$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: pjZK951cHrGdso9ZZSYDjA9MOOkLOmJ7QjWkDtxUZIs= Subject key identifier: 2A:B3:E3:B2:80:F1:4A:6C:F0:AB:A4:F9:07:67:70:8F:9B:32:14:FB Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: C5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: C3 Signing time: Thu 03 Jul 2025 06:10:32 +0000 Manifest this update: Thu 03 Jul 2025 06:10:31 +0000 Manifest next update: Thu 10 Jul 2025 06:10:31 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: CtnlnH5pa4P2oiqz/bSeqwAEOSEkj3YXuGFtJteu7SE=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Jul 3 06:10:31 2025 GMT Not After : Jul 10 06:10:31 2025 GMT Subject: CN=68661ed7-53a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f6:e9:fd:5f:3c:4d:0e:a7:f8:5d:67:18:1d: 3d:5b:9f:52:4b:3f:a3:9b:da:66:3e:38:95:e9:4f: 52:45:ed:41:de:57:b8:83:b7:ee:95:6b:54:6b:26: 5d:89:9e:be:f1:05:9f:5c:0d:e0:f3:e3:52:93:aa: df:3c:9a:fa:a2:69:21:2e:1b:05:44:e6:d8:47:b2: 80:85:d0:c0:fb:c4:22:9b:2d:80:63:10:00:04:0d: 3f:1d:46:cb:1d:f3:c8:bf:b2:0f:05:62:c0:97:5c: 67:e0:3a:46:9d:a2:50:eb:db:58:00:2a:21:1d:7a: 10:79:23:2b:ad:34:42:bc:33:2a:7e:98:95:95:19: 56:b6:a2:ae:e4:b8:19:1c:96:67:93:d8:b2:76:27: 61:32:03:ca:58:53:8c:be:08:fb:02:a6:fe:8c:5a: 88:1b:0a:ca:b9:9e:4d:11:7b:a2:84:e5:27:0a:c0: 10:b1:83:78:19:22:de:ae:a2:57:31:4a:e5:5e:bf: 8c:a5:b7:ca:bc:65:a3:83:80:0e:cf:16:6a:e3:95: 40:59:b7:61:ec:f3:7c:69:56:a7:4d:e5:de:5e:9f: eb:72:2d:3f:64:6e:b0:e0:55:d1:f9:51:60:81:bd: 4f:d5:e1:39:d5:ee:d6:03:4a:57:ae:8e:6b:e6:0d: f7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:B3:E3:B2:80:F1:4A:6C:F0:AB:A4:F9:07:67:70:8F:9B:32:14:FB X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:f3:c4:d5:6d:90:9e:3e:df:c0:ab:29:f5:b8:d0:48:86:f2: 1c:cb:4c:42:09:36:05:d3:4a:df:c6:98:af:a3:65:82:3c:66: d9:1a:b0:a5:77:36:b5:db:69:24:94:39:5a:52:83:8b:87:2e: a4:dd:40:c3:14:1b:7a:cf:ae:3a:96:0d:a2:f8:ef:31:7d:5d: af:aa:b6:29:36:fa:dd:8f:d4:e3:28:79:62:c8:b6:68:09:9f: e8:19:fe:87:c3:96:78:10:4f:80:84:e6:68:d7:83:1f:2c:5b: 01:6a:2c:fb:0e:e2:9d:86:6e:59:12:09:a8:25:9c:94:27:9f: 84:21:d8:13:94:5f:6d:55:9f:cb:10:1b:d2:43:c7:a1:31:c6: 13:9e:6a:86:92:d1:31:5b:54:6f:73:2d:bf:60:5c:06:13:d4: bb:a9:87:67:e3:12:de:44:ee:55:f5:80:8a:7a:5b:cb:ad:c8: bc:42:c3:46:6f:0d:22:11:58:62:4b:d2:5c:4f:02:0b:86:42: ac:cf:79:03:38:47:97:e3:ff:5b:b2:51:af:18:1d:e1:f6:ff: 3b:d1:ce:8e:e0:f5:9f:5d:4c:cd:d6:b2:72:c8:30:fa:22:c9: 9d:a4:1a:fb:29:df:3d:c9:30:6c:3b:c4:61:4d:23:3d:d3:43: 61:70:7a:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNzAzMDYxMDMxWhcNMjUwNzEwMDYxMDMxWjAYMRYwFAYD VQQDEw02ODY2MWVkNy01M2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/bp/V88TQ6n+F1nGB09W59SSz+jm9pmPjiV6U9SRe1B3le4g7fulWtUayZd iZ6+8QWfXA3g8+NSk6rfPJr6omkhLhsFRObYR7KAhdDA+8Qimy2AYxAABA0/HUbL HfPIv7IPBWLAl1xn4DpGnaJQ69tYACohHXoQeSMrrTRCvDMqfpiVlRlWtqKu5LgZ HJZnk9iydidhMgPKWFOMvgj7Aqb+jFqIGwrKuZ5NEXuihOUnCsAQsYN4GSLerqJX MUrlXr+MpbfKvGWjg4AOzxZq45VAWbdh7PN8aVanTeXeXp/rci0/ZG6w4FXR+VFg gb1P1eE51e7WA0pXro5r5g33ywIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCqz47KA 8Ups8Kuk+QdncI+bMhT7MB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC588TVbZCePt/Aqyn1uNBIhvIcy0xCCTYF00rfxpivo2WCPGbZGrCl dza122kklDlaUoOLhy6k3UDDFBt6z646lg2i+O8xfV2vqrYpNvrdj9TjKHliyLZo CZ/oGf6Hw5Z4EE+AhOZo14MfLFsBaiz7DuKdhm5ZEgmoJZyUJ5+EIdgTlF9tVZ/L EBvSQ8ehMcYTnmqGktExW1Rvcy2/YFwGE9S7qYdn4xLeRO5V9YCKelvLrci8QsNG bw0iEVhiS9JcTwILhkKsz3kDOEeX4/9bslGvGB3h9v870c6O4PWfXUzN1rJyyDD6 IsmdpBr7Kd89yTBsO8RhTSM900NhcHqx -----END CERTIFICATE-----Generated at Fri Jul 4 07:56:55 2025 by rpki-client