$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: 94yLW6zVtuyY3forofB1HibQrxrM3PU44rnWWItf2vE= Subject key identifier: B2:01:FD:BB:50:A1:E5:1C:12:54:45:2C:F6:08:46:3C:47:BE:6D:D4 Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 0840 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0C5E Signing time: Sat 28 Jun 2025 20:24:51 +0000 Manifest this update: Sat 28 Jun 2025 20:24:50 +0000 Manifest next update: Sat 05 Jul 2025 20:24:50 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: h6Wbwku6SNnGbp4Q9Pr6UF5plumrSsYbzASsCrUGvkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Jun 28 20:24:50 2025 GMT Not After : Jul 5 20:24:50 2025 GMT Subject: CN=68604f93-394d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:d5:32:ea:2f:9a:5c:68:24:ae:07:7f:0e:cf: e6:fb:7a:26:13:59:90:2e:db:70:7f:fa:09:3c:1a: 99:1f:96:ff:27:41:42:3c:4e:0d:6a:80:e2:68:88: e0:12:94:05:0c:d4:cd:81:6b:7a:63:a0:49:26:67: ea:8b:7f:94:26:79:17:4e:cf:be:d1:eb:c4:fa:ce: 40:6b:25:fa:a2:f7:3b:4c:9e:82:69:29:9d:b1:55: b5:f4:d0:af:ca:46:f0:bc:ad:71:c2:53:ec:4d:03: b6:2a:c1:da:6b:36:da:80:82:6c:89:48:b3:72:37: 87:40:21:f8:5f:e8:a1:29:52:70:9e:12:53:6b:ce: f2:ee:d2:32:ef:ce:23:b2:02:26:47:1f:6e:14:44: fc:7b:1f:56:1f:c8:62:04:26:d8:78:47:cd:13:37: 8f:e2:24:12:89:54:e2:63:2c:ff:7e:47:8b:1e:c8: c8:0c:46:ec:72:9c:79:77:80:c7:16:1b:0b:e9:35: 63:b6:f2:ef:4a:5b:cf:c2:c9:e0:54:ff:23:9c:41: 0f:f2:41:39:0d:f0:74:76:cf:2d:ce:db:23:d6:8a: 66:4f:cc:7a:de:74:6d:23:6f:03:7c:ae:be:7d:08: 72:af:07:45:7f:83:68:56:e8:fb:d7:38:fc:45:06: 24:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:01:FD:BB:50:A1:E5:1C:12:54:45:2C:F6:08:46:3C:47:BE:6D:D4 X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:e6:6b:1c:18:db:33:0d:0d:5b:bb:ed:a2:f1:79:cf:8f:7c: 78:83:ae:e4:0f:d2:76:e9:71:82:19:d6:f1:ae:ce:40:86:02: d6:45:1a:88:84:5a:70:16:32:7a:5d:30:a1:49:47:cb:39:c2: 3a:67:9e:ab:5f:14:32:0a:aa:3e:63:c7:0f:91:9e:c8:aa:f0: 68:fb:9e:4c:4c:9f:cd:f0:ed:04:a3:52:1c:d3:bf:c2:03:43: ea:07:ba:e8:91:07:9d:88:96:2d:4e:ab:55:2e:e3:60:89:4d: 26:6b:77:cc:d2:ec:43:5b:50:fe:64:1f:9d:b7:8f:7c:a7:4a: 1f:81:88:df:be:83:ab:d3:2e:b1:b8:a3:7e:87:fc:d7:f0:04: a3:d7:d4:53:35:98:e6:7a:91:f4:ff:97:d1:e9:e3:bc:59:3a: a9:27:53:9a:7f:fe:79:79:91:da:14:25:da:a5:30:34:f9:9b: 08:53:a5:3d:d3:8b:23:9a:32:9c:57:1c:f6:f4:07:62:e1:41: 8a:c8:4d:3b:d2:9b:06:ff:3c:91:79:24:6b:2d:a0:e1:43:ab: bb:6a:03:79:cb:03:f3:a7:2a:dd:2c:3d:0c:ee:d1:9c:e0:66: 6d:b2:bc:15:63:1a:9c:6c:ec:de:39:2c:b6:bb:1a:13:fa:74: 33:de:30:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjUwNjI4MjAyNDUwWhcNMjUwNzA1MjAyNDUwWjAYMRYwFAYD VQQDEw02ODYwNGY5My0zOTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5dUy6i+aXGgkrgd/Ds/m+3omE1mQLttwf/oJPBqZH5b/J0FCPE4NaoDiaIjg EpQFDNTNgWt6Y6BJJmfqi3+UJnkXTs++0evE+s5AayX6ovc7TJ6CaSmdsVW19NCv ykbwvK1xwlPsTQO2KsHaazbagIJsiUizcjeHQCH4X+ihKVJwnhJTa87y7tIy784j sgImRx9uFET8ex9WH8hiBCbYeEfNEzeP4iQSiVTiYyz/fkeLHsjIDEbscpx5d4DH FhsL6TVjtvLvSlvPwsngVP8jnEEP8kE5DfB0ds8tztsj1opmT8x63nRtI28DfK6+ fQhyrwdFf4NoVuj71zj8RQYkXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLIB/btQ oeUcElRFLPYIRjxHvm3UMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp5mscGNszDQ1bu+2i8XnPj3x4g67kD9J26XGCGdbxrs5AhgLWRRqI hFpwFjJ6XTChSUfLOcI6Z56rXxQyCqo+Y8cPkZ7IqvBo+55MTJ/N8O0Eo1Ic07/C A0PqB7rokQediJYtTqtVLuNgiU0ma3fM0uxDW1D+ZB+dt498p0ofgYjfvoOr0y6x uKN+h/zX8ASj19RTNZjmepH0/5fR6eO8WTqpJ1Oaf/55eZHaFCXapTA0+ZsIU6U9 04sjmjKcVxz29Adi4UGKyE070psG/zyReSRrLaDhQ6u7agN5ywPzpyrdLD0M7tGc 4GZtsrwVYxqcbOzeOSy2uxoT+nQz3jCl -----END CERTIFICATE-----Generated at Sun Jun 29 17:52:41 2025 by rpki-client