$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft File: kS3Nd84XYnPZShzEJZKtBclnamI.mft (raw, json) Hash identifier: ww1WbB6NZAIoM8aNnyO1WfvtTR38tScaSS5DrdhVuQk= Subject key identifier: 77:E0:CB:78:B9:6F:15:78:E3:F4:11:79:6A:45:D7:C7:8C:9A:C9:A4 Authority key identifier: 91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 Certificate issuer: /CN=A91CA6E6/serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft Manifest number: 029B Signing time: Sat 23 Aug 2025 03:18:08 +0000 Manifest this update: Sat 23 Aug 2025 03:18:08 +0000 Manifest next update: Sat 30 Aug 2025 03:18:08 +0000 Files and hashes: 1: kS3Nd84XYnPZShzEJZKtBclnamI.crl (hash: WHxophjYbaAfoy1v1rtNQ5Glj4gMB8Z3UaLVj3h2ZOI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:18:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA6E6, serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Validity Not Before: Aug 23 03:18:08 2025 GMT Not After : Aug 30 03:18:08 2025 GMT Subject: CN=68a932f0-48d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:55:b0:80:5f:64:73:2e:9a:60:c0:41:65:f4: f5:a5:5c:59:94:e4:86:4a:ef:fa:e5:58:2c:76:9a: ea:28:95:91:e2:e4:d3:bb:49:a6:5c:05:ba:81:29: b7:5a:e4:74:bc:a9:39:db:41:4a:e2:b9:69:50:b3: 54:ec:94:84:a4:41:9c:24:76:87:59:9e:da:ba:fd: 49:ba:55:93:de:89:5b:0a:d7:fc:02:7e:c7:63:36: 69:0e:34:23:ce:59:47:fd:f7:39:5a:e3:de:87:89: 7b:cc:fd:a2:38:91:06:e6:07:42:69:a4:7a:b2:66: c6:af:0d:11:92:5c:11:0a:cc:18:23:90:8a:c5:b1: 20:ab:18:3a:54:80:1c:ea:86:62:21:ce:d8:91:9a: 52:a5:a1:ad:f7:a0:a0:7c:bd:87:fe:59:52:08:8c: df:b0:55:e4:45:a3:65:e1:e5:58:60:3f:60:51:e7: fb:fe:3a:44:39:b5:f8:c0:a1:ed:c9:c5:f8:89:55: b1:94:6b:80:ee:67:7f:f8:44:02:7d:c5:6e:55:c6: e2:1b:5d:53:ba:67:5c:61:7c:c7:4c:d6:7b:9a:f4: d6:70:c1:31:fe:0e:8b:1d:48:52:c8:fa:a7:7f:e7: 07:a7:42:d3:6c:da:d3:b7:7e:40:8e:f8:1f:db:5f: f9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:E0:CB:78:B9:6F:15:78:E3:F4:11:79:6A:45:D7:C7:8C:9A:C9:A4 X509v3 Authority Key Identifier: keyid:91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:4f:6c:02:75:c7:1f:ae:be:19:5b:70:35:26:8d:19:24:d1: a5:cb:f1:c0:37:d2:69:62:43:6b:08:a2:7f:14:b4:15:29:9f: 6b:9f:0a:10:d6:be:73:fc:d0:0d:f4:a5:0f:03:2c:48:52:c7: 40:5d:1f:65:b0:34:66:a3:65:89:ea:c2:0b:67:3a:c8:53:ad: 97:39:96:8a:b8:be:b9:f2:5e:18:5f:50:c4:c0:3c:b8:1f:7b: 55:72:4f:19:2e:95:58:c9:2e:67:78:2f:29:c1:46:7a:67:ee: f5:a9:a8:dd:bd:87:37:df:61:cf:23:6d:b8:33:d6:cb:ca:7c: 61:61:ad:7f:cb:5a:b4:1b:4b:b4:6f:35:2e:f1:e2:cb:6d:53: 50:19:0c:1b:13:26:ef:b3:14:c9:3b:27:76:14:b4:6e:36:fd: 27:ee:7c:f5:45:0b:2c:48:b4:7f:47:a2:88:0a:17:cc:2c:b0: 1c:74:11:1f:0d:d2:fa:bf:2b:31:3a:4b:94:94:ba:03:9b:3e: 6f:aa:91:2f:bf:64:ef:14:fe:22:8f:3e:6a:39:48:6d:1e:02: b1:56:c4:27:b3:e3:32:ac:12:1c:dc:1f:59:22:60:82:b1:7f: 42:74:99:ab:dd:d6:c4:40:8e:c6:d3:1c:33:aa:a2:5f:cf:e6: 25:77:eb:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E2RTYxMTAvBgNVBAUTKDkxMkRDRDc3Q0UxNzYyNzNEOTRBMUNDNDI1OTJBRDA1 Qzk2NzZBNjIwHhcNMjUwODIzMDMxODA4WhcNMjUwODMwMDMxODA4WjAYMRYwFAYD VQQDEw02OGE5MzJmMC00OGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulWwgF9kcy6aYMBBZfT1pVxZlOSGSu/65VgsdprqKJWR4uTTu0mmXAW6gSm3 WuR0vKk520FK4rlpULNU7JSEpEGcJHaHWZ7auv1JulWT3olbCtf8An7HYzZpDjQj zllH/fc5WuPeh4l7zP2iOJEG5gdCaaR6smbGrw0RklwRCswYI5CKxbEgqxg6VIAc 6oZiIc7YkZpSpaGt96CgfL2H/llSCIzfsFXkRaNl4eVYYD9gUef7/jpEObX4wKHt ycX4iVWxlGuA7md/+EQCfcVuVcbiG11TumdcYXzHTNZ7mvTWcMEx/g6LHUhSyPqn f+cHp0LTbNrTt35Ajvgf21/56QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfgy3i5 bxV44/QReWpF18eMmsmkMB8GA1UdIwQYMBaAFJEtzXfOF2Jz2UocxCWSrQXJZ2pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTZFNi8zQjgzQUZFMEYw RDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFluUFpTaHpFSlpLdEJjbG5h bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTM05kODRYWW5QWlNoekVKWkt0QmNsbmFtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTZFNi8zQjgzQUZFMEYwRDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFlu UFpTaHpFSlpLdEJjbG5hbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDIT2wCdccfrr4ZW3A1Jo0ZJNGly/HAN9JpYkNrCKJ/FLQVKZ9rnwoQ 1r5z/NAN9KUPAyxIUsdAXR9lsDRmo2WJ6sILZzrIU62XOZaKuL658l4YX1DEwDy4 H3tVck8ZLpVYyS5neC8pwUZ6Z+71qajdvYc332HPI224M9bLynxhYa1/y1q0G0u0 bzUu8eLLbVNQGQwbEybvsxTJOyd2FLRuNv0n7nz1RQssSLR/R6KIChfMLLAcdBEf DdL6vysxOkuUlLoDmz5vqpEvv2TvFP4ijz5qOUhtHgKxVsQns+MyrBIc3B9ZImCC sX9CdJmr3dbEQI7G0xwzqqJfz+Yld+tp -----END CERTIFICATE-----Generated at Sat Aug 23 20:33:48 2025 by rpki-client