$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: xN8skZsU7rptbZRLyKtoynfgXddVmglQRNYyMSpr7I8= Subject key identifier: 05:93:3F:CA:40:53:D3:13:5D:0F:A4:D4:55:82:9A:9D:84:6D:81:98 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 016A Signing time: Sat 23 Aug 2025 03:58:53 +0000 Manifest this update: Sat 23 Aug 2025 03:58:52 +0000 Manifest next update: Sat 30 Aug 2025 03:58:52 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: kx62HByuUq/UF8VKGvK+Whe0+kE2Oh6EaHi8ni9okzo=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: s8Vu/R6gOMwvLzsGf3nk9tFhiMljx1hOH6LnsMms3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:58:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Aug 23 03:58:52 2025 GMT Not After : Aug 30 03:58:52 2025 GMT Subject: CN=68a93c7c-6956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:da:83:2b:1e:2c:63:87:7f:0a:b9:59:a5:13: e8:be:86:c0:45:eb:b5:33:92:06:af:a9:aa:59:1f: 50:2f:46:79:5d:dd:09:84:20:bb:7d:c3:ba:e7:66: 7e:16:63:a1:2f:66:cb:be:73:f3:34:1e:6a:f8:b7: 44:47:d9:0b:37:92:c7:e6:63:3d:6d:da:0a:5b:37: db:0f:92:9f:e0:94:28:32:1c:55:f7:1f:31:8d:c5: ba:59:46:a8:52:a9:cd:72:5d:02:2e:b2:0c:ba:8b: 65:89:ad:be:9e:c7:df:ad:e9:5f:0a:dd:3a:44:8c: 75:36:5e:73:d8:3f:11:28:d4:35:29:03:9a:e8:a0: ed:43:b5:c9:40:df:06:5f:17:7a:c5:13:95:76:a1: 30:f1:02:63:83:e4:02:d3:a6:1f:14:83:ae:25:24: b1:51:61:3c:30:73:02:a6:67:41:3d:e0:df:6f:ca: d2:d9:e8:32:32:b8:e2:12:27:da:36:c8:76:e1:8d: 93:17:4b:f2:f4:0f:65:c6:d5:35:43:eb:d0:b4:8a: 18:57:fa:c5:51:74:ee:48:d8:3f:8f:0b:3d:25:70: 06:a0:32:40:d1:46:8f:1a:5f:a0:29:10:ca:aa:87: 99:52:b9:b3:8e:23:ba:25:f9:75:75:9c:f7:16:05: 79:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:93:3F:CA:40:53:D3:13:5D:0F:A4:D4:55:82:9A:9D:84:6D:81:98 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:03:36:08:3a:48:0e:c8:a8:43:84:66:ef:72:a8:b1:ed:a5: cc:a7:e5:32:38:93:72:94:f3:65:5e:a6:df:2e:4e:11:a7:29: 4c:29:82:46:4d:73:dd:92:c6:a6:e8:cf:a1:2d:94:d0:3f:1f: 54:50:96:4d:10:8c:07:fe:8d:f5:5b:b9:2b:3f:38:c4:cc:1c: 33:98:11:1b:2e:0c:0d:1b:fe:9a:48:0c:60:c8:c3:d4:87:13: 9a:9a:20:30:38:79:28:66:34:76:c0:6a:2c:f2:f8:38:ab:e6: 6c:03:d2:18:c0:40:49:e2:44:4d:c2:d6:c1:19:4b:db:ce:5f: 60:d7:17:c1:5c:cf:6c:f7:e1:24:36:16:40:46:a9:ec:a3:90: 81:d2:b4:ff:a8:8c:84:a3:73:7a:23:2f:94:15:2a:88:15:2f: c9:9b:2d:4e:d9:61:da:78:32:62:81:7c:aa:5e:ed:98:58:4c: e5:5f:9c:e5:43:86:ba:6a:a1:ed:56:b8:16:4d:ac:60:46:f9: 83:21:1e:66:5d:95:3c:60:76:1d:a9:b7:b8:e6:a9:97:cb:8f: 74:c0:95:6b:ba:37:d5:7c:6b:87:71:a2:a0:c0:87:59:26:7d: 48:37:e5:ec:db:2c:db:db:cb:85:c0:54:d2:5d:36:fc:0d:5c: f7:41:d6:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUwODIzMDM1ODUyWhcNMjUwODMwMDM1ODUyWjAYMRYwFAYD VQQDEw02OGE5M2M3Yy02OTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtqDKx4sY4d/CrlZpRPovobAReu1M5IGr6mqWR9QL0Z5Xd0JhCC7fcO652Z+ FmOhL2bLvnPzNB5q+LdER9kLN5LH5mM9bdoKWzfbD5Kf4JQoMhxV9x8xjcW6WUao UqnNcl0CLrIMuotlia2+nsffrelfCt06RIx1Nl5z2D8RKNQ1KQOa6KDtQ7XJQN8G Xxd6xROVdqEw8QJjg+QC06YfFIOuJSSxUWE8MHMCpmdBPeDfb8rS2egyMrjiEifa Nsh24Y2TF0vy9A9lxtU1Q+vQtIoYV/rFUXTuSNg/jws9JXAGoDJA0UaPGl+gKRDK qoeZUrmzjiO6Jfl1dZz3FgV5NwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWTP8pA U9MTXQ+k1FWCmp2EbYGYMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCiAzYIOkgOyKhDhGbvcqix7aXMp+UyOJNylPNlXqbfLk4RpylMKYJG TXPdksam6M+hLZTQPx9UUJZNEIwH/o31W7krPzjEzBwzmBEbLgwNG/6aSAxgyMPU hxOamiAwOHkoZjR2wGos8vg4q+ZsA9IYwEBJ4kRNwtbBGUvbzl9g1xfBXM9s9+Ek NhZARqnso5CB0rT/qIyEo3N6Iy+UFSqIFS/Jmy1O2WHaeDJigXyqXu2YWEzlX5zl Q4a6aqHtVrgWTaxgRvmDIR5mXZU8YHYdqbe45qmXy490wJVrujfVfGuHcaKgwIdZ Jn1IN+Xs2yzb28uFwFTSXTb8DVz3QdZr -----END CERTIFICATE-----Generated at Sat Aug 23 20:12:43 2025 by rpki-client