$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: cwT4sH2HVavs8vD8M3PiIz6HT+deJ4E6mi0k3BUbVio= Subject key identifier: 31:88:60:33:3D:D6:20:20:7C:4D:CB:02:E8:B6:C0:DD:36:91:E4:B4 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11E9 Signing time: Fri 22 Aug 2025 17:17:35 +0000 Manifest this update: Fri 22 Aug 2025 17:17:35 +0000 Manifest next update: Fri 29 Aug 2025 17:17:35 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: A/TXfiC4NtEhhufNwOdlER4nj8YmhvCy020kM3WhJtM=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4596 (0x11f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Aug 22 17:17:35 2025 GMT Not After : Aug 29 17:17:35 2025 GMT Subject: CN=68a8a62f-7655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:7a:c6:45:ff:5b:86:c0:0c:6c:67:a0:18:6a: c3:1d:b5:20:53:cb:00:10:8c:21:94:69:9d:f1:25: 94:52:6b:d3:06:58:35:f1:b6:8e:42:4b:de:bc:c9: ba:25:d4:8c:7a:c3:52:58:6c:85:0c:b2:8d:06:7a: f4:bf:af:0a:c0:4a:43:2c:b8:01:55:05:3c:38:83: 21:f6:87:d3:f3:b2:01:fa:b2:cf:82:01:e0:48:15: 32:44:4d:63:04:82:d0:15:73:3c:7a:f3:94:72:55: 66:ba:d8:26:e2:3b:a3:15:5f:74:9d:f8:c1:7e:f3: 1d:2a:3d:ac:a2:b6:55:a2:f7:23:b5:e7:7b:af:55: 8b:92:2a:2a:ab:f1:e6:94:57:25:92:d6:c7:da:b4: a5:8b:22:f8:97:92:74:df:04:6b:20:70:bc:75:c3: 29:50:24:df:fe:7e:dc:d2:70:c3:15:06:d3:40:48: dc:3e:e9:10:a6:f9:8b:d3:fd:18:f5:2a:a6:6c:89: c4:54:a7:67:8a:94:2b:5f:a3:dc:b7:cc:74:ca:c4: a7:d5:b3:d4:ad:b6:04:a0:c2:3a:3e:4d:bd:73:06: 04:6c:98:a8:8b:5a:89:ab:5c:06:83:c8:16:29:16: ca:3a:21:50:20:ae:5c:04:d7:b8:e2:e6:e3:83:1a: 2f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:88:60:33:3D:D6:20:20:7C:4D:CB:02:E8:B6:C0:DD:36:91:E4:B4 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:da:ab:01:95:6c:5d:96:dd:af:6d:b1:a5:21:de:76:7d:0b: 5b:58:cf:29:2b:e4:89:a0:14:94:69:31:30:a7:db:44:7d:54: b5:a5:19:7c:86:6a:a6:cf:20:b0:a7:c2:e8:de:99:a8:19:fa: b5:6f:d6:e2:b8:26:f4:fa:6b:ff:ef:ef:79:11:88:a4:7a:34: e5:4d:49:99:54:cf:dc:e2:2e:a6:c8:21:d0:be:d7:7c:1f:41: 95:d3:00:04:1e:8a:b7:15:f8:2c:a6:eb:ee:d2:b8:da:c0:cb: 0c:bf:6a:84:0e:3c:0d:8f:2a:a2:ac:01:c7:c3:dc:3e:23:52: 9c:c4:b7:e2:41:7a:07:c5:79:89:a4:1c:72:24:82:15:a1:2e: f9:e0:02:1e:31:ee:6a:1e:ed:40:c7:19:23:8d:55:ad:93:54: 9b:d1:55:1f:1e:2b:ee:ea:d5:64:19:7f:8c:db:ea:3b:88:cc: 06:c3:6d:1d:6b:f2:55:68:3b:27:36:55:4e:a9:65:bc:98:d8: 3b:0d:b8:1e:2e:bc:83:a7:60:d9:01:37:c7:cb:66:d6:27:f1: 82:50:d3:a6:bd:d2:f4:32:a8:80:89:38:b1:21:29:17:de:72: e5:ab:d7:49:4e:85:03:38:79:36:b9:74:a0:e9:5d:a4:10:24: 72:70:64:08 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwODIyMTcxNzM1WhcNMjUwODI5MTcxNzM1WjAYMRYwFAYD VQQDEw02OGE4YTYyZi03NjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4HrGRf9bhsAMbGegGGrDHbUgU8sAEIwhlGmd8SWUUmvTBlg18baOQkvevMm6 JdSMesNSWGyFDLKNBnr0v68KwEpDLLgBVQU8OIMh9ofT87IB+rLPggHgSBUyRE1j BILQFXM8evOUclVmutgm4jujFV90nfjBfvMdKj2sorZVovcjted7r1WLkioqq/Hm lFclktbH2rSliyL4l5J03wRrIHC8dcMpUCTf/n7c0nDDFQbTQEjcPukQpvmL0/0Y 9SqmbInEVKdnipQrX6Pct8x0ysSn1bPUrbYEoMI6Pk29cwYEbJioi1qJq1wGg8gW KRbKOiFQIK5cBNe44ubjgxovMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDGIYDM9 1iAgfE3LAui2wN02keS0MB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv2qsBlWxdlt2vbbGlId52fQtbWM8pK+SJoBSUaTEwp9tEfVS1pRl8 hmqmzyCwp8Lo3pmoGfq1b9biuCb0+mv/7+95EYikejTlTUmZVM/c4i6myCHQvtd8 H0GV0wAEHoq3Ffgspuvu0rjawMsMv2qEDjwNjyqirAHHw9w+I1KcxLfiQXoHxXmJ pBxyJIIVoS754AIeMe5qHu1AxxkjjVWtk1Sb0VUfHivu6tVkGX+M2+o7iMwGw20d a/JVaDsnNlVOqWW8mNg7DbgeLryDp2DZATfHy2bWJ/GCUNOmvdL0MqiAiTixISkX 3nLlq9dJToUDOHk2uXSg6V2kECRycGQI -----END CERTIFICATE-----Generated at Sun Aug 24 00:19:26 2025 by rpki-client