$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: w9qx4hgTTGYBQTwXxtgm1Jcgrd5zEqAe274dYRNJLN0= Subject key identifier: 4E:72:E9:70:44:0F:FF:6D:C4:3B:02:38:FF:8C:E4:C5:33:36:10:46 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 34 Signing time: Sun 29 Jun 2025 06:42:59 +0000 Manifest this update: Sun 29 Jun 2025 06:42:59 +0000 Manifest next update: Sun 06 Jul 2025 06:42:59 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: PSNTdpxr6aIeD2JPBdwJq2vuvaf/WzbepO7Oj3kIiAw=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 06 Jul 2025 06:42:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Jun 29 06:42:59 2025 GMT Not After : Jul 6 06:42:59 2025 GMT Subject: CN=6860e073-736c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9c:67:3e:9b:8b:a0:d4:8e:a8:20:3b:33:77: 42:1b:93:17:ac:7a:61:70:df:34:77:ee:5d:5f:ec: 7b:1a:1c:7b:f4:9b:49:d0:6b:33:71:cf:e5:69:b5: ea:db:df:ef:96:18:82:96:9f:12:f2:26:21:b6:e5: 77:4b:78:b4:af:a1:91:f5:11:00:ab:92:b8:80:71: 41:96:1c:08:32:98:5d:7e:29:89:36:fe:b4:15:30: 92:42:b0:25:37:12:23:0b:ef:86:66:35:44:8a:a9: 37:d4:9f:5d:a3:e0:b7:fd:aa:d6:65:53:64:a0:97: 6c:16:52:12:ff:a9:d2:24:3e:d9:22:bb:56:9c:de: 98:20:82:0c:48:74:c2:ac:cc:00:8f:59:60:6b:56: 76:c8:8a:e6:25:59:85:9f:76:f5:04:54:ec:8b:01: 50:94:83:fa:8e:e2:af:e1:24:29:f8:c6:be:76:55: 25:c9:55:44:36:9d:f5:07:a7:7f:90:f5:20:77:c4: 8f:af:25:5e:af:ff:00:7a:75:67:23:e4:d0:1c:5f: ee:ee:6e:2a:f9:47:e6:eb:2a:83:8b:62:89:93:ee: 71:7a:9e:3c:a9:27:32:0c:32:02:08:90:8e:19:4a: b8:9e:7e:f5:7a:5c:ea:e3:d5:ce:5b:29:dd:91:55: 3a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:72:E9:70:44:0F:FF:6D:C4:3B:02:38:FF:8C:E4:C5:33:36:10:46 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:c5:f4:69:0f:e0:c8:ed:65:92:bc:57:02:ba:86:b3:97:de: 21:7d:ae:93:d3:71:ec:24:79:73:39:9b:d4:92:fd:34:9b:c2: 2c:4b:f6:3d:04:2a:29:c3:3f:85:2d:b7:41:a1:7a:46:5d:5e: 02:0c:66:6f:ec:69:66:1b:89:8b:cd:41:eb:bf:c9:59:12:fe: a8:0f:a3:5d:71:21:21:cf:2d:22:69:d6:73:f8:f9:23:73:ce: 6f:00:a1:b9:40:ee:bb:80:2b:ff:12:e6:91:ae:9d:c7:e1:90: 5d:37:dd:5d:b3:7d:f6:47:15:e7:1c:8e:a1:01:70:7e:86:c1: 68:0b:c8:81:ef:41:62:0d:ac:5b:71:8a:e3:41:f7:74:46:8f: e6:bd:22:d8:d8:f2:7e:4d:a7:f8:c2:78:00:7a:91:82:a7:b8: 56:92:99:a4:a4:64:6c:5d:38:28:d5:49:3b:84:08:73:f5:59: e6:4c:3e:38:99:d8:42:0e:2a:98:cd:a4:bf:98:62:2f:b4:46: 6b:6b:74:2c:d6:ca:9b:9c:d3:46:1c:c1:18:dd:da:96:31:aa: 1e:4f:5c:17:e4:27:93:a2:e1:15:67:36:b2:0f:69:51:26:be: 6f:d8:00:88:ff:5e:5d:46:cc:ff:88:c9:c8:b8:9e:82:b2:08: 21:3e:cb:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTA2MjkwNjQyNTlaFw0yNTA3MDYwNjQyNTlaMBgxFjAUBgNV BAMTDTY4NjBlMDczLTczNmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4nGc+m4ug1I6oIDszd0IbkxesemFw3zR37l1f7HsaHHv0m0nQazNxz+Vpterb 3++WGIKWnxLyJiG25XdLeLSvoZH1EQCrkriAcUGWHAgymF1+KYk2/rQVMJJCsCU3 EiML74ZmNUSKqTfUn12j4Lf9qtZlU2Sgl2wWUhL/qdIkPtkiu1ac3pggggxIdMKs zACPWWBrVnbIiuYlWYWfdvUEVOyLAVCUg/qO4q/hJCn4xr52VSXJVUQ2nfUHp3+Q 9SB3xI+vJV6v/wB6dWcj5NAcX+7ubir5R+brKoOLYomT7nF6njypJzIMMgIIkI4Z SriefvV6XOrj1c5bKd2RVTo/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTnLpcEQP /23EOwI4/4zkxTM2EEYwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADTF9GkP4MjtZZK8VwK6hrOX3iF9rpPTcewkeXM5m9SS/TSbwixL9j0E KinDP4Utt0GhekZdXgIMZm/saWYbiYvNQeu/yVkS/qgPo11xISHPLSJp1nP4+SNz zm8AoblA7ruAK/8S5pGuncfhkF033V2zffZHFeccjqEBcH6GwWgLyIHvQWINrFtx iuNB93RGj+a9ItjY8n5Np/jCeAB6kYKnuFaSmaSkZGxdOCjVSTuECHP1WeZMPjiZ 2EIOKpjNpL+YYi+0RmtrdCzWypuc00YcwRjd2pYxqh5PXBfkJ5Oi4RVnNrIPaVEm vm/YAIj/Xl1GzP+Iyci4noKyCCE+yy4= -----END CERTIFICATE-----Generated at Sun Jun 29 19:51:52 2025 by rpki-client