$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: lnF5JmlB9IdTxSQ+pQS/L/m0rjYq32uk72MDlg3sawc= Subject key identifier: B3:9B:E9:F0:37:9B:7D:2C:89:7C:69:EC:D6:6C:12:BB:1F:80:8A:35 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09D1 Signing time: Fri 22 Aug 2025 20:05:46 +0000 Manifest this update: Fri 22 Aug 2025 20:05:46 +0000 Manifest next update: Fri 29 Aug 2025 20:05:46 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: 7Lmz9ycLQph8373cFbAXOmHaA0cKGLZnuvOUABJYxxA=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2519 (0x9d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Aug 22 20:05:46 2025 GMT Not After : Aug 29 20:05:46 2025 GMT Subject: CN=68a8cd9a-98a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d2:b6:45:67:26:c8:82:2d:fa:bd:50:1d:45: 65:ce:56:29:2f:a6:69:43:b6:06:c8:29:5c:93:8f: d8:81:dc:a4:f6:2e:1d:e4:d0:2b:96:14:f6:aa:d6: 8f:79:da:e8:c6:81:84:45:b5:6a:00:6f:7b:3d:b7: 56:9c:88:74:15:2c:09:5d:81:f5:5d:9a:eb:42:53: a5:3c:07:99:be:58:65:36:f5:bd:b2:8f:dc:fd:df: 56:99:81:f4:7a:3d:c6:0e:ac:a7:f6:6f:4b:a9:d6: 98:e1:80:6a:f5:95:87:08:30:60:3a:95:72:73:e4: 2a:54:ca:1a:1d:c2:2b:62:4f:8d:d6:4c:a1:9b:11: ee:8f:d7:b5:27:f4:b8:e2:f6:42:d6:9e:2a:cc:b1: 41:95:d3:2f:51:d7:39:a9:bb:b2:f5:94:c1:c7:b0: 7d:d5:60:46:3d:a3:53:38:a9:78:d6:72:58:e5:4b: d9:b3:86:79:59:5f:b3:48:31:1a:d0:82:7c:95:fd: c7:46:78:16:2c:ee:b6:d1:3e:40:32:aa:f2:c3:b8: a2:f2:62:53:57:3a:bc:c6:7a:9e:cc:81:41:c9:5f: 31:97:48:b6:d6:99:40:9a:ce:e5:d0:47:f1:43:dc: 78:e3:74:dc:7c:ec:72:20:d2:b3:91:4a:3b:a0:ce: 37:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:9B:E9:F0:37:9B:7D:2C:89:7C:69:EC:D6:6C:12:BB:1F:80:8A:35 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:ab:c9:25:64:31:34:1a:ed:e1:21:61:c9:d8:19:ba:50:01: 83:6c:c5:93:5e:5c:75:e6:5f:65:5d:37:64:58:d5:01:90:81: 13:3c:ca:66:4e:5d:30:43:16:0b:d7:d0:30:d3:d5:20:be:5f: 05:7c:89:86:b5:c1:82:d5:d5:72:2d:6d:96:30:2e:e9:fc:4a: d7:c4:1b:15:86:5e:86:64:54:8e:ae:1c:cb:af:32:28:e5:98: 0c:0c:6a:30:2d:c6:5f:e3:1f:90:51:50:d3:f4:0d:f6:fb:e7: 61:55:00:06:6e:be:3c:1c:2d:65:14:ac:7f:24:c7:a0:97:13: f2:56:2a:b4:20:cd:ae:ce:7a:4e:6b:d5:57:ce:b6:b0:1a:29: c6:f2:17:6c:11:6d:ad:eb:fe:dc:1e:42:69:49:7e:62:54:0f: 62:ba:f3:f3:7a:ef:8a:28:71:89:b4:9e:a1:d5:ae:af:63:e5: 8c:5f:82:3a:64:7e:64:f1:4d:d3:0d:18:c8:eb:50:f6:cb:45: 5c:fd:62:9c:a6:50:12:47:72:24:33:09:62:2a:b6:60:d7:3f: cb:1a:a4:bc:12:21:34:27:5b:66:2f:b0:ae:04:bf:40:90:24: ff:c5:14:ef:96:20:b4:2d:4e:35:88:f5:39:57:5e:0b:d4:9e: 14:dd:5a:f3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwODIyMjAwNTQ2WhcNMjUwODI5MjAwNTQ2WjAYMRYwFAYD VQQDEw02OGE4Y2Q5YS05OGEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoNK2RWcmyIIt+r1QHUVlzlYpL6ZpQ7YGyClck4/Ygdyk9i4d5NArlhT2qtaP edroxoGERbVqAG97PbdWnIh0FSwJXYH1XZrrQlOlPAeZvlhlNvW9so/c/d9WmYH0 ej3GDqyn9m9LqdaY4YBq9ZWHCDBgOpVyc+QqVMoaHcIrYk+N1kyhmxHuj9e1J/S4 4vZC1p4qzLFBldMvUdc5qbuy9ZTBx7B91WBGPaNTOKl41nJY5UvZs4Z5WV+zSDEa 0IJ8lf3HRngWLO620T5AMqryw7ii8mJTVzq8xnqezIFByV8xl0i21plAms7l0Efx Q9x443TcfOxyINKzkUo7oM439wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLOb6fA3 m30siXxp7NZsErsfgIo1MB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTq8klZDE0Gu3hIWHJ2Bm6UAGDbMWTXlx15l9lXTdkWNUBkIETPMpm Tl0wQxYL19Aw09Ugvl8FfImGtcGC1dVyLW2WMC7p/ErXxBsVhl6GZFSOrhzLrzIo 5ZgMDGowLcZf4x+QUVDT9A32++dhVQAGbr48HC1lFKx/JMeglxPyViq0IM2uznpO a9VXzrawGinG8hdsEW2t6/7cHkJpSX5iVA9iuvPzeu+KKHGJtJ6h1a6vY+WMX4I6 ZH5k8U3TDRjI61D2y0Vc/WKcplASR3IkMwliKrZg1z/LGqS8EiE0J1tmL7CuBL9A kCT/xRTvliC0LU41iPU5V14L1J4U3Vrz -----END CERTIFICATE-----Generated at Sun Aug 24 03:09:13 2025 by rpki-client