$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: b1Y4ZfbFFi6LA3ddrJbid9aYdt9CrIuCyvvMfbsvn4A= Subject key identifier: 2F:10:2F:6B:A3:91:BC:37:21:EE:50:DB:70:9B:1D:6E:FF:91:B2:33 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: F7 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: E8 Signing time: Thu 03 Jul 2025 05:42:17 +0000 Manifest this update: Thu 03 Jul 2025 05:42:16 +0000 Manifest next update: Thu 10 Jul 2025 05:42:16 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: lxQaoiWJq3w/cjSs3tTDePOXnA9Zkuqqle61h5RwZ3Q=) 2: 62B87A26895B11EFBA2A3B22C4F9AE02.roa (hash: GkfnFa85sf2ihLyLByQY01IPDXpueRzZ4fB3mmtkqLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 247 (0xf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Jul 3 05:42:16 2025 GMT Not After : Jul 10 05:42:16 2025 GMT Subject: CN=68661838-94c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:82:77:a1:e7:19:cf:d2:1b:6d:e7:bd:d6:47: 47:f5:30:4c:27:f3:91:ff:7b:69:bc:2f:da:10:88: f6:62:60:df:a4:e9:db:98:e4:c7:66:e1:e2:2e:f0: 71:2e:6f:e4:69:8f:f4:7d:df:1e:2a:18:8c:ac:45: 64:04:23:62:4f:70:9b:72:be:5f:4f:3e:fb:98:a6: 66:2a:a4:ff:84:cd:78:36:82:c6:9b:40:0f:d1:67: 95:7c:7b:3e:55:2c:df:d1:82:cd:fa:6e:b8:04:e2: e4:43:bb:81:8f:7e:bb:28:0a:ef:86:4f:67:d2:4b: 8e:cf:20:45:34:12:4c:b1:6b:48:70:6d:f7:99:bc: c2:24:ce:61:eb:df:12:49:a3:e3:6a:2a:6c:2b:a7: 3d:98:7a:62:69:8d:18:54:1b:d5:71:34:17:a2:a8: 12:3b:eb:bd:d1:6d:0e:92:93:7a:52:05:e5:27:6d: 4e:9f:0e:6c:1e:ba:7e:74:16:2b:bf:3d:e6:2b:63: e0:96:00:04:60:4c:5a:81:29:3b:b0:e1:d9:a4:2f: 41:16:39:5d:03:87:66:b7:17:76:9d:72:59:50:82: 78:13:50:c0:20:a1:db:28:4e:cd:81:23:f9:83:db: 28:70:3d:31:e6:68:49:3f:bb:30:e4:e6:47:ad:ec: 94:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:10:2F:6B:A3:91:BC:37:21:EE:50:DB:70:9B:1D:6E:FF:91:B2:33 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8c:8e:66:b6:e4:d1:c0:69:32:5a:cd:5b:64:e2:e1:37:16: 12:47:7c:2e:fa:82:d2:36:f0:e1:47:64:a6:97:4f:ca:14:6f: 5d:71:35:0e:60:ae:aa:7e:fd:2b:eb:12:14:35:80:21:93:bb: 93:55:f2:f5:84:81:b1:9f:ad:8b:48:ca:bc:f9:62:00:a1:fc: e8:62:ea:10:d7:10:2a:9d:5e:f2:31:e8:2b:c2:3e:f9:51:cd: 1d:28:f0:f2:51:62:58:29:0b:cc:27:3d:ba:c6:1c:51:64:08: 7b:29:d6:5b:25:d6:75:6b:40:91:d4:76:d8:74:19:3c:51:72: 2f:ad:31:f5:37:5d:27:44:8f:4e:f5:3a:a2:dd:9f:d6:14:d3: cb:0e:35:b1:48:cb:8a:27:fe:98:9b:9d:fc:86:65:d2:82:9b: 4e:ce:e8:32:a7:24:7a:2f:3c:05:ab:3d:8f:79:5c:70:2a:65: 33:9e:fd:f3:19:d7:13:a5:80:f8:79:1a:a3:7e:71:22:57:d5: 75:95:17:e8:df:5a:25:9f:e9:a1:bb:ca:15:3c:6f:24:c4:63: 20:b9:66:a2:b0:19:7c:4d:12:00:37:51:25:e7:f9:62:24:c2: 70:30:a7:34:02:60:fd:aa:16:40:f5:36:d1:a7:ec:4e:15:a3: 22:c1:8f:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUwNzAzMDU0MjE2WhcNMjUwNzEwMDU0MjE2WjAYMRYwFAYD VQQDEw02ODY2MTgzOC05NGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1YJ3oecZz9Ibbee91kdH9TBMJ/OR/3tpvC/aEIj2YmDfpOnbmOTHZuHiLvBx Lm/kaY/0fd8eKhiMrEVkBCNiT3Cbcr5fTz77mKZmKqT/hM14NoLGm0AP0WeVfHs+ VSzf0YLN+m64BOLkQ7uBj367KArvhk9n0kuOzyBFNBJMsWtIcG33mbzCJM5h698S SaPjaipsK6c9mHpiaY0YVBvVcTQXoqgSO+u90W0OkpN6UgXlJ21Onw5sHrp+dBYr vz3mK2PglgAEYExagSk7sOHZpC9BFjldA4dmtxd2nXJZUIJ4E1DAIKHbKE7NgSP5 g9socD0x5mhJP7sw5OZHreyUhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC8QL2uj kbw3Ie5Q23CbHW7/kbIzMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWjI5mtuTRwGkyWs1bZOLhNxYSR3wu+oLSNvDhR2Sml0/KFG9dcTUO YK6qfv0r6xIUNYAhk7uTVfL1hIGxn62LSMq8+WIAofzoYuoQ1xAqnV7yMegrwj75 Uc0dKPDyUWJYKQvMJz26xhxRZAh7KdZbJdZ1a0CR1HbYdBk8UXIvrTH1N10nRI9O 9Tqi3Z/WFNPLDjWxSMuKJ/6Ym538hmXSgptOzugypyR6LzwFqz2PeVxwKmUznv3z GdcTpYD4eRqjfnEiV9V1lRfo31oln+mhu8oVPG8kxGMguWaisBl8TRIAN1El5/li JMJwMKc0AmD9qhZA9TbRp+xOFaMiwY+P -----END CERTIFICATE-----Generated at Thu Jul 3 16:53:42 2025 by rpki-client