$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: TNECxgDcMsFtrg+9iunuNSk5fbnHAaz2ZdUes2ffDO8= Subject key identifier: D0:5D:61:18:58:2D:23:B8:FB:C7:76:CA:18:23:2F:84:50:F8:8A:24 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 01F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 01DF Signing time: Sat 23 Aug 2025 03:00:07 +0000 Manifest this update: Sat 23 Aug 2025 03:00:06 +0000 Manifest next update: Sat 30 Aug 2025 03:00:06 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: 9qSk+cdk7eL2ey1roKNM+72RrlguHBIPrx/ATFbGnGk=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Aug 23 03:00:06 2025 GMT Not After : Aug 30 03:00:06 2025 GMT Subject: CN=68a92eb6-1c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:90:05:03:46:81:a0:18:54:8a:00:62:03:11: 8e:63:7f:a6:67:e0:38:4a:e6:74:4e:cb:fc:3c:bd: b7:a2:67:d5:3a:5a:93:13:86:8a:92:3e:a1:48:c2: a3:e7:28:d1:bd:2a:03:6d:3e:dd:3f:f7:a8:f7:ba: 1a:61:02:f1:1a:89:f8:86:c1:3f:e2:9f:eb:79:d0: 1e:65:4f:98:68:22:68:88:26:13:c9:07:2e:c6:7a: 4b:dc:01:0d:ad:fd:ae:f2:19:77:40:db:02:cf:0e: 50:10:18:fc:31:87:8e:7f:7c:22:8e:58:51:c0:5f: 52:11:3c:48:53:a1:99:29:15:86:ab:8a:4f:bb:80: b5:de:2f:eb:44:8d:6c:80:09:bb:53:52:3b:45:cc: 10:60:4b:f0:a3:8e:d7:a2:7a:fd:a3:0c:44:da:4e: 13:a1:93:4a:87:c3:0d:a8:35:58:1c:02:e5:61:81: 7e:eb:3c:09:95:12:4e:2c:3d:39:39:a6:85:a5:98: 47:4d:f1:d7:63:37:e2:ac:19:ae:5f:f7:e9:ef:2f: bb:9e:9b:33:27:b3:48:46:2f:d1:8c:6f:cf:cc:bd: af:6e:fb:04:d5:1c:e7:45:7f:0c:55:1e:57:90:c9: a8:67:a3:8d:72:47:98:9f:3a:f0:ff:45:27:a1:89: aa:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:5D:61:18:58:2D:23:B8:FB:C7:76:CA:18:23:2F:84:50:F8:8A:24 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ab:7b:f7:00:26:0f:b5:f4:73:7d:0d:1f:43:a6:c5:37:9d: c9:4d:d3:36:b5:43:76:8e:5c:2c:98:a8:c3:dc:2e:51:e6:69: 7a:49:ba:10:6e:db:00:a2:df:31:e7:8a:42:d0:8d:cc:c3:61: a3:e6:67:2e:7c:85:45:d5:13:5c:b2:ac:51:de:19:2d:19:ad: 9b:54:a1:a7:52:0a:45:17:61:6c:bd:4f:19:7b:c9:4e:4e:6f: 59:96:f2:4c:5d:b4:3a:7d:b1:46:73:93:32:77:0a:94:f7:48: b4:f8:ac:0b:fc:91:08:ed:49:d7:85:5c:ec:27:9b:45:b1:7b: 9f:15:b2:9a:c1:90:18:59:c2:21:aa:27:f6:eb:4b:9d:65:f8: a6:dd:04:00:63:38:40:c4:cb:90:a7:e5:39:f9:04:46:c3:5f: 5d:5c:7e:e8:3d:c4:d5:75:a6:bd:fc:5d:28:5b:7e:6e:25:69: f0:87:bd:e5:e3:85:3b:18:a0:34:b3:2b:d0:89:c6:4c:cc:42: a4:56:e4:b5:a5:9f:d7:f1:ef:50:30:cc:20:2b:0d:dc:50:0b: 9e:6c:af:08:aa:39:4c:78:f1:ca:ef:66:2d:d2:c7:c0:b7:77: c5:70:13:57:cc:b4:42:15:d0:56:01:7d:12:25:87:04:2c:9d: c5:44:74:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUwODIzMDMwMDA2WhcNMjUwODMwMDMwMDA2WjAYMRYwFAYD VQQDEw02OGE5MmViNi0xYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7pAFA0aBoBhUigBiAxGOY3+mZ+A4SuZ0Tsv8PL23omfVOlqTE4aKkj6hSMKj 5yjRvSoDbT7dP/eo97oaYQLxGon4hsE/4p/redAeZU+YaCJoiCYTyQcuxnpL3AEN rf2u8hl3QNsCzw5QEBj8MYeOf3wijlhRwF9SETxIU6GZKRWGq4pPu4C13i/rRI1s gAm7U1I7RcwQYEvwo47Xonr9owxE2k4ToZNKh8MNqDVYHALlYYF+6zwJlRJOLD05 OaaFpZhHTfHXYzfirBmuX/fp7y+7npszJ7NIRi/RjG/PzL2vbvsE1RznRX8MVR5X kMmoZ6ONckeYnzrw/0UnoYmqLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNBdYRhY LSO4+8d2yhgjL4RQ+IokMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7q3v3ACYPtfRzfQ0fQ6bFN53JTdM2tUN2jlwsmKjD3C5R5ml6SboQ btsAot8x54pC0I3Mw2Gj5mcufIVF1RNcsqxR3hktGa2bVKGnUgpFF2FsvU8Ze8lO Tm9ZlvJMXbQ6fbFGc5MydwqU90i0+KwL/JEI7UnXhVzsJ5tFsXufFbKawZAYWcIh qif260udZfim3QQAYzhAxMuQp+U5+QRGw19dXH7oPcTVdaa9/F0oW35uJWnwh73l 44U7GKA0syvQicZMzEKkVuS1pZ/X8e9QMMwgKw3cUAuebK8IqjlMePHK72Yt0sfA t3fFcBNXzLRCFdBWAX0SJYcELJ3FRHRN -----END CERTIFICATE-----Generated at Sat Aug 23 17:09:31 2025 by rpki-client