$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: a4jWZF8qMhXJ7wzdB9bqRA8YxAtc+/Xm9TdlJZPeh9w= Subject key identifier: 45:48:AA:5B:FD:61:86:16:5C:D4:2E:BB:60:CA:3D:1E:58:BB:95:08 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 0793 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 078D Signing time: Wed 02 Jul 2025 21:40:36 +0000 Manifest this update: Wed 02 Jul 2025 21:40:36 +0000 Manifest next update: Wed 09 Jul 2025 21:40:36 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: ytovRSU7Ou68bSe/7lhq18lnBikyBcqDhb8mYHxUiys=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 21:40:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1939 (0x793) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Jul 2 21:40:36 2025 GMT Not After : Jul 9 21:40:36 2025 GMT Subject: CN=6865a754-ced2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7f:2d:69:cb:a0:bd:d3:5e:21:35:5c:37:7b: f6:ff:48:8b:a2:c4:e3:24:8b:20:7b:0c:07:b3:95: 05:b6:f8:2f:8f:4b:95:15:7a:3f:9b:8a:00:c4:80: 87:95:94:bc:75:2e:03:d6:e2:8c:e4:dd:7d:ef:68: be:d8:6e:96:64:07:1c:de:2f:cf:ab:b5:47:b3:c5: 37:21:93:bb:1b:2a:cc:0f:17:14:4b:0d:12:df:c5: da:18:22:0c:9b:8c:fd:22:b5:07:54:3d:c7:9d:8e: e5:2c:bf:a9:59:0e:b5:53:f5:b9:13:7f:6b:67:aa: a7:02:21:85:11:72:af:cd:ac:9a:d9:1c:7c:fb:3c: db:39:d7:2b:40:6f:fe:bc:6a:7b:e8:ba:1b:4c:7c: 76:b6:09:c4:87:7c:10:10:ba:ac:e2:e5:9e:b3:a4: c2:ac:dd:f5:a4:c3:d7:c2:58:7f:ce:ce:14:2b:a5: dd:f6:a6:bc:bf:73:20:40:a4:93:5f:eb:7b:37:c9: c3:ae:0d:77:00:4a:00:41:e7:7d:8a:c8:2a:af:d9: 92:23:97:34:36:82:33:0b:e3:74:df:27:03:fd:34: 23:55:51:da:f7:14:c2:3f:56:84:52:48:f8:c4:5a: 71:8d:a3:b0:8a:8f:e3:a3:13:91:37:2e:3c:a7:41: 5b:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:48:AA:5B:FD:61:86:16:5C:D4:2E:BB:60:CA:3D:1E:58:BB:95:08 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:4a:a6:1e:97:bf:a5:73:d0:aa:20:09:5f:05:16:b4:e6:0c: d0:c4:52:e7:36:13:a5:a4:af:0d:f2:b0:4d:db:28:4d:68:f2: 33:71:5a:a0:1f:ae:37:c5:c8:ee:1a:60:80:99:7e:31:2f:f9: 8d:cb:53:2b:47:d5:b2:a1:09:34:75:c7:f4:95:03:52:c1:63: 43:3f:e3:92:87:b1:b7:60:e5:76:89:37:3c:e1:54:c8:f1:06: 5d:fd:80:19:dd:4e:6a:3b:0a:0b:d9:96:38:22:94:c9:5a:21: 09:d1:8a:ec:e2:85:a7:7f:f1:3a:53:6a:c8:74:4a:0d:e5:12: 15:8e:e6:06:7c:ef:5a:c1:f3:60:7c:29:3c:13:74:35:d1:26: a8:43:76:de:8c:cd:fd:d2:c9:70:cf:03:c3:3a:27:fc:62:8e: 2c:4b:ba:01:98:1b:d5:5c:67:b1:90:4d:59:4a:07:13:f0:3e: d9:9c:de:47:03:ea:39:be:86:6a:39:b1:f6:dc:40:89:9a:85: b4:3f:5c:2d:3a:f1:b1:44:22:ca:be:1e:ee:ae:4a:2b:92:1c: 8a:66:a5:62:77:97:18:2c:c9:b9:9c:97:d6:1c:a3:5b:9a:9a: b4:04:b9:4b:c1:0f:51:38:32:1f:b2:c6:3e:ac:b8:f9:70:54: 15:e7:f6:c0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwNzAyMjE0MDM2WhcNMjUwNzA5MjE0MDM2WjAYMRYwFAYD VQQDEw02ODY1YTc1NC1jZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz38tacugvdNeITVcN3v2/0iLosTjJIsgewwHs5UFtvgvj0uVFXo/m4oAxICH lZS8dS4D1uKM5N1972i+2G6WZAcc3i/Pq7VHs8U3IZO7GyrMDxcUSw0S38XaGCIM m4z9IrUHVD3HnY7lLL+pWQ61U/W5E39rZ6qnAiGFEXKvzaya2Rx8+zzbOdcrQG/+ vGp76LobTHx2tgnEh3wQELqs4uWes6TCrN31pMPXwlh/zs4UK6Xd9qa8v3MgQKST X+t7N8nDrg13AEoAQed9isgqr9mSI5c0NoIzC+N03ycD/TQjVVHa9xTCP1aEUkj4 xFpxjaOwio/joxORNy48p0FbjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEVIqlv9 YYYWXNQuu2DKPR5Yu5UIMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbSqYel7+lc9CqIAlfBRa05gzQxFLnNhOlpK8N8rBN2yhNaPIzcVqg H643xcjuGmCAmX4xL/mNy1MrR9WyoQk0dcf0lQNSwWNDP+OSh7G3YOV2iTc84VTI 8QZd/YAZ3U5qOwoL2ZY4IpTJWiEJ0Yrs4oWnf/E6U2rIdEoN5RIVjuYGfO9awfNg fCk8E3Q10SaoQ3bejM390slwzwPDOif8Yo4sS7oBmBvVXGexkE1ZSgcT8D7ZnN5H A+o5voZqObH23ECJmoW0P1wtOvGxRCLKvh7urkorkhyKZqVid5cYLMm5nJfWHKNb mpq0BLlLwQ9RODIfssY+rLj5cFQV5/bA -----END CERTIFICATE-----Generated at Thu Jul 3 09:10:15 2025 by rpki-client