$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: I5L9urshI785aCEe3DJvR1Z1Up5AxjvS+FH6hac/Q20= Subject key identifier: B3:42:B5:B5:F8:B3:36:B8:FB:C4:7B:04:81:E8:33:5B:D7:62:E1:1D Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: A4 Signing time: Sat 23 Aug 2025 06:26:30 +0000 Manifest this update: Sat 23 Aug 2025 06:26:29 +0000 Manifest next update: Sat 30 Aug 2025 06:26:29 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: sFhl1pmcHjTgTK6xkLBdTG0rWUjvWZ8QFC9s++x06/k=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:26:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Aug 23 06:26:29 2025 GMT Not After : Aug 30 06:26:29 2025 GMT Subject: CN=68a95f15-53c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a9:05:13:1f:c3:d4:10:95:03:5a:50:24:35: da:65:34:da:b0:5a:75:84:5a:c4:4e:63:f2:fd:b3: 0c:6e:0f:60:41:46:30:ec:a7:fc:24:2d:74:9b:ac: f8:0a:6b:b2:89:28:9d:5d:05:fd:95:ea:27:76:37: d5:4a:62:40:29:56:ed:c9:01:aa:c7:7b:3b:bb:46: cc:87:83:7e:ee:e3:4d:a8:63:82:c7:1d:57:77:a9: 0f:b1:af:f3:3f:8c:58:22:93:27:fa:86:d3:6c:54: ee:4b:82:ca:22:dc:c8:81:3d:f1:48:05:bd:3a:a7: 54:8a:be:4c:d7:91:b1:66:75:e9:99:36:5a:5e:bb: e8:a0:2b:c8:da:06:e0:b1:e0:04:cb:2b:44:40:6c: 4e:02:24:8c:78:ee:a2:e3:a4:f6:44:6c:ff:31:67: 42:3b:ae:6b:81:56:50:d5:71:16:95:9e:3b:35:d3: a5:71:8f:3d:b5:f2:d6:df:ce:97:92:e2:31:d8:56: 01:ad:c6:4f:cd:3e:6d:c5:32:ba:03:2b:7b:0f:f3: 61:c6:75:01:cb:20:de:5d:73:88:ad:0a:fc:8d:e4: 70:9e:14:0c:77:8b:11:99:2c:24:e7:29:ff:f0:cd: ec:8c:dc:24:68:cb:aa:af:5c:1b:09:76:7d:73:3d: a9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:42:B5:B5:F8:B3:36:B8:FB:C4:7B:04:81:E8:33:5B:D7:62:E1:1D X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:b3:09:84:83:9d:ce:fd:7a:59:a7:79:c7:a6:f1:ca:d5:e9: cf:dd:dd:8b:27:cd:8a:3c:ad:97:6b:9a:14:4a:c3:25:cc:ad: 98:e9:bc:50:7b:6a:b1:93:3b:ae:84:36:5b:8e:b4:8f:97:b1: 9f:94:f5:ce:6a:e9:c5:bd:31:0e:5a:66:45:17:23:00:b6:dd: c7:70:56:bf:05:e4:17:d5:ce:b8:d7:55:39:5f:04:a2:28:e1: a0:1f:f7:78:80:7e:3a:54:6e:bb:20:98:d2:5e:9b:ab:5a:d2: a7:bf:08:0f:88:26:87:02:76:3f:80:a8:90:ad:55:40:39:32: 39:74:de:a0:30:08:8f:e0:a4:6e:42:a4:9a:2c:cd:32:ba:72: c9:bc:16:02:14:98:0f:eb:4a:b1:fe:23:e5:08:30:88:f0:1c: 98:2b:d6:e4:01:91:76:e2:b6:fa:15:2f:1a:58:c6:6e:35:ea: be:7c:27:d2:21:ed:cf:43:88:d5:0b:05:af:39:f1:70:18:4a: 58:55:47:6e:9d:56:5c:37:d8:93:20:79:d2:87:03:e7:b1:d0: 60:ed:99:64:83:9a:c9:90:fe:ef:08:50:01:2c:28:5d:db:8c: 6e:34:f7:f8:92:63:f5:56:8f:e5:9e:27:2f:73:f5:2f:c3:c0: 3d:19:89:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUwODIzMDYyNjI5WhcNMjUwODMwMDYyNjI5WjAYMRYwFAYD VQQDEw02OGE5NWYxNS01M2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0akFEx/D1BCVA1pQJDXaZTTasFp1hFrETmPy/bMMbg9gQUYw7Kf8JC10m6z4 CmuyiSidXQX9leondjfVSmJAKVbtyQGqx3s7u0bMh4N+7uNNqGOCxx1Xd6kPsa/z P4xYIpMn+obTbFTuS4LKItzIgT3xSAW9OqdUir5M15GxZnXpmTZaXrvooCvI2gbg seAEyytEQGxOAiSMeO6i46T2RGz/MWdCO65rgVZQ1XEWlZ47NdOlcY89tfLW386X kuIx2FYBrcZPzT5txTK6Ayt7D/NhxnUByyDeXXOIrQr8jeRwnhQMd4sRmSwk5yn/ 8M3sjNwkaMuqr1wbCXZ9cz2pHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNCtbX4 sza4+8R7BIHoM1vXYuEdMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7swmEg53O/XpZp3nHpvHK1enP3d2LJ82KPK2Xa5oUSsMlzK2Y6bxQ e2qxkzuuhDZbjrSPl7GflPXOaunFvTEOWmZFFyMAtt3HcFa/BeQX1c6411U5XwSi KOGgH/d4gH46VG67IJjSXpurWtKnvwgPiCaHAnY/gKiQrVVAOTI5dN6gMAiP4KRu QqSaLM0yunLJvBYCFJgP60qx/iPlCDCI8ByYK9bkAZF24rb6FS8aWMZuNeq+fCfS Ie3PQ4jVCwWvOfFwGEpYVUdunVZcN9iTIHnShwPnsdBg7Zlkg5rJkP7vCFABLChd 24xuNPf4kmP1Vo/lnicvc/Uvw8A9GYnw -----END CERTIFICATE-----Generated at Sat Aug 23 19:09:51 2025 by rpki-client