$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: AjGRXo+/ip9CDyBW7LYpbU2Fypl7wlLyNs3EsLUNIrU= Subject key identifier: 45:3D:A0:A8:38:DB:E3:D1:DD:C3:FB:AB:52:0D:EB:F2:0C:78:6C:32 Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 76 Signing time: Sat 23 Aug 2025 07:02:08 +0000 Manifest this update: Sat 23 Aug 2025 07:02:07 +0000 Manifest next update: Sat 30 Aug 2025 07:02:07 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: 5R7WVf4JVubNkanqBwKQpKH/ohLiIpD6uqkQnW29JDI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:02:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Aug 23 07:02:07 2025 GMT Not After : Aug 30 07:02:07 2025 GMT Subject: CN=68a96770-e7c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:fb:c5:ab:f5:37:f4:6b:68:dd:31:89:cb:18: 1f:30:09:60:73:9d:65:b6:5f:6a:20:b9:c0:20:7a: 0e:c1:7e:4c:cf:64:a0:35:a5:27:14:c7:0d:fb:8b: a0:2c:bd:1b:4c:3e:a2:18:b1:de:f0:10:bd:49:55: 03:6f:49:2e:dc:65:b4:b2:3c:30:8e:68:31:86:34: e3:bc:29:ff:1c:f7:4c:3f:a6:c0:fa:ca:29:a7:13: 31:46:22:32:2e:94:66:d5:b2:1c:c4:77:57:d9:d8: 09:1d:42:e2:90:44:14:02:10:f8:74:77:c9:c1:ce: 58:5d:19:da:45:60:63:d1:69:31:85:3d:2e:c4:27: e6:57:c7:d2:10:b4:63:2c:d8:70:f7:d4:7e:44:4e: 1c:56:ca:40:64:c0:59:25:0a:7d:06:60:0f:74:3a: cb:68:2c:f5:c6:11:16:15:95:52:10:92:19:bb:32: 3e:15:09:40:7c:7d:31:6c:af:ad:86:17:3a:75:5a: 5c:cc:12:f6:2a:d3:c3:a9:81:10:9e:e1:4e:a4:78: ef:63:1e:04:84:1d:c4:cc:79:63:8a:fc:fb:c5:c5: 5b:8b:11:48:df:73:51:20:9c:6e:e5:8d:cd:66:06: 3c:eb:e8:5b:cc:ac:59:21:d9:c6:16:a0:03:16:cb: 7c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3D:A0:A8:38:DB:E3:D1:DD:C3:FB:AB:52:0D:EB:F2:0C:78:6C:32 X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:13:ad:0f:21:67:e7:02:c0:7a:f5:cc:b6:d4:09:b7:1c:c4: ad:97:5f:8b:16:5f:9a:d3:e5:5c:cf:9a:5f:59:df:b0:a5:e7: 15:06:60:10:85:92:11:fb:24:da:87:6c:2c:ca:7e:a0:ff:70: 91:39:a0:5f:46:48:ed:fd:13:1f:25:0f:90:3e:4e:3c:59:12: a4:36:98:33:bd:38:a1:b7:4c:fb:41:22:cc:4a:37:5c:6a:71: 44:f3:cc:6a:71:c6:25:90:61:d6:56:8e:e6:9d:d5:55:60:4e: 12:de:73:9e:af:ef:ee:ee:62:88:30:6c:35:42:c1:97:88:8d: 65:e3:e2:af:c7:37:f5:30:1f:95:dd:6c:8f:52:52:0f:95:d4: c1:36:4c:62:6e:09:42:fa:e9:cf:f6:a5:41:89:7d:be:4c:04: 12:86:42:61:6d:a8:40:a9:8d:da:bb:8c:0a:70:d3:2e:0f:9a: 2e:37:91:89:83:5b:1f:b5:e1:e2:af:6e:0e:ec:4d:c9:57:a5: 72:42:b6:1f:00:3a:c8:62:42:22:e7:4a:64:e0:a3:4e:b2:23: 2a:8e:51:38:b1:ad:8b:a7:82:12:52:f9:47:b2:20:0e:5a:ec: 1e:01:bc:05:fe:7e:70:9c:7a:ab:84:51:0a:bc:79:7f:1e:5c: ea:9d:9a:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTA4MjMwNzAyMDdaFw0yNTA4MzAwNzAyMDdaMBgxFjAUBgNV BAMTDTY4YTk2NzcwLWU3YzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDa+8Wr9Tf0a2jdMYnLGB8wCWBznWW2X2ogucAgeg7BfkzPZKA1pScUxw37i6As vRtMPqIYsd7wEL1JVQNvSS7cZbSyPDCOaDGGNOO8Kf8c90w/psD6yimnEzFGIjIu lGbVshzEd1fZ2AkdQuKQRBQCEPh0d8nBzlhdGdpFYGPRaTGFPS7EJ+ZXx9IQtGMs 2HD31H5EThxWykBkwFklCn0GYA90OstoLPXGERYVlVIQkhm7Mj4VCUB8fTFsr62G Fzp1WlzMEvYq08OpgRCe4U6keO9jHgSEHcTMeWOK/PvFxVuLEUjfc1EgnG7ljc1m Bjzr6FvMrFkh2cYWoAMWy3x5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURT2gqDjb 49Hdw/urUg3r8gx4bDIwHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAsTrQ8hZ+cCwHr1zLbUCbccxK2XX4sWX5rT5VzPml9Z37Cl5xUGYBCF khH7JNqHbCzKfqD/cJE5oF9GSO39Ex8lD5A+TjxZEqQ2mDO9OKG3TPtBIsxKN1xq cUTzzGpxxiWQYdZWjuad1VVgThLec56v7+7uYogwbDVCwZeIjWXj4q/HN/UwH5Xd bI9SUg+V1ME2TGJuCUL66c/2pUGJfb5MBBKGQmFtqECpjdq7jApw0y4Pmi43kYmD Wx+14eKvbg7sTclXpXJCth8AOshiQiLnSmTgo06yIyqOUTixrYunghJS+UeyIA5a 7B4BvAX+fnCcequEUQq8eX8eXOqdmow= -----END CERTIFICATE-----Generated at Sun Aug 24 03:09:08 2025 by rpki-client