$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: FMclpsNE9nIM1L/EodpZY2toLK50N1kXE66N7HEzvcY= Subject key identifier: DC:3A:B0:35:2A:5B:27:C7:25:82:37:31:EB:66:AC:CE:1E:20:E3:A9 Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 0143 Signing time: Tue 01 Jul 2025 04:49:08 +0000 Manifest this update: Tue 01 Jul 2025 04:49:08 +0000 Manifest next update: Tue 08 Jul 2025 04:49:08 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: fxgwY1Hi8XI2rnq6UzGCvrF/BRqcrRd7jJB8FERFRVI=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 04:49:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Jul 1 04:49:08 2025 GMT Not After : Jul 8 04:49:08 2025 GMT Subject: CN=686368c4-61dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:6f:31:16:ec:f4:3a:0e:94:01:f5:f3:ba:0e: 60:03:6f:1f:3c:e3:f9:29:74:ce:c8:da:5a:a0:94: 6d:f4:a6:cf:75:29:85:27:35:ef:5b:4a:59:63:35: cb:13:85:bd:bd:93:07:73:3e:7e:ad:a6:f1:10:ec: ab:b9:18:f5:a6:75:bd:98:46:95:ae:68:d9:ab:e3: 8c:6c:88:5f:6f:75:0d:35:bb:11:57:7f:eb:0e:a4: 29:15:3e:cd:1a:b3:67:34:88:8b:05:57:4c:9c:fe: 72:22:8a:b1:a4:16:88:c5:3b:e9:9c:6d:14:67:35: 15:eb:14:0a:f7:23:b6:2e:72:99:5b:6c:86:81:34: 7c:73:3e:e0:2b:bd:37:1b:6d:f4:8d:f3:87:9b:ad: 83:49:42:c1:ba:07:d6:55:e4:72:10:98:25:15:aa: 97:b7:cd:be:96:f9:14:07:71:24:d6:99:04:f6:82: fd:f6:66:24:93:7a:10:87:79:83:a1:3d:ef:58:c2: 2c:32:f8:68:5f:00:cc:87:cf:43:3b:db:ad:8d:19: fe:24:8d:7c:e7:64:7a:c4:dd:a2:ac:ad:82:7d:cf: c1:d0:c5:05:b7:e5:e9:6e:34:b8:30:fb:4a:23:37: 08:d2:c5:d7:3e:ea:75:58:0e:f8:a3:c4:df:a5:db: 10:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3A:B0:35:2A:5B:27:C7:25:82:37:31:EB:66:AC:CE:1E:20:E3:A9 X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:5a:95:f0:5f:cf:da:e9:8c:26:2e:2a:a4:0c:9c:aa:18:d1: 5b:5b:d9:40:42:78:cb:18:7c:18:38:bd:99:1c:44:30:a8:41: 99:3d:20:ab:39:d8:07:42:16:eb:e1:e5:a1:22:95:2a:1e:27: 54:e4:b0:84:86:bd:06:30:28:40:33:fb:57:18:21:c7:90:ab: df:7e:16:7b:c3:02:39:c9:22:22:0a:e0:ea:b2:2d:e4:21:1b: 12:73:d3:48:4d:5c:c6:9b:97:fb:08:fb:30:71:0f:f9:78:9e: e4:14:0c:50:cb:cb:85:d5:05:25:d7:a1:11:aa:12:93:e3:9e: 0c:f3:b3:54:3c:8a:ba:db:7e:37:8f:49:e5:0a:ac:c0:3a:de: a8:49:80:d7:ed:50:ea:ac:25:25:76:bf:d0:f4:27:5d:49:87: c3:d9:39:4e:d9:cf:fb:11:bc:d0:8d:52:40:12:1e:84:df:d5: ec:af:2b:9a:1d:a5:fd:3a:ba:55:d3:0a:49:7d:c3:ad:18:a8: e5:39:f3:19:ec:bc:a6:a6:fe:29:f3:8c:f7:f4:d5:34:c2:ba: 8f:e2:b6:9f:c2:b9:35:89:88:0c:42:de:ef:05:0c:c1:3f:6b: 7c:10:c2:73:07:2f:08:6d:ab:bd:62:f0:7b:33:54:15:48:06: 93:d3:e3:dc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUwNzAxMDQ0OTA4WhcNMjUwNzA4MDQ0OTA4WjAYMRYwFAYD VQQDEw02ODYzNjhjNC02MWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4G8xFuz0Og6UAfXzug5gA28fPOP5KXTOyNpaoJRt9KbPdSmFJzXvW0pZYzXL E4W9vZMHcz5+rabxEOyruRj1pnW9mEaVrmjZq+OMbIhfb3UNNbsRV3/rDqQpFT7N GrNnNIiLBVdMnP5yIoqxpBaIxTvpnG0UZzUV6xQK9yO2LnKZW2yGgTR8cz7gK703 G230jfOHm62DSULBugfWVeRyEJglFaqXt82+lvkUB3Ek1pkE9oL99mYkk3oQh3mD oT3vWMIsMvhoXwDMh89DO9utjRn+JI1852R6xN2irK2Cfc/B0MUFt+XpbjS4MPtK IzcI0sXXPup1WA74o8TfpdsQJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNw6sDUq WyfHJYI3MetmrM4eIOOpMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIWpXwX8/a6YwmLiqkDJyqGNFbW9lAQnjLGHwYOL2ZHEQwqEGZPSCr OdgHQhbr4eWhIpUqHidU5LCEhr0GMChAM/tXGCHHkKvffhZ7wwI5ySIiCuDqsi3k IRsSc9NITVzGm5f7CPswcQ/5eJ7kFAxQy8uF1QUl16ERqhKT454M87NUPIq62343 j0nlCqzAOt6oSYDX7VDqrCUldr/Q9CddSYfD2TlO2c/7EbzQjVJAEh6E39Xsryua HaX9OrpV0wpJfcOtGKjlOfMZ7Lympv4p84z39NU0wrqP4rafwrk1iYgMQt7vBQzB P2t8EMJzBy8Ibau9YvB7M1QVSAaT0+Pc -----END CERTIFICATE-----Generated at Thu Jul 3 00:17:14 2025 by rpki-client