$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: eVssHsUkbF5GEDEY9+4txTmMuo7b7h1K8AaFnQ5IxmU= Subject key identifier: 33:57:D4:96:A1:9E:8A:B2:D7:75:A1:1E:02:6B:01:A6:51:AE:EB:5D Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 080B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 0805 Signing time: Fri 22 Aug 2025 21:02:11 +0000 Manifest this update: Fri 22 Aug 2025 21:02:10 +0000 Manifest next update: Fri 29 Aug 2025 21:02:10 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: qy7L0cMGDXs36zVNNEc6jR4h1A1f2t9g6wwl/kCuGuY=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: IS2j0d/zVkxwnqe+1txywwwV0QyYZmwCTkV8FQIqSXQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2059 (0x80b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Aug 22 21:02:10 2025 GMT Not After : Aug 29 21:02:10 2025 GMT Subject: CN=68a8dad3-d6c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:34:8c:36:d0:e1:9d:78:b3:2f:bc:60:55:6c: 2b:56:0e:98:2b:84:03:2a:f5:30:70:02:8c:70:ea: 9d:ae:54:b3:e5:a8:d4:a4:ce:7b:03:16:51:97:74: 82:fd:aa:3c:86:e6:19:f9:b8:67:b9:f5:56:8d:b9: 6d:6d:ca:79:34:73:95:64:bc:1d:e1:3d:9f:ca:ed: 8f:62:c6:b7:42:bd:e0:ec:3a:75:69:9e:80:9e:b2: 2c:18:a9:fb:b4:60:7f:b8:71:04:10:8d:93:30:db: 46:f5:de:92:30:46:4c:c9:e9:d8:d5:f8:d1:9c:8c: 13:96:d5:7a:16:d4:21:c4:25:8c:8b:c6:dd:e3:9e: 27:24:e2:be:f2:25:bc:22:04:3d:52:de:5a:4a:b0: 10:65:61:2a:e4:d0:53:20:f1:91:94:e1:04:d9:42: c1:04:1b:f1:ff:7f:ec:72:04:a4:a8:f4:c9:eb:b6: 81:ac:da:9f:19:c0:79:31:05:5d:14:a2:21:47:d0: 23:31:2b:fe:7f:71:38:41:b0:fe:7f:bb:c6:10:ed: 8d:6f:98:05:f8:21:f3:fc:1c:03:23:88:da:ef:4d: 9f:ab:a9:ae:ba:94:7b:51:18:b5:83:f3:e0:3d:fa: 3f:90:9b:68:e9:52:96:ed:ca:0c:c9:99:ea:3a:f5: 31:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:57:D4:96:A1:9E:8A:B2:D7:75:A1:1E:02:6B:01:A6:51:AE:EB:5D X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:7d:9a:0f:9a:71:73:4c:1e:c9:70:37:4c:73:62:04:86:05: 4b:4b:ef:8a:0a:9b:94:5a:fb:b2:3b:dd:99:9b:8d:1c:19:33: b9:83:af:2b:75:3c:63:c9:a5:aa:fb:92:ba:d2:bd:3a:2b:80: cb:9a:7b:41:a9:24:f9:7b:d5:e2:98:1b:7d:d2:b2:91:84:07: c0:8b:dc:f0:bc:28:a0:21:9b:f4:e9:98:0f:14:61:7f:72:cb: 78:a4:19:37:08:f2:79:20:d7:02:52:9b:bd:51:66:27:12:bb: 19:e1:46:5b:50:8b:2d:0c:7c:55:fb:59:cc:5b:91:8a:2b:19: 92:5e:8a:de:25:8b:64:65:fd:8f:61:0a:78:21:f6:3c:9d:98: a0:52:0a:ff:d0:3a:f9:51:d8:0f:27:b3:ae:24:ee:e4:1f:9c: fe:9e:42:33:92:ca:cb:c3:e8:40:e9:65:e7:5c:08:25:c9:2f: 5e:69:07:ee:35:b7:1a:80:d0:84:b1:4d:de:c5:7e:aa:a0:dd: 6b:02:e5:78:35:de:74:28:86:46:1b:34:f6:f7:6d:9d:b6:f8: 7e:fe:51:a5:08:45:a1:f7:04:8b:e7:56:bf:ee:d9:64:bd:89: ed:40:f6:28:8c:6e:73:fd:39:41:42:e0:28:45:8d:a5:e5:c6: 85:6a:b6:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCAswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUwODIyMjEwMjEwWhcNMjUwODI5MjEwMjEwWjAYMRYwFAYD VQQDEw02OGE4ZGFkMy1kNmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjSMNtDhnXizL7xgVWwrVg6YK4QDKvUwcAKMcOqdrlSz5ajUpM57AxZRl3SC /ao8huYZ+bhnufVWjbltbcp5NHOVZLwd4T2fyu2PYsa3Qr3g7Dp1aZ6AnrIsGKn7 tGB/uHEEEI2TMNtG9d6SMEZMyenY1fjRnIwTltV6FtQhxCWMi8bd454nJOK+8iW8 IgQ9Ut5aSrAQZWEq5NBTIPGRlOEE2ULBBBvx/3/scgSkqPTJ67aBrNqfGcB5MQVd FKIhR9AjMSv+f3E4QbD+f7vGEO2Nb5gF+CHz/BwDI4ja702fq6muupR7URi1g/Pg Pfo/kJto6VKW7coMyZnqOvUxgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDNX1Jah noqy13WhHgJrAaZRrutdMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcfZoPmnFzTB7JcDdMc2IEhgVLS++KCpuUWvuyO92Zm40cGTO5g68r dTxjyaWq+5K60r06K4DLmntBqST5e9XimBt90rKRhAfAi9zwvCigIZv06ZgPFGF/ cst4pBk3CPJ5INcCUpu9UWYnErsZ4UZbUIstDHxV+1nMW5GKKxmSXoreJYtkZf2P YQp4IfY8nZigUgr/0Dr5UdgPJ7OuJO7kH5z+nkIzksrLw+hA6WXnXAglyS9eaQfu NbcagNCEsU3exX6qoN1rAuV4Nd50KIZGGzT2922dtvh+/lGlCEWh9wSL51a/7tlk vYntQPYojG5z/TlBQuAoRY2l5caFarZc -----END CERTIFICATE-----Generated at Sun Aug 24 00:50:05 2025 by rpki-client