$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: uFJAapv/w+kbTGe2wo+zFpQc5fglTnfrYdlBKWMoQvs= Subject key identifier: 00:61:72:50:EC:BA:06:D2:81:9B:64:03:F3:71:9D:6C:7B:FD:FD:7A Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0148 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0144 Signing time: Sat 23 Aug 2025 04:31:22 +0000 Manifest this update: Sat 23 Aug 2025 04:31:21 +0000 Manifest next update: Sat 30 Aug 2025 04:31:21 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: sfk+0p7ZpbnryXLe7NceotUrh6FYunLJymbHfDDk7qs=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 328 (0x148) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Aug 23 04:31:21 2025 GMT Not After : Aug 30 04:31:21 2025 GMT Subject: CN=68a94419-f78c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1b:6a:63:2a:cb:ec:c8:6c:83:82:e5:06:f3: a3:ad:07:0b:ff:27:ec:0d:1e:79:67:a2:01:92:8f: 7c:3c:f4:63:8d:56:41:be:67:3e:61:63:95:a9:e7: d7:d9:5c:f4:16:7a:ac:56:ea:bf:30:7c:df:09:57: 33:49:95:0d:85:e9:3d:4f:86:d1:51:c2:b5:88:08: 3f:e6:ff:a4:6b:8c:ba:b8:da:12:4a:8f:9d:18:82: da:b2:b1:65:ba:67:b5:3f:7c:82:62:26:94:a5:cd: 30:d1:c2:44:22:64:cf:6a:19:6c:a5:30:92:3c:3c: 5e:e2:27:b1:83:94:60:bf:a1:66:14:81:df:34:b0: e0:e2:82:59:0e:1c:69:c0:ee:84:74:7f:a7:c9:cd: 6c:98:8a:80:03:4b:c9:c5:ac:c9:ba:e2:c5:71:02: b6:fa:eb:90:9f:1d:4d:20:96:ee:8e:5d:dc:b0:74: e5:8e:e3:87:fc:e6:83:1c:ca:71:ff:b5:af:c5:63: b8:cd:22:db:66:19:76:ec:3a:6b:3e:46:a0:6d:50: e7:52:9a:92:98:30:1d:5a:f7:df:da:89:67:5b:11: e0:1e:2a:12:5c:a1:99:44:4a:95:a2:ee:2f:19:d0: 8e:17:dc:c9:ee:94:54:da:26:f4:c2:81:44:28:70: cb:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:61:72:50:EC:BA:06:D2:81:9B:64:03:F3:71:9D:6C:7B:FD:FD:7A X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:0f:8e:9f:55:3e:1f:22:13:9f:1b:c2:6b:62:7d:3e:ac:86: d7:d8:34:44:6c:98:e8:ec:e4:fb:69:96:fe:ee:c7:99:93:06: cf:17:18:23:c0:a5:df:79:81:d9:db:1f:dc:bb:39:d0:62:15: 4c:7f:e6:15:81:59:c4:ec:af:48:84:21:58:35:74:7c:fe:3c: cb:81:c9:0d:d5:66:31:79:a4:6d:ef:c7:a4:97:74:f9:e2:0f: 77:df:a5:1b:68:b4:c1:8a:d7:23:78:a2:19:bd:77:f7:b2:f6: 1e:27:04:8a:21:fd:71:d1:b6:c2:3c:93:96:81:6b:3e:07:02: 03:2d:11:eb:ee:b4:44:8b:31:3b:d6:bb:92:92:9b:39:0c:10: e6:62:09:e0:d9:ef:e1:14:e8:f3:97:f3:45:dc:4b:90:5d:7b: 52:a4:3c:df:98:96:22:6f:80:90:57:c4:73:da:f9:c9:e3:5a: 3e:39:96:fc:fa:1c:5c:08:fa:2c:d6:46:22:ee:6b:d1:36:68: 4c:ca:d9:b2:34:24:4a:9f:09:3b:e7:1a:7d:75:4d:36:a2:e7: 30:1a:eb:89:bb:6a:53:50:c0:1d:08:f9:9e:5d:2c:d3:8a:57: e7:3f:a3:c2:6f:e8:c8:60:72:86:d6:4f:e0:14:fb:fb:0a:0a: 16:a3:be:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwODIzMDQzMTIxWhcNMjUwODMwMDQzMTIxWjAYMRYwFAYD VQQDEw02OGE5NDQxOS1mNzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBtqYyrL7Mhsg4LlBvOjrQcL/yfsDR55Z6IBko98PPRjjVZBvmc+YWOVqefX 2Vz0FnqsVuq/MHzfCVczSZUNhek9T4bRUcK1iAg/5v+ka4y6uNoSSo+dGILasrFl ume1P3yCYiaUpc0w0cJEImTPahlspTCSPDxe4iexg5Rgv6FmFIHfNLDg4oJZDhxp wO6EdH+nyc1smIqAA0vJxazJuuLFcQK2+uuQnx1NIJbujl3csHTljuOH/OaDHMpx /7WvxWO4zSLbZhl27DprPkagbVDnUpqSmDAdWvff2olnWxHgHioSXKGZREqVou4v GdCOF9zJ7pRU2ib0woFEKHDLVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFABhclDs ugbSgZtkA/NxnWx7/f16MB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCD46fVT4fIhOfG8JrYn0+rIbX2DREbJjo7OT7aZb+7seZkwbPFxgj wKXfeYHZ2x/cuznQYhVMf+YVgVnE7K9IhCFYNXR8/jzLgckN1WYxeaRt78ekl3T5 4g9336UbaLTBitcjeKIZvXf3svYeJwSKIf1x0bbCPJOWgWs+BwIDLRHr7rREizE7 1ruSkps5DBDmYgng2e/hFOjzl/NF3EuQXXtSpDzfmJYib4CQV8Rz2vnJ41o+OZb8 +hxcCPos1kYi7mvRNmhMytmyNCRKnwk75xp9dU02oucwGuuJu2pTUMAdCPmeXSzT ilfnP6PCb+jIYHKG1k/gFPv7CgoWo76d -----END CERTIFICATE-----Generated at Sun Aug 24 00:47:16 2025 by rpki-client