$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: hPhKYMXs6mUDTBj/0Gijvsf9vVvr0oK+xNJcN3ZGBpY= Subject key identifier: C6:EE:8E:32:4E:F9:68:6B:39:C1:43:7E:9B:27:B4:D9:1B:73:6A:56 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 102F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 101E Signing time: Fri 22 Aug 2025 17:33:41 +0000 Manifest this update: Fri 22 Aug 2025 17:33:41 +0000 Manifest next update: Fri 29 Aug 2025 17:33:41 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: T4kqocRooE/hdZtUu/FK+ZLeikaKmImbWn5jkh6TGSY=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4143 (0x102f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Aug 22 17:33:41 2025 GMT Not After : Aug 29 17:33:41 2025 GMT Subject: CN=68a8a9f5-f01d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:72:58:af:b1:d3:de:cd:aa:eb:84:3e:c6:97: 6a:c2:06:5f:81:9c:e4:18:4e:e9:f3:e3:3c:ce:02: 94:12:ae:c5:de:d1:8d:65:e7:c5:2c:d8:98:b8:9e: dc:64:07:c5:69:1d:a4:df:17:e3:5e:51:65:4a:22: d7:d0:d5:5f:a8:b1:3e:d6:53:fa:40:04:d8:a8:bd: 0d:49:3c:ba:c5:66:2d:4a:3b:98:3b:bb:80:d2:b4: 79:95:37:74:e5:9f:fc:51:67:74:6c:49:38:bb:f6: 03:87:f6:2e:8d:e0:4c:fb:51:9f:23:d8:34:64:99: 9e:0f:74:c4:ef:53:b4:ad:fd:fc:1f:e2:f4:ed:9c: c2:cb:1b:22:54:e4:a0:f0:26:e0:cd:d8:ba:4c:87: bb:5e:dc:2b:bb:ff:e0:36:ec:bc:65:e3:dd:8d:4f: 90:d8:43:76:26:1a:ef:f6:2a:29:0a:7e:4f:ab:f6: 64:c1:11:a5:e7:27:7b:6f:41:b5:9b:c7:79:ff:6f: 5b:e7:8b:e5:37:3d:f7:46:e9:7b:c4:cf:e3:5b:8d: 6a:96:28:15:8f:fe:d0:96:7f:7f:b1:73:e0:bb:d3: 72:5b:da:f9:62:10:54:4c:57:2a:d3:5e:a8:0a:50: e9:5e:68:3c:fc:0c:d3:84:fa:d9:a8:b4:c7:33:5d: cb:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:EE:8E:32:4E:F9:68:6B:39:C1:43:7E:9B:27:B4:D9:1B:73:6A:56 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f7:0d:e7:ed:2e:aa:98:4a:ec:52:32:f2:0d:58:8a:43:e4: 79:b0:e7:fc:c7:a8:fc:a7:69:ea:5c:0f:ff:8c:30:3d:e4:42: ef:a6:bd:52:fe:f2:58:a0:3e:d1:2c:cb:76:3c:ae:63:a1:cc: aa:c3:50:0e:c7:0b:f9:21:ba:a5:1e:e6:e2:04:c9:b1:d0:09: 44:ac:4b:d7:3c:4c:fa:8a:68:08:2a:6f:70:cd:ca:d7:c6:67: be:30:33:f7:02:9c:b1:53:f8:fb:65:f0:5f:c2:13:5f:55:bc: 8f:bb:e3:a0:c1:5e:6f:ae:e2:d6:ee:90:02:45:1f:65:e8:e6: 62:cd:f5:a7:f8:f4:5a:12:2a:69:e9:1a:62:ba:c4:5e:5d:a7: ae:54:cb:8b:3a:22:3c:3f:e5:fa:b1:c9:5e:19:2a:a7:33:01: f5:ad:7a:13:25:06:b0:d3:44:2b:7b:a1:d5:6b:54:69:bb:dd: 99:85:ae:1c:39:0c:fc:58:d2:7f:29:f2:65:77:89:64:fc:90: 4b:aa:2f:c7:1d:6c:d0:50:12:7b:bd:3a:25:58:7c:38:00:94: b6:b9:be:44:37:93:77:22:35:5d:8c:08:04:38:b1:06:f6:18: e1:73:7d:6f:64:58:f3:ba:9d:72:be:ad:11:92:0b:d0:a6:d8: ad:36:d2:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUwODIyMTczMzQxWhcNMjUwODI5MTczMzQxWjAYMRYwFAYD VQQDEw02OGE4YTlmNS1mMDFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXJYr7HT3s2q64Q+xpdqwgZfgZzkGE7p8+M8zgKUEq7F3tGNZefFLNiYuJ7c ZAfFaR2k3xfjXlFlSiLX0NVfqLE+1lP6QATYqL0NSTy6xWYtSjuYO7uA0rR5lTd0 5Z/8UWd0bEk4u/YDh/YujeBM+1GfI9g0ZJmeD3TE71O0rf38H+L07ZzCyxsiVOSg 8Cbgzdi6TIe7Xtwru//gNuy8ZePdjU+Q2EN2Jhrv9iopCn5Pq/ZkwRGl5yd7b0G1 m8d5/29b54vlNz33Rul7xM/jW41qligVj/7Qln9/sXPgu9NyW9r5YhBUTFcq016o ClDpXmg8/AzThPrZqLTHM13LHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbujjJO +WhrOcFDfpsntNkbc2pWMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw9w3n7S6qmErsUjLyDViKQ+R5sOf8x6j8p2nqXA//jDA95ELvpr1S /vJYoD7RLMt2PK5jocyqw1AOxwv5IbqlHubiBMmx0AlErEvXPEz6imgIKm9wzcrX xme+MDP3ApyxU/j7ZfBfwhNfVbyPu+OgwV5vruLW7pACRR9l6OZizfWn+PRaEipp 6RpiusReXaeuVMuLOiI8P+X6scleGSqnMwH1rXoTJQaw00Qre6HVa1Rpu92Zha4c OQz8WNJ/KfJld4lk/JBLqi/HHWzQUBJ7vTolWHw4AJS2ub5EN5N3IjVdjAgEOLEG 9hjhc31vZFjzup1yvq0RkgvQptitNtKw -----END CERTIFICATE-----Generated at Sat Aug 23 20:35:10 2025 by rpki-client