$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: +z9edHFXKmlSyMr9Mkd0oeGfmP28Jipk2QZjQVkTkmI= Subject key identifier: 95:37:CD:BF:C1:D5:65:21:98:76:F7:63:76:A0:CD:E8:C0:13:B1:99 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: DD Signing time: Sat 23 Aug 2025 05:38:25 +0000 Manifest this update: Sat 23 Aug 2025 05:38:25 +0000 Manifest next update: Sat 30 Aug 2025 05:38:24 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: hqM6X7QtuQEj9zJB8VuSK6oSaz/GkIiUnWqzdWHbFQQ=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Aug 23 05:38:25 2025 GMT Not After : Aug 30 05:38:24 2025 GMT Subject: CN=68a953d1-575d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6e:a2:21:b7:7d:a1:c2:f4:48:7f:c7:c9:51: 97:7a:e5:25:00:29:1b:6e:e2:76:d6:22:1f:a9:b7: 6d:ec:96:f4:4b:43:94:65:dc:89:94:b3:f8:d4:93: ed:bb:6f:99:6a:e1:8c:71:9d:10:0a:90:9e:7f:2d: 4a:06:8e:70:82:7b:d8:39:50:92:90:35:5d:e3:28: fc:a9:d3:ac:fd:81:bd:45:3d:89:45:9f:a1:19:57: 26:3f:97:bc:29:fb:e9:fe:fa:f4:37:b9:c6:cd:71: 8f:95:9d:43:7e:00:fd:9e:69:b5:23:cb:2b:b2:78: 0f:98:9f:bc:c4:cd:95:52:21:50:8a:52:a3:e1:6c: 4f:71:fe:9d:44:10:1c:ca:bd:15:70:ca:9b:42:99: 17:96:98:a4:c2:90:28:19:e5:b2:6e:44:6b:12:51: b1:eb:fa:a2:42:72:ca:69:4a:14:1b:40:2c:f2:ed: 2e:93:47:22:eb:42:f1:1a:46:fa:df:a7:9a:07:8a: 5e:65:50:e7:dd:ae:18:fe:a9:ea:d7:a7:2e:70:db: af:cc:83:a4:d9:a1:e4:77:f3:d5:03:6b:d2:94:be: f1:5a:a3:11:81:41:72:d2:41:67:3b:4e:74:1d:71: d1:18:f5:37:31:89:e8:98:e2:68:01:57:7c:5c:f7: 16:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:37:CD:BF:C1:D5:65:21:98:76:F7:63:76:A0:CD:E8:C0:13:B1:99 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:35:0e:84:b5:47:a3:15:bd:35:ed:22:ee:51:b7:77:ce:a5: d6:bb:15:6f:cf:b2:ba:e4:ff:d7:87:89:4d:71:4d:d3:28:e0: 17:43:47:90:37:ba:a3:a8:47:cc:25:8d:67:bd:ae:68:58:c8: 7f:6f:8e:87:e1:d8:70:ac:a3:d9:bd:f1:91:b2:fb:3c:19:76: 96:73:fd:68:fd:d6:8f:23:95:05:3d:b0:1d:d3:c2:2b:48:16: bf:03:0c:f9:92:4d:35:7f:2e:72:42:c6:1a:75:30:69:45:5a: e0:0b:bb:69:2a:c2:5f:40:a2:d2:2a:90:f9:c7:06:61:5e:34: b4:36:28:95:6e:ac:06:44:4f:9d:2d:92:38:30:a2:50:3f:6b: 6a:0a:cd:99:ef:ff:16:81:89:c4:de:24:fb:32:d3:02:68:7c: 0e:0a:f0:f4:38:8f:a0:80:48:d6:1f:42:71:71:de:cb:69:1d: e9:4a:9b:5f:f8:df:c4:85:0c:da:83:34:c5:b4:f8:c0:40:b5: a1:f7:42:b7:1e:7f:2c:d5:c4:71:9e:8f:a2:13:cb:41:8f:fb: 0e:c7:2e:7f:81:fa:d9:03:72:ab:11:97:06:c1:6e:fb:0d:e0: d8:51:91:dc:40:98:9e:48:b8:0d:6a:c0:da:5b:ad:f6:80:35: f0:b1:37:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwODIzMDUzODI1WhcNMjUwODMwMDUzODI0WjAYMRYwFAYD VQQDEw02OGE5NTNkMS01NzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyW6iIbd9ocL0SH/HyVGXeuUlACkbbuJ21iIfqbdt7Jb0S0OUZdyJlLP41JPt u2+ZauGMcZ0QCpCefy1KBo5wgnvYOVCSkDVd4yj8qdOs/YG9RT2JRZ+hGVcmP5e8 Kfvp/vr0N7nGzXGPlZ1DfgD9nmm1I8srsngPmJ+8xM2VUiFQilKj4WxPcf6dRBAc yr0VcMqbQpkXlpikwpAoGeWybkRrElGx6/qiQnLKaUoUG0As8u0uk0ci60LxGkb6 36eaB4peZVDn3a4Y/qnq16cucNuvzIOk2aHkd/PVA2vSlL7xWqMRgUFy0kFnO050 HXHRGPU3MYnomOJoAVd8XPcWlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJU3zb/B 1WUhmHb3Y3agzejAE7GZMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqNQ6EtUejFb017SLuUbd3zqXWuxVvz7K65P/Xh4lNcU3TKOAXQ0eQ N7qjqEfMJY1nva5oWMh/b46H4dhwrKPZvfGRsvs8GXaWc/1o/daPI5UFPbAd08Ir SBa/Awz5kk01fy5yQsYadTBpRVrgC7tpKsJfQKLSKpD5xwZhXjS0NiiVbqwGRE+d LZI4MKJQP2tqCs2Z7/8WgYnE3iT7MtMCaHwOCvD0OI+ggEjWH0Jxcd7LaR3pSptf +N/EhQzagzTFtPjAQLWh90K3Hn8s1cRxno+iE8tBj/sOxy5/gfrZA3KrEZcGwW77 DeDYUZHcQJieSLgNasDaW632gDXwsTc4 -----END CERTIFICATE-----Generated at Sat Aug 23 10:41:44 2025 by rpki-client