$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: quOjZ9KQyAsHL5vqpUHSkQD1aAQht1ZIsLTv2lvn8kQ= Subject key identifier: EE:DF:31:65:D4:9C:58:6C:19:F4:1A:BA:99:B9:E3:FA:41:46:C9:7F Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 0111 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: 0102 Signing time: Sat 23 Aug 2025 05:22:18 +0000 Manifest this update: Sat 23 Aug 2025 05:22:18 +0000 Manifest next update: Sat 30 Aug 2025 05:22:18 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: nS2b4yj+l1bqlh5jr4Cgx7j2KiB98JTc/HBCyQz1ZIA=) 2: 62B87A26895B11EFBA2A3B22C4F9AE02.roa (hash: GkfnFa85sf2ihLyLByQY01IPDXpueRzZ4fB3mmtkqLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:22:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Aug 23 05:22:18 2025 GMT Not After : Aug 30 05:22:18 2025 GMT Subject: CN=68a9500a-0c4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e6:0d:bb:57:d2:f8:9d:06:dd:03:8b:86:b7: 1c:f1:bc:a3:9b:23:65:0f:b2:81:eb:a5:57:73:3c: e2:f2:46:98:06:51:34:8d:91:d5:2f:37:9a:57:47: d6:ff:2a:f0:b1:0c:3e:b8:21:40:7d:a3:06:1d:20: c3:1e:b6:de:c1:dc:74:7a:fd:97:b3:87:74:4f:7b: 61:c5:68:28:23:bd:fd:5a:9c:51:dd:46:7b:62:c0: 7d:5b:31:dc:53:c4:b7:12:dc:4a:f3:65:dd:10:f8: 53:bf:9c:ca:c5:30:cd:58:d5:2a:b5:34:f9:d3:ba: 60:a6:ce:5f:f3:3d:dc:c9:4d:38:b8:97:98:21:21: 96:8b:3c:5d:60:7c:6e:79:23:e2:52:49:39:24:b9: 1e:85:6a:c1:ec:7e:6c:e1:bd:95:c9:81:68:01:71: fb:1b:f6:fb:5b:40:33:25:4f:4f:01:0c:e3:a4:f2: dd:9b:3d:3b:f4:4b:02:f3:9d:59:00:fb:4b:a0:40: 3d:75:b8:6e:e3:c9:88:f6:ce:59:5e:b9:0f:3d:13: cf:da:17:6b:ab:48:53:1e:04:d0:76:95:d0:f6:0e: e6:c4:ce:de:23:fc:83:92:2b:2c:f4:e9:a5:7f:13: c1:81:62:d7:45:cf:a6:2b:e3:57:6c:bf:f2:71:74: 01:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DF:31:65:D4:9C:58:6C:19:F4:1A:BA:99:B9:E3:FA:41:46:C9:7F X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:29:39:71:0a:2f:0f:bf:17:4e:2f:a0:08:4d:96:fe:2f:a4: 0a:a2:aa:26:5e:c8:88:a6:c0:4f:37:fa:a8:eb:06:c5:52:47: cb:3a:1c:d1:8e:9b:2c:e6:2a:8d:a7:ca:6f:e4:21:d0:54:f8: de:3b:a3:36:79:36:2a:56:28:b3:81:a4:ef:a9:3f:40:35:0c: f2:0e:71:55:9c:68:8b:93:b6:41:be:d6:96:8b:10:d3:86:e2: 82:d4:89:20:fc:f2:ba:3d:4c:fd:f0:78:b5:c7:4f:1d:60:b8: a3:b7:43:45:d6:5e:cc:c0:00:03:5a:72:6d:80:f6:0b:62:e7: fb:50:88:88:de:d4:1f:5e:5d:20:38:0b:85:c5:78:6e:80:28: 67:a4:ab:5d:61:d0:b0:e6:15:72:59:dd:86:f5:65:1e:ab:d2: 13:96:c8:fb:d6:e9:61:0a:81:2b:fe:5c:e7:15:81:06:f6:95: ed:fa:e6:5c:e4:0c:19:60:38:95:1e:97:6b:d0:2f:ed:5f:5e: 33:97:f1:80:f7:4f:3b:72:d3:07:b2:07:5c:38:ee:16:0e:7e: 34:0e:07:07:63:92:f2:de:e2:04:e9:a7:66:d4:53:16:c1:d2: 50:f9:00:f2:b8:78:c2:ef:73:de:ab:76:2c:f5:c6:d2:24:48: 18:c6:9f:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUwODIzMDUyMjE4WhcNMjUwODMwMDUyMjE4WjAYMRYwFAYD VQQDEw02OGE5NTAwYS0wYzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+YNu1fS+J0G3QOLhrcc8byjmyNlD7KB66VXczzi8kaYBlE0jZHVLzeaV0fW /yrwsQw+uCFAfaMGHSDDHrbewdx0ev2Xs4d0T3thxWgoI739WpxR3UZ7YsB9WzHc U8S3EtxK82XdEPhTv5zKxTDNWNUqtTT507pgps5f8z3cyU04uJeYISGWizxdYHxu eSPiUkk5JLkehWrB7H5s4b2VyYFoAXH7G/b7W0AzJU9PAQzjpPLdmz079EsC851Z APtLoEA9dbhu48mI9s5ZXrkPPRPP2hdrq0hTHgTQdpXQ9g7mxM7eI/yDkiss9Oml fxPBgWLXRc+mK+NXbL/ycXQBBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO7fMWXU nFhsGfQaupm54/pBRsl/MB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAiKTlxCi8PvxdOL6AITZb+L6QKoqomXsiIpsBPN/qo6wbFUkfLOhzR jpss5iqNp8pv5CHQVPjeO6M2eTYqViizgaTvqT9ANQzyDnFVnGiLk7ZBvtaWixDT huKC1Ikg/PK6PUz98Hi1x08dYLijt0NF1l7MwAADWnJtgPYLYuf7UIiI3tQfXl0g OAuFxXhugChnpKtdYdCw5hVyWd2G9WUeq9ITlsj71ulhCoEr/lznFYEG9pXt+uZc 5AwZYDiVHpdr0C/tX14zl/GA9087ctMHsgdcOO4WDn40DgcHY5Ly3uIE6adm1FMW wdJQ+QDyuHjC73Peq3Ys9cbSJEgYxp/J -----END CERTIFICATE-----Generated at Sat Aug 23 12:39:59 2025 by rpki-client