$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: 51ZzYlY8Crx99jFCQNX6SWTbvNkZJ2gHYLmMjXuYiFc= Subject key identifier: 2D:BB:F0:E8:E9:61:A0:F3:6A:91:F8:82:CE:A8:7F:AF:3F:63:0A:8C Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0EC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E7C Signing time: Fri 22 Aug 2025 17:53:47 +0000 Manifest this update: Fri 22 Aug 2025 17:53:46 +0000 Manifest next update: Fri 29 Aug 2025 17:53:46 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: HSetUHz7o0REX+QsO2fWLljzL2l+jdzVxLHgiRMX4c0=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: q8VjbfesBfjBXJ1O+TtlGTvZbuy2Q6Gq6lc9iUM1cKc=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: L+aUrfi/IHEm4FCCzrEf6AdJOcO/5KYjXAI+VHu0xCQ=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: mlWu4QI6RV3Fazg24ou9fVsCNac8uNLMWZTkxYffaU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:53:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3783 (0xec7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Aug 22 17:53:46 2025 GMT Not After : Aug 29 17:53:46 2025 GMT Subject: CN=68a8aeaa-5081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ef:b6:c9:f1:fa:a7:60:d5:63:c4:57:f4:b8: c8:c4:df:aa:51:8d:71:6d:1c:f5:56:af:b3:0e:f5: 18:1e:3c:fc:d9:b7:44:82:aa:ce:2b:03:7f:85:77: b9:82:46:45:25:99:5c:4b:a4:e2:1a:03:d6:11:11: d5:a0:99:fa:35:38:40:05:ba:fb:6c:f4:c8:91:e7: 13:39:23:fe:be:86:a8:ce:75:2a:6c:77:31:d9:90: 59:17:67:a0:c7:61:95:e7:ba:0a:c8:5e:36:93:e6: a5:43:95:71:99:72:ca:0d:ee:7f:96:3c:d9:a6:74: 5e:77:39:e0:ac:eb:db:7c:58:0f:f7:d0:f1:56:b8: e7:6e:fd:68:f9:9b:d6:d2:ac:5a:54:f4:1c:3f:0c: 65:c6:0f:af:dd:c1:b9:a7:40:31:b2:15:0d:92:d8: 6a:43:48:65:3e:22:3b:e6:2e:7a:7d:81:e1:c2:a3: 25:1a:9e:39:45:ed:31:a7:51:58:3b:b4:25:f9:bc: 95:5d:de:dc:d9:04:ea:94:21:09:a0:b6:9e:52:09: 16:7f:eb:0a:b7:69:e2:6e:85:c8:fc:a5:20:5b:a8: f0:95:04:45:6c:8c:bb:53:12:0b:cc:9f:fb:43:44: 31:e0:f2:c0:0b:e5:bf:b7:da:4e:6c:30:7a:61:0d: 4e:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BB:F0:E8:E9:61:A0:F3:6A:91:F8:82:CE:A8:7F:AF:3F:63:0A:8C X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:8e:e3:5b:7b:3b:73:45:e8:97:07:22:a8:0a:3a:c8:c5:96: f9:cf:24:ba:1d:fc:15:ae:b9:af:50:03:57:86:de:3c:83:97: 8c:d8:2e:95:c2:0a:94:c6:82:62:02:0b:28:f5:57:4b:ea:bd: f5:05:9a:0f:72:1e:3e:42:96:a5:fc:87:33:cb:ea:34:1f:5b: b2:3c:4f:34:9e:c8:91:a8:c4:fc:6d:ea:5e:ed:e7:67:5e:4f: 2a:79:20:5e:24:c0:6f:b3:b2:15:76:50:e0:ff:a0:a3:77:31: 86:08:4e:ed:b5:f3:9f:d6:94:82:64:e7:15:ac:22:73:fb:03: 09:7d:c2:69:ea:05:ca:d3:c9:c6:a6:1a:9d:b8:45:e5:16:cb: b0:ae:44:01:42:fa:ed:31:a0:e5:c7:ac:cd:76:54:3a:f3:a0: b0:06:07:8a:f4:40:99:f2:8f:f9:3c:bd:cb:c9:76:41:c1:74: 9e:6c:93:85:d6:04:77:ef:2e:b4:6b:d5:87:1d:db:01:e6:fb: e5:11:29:5b:59:90:7d:25:b6:e4:76:c2:59:33:dc:5e:6d:a7: 84:24:60:55:0e:37:9f:8d:f0:df:bf:33:8e:f4:8a:d8:4e:39: 50:b2:ad:f7:11:af:19:d8:c8:0a:eb:02:0b:75:ee:1a:8b:35: 06:00:d7:1d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwODIyMTc1MzQ2WhcNMjUwODI5MTc1MzQ2WjAYMRYwFAYD VQQDEw02OGE4YWVhYS01MDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9++2yfH6p2DVY8RX9LjIxN+qUY1xbRz1Vq+zDvUYHjz82bdEgqrOKwN/hXe5 gkZFJZlcS6TiGgPWERHVoJn6NThABbr7bPTIkecTOSP+voaoznUqbHcx2ZBZF2eg x2GV57oKyF42k+alQ5VxmXLKDe5/ljzZpnRedzngrOvbfFgP99DxVrjnbv1o+ZvW 0qxaVPQcPwxlxg+v3cG5p0AxshUNkthqQ0hlPiI75i56fYHhwqMlGp45Re0xp1FY O7Ql+byVXd7c2QTqlCEJoLaeUgkWf+sKt2niboXI/KUgW6jwlQRFbIy7UxILzJ/7 Q0Qx4PLAC+W/t9pObDB6YQ1OlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC278Ojp YaDzapH4gs6of68/YwqMMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRjuNbeztzReiXByKoCjrIxZb5zyS6HfwVrrmvUANXht48g5eM2C6V wgqUxoJiAgso9VdL6r31BZoPch4+Qpal/Iczy+o0H1uyPE80nsiRqMT8bepe7edn Xk8qeSBeJMBvs7IVdlDg/6CjdzGGCE7ttfOf1pSCZOcVrCJz+wMJfcJp6gXK08nG phqduEXlFsuwrkQBQvrtMaDlx6zNdlQ686CwBgeK9ECZ8o/5PL3LyXZBwXSebJOF 1gR37y60a9WHHdsB5vvlESlbWZB9JbbkdsJZM9xebaeEJGBVDjefjfDfvzOO9IrY TjlQsq33Ea8Z2MgK6wILde4aizUGANcd -----END CERTIFICATE-----Generated at Sun Aug 24 03:36:35 2025 by rpki-client