$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: 3sbg/tlpEsZfooWLsXafY5wCuORVZLqT0Cb3V9cPNqU= Subject key identifier: AC:29:93:E9:58:94:90:01:AB:46:2F:D6:E8:E0:73:BC:36:A8:96:1D Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0390 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 0386 Signing time: Sat 23 Aug 2025 01:05:08 +0000 Manifest this update: Sat 23 Aug 2025 01:05:07 +0000 Manifest next update: Sat 30 Aug 2025 01:05:07 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: zW0Yb3/7+FqsCvfD4X1EgbDcqi3mYCXlIUMoj515/0g=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Aug 23 01:05:07 2025 GMT Not After : Aug 30 01:05:07 2025 GMT Subject: CN=68a913c4-b709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:27:89:a4:7c:c7:42:f8:0e:f0:f6:8d:3e:06: 0e:e0:f1:31:66:47:b6:00:65:36:e5:4c:37:43:17: c9:b8:93:60:60:3e:74:89:ef:6a:84:a9:cb:f4:de: f1:d0:50:c6:ae:d7:69:77:cb:e2:9f:29:ff:e4:9d: 0e:2a:68:8d:79:78:24:50:44:fa:05:c4:7e:44:58: 62:61:19:73:ed:65:31:41:d6:22:f7:72:05:49:74: d1:c8:ff:10:13:06:ee:b9:c7:95:fb:59:66:50:be: 3a:c5:23:60:e0:b5:25:84:20:7e:c8:ff:d3:1b:32: 60:a0:1f:89:6c:ab:f0:c9:ba:a0:9d:25:cc:7e:4a: 58:3f:7d:c3:1a:d5:f4:98:a3:98:ab:18:ea:11:cf: 92:b6:03:64:61:af:a0:8f:ba:de:62:b3:de:5f:0e: 85:cc:61:f2:d1:18:4c:01:75:39:00:ce:84:4e:c6: 9d:ad:bf:af:fd:5a:ea:78:19:c4:c2:70:8c:e2:0d: fe:fe:ff:0f:fe:df:25:56:45:57:e4:f9:5e:16:eb: b7:84:11:29:9b:cc:14:49:5f:71:66:29:ab:82:54: 66:ab:4c:14:18:43:70:a0:73:98:fe:97:7d:b6:d2: 04:b9:c0:28:ad:bc:54:24:8d:d5:e6:c6:c8:e9:d4: 2b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:29:93:E9:58:94:90:01:AB:46:2F:D6:E8:E0:73:BC:36:A8:96:1D X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:93:97:21:c8:1e:b8:b3:ca:73:67:de:37:6c:1c:0c:2d:d0: 8f:8f:a9:e9:c0:f8:20:61:07:bb:32:a8:b2:0c:51:c6:bc:54: d9:81:8c:5c:0b:6d:11:5c:e9:47:12:bd:cf:16:d9:18:b3:0b: 8e:32:a3:ef:ea:47:c8:c9:0e:d6:be:2a:fd:82:1e:9a:62:ca: e9:92:b2:9c:78:d2:c0:bf:48:08:ab:79:8b:c0:c3:5a:aa:52: 1f:f7:d0:53:de:52:0c:7a:c4:f7:7d:8f:8f:bc:b2:df:06:45: c6:c4:11:69:00:d5:2a:48:21:a8:6b:6a:7f:0e:e1:f1:77:42: 6a:9a:7d:b7:9e:a5:cf:a7:dc:88:f5:7d:c7:90:38:ec:2f:43: 8e:bc:84:f4:29:fc:28:c3:c9:bd:7a:33:c0:aa:71:7f:9e:de: 34:83:39:f8:89:43:2c:38:c4:2e:65:20:23:3e:dc:cc:b6:a4: aa:58:50:5d:bc:b8:d7:37:8e:1f:1b:9e:63:d0:75:8c:f3:97: 1b:6b:de:c4:f4:50:11:45:a8:bd:e5:0e:b8:2c:c2:5a:e4:fe: 7b:60:d1:be:4d:b4:96:36:55:8b:3d:0d:53:e2:40:8f:1f:c7: 69:b1:be:b7:64:cf:ab:a6:63:f4:8c:55:4a:f5:08:0d:38:f3: 26:70:95:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwODIzMDEwNTA3WhcNMjUwODMwMDEwNTA3WjAYMRYwFAYD VQQDEw02OGE5MTNjNC1iNzA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8CeJpHzHQvgO8PaNPgYO4PExZke2AGU25Uw3QxfJuJNgYD50ie9qhKnL9N7x 0FDGrtdpd8vinyn/5J0OKmiNeXgkUET6BcR+RFhiYRlz7WUxQdYi93IFSXTRyP8Q EwbuuceV+1lmUL46xSNg4LUlhCB+yP/TGzJgoB+JbKvwybqgnSXMfkpYP33DGtX0 mKOYqxjqEc+StgNkYa+gj7reYrPeXw6FzGHy0RhMAXU5AM6ETsadrb+v/VrqeBnE wnCM4g3+/v8P/t8lVkVX5PleFuu3hBEpm8wUSV9xZimrglRmq0wUGENwoHOY/pd9 ttIEucAorbxUJI3V5sbI6dQr8QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKwpk+lY lJABq0Yv1ujgc7w2qJYdMB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNk5chyB64s8pzZ943bBwMLdCPj6npwPggYQe7MqiyDFHGvFTZgYxc C20RXOlHEr3PFtkYswuOMqPv6kfIyQ7Wvir9gh6aYsrpkrKceNLAv0gIq3mLwMNa qlIf99BT3lIMesT3fY+PvLLfBkXGxBFpANUqSCGoa2p/DuHxd0Jqmn23nqXPp9yI 9X3HkDjsL0OOvIT0Kfwow8m9ejPAqnF/nt40gzn4iUMsOMQuZSAjPtzMtqSqWFBd vLjXN44fG55j0HWM85cba97E9FARRai95Q64LMJa5P57YNG+TbSWNlWLPQ1T4kCP H8dpsb63ZM+rpmP0jFVK9QgNOPMmcJWc -----END CERTIFICATE-----Generated at Sat Aug 23 19:05:01 2025 by rpki-client