$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: 1D9KXQLleBExnIHpcF94aarSc78gkwrLwmL3Cjkah+c= Subject key identifier: 1A:1B:06:98:D8:28:DD:26:97:A1:AC:47:0E:DE:C1:BC:11:86:E5:C7 Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 0161 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 015E Signing time: Sat 23 Aug 2025 04:10:38 +0000 Manifest this update: Sat 23 Aug 2025 04:10:37 +0000 Manifest next update: Sat 30 Aug 2025 04:10:37 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: cYGd6vv+m9cu7QnP76fy/cxwb8EVCB+SgB810EPvKy0=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:10:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 353 (0x161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Aug 23 04:10:37 2025 GMT Not After : Aug 30 04:10:37 2025 GMT Subject: CN=68a93f3d-db8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:91:05:f5:93:41:1b:55:b8:24:c6:82:2d:c2: 33:86:cb:a4:2b:05:b8:45:1e:ad:c7:3d:87:b2:d6: 3b:64:c8:07:18:93:a5:11:e7:9c:d2:c5:d1:fb:87: 1a:d5:5e:ad:0f:51:e6:9a:73:63:a2:d0:01:59:d5: ac:5c:28:dd:8c:b4:78:90:58:eb:96:71:20:23:3e: 92:21:e2:4e:33:b4:ec:dc:d4:5d:53:46:26:6c:65: 86:8f:31:7c:a2:42:4f:52:e2:86:77:4d:e8:6a:85: ca:4e:4b:cf:9c:8f:fa:5e:a1:22:c3:d8:00:24:5e: 56:d1:ef:ac:63:3e:98:92:f8:ac:1a:39:b1:74:41: 55:f4:a7:91:12:1a:ee:38:58:26:e1:c5:9e:fd:9c: 70:95:ee:fa:9a:00:59:28:9b:63:53:4e:f6:2a:0e: 30:02:60:22:a0:dc:27:18:30:57:fb:25:25:c3:b6: 42:33:98:75:b8:07:72:e4:aa:97:cf:7c:af:e7:76: b9:74:17:2f:b9:ba:9e:e6:39:de:7b:27:27:81:69: 1d:43:00:d3:02:1d:bc:3c:a2:d7:13:c7:9a:a6:85: 4a:2c:08:05:40:33:92:b0:31:b9:9c:e9:be:00:b6: 57:21:73:47:2f:7d:fe:a8:76:f5:a1:25:1e:69:34: 36:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:1B:06:98:D8:28:DD:26:97:A1:AC:47:0E:DE:C1:BC:11:86:E5:C7 X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:3d:ee:58:89:72:d4:f7:ba:ef:ae:0b:46:13:ba:96:73:b5: 4d:e0:19:48:9b:76:e8:99:a8:3f:0a:0c:6d:d6:6f:f0:7f:6a: e7:8e:2f:8f:d1:b0:9b:b3:3d:b1:24:5a:da:6a:65:ae:55:1d: 6f:7a:bb:33:ed:a6:97:c8:ef:37:a7:76:e4:c1:bf:62:35:5f: 43:eb:fc:e7:f5:1e:5c:0e:d5:1b:99:11:6b:e4:8d:60:17:7e: 8f:08:72:35:3d:8d:a0:30:45:0b:aa:b9:c0:48:42:51:d7:83: e8:9f:75:e1:bb:30:f0:59:ad:be:ed:5d:fd:40:b0:ee:52:33: 4b:09:0b:51:a0:f1:8c:86:cf:7c:00:a4:29:ec:4f:b0:17:96: e0:de:62:2c:ad:a2:59:d7:d1:58:ed:14:ac:64:bf:50:21:6c: 7a:bd:18:34:ef:29:cb:87:69:d4:94:61:59:33:3d:8b:ac:41: af:c5:46:27:f2:3b:e4:96:46:04:32:11:fd:a3:69:fd:6b:81: 73:12:53:1e:38:44:f8:08:f9:32:68:fa:4d:22:46:13:ec:4f: 9c:81:58:5c:0d:75:8d:38:8d:64:49:e1:36:62:19:b6:fb:50: da:a6:c1:62:73:49:a7:75:23:a6:98:b0:13:18:ea:80:ba:ce: c5:d1:7c:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUwODIzMDQxMDM3WhcNMjUwODMwMDQxMDM3WjAYMRYwFAYD VQQDEw02OGE5M2YzZC1kYjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZEF9ZNBG1W4JMaCLcIzhsukKwW4RR6txz2HstY7ZMgHGJOlEeec0sXR+4ca 1V6tD1HmmnNjotABWdWsXCjdjLR4kFjrlnEgIz6SIeJOM7Ts3NRdU0YmbGWGjzF8 okJPUuKGd03oaoXKTkvPnI/6XqEiw9gAJF5W0e+sYz6YkvisGjmxdEFV9KeREhru OFgm4cWe/Zxwle76mgBZKJtjU072Kg4wAmAioNwnGDBX+yUlw7ZCM5h1uAdy5KqX z3yv53a5dBcvubqe5jneeycngWkdQwDTAh28PKLXE8eapoVKLAgFQDOSsDG5nOm+ ALZXIXNHL33+qHb1oSUeaTQ2gwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBobBpjY KN0ml6GsRw7ewbwRhuXHMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAvPe5YiXLU97rvrgtGE7qWc7VN4BlIm3bomag/Cgxt1m/wf2rnji+P 0bCbsz2xJFraamWuVR1versz7aaXyO83p3bkwb9iNV9D6/zn9R5cDtUbmRFr5I1g F36PCHI1PY2gMEULqrnASEJR14Pon3XhuzDwWa2+7V39QLDuUjNLCQtRoPGMhs98 AKQp7E+wF5bg3mIsraJZ19FY7RSsZL9QIWx6vRg07ynLh2nUlGFZMz2LrEGvxUYn 8jvklkYEMhH9o2n9a4FzElMeOET4CPkyaPpNIkYT7E+cgVhcDXWNOI1kSeE2Yhm2 +1DapsFic0mndSOmmLATGOqAus7F0XyM -----END CERTIFICATE-----Generated at Sat Aug 23 19:30:48 2025 by rpki-client