$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: kzeROwieIGAj76xLoImqdJ4kCTV0WECbdnB54gd6G38= Subject key identifier: 51:92:6B:95:55:09:AC:76:DD:E2:30:8A:62:04:0D:2D:29:5E:1C:2E Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 89 Signing time: Tue 01 Jul 2025 07:15:56 +0000 Manifest this update: Tue 01 Jul 2025 07:15:55 +0000 Manifest next update: Tue 08 Jul 2025 07:15:55 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: PiDYfR/AxgY4656hM+3KE/tCiSR9/A6O1asw2DAJ4BU=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:15:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 138 (0x8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Jul 1 07:15:55 2025 GMT Not After : Jul 8 07:15:55 2025 GMT Subject: CN=68638b2b-f5ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:23:e7:52:32:7f:11:59:92:2f:8a:9e:41:3f: 08:79:8c:ed:8d:d2:73:b1:9a:fa:26:f2:ae:03:78: 15:10:d0:e0:f7:7f:f9:0d:3d:97:78:c4:c7:9b:9c: b1:a3:ea:a8:bc:b8:21:55:9f:23:20:3b:28:c7:fb: 40:c0:4d:6b:30:ba:20:b9:a7:7f:62:14:2d:d4:4f: 45:8c:b5:d7:61:74:3f:d4:29:2d:bb:a2:42:9b:6e: f5:c8:87:47:bd:51:cb:8a:fe:64:5b:9e:e9:6c:4c: 55:0d:46:6a:ea:79:cb:0d:43:bd:b5:50:42:88:0a: ed:e3:de:1d:3e:37:51:8c:86:34:12:d6:5c:a7:78: e0:c9:3c:4e:2e:d6:7c:a1:c8:f6:fa:7d:3c:e2:d2: 3f:33:6a:d7:e4:90:81:8e:6e:12:13:c0:24:9d:68: 6a:0b:3a:3d:fb:69:71:05:7c:0d:ea:94:95:27:cd: 84:0a:e1:32:1a:ae:35:28:fa:c4:f0:4c:30:91:cc: 31:38:92:57:21:8b:98:ac:e6:30:39:89:70:32:55: 18:5f:16:cd:a1:a1:4e:46:89:0f:31:78:28:9e:25: 78:c3:0a:8c:53:27:ff:d1:10:b0:90:2b:e2:55:95: d8:73:ac:06:c4:17:88:4e:99:88:ad:bb:34:22:28: 02:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:92:6B:95:55:09:AC:76:DD:E2:30:8A:62:04:0D:2D:29:5E:1C:2E X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:fa:49:4f:96:e6:36:91:b3:f5:e5:f2:07:40:a8:1b:d7:70: da:e3:7e:71:10:ce:cc:42:c4:14:49:ea:bf:af:b2:44:9c:99: aa:ed:f2:e9:b3:bf:87:be:2b:c9:b6:d4:f2:8e:01:bf:0c:c0: 53:99:34:43:ae:cc:e0:cc:e0:8e:06:b9:d9:bb:19:5d:e3:57: f9:1c:73:d0:81:5e:80:bf:40:5a:3c:9e:c9:44:8b:2a:02:6d: 5d:c3:92:b3:ba:bb:02:b8:7f:c8:11:c1:20:69:4d:91:33:a6: 3c:c3:80:90:97:12:4e:32:1c:26:1d:8c:79:96:b1:38:46:b5: 03:06:06:67:ea:3a:bf:e6:a3:56:7f:4b:48:da:1f:b5:e4:a8: df:9a:7b:4a:08:3f:da:c5:5e:35:30:93:7e:82:a6:9c:d2:09: 8e:89:12:3e:e8:37:8b:e4:14:87:3e:7a:0d:b5:ba:65:25:20: bd:76:ca:78:41:94:eb:12:35:98:b7:eb:9f:8f:82:b4:c8:b0: 8d:dd:90:cf:60:33:a0:15:12:16:ce:02:15:62:a6:89:79:00: 8c:eb:e6:6d:eb:77:4f:c8:81:e5:ee:e4:02:f0:21:82:db:1c: 03:7c:22:2f:c6:c8:27:8d:59:2a:e5:2d:ee:3a:74:c3:fa:be: 0e:9b:b3:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUwNzAxMDcxNTU1WhcNMjUwNzA4MDcxNTU1WjAYMRYwFAYD VQQDEw02ODYzOGIyYi1mNWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yPnUjJ/EVmSL4qeQT8IeYztjdJzsZr6JvKuA3gVENDg93/5DT2XeMTHm5yx o+qovLghVZ8jIDsox/tAwE1rMLoguad/YhQt1E9FjLXXYXQ/1Cktu6JCm271yIdH vVHLiv5kW57pbExVDUZq6nnLDUO9tVBCiArt494dPjdRjIY0EtZcp3jgyTxOLtZ8 ocj2+n084tI/M2rX5JCBjm4SE8AknWhqCzo9+2lxBXwN6pSVJ82ECuEyGq41KPrE 8EwwkcwxOJJXIYuYrOYwOYlwMlUYXxbNoaFORokPMXgoniV4wwqMUyf/0RCwkCvi VZXYc6wGxBeITpmIrbs0IigCAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFGSa5VV Cax23eIwimIEDS0pXhwuMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCt+klPluY2kbP15fIHQKgb13Da435xEM7MQsQUSeq/r7JEnJmq7fLp s7+HvivJttTyjgG/DMBTmTRDrszgzOCOBrnZuxld41f5HHPQgV6Av0BaPJ7JRIsq Am1dw5KzursCuH/IEcEgaU2RM6Y8w4CQlxJOMhwmHYx5lrE4RrUDBgZn6jq/5qNW f0tI2h+15KjfmntKCD/axV41MJN+gqac0gmOiRI+6DeL5BSHPnoNtbplJSC9dsp4 QZTrEjWYt+ufj4K0yLCN3ZDPYDOgFRIWzgIVYqaJeQCM6+Zt63dPyIHl7uQC8CGC 2xwDfCIvxsgnjVkq5S3uOnTD+r4Om7M/ -----END CERTIFICATE-----Generated at Wed Jul 2 22:38:53 2025 by rpki-client