$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: 28Els4MgM0wEzSJxSIFeh8gBP6vGDgwWJScWgMjPzDI= Subject key identifier: C5:A8:C7:01:68:80:78:66:D5:57:5B:51:DD:E0:50:69:7D:2B:9F:37 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C1C Signing time: Wed 02 Jul 2025 18:56:09 +0000 Manifest this update: Wed 02 Jul 2025 18:56:08 +0000 Manifest next update: Wed 09 Jul 2025 18:56:08 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: AcE1k9Hz8DSxPMbdjmRKCQNyPVeRjd4ASUAyI/8vHLk=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3118 (0xc2e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Jul 2 18:56:08 2025 GMT Not After : Jul 9 18:56:08 2025 GMT Subject: CN=686580c9-7ed5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:06:7b:0a:0e:e9:d3:71:68:33:8b:eb:85:05: ee:e7:19:fe:7c:ad:93:18:c0:3a:35:47:ab:e6:4e: 0f:c0:89:d9:8e:48:49:73:1e:d5:b5:8c:3c:fb:b5: dd:cf:5f:7c:3f:ac:31:ee:dc:77:d1:e2:91:30:7b: 6e:34:a7:8d:f0:a8:1e:c7:0f:39:6f:c0:57:8e:09: 75:42:b5:25:69:91:57:ff:4c:f4:1c:3b:75:e1:95: 99:c8:fd:54:e6:7a:05:a8:3e:75:bb:ce:d9:25:9f: b6:e4:6c:e1:e9:29:88:6b:90:28:1c:52:84:cd:f3: 04:3d:56:0b:2b:9a:ae:07:29:92:25:be:68:94:74: 23:81:5f:d6:c1:5d:f0:b3:c6:79:1c:de:66:33:9e: a2:bd:94:08:fa:85:37:41:c7:c0:78:36:27:14:a0: e8:2b:2a:8a:c1:aa:e7:4f:16:f6:d4:d3:34:35:ee: 47:85:52:63:9f:01:c4:ec:f9:7d:de:ca:6c:87:b4: 9b:95:66:4c:8e:17:cc:d2:70:ee:a3:3b:19:13:01: 5c:db:82:6f:40:5d:8f:ec:39:48:c4:f9:77:6a:48: 68:b9:91:60:c5:d7:43:f7:be:f4:fd:9b:7f:4c:2a: 7b:cc:15:7f:83:17:94:1b:15:56:82:88:22:eb:ec: 7b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:A8:C7:01:68:80:78:66:D5:57:5B:51:DD:E0:50:69:7D:2B:9F:37 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:40:7a:54:74:c3:81:21:70:db:a7:52:f4:89:a3:e1:4a:60: 01:8a:fa:9c:bc:6e:59:b8:ea:2c:e0:dd:75:15:59:49:07:fa: 2d:8b:2a:9d:91:03:b8:b5:cb:60:5b:66:52:6f:a6:55:5b:16: c4:f7:bb:db:dc:59:63:fd:65:6f:5a:52:c1:c6:71:7f:43:55: e4:df:9d:cb:63:f9:68:4a:78:0d:02:a2:b7:f3:77:2d:fc:20: f0:af:03:a7:1b:fa:54:aa:d6:99:7c:93:1f:d1:1e:05:a2:af: cf:d0:e1:d4:ac:54:96:7a:3c:c8:6d:19:da:5b:d3:c4:c2:a3: a9:99:85:cc:17:ef:94:21:d7:97:b9:a8:0e:24:c1:43:90:5f: ea:cb:09:78:a5:f4:18:a8:2e:e2:23:33:8f:4f:f0:c4:d7:81: 77:5c:10:0b:02:e3:f5:1e:76:50:b5:5f:0c:80:c3:52:51:b1: a2:9c:3d:0e:0b:cd:6c:cd:dd:12:ea:7a:7d:2c:af:1c:c0:a6: db:e0:a9:74:5d:11:7d:55:ef:3e:c6:3f:e6:18:7e:96:11:03: 09:cc:a2:b2:82:f3:35:2c:bb:00:1d:10:4f:12:ce:03:ba:cd: f0:03:54:2e:a2:88:1b:a4:ba:14:ab:d8:52:85:81:e4:46:f2: 8e:06:1d:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDC4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwNzAyMTg1NjA4WhcNMjUwNzA5MTg1NjA4WjAYMRYwFAYD VQQDEw02ODY1ODBjOS03ZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQZ7Cg7p03FoM4vrhQXu5xn+fK2TGMA6NUer5k4PwInZjkhJcx7VtYw8+7Xd z198P6wx7tx30eKRMHtuNKeN8Kgexw85b8BXjgl1QrUlaZFX/0z0HDt14ZWZyP1U 5noFqD51u87ZJZ+25Gzh6SmIa5AoHFKEzfMEPVYLK5quBymSJb5olHQjgV/WwV3w s8Z5HN5mM56ivZQI+oU3QcfAeDYnFKDoKyqKwarnTxb21NM0Ne5HhVJjnwHE7Pl9 3spsh7SblWZMjhfM0nDuozsZEwFc24JvQF2P7DlIxPl3akhouZFgxddD9770/Zt/ TCp7zBV/gxeUGxVWgogi6+x7oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMWoxwFo gHhm1VdbUd3gUGl9K583MB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOQHpUdMOBIXDbp1L0iaPhSmABivqcvG5ZuOos4N11FVlJB/otiyqd kQO4tctgW2ZSb6ZVWxbE97vb3Flj/WVvWlLBxnF/Q1Xk353LY/loSngNAqK383ct /CDwrwOnG/pUqtaZfJMf0R4Foq/P0OHUrFSWejzIbRnaW9PEwqOpmYXMF++UIdeX uagOJMFDkF/qywl4pfQYqC7iIzOPT/DE14F3XBALAuP1HnZQtV8MgMNSUbGinD0O C81szd0S6np9LK8cwKbb4Kl0XRF9Ve8+xj/mGH6WEQMJzKKygvM1LLsAHRBPEs4D us3wA1QuoogbpLoUq9hShYHkRvKOBh06 -----END CERTIFICATE-----Generated at Thu Jul 3 18:08:06 2025 by rpki-client