:6d:13: 31:c8:59:dd:7e:2f:cb:2b:bf:00:f5:0d:2a:13:45:44:e1:1b: 9d:ff:21:f2:3b:c4:e4:39:46:42:69:d1:bc:89:59:ff:13:5f: f9:f4:98:65:e7:ce:d6:63:1e:ff:78:b5:78:9c:d6:1f:7b:23: 94:49:3c:44:0d:6b:90:f7:17:88:04:e1:de:9a:ee:72:24:0f: 52:85:60:cc:4c:4a:e5:6c:ef:98:96:ef:4a:63:a5:73:f3:bf: c2:fc:c1:b1:59:d9:ea:9e:bf:60:73:b0:0c:26:95:d0:3b:53: 98:3f:90:c4:8d:67:68:55:f7:2d:bf:0c:3b:42:67:02:71:a3: 83:c8:a3:5c:b8:43:3e:6d:c5:74:21:b2:69:17:ca:47:14:87: 3b:c2:92:d0:46:7d:6c:68:b9:9e:4c:f0:c4:c8:9f:a2:b7:f8: 54:a0:c1:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEBUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUwNzAyMTczOTIxWhcNMjUwNzA5MTczOTIxWjAYMRYwFAYD VQQDEw02ODY1NmVjYS0wMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4z5aYWsG+x7aM7Oj+hJrAoPMgxYjONWlMorxRmVOL0PuBQHLO3tXEMPc/2S4 UME/+WVT4/lVp84cEe43dlOISurdwPUHxhJg3ixQYOJW4CCIDwGS0v24oXUnQRtR jngCqCn5D86G35++gIF38jP14mBqt6QTPwdHvoRdMXivH9w8ZWsRPJWuapzON3Ff 1OwP1Rv9IHX6+luTQFWVHqIgzUgOgLXy4HB/s1mZYMUpJgg/hLBCeH+XUjnxctyN h/7B3yiwQdJ/XmPzpZmeZJu3yNWwtrpUlwszGdjwQgqTiO9uH4ANvxq9Cy5gLZra bJePeFGRfDBaMV3/63P7LE6yuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM2RDqjY IuP93eexcksNwEzWRfW5MB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTlEZSE7dMga8qZw3Q59U5mD6EL+Zta2LsnGDqX00UE3EPtb0oL1X1 ziRj/2cQSKmFsAzLR88QBxxZp6a4V/RDnxKnJEaf+ENIZrt+9IwFuSgZuZO99+E4 bRMxyFndfi/LK78A9Q0qE0VE4Rud/yHyO8TkOUZCadG8iVn/E1/59Jhl587WYx7/ eLV4nNYfeyOUSTxEDWuQ9xeIBOHemu5yJA9ShWDMTErlbO+Ylu9KY6Vz87/C/MGx Wdnqnr9gc7AMJpXQO1OYP5DEjWdoVfctvww7QmcCcaODyKNcuEM+bcV0IbJpF8pH FIc7wpLQRn1saLmeTPDEyJ+it/hUoMF5 -----END CERTIFICATE-----Generated at Thu Jul 3 11:27:05 2025 by rpki-client