$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: 4iZO4KDMwZr8cw10khUwSwuMpK7TsyclxZ2Z+/RB8HY= Subject key identifier: 64:F0:98:51:71:A3:10:D1:20:D2:E9:7C:E7:B1:2F:13:DF:04:AE:7B Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 0FFE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 0FED Signing time: Fri 16 May 2025 17:42:23 +0000 Manifest this update: Fri 16 May 2025 17:42:23 +0000 Manifest next update: Fri 23 May 2025 17:42:23 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: toEnv7m4LNNdTIa169r12l8G7jrD78qC99mbiIJmej0=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:42:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4094 (0xffe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: May 16 17:42:23 2025 GMT Not After : May 23 17:42:23 2025 GMT Subject: CN=682778ff-5b46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9d:33:e4:53:0c:10:f8:7b:b4:b6:c9:9e:7b: db:a4:e9:11:f0:ad:10:8c:4d:2f:88:a3:51:63:f7: fa:4e:66:4c:bb:d0:cf:5c:bb:35:9a:cb:94:5e:1e: 60:64:3e:94:47:5b:c8:36:31:cc:a1:c1:07:94:09: a9:bb:df:c3:a3:f9:96:8c:38:82:26:ec:58:a6:c6: 3e:2b:57:db:4d:91:f6:a8:a4:13:d3:df:31:d6:f2: c1:53:2f:42:4d:e2:b8:6e:9e:61:db:a7:70:a4:05: 14:50:8b:f5:34:39:3f:1f:fb:f2:2a:7f:61:39:f6: e6:ac:c3:3d:36:91:93:e6:cb:b1:ff:eb:4b:14:11: 2a:85:18:22:86:f8:2b:05:bc:cc:75:de:9f:91:87: 87:93:55:65:c3:62:b7:4c:ff:00:7d:5f:58:fb:4a: e9:fe:1e:b0:f2:45:6d:e0:e1:26:44:57:25:9c:75: 76:b1:60:a6:41:e5:d3:58:9b:8a:fc:71:65:2f:18: 54:d1:cb:a1:96:47:a7:9d:61:ed:02:77:4d:13:e0: b2:a6:88:6c:61:4c:ac:b6:99:2e:7c:35:9a:bc:9d: e9:bd:c0:45:1c:e2:11:d9:3d:37:46:94:28:ad:02: e7:d6:72:c9:c4:b9:99:c0:f8:c0:2d:8e:9e:c2:77: 7d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:F0:98:51:71:A3:10:D1:20:D2:E9:7C:E7:B1:2F:13:DF:04:AE:7B X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:6b:ad:b0:b5:6a:83:d6:a6:25:d3:cf:b3:5d:0c:2c:bf:3d: f1:fd:1b:b4:c7:f7:1f:9d:fa:f8:29:d6:5e:c6:23:38:e1:40: d9:f8:58:16:fb:70:be:60:fa:42:a8:15:8e:84:6b:5c:fa:5e: 9f:51:b2:a8:28:1a:58:fa:e8:71:47:30:e1:7d:a6:32:33:62: d6:fa:5e:bb:8e:4c:46:95:87:54:1f:81:4a:fe:66:0d:12:1b: 54:55:b6:15:7d:b5:e5:a2:84:db:a3:6c:54:81:11:76:9c:8e: a3:95:26:de:a1:30:08:aa:3b:b8:46:fb:31:44:7f:22:2c:5d: 47:80:7d:5a:36:af:38:c2:ab:0a:c8:9b:fd:d7:c1:9a:b4:74: 10:ae:02:f1:d8:b1:f8:0f:c6:40:be:d3:59:97:a8:5c:17:d4: 97:91:12:94:2f:1a:25:5e:4f:55:49:74:74:dc:f2:7b:fc:19: 97:55:74:7a:22:b6:69:55:48:ad:d1:00:ed:99:2b:be:53:c8: a8:81:d8:2a:63:b7:3f:7a:15:87:bc:e8:ad:ff:6d:6e:2e:8c: 8a:c5:35:07:12:69:68:78:d7:9a:82:47:85:79:a8:4b:ba:40: a7:51:9e:1f:0f:26:60:e8:e6:01:1e:77:c5:ea:9c:aa:b9:02: c3:73:65:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUwNTE2MTc0MjIzWhcNMjUwNTIzMTc0MjIzWjAYMRYwFAYD VQQDEw02ODI3NzhmZi01YjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp0z5FMMEPh7tLbJnnvbpOkR8K0QjE0viKNRY/f6TmZMu9DPXLs1msuUXh5g ZD6UR1vINjHMocEHlAmpu9/Do/mWjDiCJuxYpsY+K1fbTZH2qKQT098x1vLBUy9C TeK4bp5h26dwpAUUUIv1NDk/H/vyKn9hOfbmrMM9NpGT5sux/+tLFBEqhRgihvgr BbzMdd6fkYeHk1Vlw2K3TP8AfV9Y+0rp/h6w8kVt4OEmRFclnHV2sWCmQeXTWJuK /HFlLxhU0cuhlkennWHtAndNE+CypohsYUystpkufDWavJ3pvcBFHOIR2T03RpQo rQLn1nLJxLmZwPjALY6ewnd9aQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGTwmFFx oxDRINLpfOexLxPfBK57MB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABa62wtWqD1qYl08+zXQwsvz3x/Ru0x/cfnfr4KdZexiM44UDZ+FgW +3C+YPpCqBWOhGtc+l6fUbKoKBpY+uhxRzDhfaYyM2LW+l67jkxGlYdUH4FK/mYN EhtUVbYVfbXlooTbo2xUgRF2nI6jlSbeoTAIqju4RvsxRH8iLF1HgH1aNq84wqsK yJv918GatHQQrgLx2LH4D8ZAvtNZl6hcF9SXkRKULxolXk9VSXR03PJ7/BmXVXR6 IrZpVUit0QDtmSu+U8iogdgqY7c/ehWHvOit/21uLoyKxTUHEmloeNeagkeFeahL ukCnUZ4fDyZg6OYBHnfF6pyquQLDc2Vv -----END CERTIFICATE-----Generated at Fri May 16 19:29:20 2025 by rpki-client