$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: iDienlNTT06dZ8G1dFwI9TGRnOdmGtMAWDkfC+RVMo8= Subject key identifier: 70:82:99:83:83:26:43:D0:78:95:36:46:97:16:66:BC:61:6E:F0:D0 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 0765 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 074E Signing time: Fri 22 Aug 2025 21:53:29 +0000 Manifest this update: Fri 22 Aug 2025 21:53:29 +0000 Manifest next update: Fri 29 Aug 2025 21:53:28 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: R+NGl4VCvw8WoyXxHJRTDFPax1gHXgiDSTDHDrtRvBM=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1893 (0x765) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Aug 22 21:53:29 2025 GMT Not After : Aug 29 21:53:28 2025 GMT Subject: CN=68a8e6d9-7683 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:48:ff:cb:69:12:f4:56:74:77:c1:87:40:b3: 8c:76:75:5d:d1:b6:6f:3d:bf:f7:78:bb:5d:b3:38: a7:5a:5f:33:6a:d3:11:ba:79:f4:af:ea:db:ba:c4: 13:14:31:90:f4:04:d1:49:65:be:f0:d6:b6:f3:55: f3:5d:29:11:88:fc:a7:46:78:79:75:89:5d:1d:06: 9a:b3:d1:21:78:8e:7a:14:20:e2:10:40:4e:3a:bd: 70:6d:da:3e:02:71:43:fe:0e:c0:87:4f:0b:11:c7: a0:67:35:a9:98:2c:56:e8:1a:82:95:44:25:15:f5: d0:7e:8c:c7:82:8b:f2:46:f0:99:24:ed:d2:ba:46: 6e:4a:77:0f:f4:76:25:cc:54:73:12:49:70:08:e6: c0:f9:82:35:7e:d7:75:b3:f3:1c:de:93:47:16:b7: 6a:ef:16:bd:df:1b:cb:9e:62:ff:d7:46:f5:92:5f: 01:6f:1e:14:f9:93:0e:77:17:4a:99:a8:c1:95:15: 32:be:56:54:a2:69:11:1f:58:4f:33:09:56:74:3a: 6a:1a:32:43:d1:4c:58:93:de:39:77:3a:ab:a4:9f: ae:38:58:c8:26:e6:62:3d:46:84:f9:f0:25:5b:93: 19:1f:a6:d9:a5:06:9c:ed:72:de:7e:6f:7d:2b:6a: f2:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:82:99:83:83:26:43:D0:78:95:36:46:97:16:66:BC:61:6E:F0:D0 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:1d:1d:ae:e6:11:49:18:f7:57:b6:e9:43:21:16:d9:74:8e: 27:df:49:25:86:be:f1:0e:70:6f:32:45:ab:eb:81:0d:22:c0: 7c:aa:03:4f:9d:5d:3b:00:19:7c:d0:c8:1b:bd:64:dc:c2:27: d1:57:4a:45:19:d2:09:77:d8:4e:df:52:5a:c9:0c:d8:27:39: c3:54:10:b2:2a:ad:b5:f9:b5:97:81:71:d6:0d:c2:f5:7e:ee: b4:51:d9:cf:a4:7a:eb:50:c7:e3:c4:a8:ca:58:cc:ab:8f:d7: fd:50:ca:03:70:fa:7c:a4:5f:eb:91:0f:3d:b5:30:42:6e:75: 89:1d:f5:64:48:8e:17:e4:2d:24:0d:3d:c8:1c:54:9e:3e:df: ba:b1:90:ba:f2:45:2e:63:aa:d2:55:27:02:34:75:15:b6:d8: dc:ec:a6:38:c5:93:23:71:28:df:fd:ae:ea:7c:eb:95:a3:da: 02:68:79:70:78:fd:0a:a4:5b:fa:f8:5b:05:d9:96:2e:59:54: e3:05:fc:cf:50:ea:cd:1e:e0:3f:7d:7d:27:91:f6:94:66:f3: cf:f2:d1:bc:f7:9f:de:44:0a:4c:c0:22:c3:9b:96:87:56:22: 88:68:a2:7c:a4:9f:2d:f6:d2:54:25:36:03:3e:31:c6:6f:73: 82:4a:e8:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUwODIyMjE1MzI5WhcNMjUwODI5MjE1MzI4WjAYMRYwFAYD VQQDEw02OGE4ZTZkOS03NjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEj/y2kS9FZ0d8GHQLOMdnVd0bZvPb/3eLtdszinWl8zatMRunn0r+rbusQT FDGQ9ATRSWW+8Na281XzXSkRiPynRnh5dYldHQaas9EheI56FCDiEEBOOr1wbdo+ AnFD/g7Ah08LEcegZzWpmCxW6BqClUQlFfXQfozHgovyRvCZJO3SukZuSncP9HYl zFRzEklwCObA+YI1ftd1s/Mc3pNHFrdq7xa93xvLnmL/10b1kl8Bbx4U+ZMOdxdK majBlRUyvlZUomkRH1hPMwlWdDpqGjJD0UxYk945dzqrpJ+uOFjIJuZiPUaE+fAl W5MZH6bZpQac7XLefm99K2ry/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCCmYOD JkPQeJU2RpcWZrxhbvDQMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANHR2u5hFJGPdXtulDIRbZdI4n30klhr7xDnBvMkWr64ENIsB8qgNP nV07ABl80MgbvWTcwifRV0pFGdIJd9hO31JayQzYJznDVBCyKq21+bWXgXHWDcL1 fu60UdnPpHrrUMfjxKjKWMyrj9f9UMoDcPp8pF/rkQ89tTBCbnWJHfVkSI4X5C0k DT3IHFSePt+6sZC68kUuY6rSVScCNHUVttjc7KY4xZMjcSjf/a7qfOuVo9oCaHlw eP0KpFv6+FsF2ZYuWVTjBfzPUOrNHuA/fX0nkfaUZvPP8tG895/eRApMwCLDm5aH ViKIaKJ8pJ8t9tJUJTYDPjHGb3OCSuhM -----END CERTIFICATE-----Generated at Sat Aug 23 20:18:38 2025 by rpki-client