$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: GiNgcGNDFboLYiNEMq2CKS7THPBAejRX826P0iohKGE= Subject key identifier: 48:09:F6:1F:1A:B5:2B:D3:50:D2:DA:EB:37:26:E6:91:A1:88:DC:55 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0376 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 036C Signing time: Thu 03 Jul 2025 01:16:53 +0000 Manifest this update: Thu 03 Jul 2025 01:16:53 +0000 Manifest next update: Thu 10 Jul 2025 01:16:53 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: 3bygu/BQDhSCSfUQZTzr3eOXWMnYQuO/xYFT3h3R3+0=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:16:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 886 (0x376) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Jul 3 01:16:53 2025 GMT Not After : Jul 10 01:16:53 2025 GMT Subject: CN=6865da05-cd80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a4:23:b6:2e:5e:79:f4:89:b0:cf:0b:26:bf: 92:12:c3:f7:28:e8:9d:ee:b5:1c:bc:e2:9d:33:59: 05:d9:b1:29:39:1d:dd:68:64:2c:81:44:c6:6f:d8: 7f:ed:05:3f:41:da:8f:eb:d8:c0:bd:cc:e9:14:21: b0:29:bd:d6:f3:b1:9a:d1:20:6e:17:aa:39:1b:7c: b1:78:e5:fc:15:e4:d6:49:f2:b4:d2:0b:ee:9d:6d: 14:c2:40:f6:f0:75:bf:01:3c:a4:a5:e9:c4:c4:9e: b9:fb:b6:25:73:14:10:e5:c5:58:18:05:33:97:e0: c1:91:5c:33:8c:d2:97:11:c6:a7:0e:a3:93:46:43: 92:fe:fb:f3:6e:b2:c1:34:c1:29:a6:ae:6b:c4:03: 81:23:77:df:3b:6e:ba:6e:84:d5:8c:eb:dc:ee:d8: c7:ad:eb:ff:ee:d4:78:6a:4f:93:55:ec:25:53:d7: 6f:d8:79:f6:bf:da:cd:cb:79:dc:47:aa:69:ab:f3: db:44:71:47:35:a9:8d:a2:43:05:a9:bf:d1:3b:09: e9:cd:75:a2:7d:47:28:c4:8d:e7:3a:e7:9d:01:49: 61:31:ac:7c:e9:67:c7:ba:b2:1a:87:63:87:c5:8c: 5d:2d:de:42:80:15:c1:0e:6d:00:ec:22:76:01:a1: 97:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:09:F6:1F:1A:B5:2B:D3:50:D2:DA:EB:37:26:E6:91:A1:88:DC:55 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:02:1f:b6:26:2b:a7:07:98:c5:d6:b8:c5:2b:3e:2d:a8:87: 4d:22:20:1c:2f:f8:5c:d1:54:8c:6a:1d:41:30:00:94:8b:f4: 22:49:08:71:15:e5:c4:8b:59:6d:0b:e1:26:7a:8b:9a:2b:ff: 4f:98:43:c3:2f:72:a9:bf:77:a3:37:12:fc:70:b0:e2:b2:b7: c8:f4:d1:f9:0c:d1:27:c4:4f:f3:bd:da:6a:cd:5a:59:67:50: 04:2c:42:8b:ce:f1:2c:9b:70:af:58:02:53:6c:74:77:1d:e5: ea:fa:26:ae:4c:5e:44:44:f6:89:cf:c3:fe:7a:1a:f8:ad:a5: 0c:69:33:d7:53:45:ee:ad:fb:af:08:a5:bc:99:80:b2:9e:78: e7:3d:2a:7f:de:cc:30:1a:a5:48:90:3f:c0:69:71:0f:76:fe: 1a:75:e2:d2:cb:44:a1:1b:70:0f:90:3e:c1:73:9e:0d:e5:ae: 0b:aa:e4:ba:35:af:33:9a:f2:68:ea:55:25:02:20:b4:64:dd: d1:fd:58:2f:11:fa:17:f1:7a:73:98:43:b1:bc:b9:a0:81:74: 79:a1:f3:bc:6a:dc:34:4d:29:d3:0d:d6:4c:3f:8c:08:b1:5e: e4:fd:bd:dc:d8:fd:ca:70:05:20:58:b4:dd:a7:cf:01:f2:a7: ae:9c:15:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwNzAzMDExNjUzWhcNMjUwNzEwMDExNjUzWjAYMRYwFAYD VQQDEw02ODY1ZGEwNS1jZDgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk6Qjti5eefSJsM8LJr+SEsP3KOid7rUcvOKdM1kF2bEpOR3daGQsgUTGb9h/ 7QU/QdqP69jAvczpFCGwKb3W87Ga0SBuF6o5G3yxeOX8FeTWSfK00gvunW0UwkD2 8HW/ATykpenExJ65+7YlcxQQ5cVYGAUzl+DBkVwzjNKXEcanDqOTRkOS/vvzbrLB NMEppq5rxAOBI3ffO266boTVjOvc7tjHrev/7tR4ak+TVewlU9dv2Hn2v9rNy3nc R6ppq/PbRHFHNamNokMFqb/ROwnpzXWifUcoxI3nOuedAUlhMax86WfHurIah2OH xYxdLd5CgBXBDm0A7CJ2AaGX2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEgJ9h8a tSvTUNLa6zcm5pGhiNxVMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLAh+2JiunB5jF1rjFKz4tqIdNIiAcL/hc0VSMah1BMACUi/QiSQhx FeXEi1ltC+EmeouaK/9PmEPDL3Kpv3ejNxL8cLDisrfI9NH5DNEnxE/zvdpqzVpZ Z1AELEKLzvEsm3CvWAJTbHR3HeXq+iauTF5ERPaJz8P+ehr4raUMaTPXU0Xurfuv CKW8mYCynnjnPSp/3swwGqVIkD/AaXEPdv4adeLSy0ShG3APkD7Bc54N5a4LquS6 Na8zmvJo6lUlAiC0ZN3R/VgvEfoX8XpzmEOxvLmggXR5ofO8atw0TSnTDdZMP4wI sV7k/b3c2P3KcAUgWLTdp88B8qeunBWY -----END CERTIFICATE-----Generated at Thu Jul 3 07:13:17 2025 by rpki-client