$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: 0qzicjSs4hTzHh1nLJi9GzmAQipI4rUC5UhYMG6wYC4= Subject key identifier: F1:D9:64:87:4D:10:66:A7:2A:F4:B0:A0:D6:EE:97:CD:21:E0:3D:DE Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: D1 Signing time: Sat 23 Aug 2025 05:53:30 +0000 Manifest this update: Sat 23 Aug 2025 05:53:30 +0000 Manifest next update: Sat 30 Aug 2025 05:53:30 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: rHMS6JU1xRSjkfLmkmzhO7qdaTBduqcE1ZthNGoInio=) 2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:53:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Aug 23 05:53:30 2025 GMT Not After : Aug 30 05:53:30 2025 GMT Subject: CN=68a9575a-2f6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:df:62:29:4a:d5:fb:4e:f6:8c:df:e4:a8:5c: 3c:15:13:14:f1:3f:9a:3c:3e:f5:14:b4:7e:5c:d3: f2:af:30:7b:af:c4:57:91:42:93:a5:67:c3:6f:f3: a8:e0:c9:df:36:7f:c3:00:98:8a:a2:c0:64:a6:a7: 50:16:08:3e:17:62:80:08:72:49:9a:f9:55:b6:bb: 1a:ae:d2:d6:75:47:c0:53:b6:4e:07:2a:c2:d2:79: 26:69:84:f5:d1:07:54:61:4a:d9:5e:8a:36:9a:18: a1:57:10:d9:7f:0c:0c:56:31:b6:83:77:91:37:86: d3:c8:c3:dc:2c:ab:a6:cf:69:69:49:28:78:f6:ee: d8:56:89:1f:50:3d:2d:eb:cf:59:dd:0d:b5:25:74: e4:cd:8d:b2:1d:55:92:87:6a:29:be:f3:ff:c3:61: 13:1b:c6:ce:03:7e:ce:83:b5:7b:da:94:3c:72:1b: 76:02:67:71:0f:86:0d:83:18:b6:57:72:6d:12:72: 65:b7:d6:a3:68:47:54:05:04:d1:fe:ac:c6:b1:46: cb:bd:d2:d6:9d:66:e5:2e:c7:1e:c0:79:8b:86:d9: 89:a7:36:b1:07:0f:d7:6b:66:e9:a3:ab:db:aa:43: 7a:bf:9e:f8:de:8b:a5:88:81:88:77:80:13:d8:18: 19:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:D9:64:87:4D:10:66:A7:2A:F4:B0:A0:D6:EE:97:CD:21:E0:3D:DE X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:17:ce:61:8b:f5:3f:72:5a:e9:ec:34:36:b4:39:71:fa:8f: 1f:02:c0:f5:3b:e6:75:7f:01:90:c7:6d:02:f5:3c:03:b1:ff: b2:cb:b0:68:97:28:f0:d0:d8:53:4b:75:9f:db:08:c7:6e:2e: e3:59:9b:96:ec:3f:f5:d2:4c:64:70:61:08:b8:6d:af:86:bc: 44:b9:2c:44:5a:2a:34:f1:1e:65:04:96:a2:97:82:59:5b:8d: e0:d7:f1:82:91:f4:25:96:83:8e:4e:4b:92:fb:73:bb:2c:6e: bd:9f:e9:6a:e2:d0:6b:b9:37:28:47:9b:44:ae:5a:69:10:fe: dc:c5:1e:47:e7:72:2d:8f:27:cb:47:dd:2e:7d:a1:60:4d:38: 0c:e8:ba:2a:f3:e2:20:8f:49:df:39:d7:6a:60:d7:41:d3:d8: 72:d4:fb:ad:4e:cd:21:78:a8:ab:bd:3a:1b:0c:5c:2e:7e:6c: 9f:2e:f6:d4:b5:44:cd:0f:6f:2e:73:77:91:c8:ed:86:72:b8: 2d:e0:4f:81:5a:7c:b7:c3:d9:af:62:a5:1e:cb:a0:1c:35:cc: a0:50:95:83:c0:c7:ee:09:d5:12:44:26:eb:e9:04:b9:b7:3b: 52:c5:c5:1a:8d:35:74:5f:bd:ea:99:e7:66:67:dd:49:d9:5e: d3:bd:ce:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwODIzMDU1MzMwWhcNMjUwODMwMDU1MzMwWjAYMRYwFAYD VQQDEw02OGE5NTc1YS0yZjZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq99iKUrV+072jN/kqFw8FRMU8T+aPD71FLR+XNPyrzB7r8RXkUKTpWfDb/Oo 4MnfNn/DAJiKosBkpqdQFgg+F2KACHJJmvlVtrsartLWdUfAU7ZOByrC0nkmaYT1 0QdUYUrZXoo2mhihVxDZfwwMVjG2g3eRN4bTyMPcLKumz2lpSSh49u7YVokfUD0t 689Z3Q21JXTkzY2yHVWSh2opvvP/w2ETG8bOA37Og7V72pQ8cht2AmdxD4YNgxi2 V3JtEnJlt9ajaEdUBQTR/qzGsUbLvdLWnWblLscewHmLhtmJpzaxBw/Xa2bpo6vb qkN6v5743ouliIGId4AT2BgZLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPHZZIdN EGanKvSwoNbul80h4D3eMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBzF85hi/U/clrp7DQ2tDlx+o8fAsD1O+Z1fwGQx20C9TwDsf+yy7Bo lyjw0NhTS3Wf2wjHbi7jWZuW7D/10kxkcGEIuG2vhrxEuSxEWio08R5lBJail4JZ W43g1/GCkfQlloOOTkuS+3O7LG69n+lq4tBruTcoR5tErlppEP7cxR5H53ItjyfL R90ufaFgTTgM6Loq8+Igj0nfOddqYNdB09hy1PutTs0heKirvTobDFwufmyfLvbU tUTND28uc3eRyO2Gcrgt4E+BWny3w9mvYqUey6AcNcygUJWDwMfuCdUSRCbr6QS5 tztSxcUajTV0X73qmedmZ91J2V7Tvc6G -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:37 2025 by rpki-client