$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: SfOhYP4Xl+oKeE4r40qRZyoDmr5x1hmPaj+Nc3dXVOk= Subject key identifier: 95:BC:CB:50:F8:14:A1:1B:32:D5:23:66:22:FD:3A:04:9C:B8:9C:A8 Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 012F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 012F Signing time: Sat 23 Aug 2025 04:39:48 +0000 Manifest this update: Sat 23 Aug 2025 04:39:47 +0000 Manifest next update: Sat 30 Aug 2025 04:39:47 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: gGFWadSCAwWLU/5/8/K7Dd5gXIOsPLXRn+5DqnMlxwQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:39:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 303 (0x12f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Aug 23 04:39:47 2025 GMT Not After : Aug 30 04:39:47 2025 GMT Subject: CN=68a94613-6a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:72:f8:e9:ba:ad:27:9b:7d:c7:74:6e:e7:98: 6e:5b:76:1a:85:d6:5c:41:26:a1:d5:67:34:2e:e5: 24:c5:aa:e7:d0:5c:8c:8a:13:26:39:9c:5c:70:5a: f9:da:fc:9c:cf:b1:5f:07:93:59:27:36:6f:5e:1e: c4:87:a0:76:17:65:7f:95:64:9b:e5:dc:e7:ec:3d: b2:85:a8:63:6f:bd:6c:a7:d7:6f:9a:33:f0:7d:65: 43:82:66:76:64:98:3a:37:e0:71:08:a6:b9:d7:80: 8b:d2:a5:eb:ff:b1:18:0a:9c:34:16:e0:dd:36:0f: 35:0a:ee:37:d4:c6:f1:fc:46:12:71:e1:a4:6a:e6: c2:df:8f:cf:e9:23:d0:96:9b:62:32:78:64:ae:9c: fa:79:08:8c:73:ec:e3:cb:9a:5a:f3:9f:c7:2d:0e: b3:58:80:da:05:60:72:5f:11:4e:52:c8:b8:ea:8b: 56:37:72:6c:81:da:20:61:ed:d8:43:51:e2:da:ad: 4a:a1:50:dd:0a:ee:d9:bb:66:94:46:85:43:4d:30: 19:b2:c5:a6:3c:a1:cf:46:5d:70:91:07:88:a5:f7: 32:b1:ba:30:7b:2f:20:be:d9:4d:5d:61:0b:62:c5: 61:fe:5e:80:35:d5:11:ae:5f:74:74:68:43:11:71: 6e:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BC:CB:50:F8:14:A1:1B:32:D5:23:66:22:FD:3A:04:9C:B8:9C:A8 X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:7f:44:27:c2:b3:b6:90:37:8a:7d:72:e2:46:eb:6c:e2:d2: 48:dd:34:6f:71:d5:b3:4a:00:4f:cb:ea:5f:f2:3e:1b:1e:cb: 2f:c6:5b:16:5f:21:02:1d:68:90:18:fc:7c:ca:c5:92:52:8f: ae:50:99:00:79:47:be:d5:09:2d:ce:60:a9:d1:3c:6b:1a:35: 7d:41:e3:4d:a7:73:79:aa:b4:8c:c8:2c:bf:61:d6:e3:87:01: b3:1e:c6:e7:24:e9:b2:40:ce:2d:87:3a:33:42:81:73:a9:39: 93:82:06:dc:5c:05:a4:8d:3d:5b:b7:6d:49:63:f8:ea:07:06: 94:32:7f:62:ef:0e:4d:19:9d:e6:a6:35:18:35:bc:21:c6:ce: 1c:e3:bf:59:6f:25:a8:c9:d3:44:e5:4d:5a:28:e0:eb:57:26: 72:31:22:03:5b:e1:e0:18:77:db:42:0c:f2:5b:cc:b1:84:4b: cd:11:b7:7b:d8:ae:05:81:d4:12:9a:a4:ae:7e:54:bc:ab:68: a3:4a:85:cb:46:e8:3b:79:29:62:93:7e:ec:82:ad:f6:66:f9: eb:86:f4:3a:21:4d:71:1c:a6:20:36:ab:ba:84:5c:8b:2e:cb: db:b0:fa:49:e4:12:c7:ad:58:3c:cf:4e:b2:58:69:7d:33:33: df:57:18:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjUwODIzMDQzOTQ3WhcNMjUwODMwMDQzOTQ3WjAYMRYwFAYD VQQDEw02OGE5NDYxMy02YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3L46bqtJ5t9x3Ru55huW3YahdZcQSah1Wc0LuUkxarn0FyMihMmOZxccFr5 2vycz7FfB5NZJzZvXh7Eh6B2F2V/lWSb5dzn7D2yhahjb71sp9dvmjPwfWVDgmZ2 ZJg6N+BxCKa514CL0qXr/7EYCpw0FuDdNg81Cu431Mbx/EYSceGkaubC34/P6SPQ lptiMnhkrpz6eQiMc+zjy5pa85/HLQ6zWIDaBWByXxFOUsi46otWN3JsgdogYe3Y Q1Hi2q1KoVDdCu7Zu2aURoVDTTAZssWmPKHPRl1wkQeIpfcysbowey8gvtlNXWEL YsVh/l6ANdURrl90dGhDEXFumQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJW8y1D4 FKEbMtUjZiL9OgScuJyoMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbf0QnwrO2kDeKfXLiRuts4tJI3TRvcdWzSgBPy+pf8j4bHssvxlsW XyECHWiQGPx8ysWSUo+uUJkAeUe+1QktzmCp0TxrGjV9QeNNp3N5qrSMyCy/Ydbj hwGzHsbnJOmyQM4thzozQoFzqTmTggbcXAWkjT1bt21JY/jqBwaUMn9i7w5NGZ3m pjUYNbwhxs4c479ZbyWoydNE5U1aKODrVyZyMSIDW+HgGHfbQgzyW8yxhEvNEbd7 2K4FgdQSmqSuflS8q2ijSoXLRug7eSlik37sgq32ZvnrhvQ6IU1xHKYgNqu6hFyL LsvbsPpJ5BLHrVg8z06yWGl9MzPfVxgJ -----END CERTIFICATE-----Generated at Sun Aug 24 00:45:26 2025 by rpki-client