$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: eTthzAisGufJhx4mjset3hnl1qUKj1NfAnWrM2aTX0I= Subject key identifier: D1:16:8B:63:CD:4B:A0:0B:09:29:0E:D8:36:23:83:7F:32:4B:75:E1 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0EAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E62 Signing time: Wed 02 Jul 2025 18:01:00 +0000 Manifest this update: Wed 02 Jul 2025 18:00:59 +0000 Manifest next update: Wed 09 Jul 2025 18:00:59 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: HkAsZMRCWnzYuAAJSsYjgDm0KoYLMyTig5SH1wnR6rA=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: q8VjbfesBfjBXJ1O+TtlGTvZbuy2Q6Gq6lc9iUM1cKc=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: L+aUrfi/IHEm4FCCzrEf6AdJOcO/5KYjXAI+VHu0xCQ=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: mlWu4QI6RV3Fazg24ou9fVsCNac8uNLMWZTkxYffaU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3757 (0xead) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Jul 2 18:00:59 2025 GMT Not After : Jul 9 18:00:59 2025 GMT Subject: CN=686573dc-322d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:de:cb:29:35:65:ab:60:52:0a:59:2f:64:8f: e4:17:18:d3:3b:9e:08:ce:17:d3:d7:d7:8a:c1:93: 16:e8:8f:b6:b1:a4:fc:68:50:a8:42:8b:7d:0f:41: d9:8e:48:35:29:15:d9:10:89:63:79:a7:ab:ca:19: 0b:8b:05:3a:c5:1a:8d:92:85:dd:39:f8:29:ac:a0: 76:3b:6a:51:1f:69:b2:b9:f5:58:fc:2d:ce:f9:cb: 13:a4:11:19:e5:4d:1c:61:aa:4a:e1:94:a8:45:5b: c7:23:b0:68:f2:eb:5c:ad:3c:8c:d3:32:77:e6:68: c2:2a:52:93:72:e7:fa:32:70:b3:f2:7b:9e:be:1c: d1:58:dc:2b:cd:44:40:73:35:33:ac:3c:68:cc:7d: 76:55:45:b6:a5:6e:b1:05:f8:37:05:b3:d3:17:fe: 2c:98:74:9d:27:2e:52:6e:a8:ca:4b:64:af:02:5d: ee:a7:e4:f3:f5:10:5f:27:94:7a:55:97:b0:69:85: 46:d9:f7:dd:39:9c:41:55:ba:ff:71:99:da:1c:92: f7:b6:1a:47:49:0b:b5:ab:d2:be:37:2f:fd:49:3f: b7:a5:1b:2e:26:0f:79:19:34:e8:ac:f8:c2:89:4c: a3:89:4d:5c:1d:39:7d:1a:f9:d4:aa:88:cc:5b:8e: 6a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:16:8B:63:CD:4B:A0:0B:09:29:0E:D8:36:23:83:7F:32:4B:75:E1 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 19:11:d7:c3:fc:03:6e:ab:1e:6e:df:1f:79:e7:19:39:58:ac: 29:a2:5c:42:80:93:82:2e:c0:3d:ef:18:ac:64:d3:04:ae:68: 4b:10:bc:4a:12:75:be:09:55:ac:e2:12:ba:e2:f5:93:75:0b: 28:3e:d2:9c:e3:da:e9:93:1a:d5:66:b9:43:53:d6:82:d3:c8: e0:58:77:1a:0e:95:83:f6:09:99:30:0f:0d:25:33:fb:e8:1b: ad:e6:77:b2:d8:8b:7a:23:51:ca:c1:77:6e:cd:e9:3e:6d:b9: ce:2a:fd:9f:d2:76:f5:8e:67:99:c9:87:13:da:13:59:c9:a3: 32:8d:34:03:37:c0:99:a7:91:60:87:b2:77:1d:fe:7c:6f:08: ad:3c:7a:8b:d0:e7:43:91:cb:3a:b3:d8:fc:a1:a4:3b:a0:bd: b5:fb:0e:88:7b:66:bb:a9:57:74:56:a1:93:c3:fd:69:29:26: 36:42:e6:22:73:ab:f8:4c:a5:ee:42:c3:f1:ac:54:bb:9d:53: d4:83:ec:e5:5e:08:34:a7:41:b7:05:57:c9:95:87:1d:ef:84: 03:71:fe:e2:44:a0:77:0d:c3:61:d0:2e:f4:b1:56:27:70:9b: ae:d6:7d:a1:c3:82:f5:a8:19:7f:88:0a:86:fa:2c:17:b3:7a: dd:fe:2d:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwNzAyMTgwMDU5WhcNMjUwNzA5MTgwMDU5WjAYMRYwFAYD VQQDEw02ODY1NzNkYy0zMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz97LKTVlq2BSClkvZI/kFxjTO54IzhfT19eKwZMW6I+2saT8aFCoQot9D0HZ jkg1KRXZEIljeaeryhkLiwU6xRqNkoXdOfgprKB2O2pRH2myufVY/C3O+csTpBEZ 5U0cYapK4ZSoRVvHI7Bo8utcrTyM0zJ35mjCKlKTcuf6MnCz8nuevhzRWNwrzURA czUzrDxozH12VUW2pW6xBfg3BbPTF/4smHSdJy5SbqjKS2SvAl3up+Tz9RBfJ5R6 VZewaYVG2ffdOZxBVbr/cZnaHJL3thpHSQu1q9K+Ny/9ST+3pRsuJg95GTTorPjC iUyjiU1cHTl9GvnUqojMW45q8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEWi2PN S6ALCSkO2DYjg38yS3XhMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAZEdfD/ANuqx5u3x955xk5WKwpolxCgJOCLsA97xisZNMErmhLELxK EnW+CVWs4hK64vWTdQsoPtKc49rpkxrVZrlDU9aC08jgWHcaDpWD9gmZMA8NJTP7 6But5ney2It6I1HKwXduzek+bbnOKv2f0nb1jmeZyYcT2hNZyaMyjTQDN8CZp5Fg h7J3Hf58bwitPHqL0OdDkcs6s9j8oaQ7oL21+w6Ie2a7qVd0VqGTw/1pKSY2QuYi c6v4TKXuQsPxrFS7nVPUg+zlXgg0p0G3BVfJlYcd74QDcf7iRKB3DcNh0C70sVYn cJuu1n2hw4L1qBl/iAqG+iwXs3rd/i0F -----END CERTIFICATE-----Generated at Fri Jul 4 15:21:57 2025 by rpki-client