$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: ZLYey5R0ZthkTgW6jxylEwTVSHceU4U6loiVU4AsojA= Subject key identifier: F3:A0:2D:F8:68:D5:90:E8:31:8C:8F:B2:05:D8:F9:40:04:79:D2:34 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: C1 Signing time: Sat 23 Aug 2025 05:58:26 +0000 Manifest this update: Sat 23 Aug 2025 05:58:26 +0000 Manifest next update: Sat 30 Aug 2025 05:58:26 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: sT8ipLjnGMLC7oGclAiovslrTF2dRXW47gMTh7XTo6k=) 2: B377200E5ADD11EF9A462440C4F9AE02.roa (hash: ku0nQgImAfjqlfmOWSwIKN/zsrk6kYnMycZSjI2lh3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:58:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 195 (0xc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Aug 23 05:58:26 2025 GMT Not After : Aug 30 05:58:26 2025 GMT Subject: CN=68a95882-768b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:99:47:18:a2:79:bd:95:eb:69:51:73:d2:d5: 14:6d:93:72:10:16:b8:f0:40:79:f9:7e:87:06:7d: 42:cd:d0:7e:ee:c3:c0:6a:12:aa:31:9d:55:d7:e1: 8c:28:fb:43:ae:26:0d:21:36:40:b2:4d:de:6f:25: bf:bd:c8:82:a2:3a:ac:8d:05:e4:03:ad:04:b8:b9: ac:0a:b4:82:2e:99:bb:51:61:ad:2a:2b:22:43:4a: 46:85:71:4e:bb:3c:0e:b3:91:f1:ed:73:0d:30:54: c8:c6:d5:00:6a:d6:71:19:c1:f9:e1:69:27:14:69: 61:fb:43:84:01:5e:6a:0b:1b:65:a4:cb:93:47:a4: 70:c9:b9:09:3f:0f:dd:f3:58:29:06:a3:c8:c1:cb: 14:ab:5d:77:23:77:d0:1c:60:43:75:fe:8c:23:12: fc:53:75:b3:e2:89:c2:ba:be:11:37:d8:06:43:d0: 0c:a3:1c:28:bf:38:e3:63:70:d8:0e:50:d8:0b:52: 40:e9:75:2a:08:9a:33:cf:c8:41:8e:ce:5e:90:c0: 68:11:0b:25:23:fa:f3:f1:ee:0a:f9:42:93:9d:5b: ab:86:cd:72:f8:92:dd:c2:be:ab:c6:fd:02:de:3b: 97:c2:22:ec:79:0a:6f:fb:c8:73:91:cb:58:91:ee: 79:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A0:2D:F8:68:D5:90:E8:31:8C:8F:B2:05:D8:F9:40:04:79:D2:34 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:8e:22:5d:64:0f:41:60:7f:5e:27:ac:08:90:e2:17:59:33: bd:64:0f:6a:84:87:e2:11:cf:a5:dd:08:21:37:16:0c:c1:f5: be:c8:7d:61:f9:d3:0e:de:ca:36:bb:bd:ae:87:fe:82:ff:8d: c4:bf:80:94:65:de:5b:ca:63:c2:81:5c:f9:41:be:07:1f:af: 2c:95:21:e0:ea:0e:7f:18:d8:55:c0:d7:fb:75:f4:dd:7a:27: 76:59:75:94:c9:e3:ac:10:ed:4b:91:a8:ca:28:3e:b8:b2:85: d1:74:7a:2a:c0:73:2e:9b:36:b6:e1:09:3e:cc:15:e4:91:d9: 8b:01:8c:08:49:92:d8:fe:1b:d1:30:7f:89:6f:1e:c6:86:78: 64:20:8a:59:b1:4e:9a:99:f3:6b:91:66:98:c7:64:82:4a:26: 2a:32:db:ca:c4:d5:e6:18:fe:0e:85:e2:ae:c7:c6:15:0d:14: 52:e0:7a:dc:d7:ca:dd:f1:b8:2c:dc:f6:7c:62:40:46:d5:ca: b3:af:f0:d7:0c:95:6c:c1:37:b1:a7:6f:9b:4e:40:49:3f:59: 10:1d:39:06:f7:5b:59:fb:7b:80:f8:5b:28:4f:a4:77:4f:6b: a1:42:f9:47:3a:af:49:ca:c9:7c:01:55:50:a7:8b:61:af:21: 74:60:46:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUwODIzMDU1ODI2WhcNMjUwODMwMDU1ODI2WjAYMRYwFAYD VQQDEw02OGE5NTg4Mi03NjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6JlHGKJ5vZXraVFz0tUUbZNyEBa48EB5+X6HBn1CzdB+7sPAahKqMZ1V1+GM KPtDriYNITZAsk3ebyW/vciCojqsjQXkA60EuLmsCrSCLpm7UWGtKisiQ0pGhXFO uzwOs5Hx7XMNMFTIxtUAatZxGcH54WknFGlh+0OEAV5qCxtlpMuTR6RwybkJPw/d 81gpBqPIwcsUq113I3fQHGBDdf6MIxL8U3Wz4onCur4RN9gGQ9AMoxwovzjjY3DY DlDYC1JA6XUqCJozz8hBjs5ekMBoEQslI/rz8e4K+UKTnVurhs1y+JLdwr6rxv0C 3juXwiLseQpv+8hzkctYke55UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPOgLfho 1ZDoMYyPsgXY+UAEedI0MB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAIjiJdZA9BYH9eJ6wIkOIXWTO9ZA9qhIfiEc+l3QghNxYMwfW+yH1h +dMO3so2u72uh/6C/43Ev4CUZd5bymPCgVz5Qb4HH68slSHg6g5/GNhVwNf7dfTd eid2WXWUyeOsEO1LkajKKD64soXRdHoqwHMumza24Qk+zBXkkdmLAYwISZLY/hvR MH+Jbx7GhnhkIIpZsU6amfNrkWaYx2SCSiYqMtvKxNXmGP4OheKux8YVDRRS4Hrc 18rd8bgs3PZ8YkBG1cqzr/DXDJVswTexp2+bTkBJP1kQHTkG91tZ+3uA+FsoT6R3 T2uhQvlHOq9Jysl8AVVQp4thryF0YEbo -----END CERTIFICATE-----Generated at Sat Aug 23 21:29:54 2025 by rpki-client