$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: CHJW7cT2xnoHw/rnNhVry6/zaONcFIorTCdkI9icr3E= Subject key identifier: 78:94:A3:BF:B6:7D:F2:8E:23:89:60:52:71:1F:DE:5A:81:30:05:6C Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0714 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 070B Signing time: Fri 22 Aug 2025 22:01:22 +0000 Manifest this update: Fri 22 Aug 2025 22:01:22 +0000 Manifest next update: Fri 29 Aug 2025 22:01:22 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: aSkO50Su55x2zHSyv7J2Q4x0grRLOtEkjqbunyRG6Ws=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1812 (0x714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Aug 22 22:01:22 2025 GMT Not After : Aug 29 22:01:22 2025 GMT Subject: CN=68a8e8b2-c938 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:07:88:34:c2:3e:5a:2e:3a:06:fd:35:19:bd: 83:c1:22:9e:18:b5:7d:d8:d5:e0:8e:1c:d8:3c:90: af:cc:68:7a:a5:b2:b9:35:3f:7e:4b:d9:57:2b:11: e5:0e:63:de:e5:9a:31:d5:d4:84:f8:2f:8b:da:33: 50:10:31:79:82:63:bc:58:3d:4a:0f:09:2b:1f:3c: 1b:e9:c5:43:a4:7a:27:61:fc:f3:90:c7:a7:78:c7: f3:d0:8f:51:c4:9b:dd:fe:53:73:f8:08:6a:6c:05: 6c:2f:9b:46:63:d5:c4:56:1c:86:3f:ee:18:13:84: 3b:15:45:6a:08:b4:6f:09:fd:56:5b:91:c4:48:d1: 9c:7b:c7:da:c8:d8:e2:b3:18:a0:6d:e4:fe:45:2b: 83:6d:09:e0:2e:d8:1f:ff:69:12:95:52:51:69:88: 7c:9a:3c:87:77:9c:84:00:ce:3d:c9:aa:1b:30:7d: 33:a9:2e:22:43:5b:a3:0c:1c:59:b2:c3:4f:7e:c4: 6b:f0:be:f4:7a:25:b2:e4:99:b7:e8:f2:1b:40:01: 03:28:67:ae:a0:ad:e1:d2:c9:e9:b9:45:a8:bb:70: 32:ad:8a:51:2a:c0:25:ae:90:08:60:29:f3:00:2e: 5c:46:db:94:38:c9:fd:5d:4d:00:60:4d:7b:c0:95: a1:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:94:A3:BF:B6:7D:F2:8E:23:89:60:52:71:1F:DE:5A:81:30:05:6C X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:02:7a:95:7b:64:3e:f4:20:58:17:b0:09:97:36:b7:14:8e: c1:41:2a:c2:35:c3:aa:02:8f:6a:52:d8:95:2a:70:1c:15:e5: 3f:49:2b:35:85:1d:3e:73:4c:3a:10:39:b6:37:28:18:a5:91: 7f:d7:c2:95:8e:42:0e:b7:c1:ca:ba:e1:68:3d:8f:ed:0c:29: 95:ef:e7:db:73:ad:d3:83:b4:8a:46:61:f6:c3:37:1a:4f:77: a2:c2:08:49:05:0f:80:0d:7d:c5:18:04:55:0d:8c:2f:f1:2a: ff:40:31:04:82:06:b7:90:57:ac:d9:5d:a2:38:cb:d9:37:3e: 94:9a:70:e8:19:80:08:4b:42:10:b6:3f:3b:6f:ab:60:07:1b: 33:ee:f6:f7:dc:bf:17:7c:dc:9e:15:b7:d7:a9:ff:c1:dc:f4: 78:29:ba:3f:45:ab:13:20:51:c5:78:d3:53:aa:0e:b8:61:cb: ef:f5:93:da:58:d3:d4:90:95:5a:63:12:f6:7e:7c:14:c1:34: 61:b7:b4:96:3a:a1:95:cd:e5:c4:bc:17:57:e2:e3:43:fb:d9: 2f:fb:14:44:56:75:d4:6b:a0:9f:ce:e6:25:e2:5a:4e:3f:2e: 6e:da:13:e8:e8:ce:6e:ee:d6:2a:83:de:d6:d9:6a:75:5f:00: 72:59:cf:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwODIyMjIwMTIyWhcNMjUwODI5MjIwMTIyWjAYMRYwFAYD VQQDEw02OGE4ZThiMi1jOTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQeINMI+Wi46Bv01Gb2DwSKeGLV92NXgjhzYPJCvzGh6pbK5NT9+S9lXKxHl DmPe5Zox1dSE+C+L2jNQEDF5gmO8WD1KDwkrHzwb6cVDpHonYfzzkMeneMfz0I9R xJvd/lNz+AhqbAVsL5tGY9XEVhyGP+4YE4Q7FUVqCLRvCf1WW5HESNGce8fayNji sxigbeT+RSuDbQngLtgf/2kSlVJRaYh8mjyHd5yEAM49yaobMH0zqS4iQ1ujDBxZ ssNPfsRr8L70eiWy5Jm36PIbQAEDKGeuoK3h0snpuUWou3AyrYpRKsAlrpAIYCnz AC5cRtuUOMn9XU0AYE17wJWh/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiUo7+2 ffKOI4lgUnEf3lqBMAVsMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQAnqVe2Q+9CBYF7AJlza3FI7BQSrCNcOqAo9qUtiVKnAcFeU/SSs1 hR0+c0w6EDm2NygYpZF/18KVjkIOt8HKuuFoPY/tDCmV7+fbc63Tg7SKRmH2wzca T3eiwghJBQ+ADX3FGARVDYwv8Sr/QDEEgga3kFes2V2iOMvZNz6UmnDoGYAIS0IQ tj87b6tgBxsz7vb33L8XfNyeFbfXqf/B3PR4Kbo/RasTIFHFeNNTqg64Ycvv9ZPa WNPUkJVaYxL2fnwUwTRht7SWOqGVzeXEvBdX4uND+9kv+xREVnXUa6CfzuYl4lpO Py5u2hPo6M5u7tYqg97W2Wp1XwByWc8G -----END CERTIFICATE-----Generated at Sat Aug 23 19:11:07 2025 by rpki-client