$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: xZb/l6dDmCD6RGkujonpz5bx2EHHb7Wwhf8HHPSNILw= Subject key identifier: 4D:95:74:46:AE:EA:A5:15:0D:31:9D:B3:B8:E6:6F:22:78:8B:DE:E5 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09B7 Signing time: Wed 02 Jul 2025 20:15:22 +0000 Manifest this update: Wed 02 Jul 2025 20:15:21 +0000 Manifest next update: Wed 09 Jul 2025 20:15:21 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: LSS42XNXl7W6Yy8YbMOoK0Zg495KyLuiV3onpDOf6dY=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:15:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2493 (0x9bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Jul 2 20:15:21 2025 GMT Not After : Jul 9 20:15:21 2025 GMT Subject: CN=6865935a-f3e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e7:d0:f4:89:90:26:b7:cd:93:58:a8:07:9e: 0c:56:1a:10:85:e8:ef:71:e0:f1:e6:cb:ae:b2:37: 79:15:0b:b0:0b:d8:02:32:8c:a6:d0:26:02:9b:bb: 12:82:48:5d:4e:14:6b:c8:b6:75:47:cb:a6:92:b5: d9:56:46:0d:e9:47:2e:42:56:6d:20:5e:6e:4c:13: 0b:97:4b:9a:b9:82:46:5c:8f:fd:dd:81:3d:76:64: 3c:14:d5:43:db:16:c0:1d:0e:1a:a3:3c:71:ed:8b: 24:ae:c6:03:3e:72:0d:52:ff:75:74:82:93:d6:61: d8:10:1e:99:02:3a:be:bc:46:38:1b:d1:0a:7e:4d: 6e:1b:a2:ca:86:b0:9d:a0:79:20:41:11:ed:28:be: 74:ff:ef:2b:30:b8:a0:d0:96:a7:c8:15:bf:0c:f7: 59:6f:36:ab:16:5a:ed:be:d7:58:c6:e3:e6:0a:77: 2a:44:92:f6:73:f0:92:6b:8f:69:49:d5:ca:7e:b8: a3:3b:9d:23:84:b6:3f:f7:3f:33:44:3a:af:66:67: f4:c0:47:7c:ea:00:01:90:4e:85:92:59:b8:2e:e5: 5d:6b:30:36:9e:d5:f6:b2:65:3f:c1:bb:76:6e:f3: e6:4e:fa:90:38:7e:9a:55:c0:d9:64:af:1a:1f:35: 20:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:95:74:46:AE:EA:A5:15:0D:31:9D:B3:B8:E6:6F:22:78:8B:DE:E5 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:af:5f:34:47:ce:16:dd:74:e3:bc:a4:74:d6:c5:95:df:6d: 07:24:f3:0e:d9:40:ce:f4:86:43:b7:7d:5b:c5:b9:7c:cc:a2: d9:cb:63:11:ae:f8:bb:b1:9f:9c:4e:32:e3:d1:4f:9d:87:b2: 68:26:ee:e6:41:67:e3:31:03:72:6b:50:86:a7:67:6a:93:e0: 2c:f7:ac:1f:10:9e:f8:83:df:3d:3e:97:35:a8:cc:26:e5:34: 8d:08:7d:c4:c4:9b:82:f8:32:80:52:e3:3b:77:2d:a0:d8:31: 77:a5:a2:2a:b8:4b:dd:14:96:be:5b:bc:aa:9d:f6:f4:98:40: f1:e2:93:7f:54:52:0b:27:5b:e0:6c:5d:b7:91:3c:3d:aa:07: 38:ae:76:bd:c4:cb:a1:89:d9:30:c0:6a:00:ad:33:90:5d:79: d2:14:47:40:6d:e0:bb:66:32:d8:5b:80:95:ac:a4:c0:cc:e6: 87:1d:e8:61:61:68:c4:a7:73:de:bf:12:a1:cb:6d:85:82:c6: ef:ad:3e:e5:bc:fc:92:47:28:25:19:0e:bc:c8:10:4c:01:10: 7a:75:9c:3b:67:b4:20:79:47:fa:bf:86:d1:c6:69:a7:62:7f: fd:67:d3:02:70:5c:f6:9c:54:9e:98:cc:95:0d:e6:b4:2e:6a: f5:53:d4:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwNzAyMjAxNTIxWhcNMjUwNzA5MjAxNTIxWjAYMRYwFAYD VQQDEw02ODY1OTM1YS1mM2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOfQ9ImQJrfNk1ioB54MVhoQhejvceDx5suusjd5FQuwC9gCMoym0CYCm7sS gkhdThRryLZ1R8umkrXZVkYN6UcuQlZtIF5uTBMLl0uauYJGXI/93YE9dmQ8FNVD 2xbAHQ4aozxx7YskrsYDPnINUv91dIKT1mHYEB6ZAjq+vEY4G9EKfk1uG6LKhrCd oHkgQRHtKL50/+8rMLig0JanyBW/DPdZbzarFlrtvtdYxuPmCncqRJL2c/CSa49p SdXKfrijO50jhLY/9z8zRDqvZmf0wEd86gABkE6Fklm4LuVdazA2ntX2smU/wbt2 bvPmTvqQOH6aVcDZZK8aHzUg4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE2VdEau 6qUVDTGds7jmbyJ4i97lMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEr180R84W3XTjvKR01sWV320HJPMO2UDO9IZDt31bxbl8zKLZy2MR rvi7sZ+cTjLj0U+dh7JoJu7mQWfjMQNya1CGp2dqk+As96wfEJ74g989Ppc1qMwm 5TSNCH3ExJuC+DKAUuM7dy2g2DF3paIquEvdFJa+W7yqnfb0mEDx4pN/VFILJ1vg bF23kTw9qgc4rna9xMuhidkwwGoArTOQXXnSFEdAbeC7ZjLYW4CVrKTAzOaHHehh YWjEp3PevxKhy22FgsbvrT7lvPySRyglGQ68yBBMARB6dZw7Z7QgeUf6v4bRxmmn Yn/9Z9MCcFz2nFSemMyVDea0Lmr1U9TE -----END CERTIFICATE-----Generated at Fri Jul 4 18:16:24 2025 by rpki-client