$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: n7c0x3vCTvPT7uU+siHHe7FC74ZkhCxnzuK6pGW8AAc= Subject key identifier: 6D:14:8E:8E:05:AC:68:9F:A5:A6:F2:27:9D:4C:CC:8A:77:92:E3:F2 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: B5 Signing time: Sat 23 Aug 2025 06:14:21 +0000 Manifest this update: Sat 23 Aug 2025 06:14:21 +0000 Manifest next update: Sat 30 Aug 2025 06:14:21 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: cLlh24BPWu4n0GlNeN2aSOim6J8GTcr9eqkIu1WPhgg=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:14:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Aug 23 06:14:21 2025 GMT Not After : Aug 30 06:14:21 2025 GMT Subject: CN=68a95c3d-16ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:df:42:7f:e3:19:22:ef:a3:5b:cc:e6:49:79: eb:bb:ea:31:5d:01:04:6b:2e:d8:d4:c4:f2:fe:23: ae:6c:b7:13:32:fc:53:d6:0f:b4:c3:5b:ed:14:d8: 4f:73:2c:b9:e5:b0:71:d9:55:99:52:f6:d1:f0:28: 28:ed:e3:21:7f:70:5c:f5:ac:a7:c2:f4:7f:29:32: a9:d2:45:e0:06:0b:0f:9a:db:38:88:7a:c0:cc:b3: 4f:0d:e2:4f:29:35:7a:c6:05:8a:b0:e6:e8:83:b0: 78:25:8a:ac:a6:f3:32:a3:7a:55:0e:16:f4:08:ec: 2c:aa:6e:7b:f5:72:43:d3:d3:a2:cf:ce:11:3c:6f: 9c:03:39:57:92:55:be:c6:51:86:03:d7:e8:43:a2: f1:68:7c:d8:cd:46:c4:71:28:a3:d0:2b:ef:97:d0: c9:44:e8:5d:5a:6c:59:11:6f:16:25:9c:62:55:b4: 54:92:26:f4:fe:33:4b:76:8e:c7:90:ff:f8:c2:c2: 0e:be:c4:ba:fa:2a:25:18:af:5a:72:21:84:b7:1a: 75:66:94:4d:d2:b6:67:1c:ef:1d:cc:c8:9e:d0:39: 50:62:bb:a4:9d:c7:8e:00:2b:31:4d:e6:6d:5c:0e: 7f:4d:df:a8:8e:a0:fd:fe:fa:1a:1f:db:05:67:41: a6:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:14:8E:8E:05:AC:68:9F:A5:A6:F2:27:9D:4C:CC:8A:77:92:E3:F2 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:8b:dc:bd:8d:b5:24:ed:d2:e4:33:0f:4f:b6:01:1b:9e:50: d8:c9:5a:81:37:47:6a:c8:cf:6c:65:c7:6d:5f:6d:6d:1c:fe: 19:e1:96:62:82:40:d8:53:52:2b:06:7b:b5:00:75:e5:89:31: 4f:63:47:e8:a9:5a:3e:7d:c5:d7:6a:1f:c9:f0:4e:41:d4:24: eb:80:2e:10:d8:1b:ea:5b:53:03:55:af:f7:da:1c:fb:02:49: d0:2a:7f:aa:d4:c6:c2:5a:e2:24:b7:eb:a2:16:0a:20:26:6c: 69:1a:4e:6c:24:f0:d9:0e:e9:51:ed:b3:08:c9:8e:df:0f:d0: b8:d8:e2:29:27:92:b8:15:bb:95:b5:13:96:c6:9a:da:88:b8: 13:0e:30:1b:06:27:c9:38:be:17:65:ef:5c:c0:16:48:e4:fa: 19:12:c5:e2:ce:c8:97:e4:b9:6c:5a:cd:19:85:e4:f9:8d:3c: 3b:89:39:7e:14:12:7a:08:9b:43:49:79:5e:31:48:8f:87:d4: ab:b0:39:b3:e1:da:33:67:3f:3d:df:1c:0b:f1:77:17:47:fd: f1:e4:a5:57:ed:f0:10:f9:11:13:4c:67:6d:9b:6f:08:e8:ab: 69:96:39:0f:eb:44:14:a4:a1:60:b7:1d:bb:60:8c:25:7f:7c: f1:2f:74:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUwODIzMDYxNDIxWhcNMjUwODMwMDYxNDIxWjAYMRYwFAYD VQQDEw02OGE5NWMzZC0xNmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuN9Cf+MZIu+jW8zmSXnru+oxXQEEay7Y1MTy/iOubLcTMvxT1g+0w1vtFNhP cyy55bBx2VWZUvbR8Cgo7eMhf3Bc9aynwvR/KTKp0kXgBgsPmts4iHrAzLNPDeJP KTV6xgWKsObog7B4JYqspvMyo3pVDhb0COwsqm579XJD09Oiz84RPG+cAzlXklW+ xlGGA9foQ6LxaHzYzUbEcSij0Cvvl9DJROhdWmxZEW8WJZxiVbRUkib0/jNLdo7H kP/4wsIOvsS6+iolGK9aciGEtxp1ZpRN0rZnHO8dzMie0DlQYruknceOACsxTeZt XA5/Td+ojqD9/voaH9sFZ0GmSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0Ujo4F rGifpabyJ51MzIp3kuPyMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAi9y9jbUk7dLkMw9PtgEbnlDYyVqBN0dqyM9sZcdtX21tHP4Z4ZZi gkDYU1IrBnu1AHXliTFPY0foqVo+fcXXah/J8E5B1CTrgC4Q2BvqW1MDVa/32hz7 AknQKn+q1MbCWuIkt+uiFgogJmxpGk5sJPDZDulR7bMIyY7fD9C42OIpJ5K4FbuV tROWxpraiLgTDjAbBifJOL4XZe9cwBZI5PoZEsXizsiX5LlsWs0ZheT5jTw7iTl+ FBJ6CJtDSXleMUiPh9SrsDmz4dozZz893xwL8XcXR/3x5KVX7fAQ+RETTGdtm28I 6KtpljkP60QUpKFgtx27YIwlf3zxL3Sz -----END CERTIFICATE-----Generated at Sun Aug 24 06:33:54 2025 by rpki-client