$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: VN9Zf1x8gIoiNagWZHdVCWl5U5ERGCSQneeJTsS5wa8= Subject key identifier: C0:9E:6D:EE:81:6B:F8:20:E0:B4:1D:FB:75:B3:B8:CD:45:14:50:10 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 035A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 0356 Signing time: Sat 23 Aug 2025 00:55:30 +0000 Manifest this update: Sat 23 Aug 2025 00:55:29 +0000 Manifest next update: Sat 30 Aug 2025 00:55:29 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: cCn9bXGXMk94300I/B2yVpEXH4/PY87Q9EPzIYH3pf8=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:55:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 858 (0x35a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Aug 23 00:55:29 2025 GMT Not After : Aug 30 00:55:29 2025 GMT Subject: CN=68a91181-0cf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f4:fd:95:01:af:c8:5a:2f:e0:51:16:ab:c0: 5a:a3:c8:27:ed:c5:df:14:2e:3a:8f:17:5a:03:1f: 80:35:8b:ec:ec:d4:1f:3b:7d:1e:61:d4:36:63:1c: a4:7c:7a:3b:ef:83:3b:64:2a:91:ee:a3:93:4c:0d: 28:a2:8e:67:5a:30:1f:98:ec:4c:8c:bf:67:89:d6: 4e:20:e1:a7:e9:46:ec:f9:bb:31:53:db:02:02:a9: 74:bf:8f:6b:70:10:e3:78:c0:61:28:39:fe:09:bf: 9d:6e:24:52:38:bf:18:5a:03:84:24:5f:8a:cc:06: 18:9f:c1:c0:bd:8c:57:5f:ae:5f:e0:c5:06:aa:3a: a3:7a:d0:d4:e6:6a:d5:bb:fa:9b:40:d7:8a:c7:2b: 70:c7:d8:a9:11:23:44:a8:dd:b5:c9:0f:ad:18:dc: 1a:b7:70:eb:6c:7a:4f:68:c9:13:1c:76:58:3f:f5: 6c:33:10:f0:09:c3:f1:be:a5:9a:97:01:a4:59:8e: 59:9b:c0:6d:a9:d9:f0:99:f9:55:62:03:fc:d2:5c: 3b:83:3c:20:87:e3:40:e3:34:df:13:63:84:67:2b: 86:3d:f9:77:9e:6a:26:f2:54:38:b4:e6:c7:d5:d1: 43:8c:09:27:de:dc:60:46:c5:bf:1a:dd:bf:b8:ef: 4c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:9E:6D:EE:81:6B:F8:20:E0:B4:1D:FB:75:B3:B8:CD:45:14:50:10 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:41:16:aa:28:7d:69:3e:3a:6b:af:de:59:d1:af:98:bb:70: e4:d6:61:1c:f1:4f:40:e6:1d:dc:34:e9:8f:fc:8b:7f:dd:86: 34:0e:a6:0e:d5:2e:aa:00:81:a5:d4:d1:8c:d5:0b:9e:83:88: df:bf:14:91:96:fe:1c:c1:84:50:9f:f7:6c:3d:60:a3:b1:af: 47:94:a2:72:21:91:c1:ff:89:cf:68:e9:e1:10:29:13:96:ea: af:94:f7:97:07:0a:e7:44:06:dd:92:81:8f:16:76:f5:00:e2: 99:ce:a4:9c:0c:cd:da:ee:18:4d:c6:bb:2f:84:62:b4:79:6b: 7d:47:cf:e3:6b:a6:5a:c4:91:54:0e:f2:46:a5:3a:5f:95:56: 45:98:36:bf:e9:e2:3a:8c:b3:e1:5a:82:e9:17:2c:e2:98:d0: c2:a8:ab:1e:93:06:59:93:50:dc:81:4a:44:75:5d:22:a7:c2: 90:11:4e:c6:13:96:b6:76:a6:7b:19:a6:b9:09:46:96:93:86: 9b:97:45:91:e0:e7:a9:94:dd:58:a4:4d:04:da:6c:64:44:98: 1f:4a:bb:cf:b1:09:00:cd:80:ef:a3:c7:9d:cf:cd:83:4f:b3: af:03:f0:68:2a:7b:62:a4:b0:fe:ff:15:aa:f9:6e:66:10:10: 82:d9:24:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUwODIzMDA1NTI5WhcNMjUwODMwMDA1NTI5WjAYMRYwFAYD VQQDEw02OGE5MTE4MS0wY2Y0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvT9lQGvyFov4FEWq8Bao8gn7cXfFC46jxdaAx+ANYvs7NQfO30eYdQ2Yxyk fHo774M7ZCqR7qOTTA0ooo5nWjAfmOxMjL9nidZOIOGn6Ubs+bsxU9sCAql0v49r cBDjeMBhKDn+Cb+dbiRSOL8YWgOEJF+KzAYYn8HAvYxXX65f4MUGqjqjetDU5mrV u/qbQNeKxytwx9ipESNEqN21yQ+tGNwat3DrbHpPaMkTHHZYP/VsMxDwCcPxvqWa lwGkWY5Zm8BtqdnwmflVYgP80lw7gzwgh+NA4zTfE2OEZyuGPfl3nmom8lQ4tObH 1dFDjAkn3txgRsW/Gt2/uO9MowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMCebe6B a/gg4LQd+3WzuM1FFFAQMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATQRaqKH1pPjprr95Z0a+Yu3Dk1mEc8U9A5h3cNOmP/It/3YY0DqYO 1S6qAIGl1NGM1Queg4jfvxSRlv4cwYRQn/dsPWCjsa9HlKJyIZHB/4nPaOnhECkT luqvlPeXBwrnRAbdkoGPFnb1AOKZzqScDM3a7hhNxrsvhGK0eWt9R8/ja6ZaxJFU DvJGpTpflVZFmDa/6eI6jLPhWoLpFyzimNDCqKsekwZZk1DcgUpEdV0ip8KQEU7G E5a2dqZ7Gaa5CUaWk4abl0WR4OeplN1YpE0E2mxkRJgfSrvPsQkAzYDvo8edz82D T7OvA/BoKntipLD+/xWq+W5mEBCC2STL -----END CERTIFICATE-----Generated at Sat Aug 23 12:26:31 2025 by rpki-client