$ rpki-client -vvf rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft File: kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft (raw, json) Hash identifier: 99QHD9v34qLQC1b0HbcaTfxcTcPs3plTYejg3xlf6yQ= Subject key identifier: 1E:A3:25:74:20:89:FC:7D:67:CA:4F:34:61:78:57:4F:6D:12:AD:1B Authority key identifier: 90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 Certificate issuer: /CN=A91A014A/serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Certificate serial: 0201 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft Manifest number: 01FD Signing time: Sat 23 Aug 2025 02:31:10 +0000 Manifest this update: Sat 23 Aug 2025 02:31:09 +0000 Manifest next update: Sat 30 Aug 2025 02:31:09 +0000 Files and hashes: 1: kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl (hash: Y7wxpGroywoUZLuIk6ZXeVKWYxokkwVLqgd948hh4Jk=) 2: 203FA37E750611ED95126872C4F9AE02.roa (hash: dipdNfnJaJs6s5CVnvO1Wlubse6AOUfgpacGaixKSoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:31:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A014A, serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Validity Not Before: Aug 23 02:31:09 2025 GMT Not After : Aug 30 02:31:09 2025 GMT Subject: CN=68a927ed-e6f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:0f:64:4f:42:55:8e:6e:d6:88:09:6f:16: 7b:1d:c0:15:ff:52:d4:e1:8f:43:01:f4:28:64:f3: e1:a0:47:23:9c:18:c3:cc:ad:0c:26:a6:89:aa:ca: eb:dc:e4:b7:b6:9b:84:aa:20:b7:8c:2c:24:2f:38: 71:9a:62:58:7d:8d:a0:31:c3:66:9e:e5:7f:fd:b5: f1:00:7b:21:c7:10:3f:69:7a:2f:42:f5:e6:f5:38: 1c:82:4e:50:2d:54:4b:5a:1c:7f:03:62:1f:e8:17: 5b:cc:9a:c2:00:c7:5c:20:b6:51:c2:f2:81:0c:13: 5d:43:76:d1:bd:0a:ec:a8:13:06:8d:97:d0:ac:e5: ac:21:a8:1d:4c:ac:53:6b:92:57:ba:03:43:92:f9: b3:8c:0d:c1:d9:2b:95:f9:5e:df:6d:29:d8:42:16: 87:c4:cf:2b:80:f0:07:28:bd:ad:62:9b:71:54:b4: 7c:9c:f1:b9:5d:fe:e5:e7:60:9b:01:5f:a3:aa:0f: a5:8a:97:bc:f9:5b:26:33:88:06:ad:59:a6:7f:f4: b6:42:7c:93:aa:c1:07:94:67:18:65:71:22:44:2e: b1:bc:bf:c4:a9:bd:ec:3b:1a:57:2c:16:be:64:6c: 29:fc:1a:10:78:c7:04:9d:5b:d4:fc:9b:e7:e5:7d: b5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A3:25:74:20:89:FC:7D:67:CA:4F:34:61:78:57:4F:6D:12:AD:1B X509v3 Authority Key Identifier: keyid:90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:cd:76:b8:cf:8d:61:8f:44:7a:a0:d4:92:aa:76:4b:b4:18: 2f:1d:92:0a:9c:92:ed:a4:b3:c0:c7:52:35:a5:53:34:60:79: a4:5d:96:0f:35:5a:08:20:59:f8:ca:6a:02:a9:c6:78:8d:1c: b1:44:43:60:0a:33:17:b4:15:ad:3b:d3:8d:56:37:97:e0:58: e7:04:b9:81:cc:3f:d9:c9:53:64:72:a0:0e:89:31:d2:ee:d6: 5e:00:ee:b0:f3:9d:59:5a:a6:99:81:d5:05:53:f8:79:52:6c: fe:83:1f:e4:f0:3f:de:4a:28:34:20:bd:32:43:93:1a:34:76: 14:24:fe:3b:10:6e:18:49:85:70:33:68:82:d3:7e:30:7e:70: b7:e9:88:21:b5:2e:2d:d5:72:4e:27:52:71:53:ad:b1:2e:3f: 10:39:68:8b:4b:38:dc:be:4f:12:06:47:6f:c5:af:94:8a:a4: fb:fe:c6:2a:a3:69:9e:bc:67:45:5e:ee:56:1d:11:42:a1:26: 0f:b7:65:6e:6b:bc:66:20:65:8a:f7:04:4e:68:4a:65:65:a0: 10:10:ac:6a:a3:9d:79:84:f2:f3:61:67:25:5c:de:aa:ba:49: de:83:88:a8:3f:1f:45:b3:b3:e4:b5:e4:0f:e3:db:cb:50:3f: 68:fd:26:fc -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAxNEExMTAvBgNVBAUTKDkwQkQxREYxM0E5OTFDMzFGMTE4NEQ1MTFBRjMwMzE2 RkMwMDIxMDIwHhcNMjUwODIzMDIzMTA5WhcNMjUwODMwMDIzMTA5WjAYMRYwFAYD VQQDEw02OGE5MjdlZC1lNmY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfcPZE9CVY5u1ogJbxZ7HcAV/1LU4Y9DAfQoZPPhoEcjnBjDzK0MJqaJqsrr 3OS3tpuEqiC3jCwkLzhxmmJYfY2gMcNmnuV//bXxAHshxxA/aXovQvXm9Tgcgk5Q LVRLWhx/A2If6BdbzJrCAMdcILZRwvKBDBNdQ3bRvQrsqBMGjZfQrOWsIagdTKxT a5JXugNDkvmzjA3B2SuV+V7fbSnYQhaHxM8rgPAHKL2tYptxVLR8nPG5Xf7l52Cb AV+jqg+lipe8+VsmM4gGrVmmf/S2QnyTqsEHlGcYZXEiRC6xvL/Eqb3sOxpXLBa+ ZGwp/BoQeMcEnVvU/Jvn5X21yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB6jJXQg ifx9Z8pPNGF4V09tEq0bMB8GA1UdIwQYMBaAFJC9HfE6mRwx8RhNURrzAxb8ACEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDE0QS9DQzA3REFCNjc0 RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhESHhHRTFSR3ZNREZ2d0FJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMMGQ4VHFaSERIeEdFMVJHdk1ERnZ3QUlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDE0QS9DQzA3REFCNjc0RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhE SHhHRTFSR3ZNREZ2d0FJUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCizXa4z41hj0R6oNSSqnZLtBgvHZIKnJLtpLPAx1I1pVM0YHmkXZYP NVoIIFn4ymoCqcZ4jRyxRENgCjMXtBWtO9ONVjeX4FjnBLmBzD/ZyVNkcqAOiTHS 7tZeAO6w851ZWqaZgdUFU/h5Umz+gx/k8D/eSig0IL0yQ5MaNHYUJP47EG4YSYVw M2iC034wfnC36YghtS4t1XJOJ1JxU62xLj8QOWiLSzjcvk8SBkdvxa+UiqT7/sYq o2mevGdFXu5WHRFCoSYPt2Vua7xmIGWK9wROaEplZaAQEKxqo515hPLzYWclXN6q ukneg4ioPx9Fs7PkteQP49vLUD9o/Sb8 -----END CERTIFICATE-----Generated at Sat Aug 23 16:11:01 2025 by rpki-client