$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: GniLs6MVVS3FmtF2+zr2QORtjJpNyE9Jc1yuZQVZR/Q= Subject key identifier: B1:A2:09:37:07:C8:04:09:1E:75:19:D3:72:00:0F:54:5F:6A:04:9C Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C36 Signing time: Fri 22 Aug 2025 18:47:17 +0000 Manifest this update: Fri 22 Aug 2025 18:47:16 +0000 Manifest next update: Fri 29 Aug 2025 18:47:16 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: LbPYSBUaOg28Ih6B1QGIHefRyDZ5WVF+GSNgGWfERwo=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 18:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3144 (0xc48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Aug 22 18:47:16 2025 GMT Not After : Aug 29 18:47:16 2025 GMT Subject: CN=68a8bb34-5a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fe:ed:10:9e:ba:79:5b:47:8d:fd:4d:5c:08: f8:14:fe:d1:21:8d:fd:ff:c2:cd:8c:3a:1f:49:e1: 18:27:7b:34:0e:b6:de:1d:f4:26:2d:99:65:84:84: ce:56:b9:e1:e6:07:b3:11:9d:40:a5:d8:5a:5d:14: 51:4e:41:35:52:2c:68:a2:18:81:7f:bb:72:8c:f3: fd:76:47:af:54:60:78:9d:fc:e1:38:d4:13:79:a8: 42:b1:dc:cb:09:d4:b9:2a:73:9d:7e:d6:86:0a:85: fd:03:c6:76:6a:4c:79:f3:ba:90:ac:f2:0e:72:14: 54:28:e6:36:3d:c9:51:65:48:f5:42:af:7b:93:b1: 36:1f:2a:e7:1c:ac:1a:b5:06:9f:37:c7:32:38:2e: 92:fa:c6:dd:88:8f:43:f6:e6:68:46:38:c4:88:35: c8:b6:b8:db:fd:46:fa:7d:41:68:86:fc:66:48:05: 1a:28:67:3a:3c:e0:33:10:8f:42:bf:ea:3f:d7:1b: 3c:f7:a1:7c:91:2e:d9:bc:f4:e8:5b:6b:35:6f:d1: 2f:f0:e1:8b:86:ff:18:45:87:59:39:c7:b3:e8:99: e2:28:1f:a5:95:7c:a6:ff:d3:2f:8b:c2:fb:3c:e4: 6f:21:1b:0d:79:ba:85:94:79:dc:c8:32:9c:8e:47: 61:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:A2:09:37:07:C8:04:09:1E:75:19:D3:72:00:0F:54:5F:6A:04:9C X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:92:0a:ae:9d:30:42:de:92:b9:a1:ad:a2:7d:6e:5f:d7:45: 1c:d3:94:52:9b:e8:6b:81:bb:da:76:60:cf:42:3c:4d:85:d5: 98:36:76:1d:61:d1:18:10:f1:90:03:7a:cb:01:7b:5f:0b:1e: 3b:01:a0:3a:b9:0a:07:d5:b3:cf:49:26:8f:ea:86:22:b1:2c: 7a:35:7b:84:76:b2:e9:ba:c8:bf:e2:e3:8b:d6:ee:ad:97:3d: 08:f9:7a:17:52:2b:f0:c7:b9:07:ee:81:ee:ea:7a:14:e6:40: 35:c1:a2:49:29:f5:ac:e9:a1:39:ca:f0:0d:11:49:dc:48:39: 74:ce:bc:b8:11:d1:85:ef:44:8b:d8:f9:22:6f:98:b4:c6:f8: d1:0c:66:fa:71:a2:2e:97:6f:ed:b9:81:82:6b:4b:72:3c:62: 2c:6b:a3:7e:18:8c:80:a9:0c:96:bd:93:60:b1:d2:4c:81:87: 82:7c:35:3c:e1:be:b8:ad:18:99:a3:73:8f:d6:e1:04:87:cd: d1:65:82:86:ff:aa:23:96:ea:21:7c:1d:fa:31:b3:be:6f:dc: 34:8b:9e:de:cc:5e:d5:2c:de:13:1a:4a:6c:7b:fc:9c:1b:25: b6:df:d1:e4:2f:30:64:16:4d:a8:71:0e:de:6c:8b:41:cc:17: 46:1c:8f:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwODIyMTg0NzE2WhcNMjUwODI5MTg0NzE2WjAYMRYwFAYD VQQDEw02OGE4YmIzNC01YTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvf7tEJ66eVtHjf1NXAj4FP7RIY39/8LNjDofSeEYJ3s0DrbeHfQmLZllhITO Vrnh5gezEZ1ApdhaXRRRTkE1UixoohiBf7tyjPP9dkevVGB4nfzhONQTeahCsdzL CdS5KnOdftaGCoX9A8Z2akx587qQrPIOchRUKOY2PclRZUj1Qq97k7E2HyrnHKwa tQafN8cyOC6S+sbdiI9D9uZoRjjEiDXItrjb/Ub6fUFohvxmSAUaKGc6POAzEI9C v+o/1xs896F8kS7ZvPToW2s1b9Ev8OGLhv8YRYdZOcez6JniKB+llXym/9Mvi8L7 PORvIRsNebqFlHncyDKcjkdhxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLGiCTcH yAQJHnUZ03IAD1RfagScMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4kgqunTBC3pK5oa2ifW5f10Uc05RSm+hrgbvadmDPQjxNhdWYNnYd YdEYEPGQA3rLAXtfCx47AaA6uQoH1bPPSSaP6oYisSx6NXuEdrLpusi/4uOL1u6t lz0I+XoXUivwx7kH7oHu6noU5kA1waJJKfWs6aE5yvANEUncSDl0zry4EdGF70SL 2Pkib5i0xvjRDGb6caIul2/tuYGCa0tyPGIsa6N+GIyAqQyWvZNgsdJMgYeCfDU8 4b64rRiZo3OP1uEEh83RZYKG/6ojluohfB36MbO+b9w0i57ezF7VLN4TGkpse/yc GyW239HkLzBkFk2ocQ7ebItBzBdGHI8E -----END CERTIFICATE-----Generated at Sun Aug 24 00:52:56 2025 by rpki-client