$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft File: K2gwqzfLNO8nOiCi8ugmQplgE9o.mft (raw, json) Hash identifier: gP3dUlujpVC4/riXhEQ//H5zAz3aOabYHSdqh577c8o= Subject key identifier: 5A:CB:B1:E1:7D:8E:DB:89:FE:80:A5:A5:6D:92:7C:59:12:9D:FC:89 Authority key identifier: 2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA Certificate issuer: /CN=A91E3E80/serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Certificate serial: 0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft Manifest number: 0A Signing time: Thu 03 Jul 2025 08:24:27 +0000 Manifest this update: Thu 03 Jul 2025 08:24:27 +0000 Manifest next update: Thu 10 Jul 2025 08:24:26 +0000 Files and hashes: 1: K2gwqzfLNO8nOiCi8ugmQplgE9o.crl (hash: SQMSEIG7ioKbyZmd6QqRCLXGcoc+xpYysU/wFfXrqb0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3E80, serialNumber=2B6830AB37CB34EF273A20A2F2E82642996013DA Validity Not Before: Jul 3 08:24:27 2025 GMT Not After : Jul 10 08:24:26 2025 GMT Subject: CN=68663e3b-bcc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:72:6f:90:ba:46:e8:dd:94:9d:98:ee:e4:d7: 5c:ad:48:05:67:8e:00:d6:47:83:9c:54:7c:11:e9: 2e:db:41:4d:66:bc:ee:51:fe:01:4f:88:f4:9f:09: 48:7b:8a:38:94:8d:bb:40:91:d2:f0:f9:8a:33:f8: 86:e4:74:f7:ec:9e:be:f0:d1:bf:74:17:0b:57:4b: 88:b3:0f:71:ae:91:49:1c:2b:12:1e:fd:25:c3:05: b5:2d:b0:91:ec:2b:43:66:58:2b:50:4f:e8:fa:26: fa:74:13:79:fd:22:9c:9e:c5:45:b0:a5:01:08:64: bd:85:60:93:5d:36:d4:71:d2:47:9a:bf:ed:ed:8a: b9:78:d7:fb:72:7f:7c:b5:71:53:8e:9f:9c:86:fd: a8:bb:3c:eb:54:27:47:e2:a5:90:b1:86:5e:5b:78: eb:5e:be:0c:b1:7a:03:54:e7:b6:43:53:4d:cd:3d: e0:39:ec:cf:06:90:e2:0d:54:ca:24:4d:a1:71:ed: a1:cc:ee:ba:87:4c:5b:ce:86:0c:e6:59:47:2c:b6: e2:d4:6a:91:3d:58:ad:1b:38:e6:6e:a1:32:73:76: 17:a0:37:2a:61:27:87:9c:c7:66:84:3b:c7:2c:af: 14:8c:dc:ef:da:37:3d:47:88:f7:6d:89:a4:7f:29: 3e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:CB:B1:E1:7D:8E:DB:89:FE:80:A5:A5:6D:92:7C:59:12:9D:FC:89 X509v3 Authority Key Identifier: keyid:2B:68:30:AB:37:CB:34:EF:27:3A:20:A2:F2:E8:26:42:99:60:13:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K2gwqzfLNO8nOiCi8ugmQplgE9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3E80/3E402AEA4B6611F0B8852439C4F9AE02/K2gwqzfLNO8nOiCi8ugmQplgE9o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:93:43:53:c6:14:20:b1:ec:0f:71:1c:53:ae:b5:83:00:81: 88:de:86:22:57:78:a7:1f:f9:9d:12:c8:f5:b2:54:38:18:74: ef:d0:df:0f:bb:8e:c3:fe:17:db:40:f4:0c:23:36:a1:b1:ce: da:2f:27:d1:15:02:61:41:c8:09:9c:9d:39:e5:a5:34:20:49: e6:e6:37:0a:1e:18:91:88:72:f4:d2:e9:b6:ad:1f:0a:39:5c: fa:44:01:51:98:5e:2d:21:cc:d7:d1:09:db:42:13:63:49:9f: 8b:05:be:de:ba:cd:de:92:ac:78:9c:06:df:9d:69:11:43:73: d8:60:3d:f6:c3:0b:e8:3f:2c:80:19:46:6c:08:50:fd:01:79: 8a:40:86:75:46:f0:ee:29:c0:62:be:37:c7:0d:e3:f6:ec:15: 0a:40:1d:df:79:38:85:6d:e9:cd:89:06:83:b3:51:ff:c1:4e: 3b:61:b1:73:f2:fa:23:61:71:a8:2f:5b:04:7b:94:99:0d:4b: 81:4e:9c:9b:aa:16:b2:e1:2e:8b:e9:96:fb:fd:7d:40:f5:3c: d7:83:2f:af:66:4a:84:69:09:b0:8f:63:77:85:31:9d:76:59: 7c:a4:20:e8:46:03:f0:06:a7:21:ae:9c:30:10:42:e2:b5:c8: 20:2e:60:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF M0U4MDExMC8GA1UEBRMoMkI2ODMwQUIzN0NCMzRFRjI3M0EyMEEyRjJFODI2NDI5 OTYwMTNEQTAeFw0yNTA3MDMwODI0MjdaFw0yNTA3MTAwODI0MjZaMBgxFjAUBgNV BAMTDTY4NjYzZTNiLWJjYzgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLcm+Qukbo3ZSdmO7k11ytSAVnjgDWR4OcVHwR6S7bQU1mvO5R/gFPiPSfCUh7 ijiUjbtAkdLw+Yoz+IbkdPfsnr7w0b90FwtXS4izD3GukUkcKxIe/SXDBbUtsJHs K0NmWCtQT+j6Jvp0E3n9IpyexUWwpQEIZL2FYJNdNtRx0keav+3tirl41/tyf3y1 cVOOn5yG/ai7POtUJ0fipZCxhl5beOtevgyxegNU57ZDU03NPeA57M8GkOINVMok TaFx7aHM7rqHTFvOhgzmWUcstuLUapE9WK0bOOZuoTJzdhegNyphJ4ecx2aEO8cs rxSM3O/aNz1HiPdtiaR/KT5lAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUWsux4X2O 24n+gKWlbZJ8WRKd/IkwHwYDVR0jBBgwFoAUK2gwqzfLNO8nOiCi8ugmQplgE9ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzRTgwLzNFNDAyQUVBNEI2 NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84bk9pQ2k4dWdtUXBsZ0U5 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSzJnd3F6ZkxOTzhuT2lDaTh1Z21RcGxnRTlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUz RTgwLzNFNDAyQUVBNEI2NjExRjBCODg1MjQzOUM0RjlBRTAyL0syZ3dxemZMTk84 bk9pQ2k4dWdtUXBsZ0U5by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFqTQ1PGFCCx7A9xHFOutYMAgYjehiJXeKcf+Z0SyPWyVDgYdO/Q3w+7 jsP+F9tA9AwjNqGxztovJ9EVAmFByAmcnTnlpTQgSebmNwoeGJGIcvTS6batHwo5 XPpEAVGYXi0hzNfRCdtCE2NJn4sFvt66zd6SrHicBt+daRFDc9hgPfbDC+g/LIAZ RmwIUP0BeYpAhnVG8O4pwGK+N8cN4/bsFQpAHd95OIVt6c2JBoOzUf/BTjthsXPy +iNhcagvWwR7lJkNS4FOnJuqFrLhLovplvv9fUD1PNeDL69mSoRpCbCPY3eFMZ12 WXykIOhGA/AGpyGunDAQQuK1yCAuYAw= -----END CERTIFICATE-----Generated at Thu Jul 3 10:42:29 2025 by rpki-client