$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: S0pccnz3co3ybLxQ+sDItxOyZ8P7MhX2LDbjz4QlS0s= Subject key identifier: 8E:7B:4D:FF:37:7E:19:B4:4D:F2:1E:2E:50:AF:8D:C2:E4:45:CC:6B Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: E1 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: DF Signing time: Sat 23 Aug 2025 05:35:47 +0000 Manifest this update: Sat 23 Aug 2025 05:35:46 +0000 Manifest next update: Sat 30 Aug 2025 05:35:46 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: 2DlevvJgcqk1/i5O4gvwAELNpWHxhz72nvOjM/OhaKA=) 2: 6B9D491C379A11F0B3AC7740C4F9AE02.roa (hash: RLph3rOI+XvGrIXc+VEb/mig9QwsOBw+jIRI25aGTLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:35:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: Aug 23 05:35:46 2025 GMT Not After : Aug 30 05:35:46 2025 GMT Subject: CN=68a95332-67f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:bb:f8:ed:e5:41:53:48:85:b4:3c:0f:86: e5:cd:70:2f:01:67:28:99:2d:0d:3e:7b:ec:db:71: cf:f4:a2:fa:f0:e2:54:9a:6b:6b:a5:89:a2:13:05: da:83:f6:19:5f:3f:64:85:1a:f1:39:09:0f:99:e5: 2a:af:7a:0a:26:c1:dd:f3:9d:65:c8:d2:c5:7b:14: cf:b3:8a:0b:d7:ba:87:7d:8a:2b:24:b8:57:e1:5a: 30:4b:8c:a5:0d:43:36:16:78:41:63:a9:be:aa:22: 88:90:0c:e0:cc:e0:73:5c:8c:f9:db:d8:b0:a7:69: 21:3f:5e:7f:49:36:42:0b:bf:1c:6b:8a:a6:aa:3c: c4:cc:4a:1d:b6:8d:ac:73:71:dc:58:83:62:9a:7d: 91:14:6f:b8:81:0c:07:26:b6:b8:4f:c6:2b:ec:50: 1c:13:9e:f6:0f:8c:fd:7e:8b:d2:47:a3:85:7d:16: 39:0a:d2:6b:8a:db:99:10:57:d9:bb:94:16:87:b3: ca:e6:85:38:70:05:b6:ee:7b:ac:f3:7a:d8:2e:06: 73:95:f6:41:9e:de:f7:26:ff:44:d3:c7:af:4d:fc: 68:aa:e2:b4:3d:98:76:8f:24:33:61:8c:79:9e:f0: 21:9f:31:77:f0:01:9f:8b:6c:21:f3:f9:91:92:64: e3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:7B:4D:FF:37:7E:19:B4:4D:F2:1E:2E:50:AF:8D:C2:E4:45:CC:6B X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a8:02:bb:1c:80:c8:12:2b:ac:5c:6e:db:89:ee:76:c6:02: 00:03:2f:57:d6:d8:c0:73:12:a7:73:93:80:fb:c9:39:9e:da: 28:de:9e:b6:ba:a2:22:70:12:be:41:d8:d4:1d:01:08:07:30: 1a:bd:0a:5e:06:91:44:cd:fb:cf:f9:1b:c9:a9:9e:1c:a8:0f: fb:a5:4a:07:1f:7e:c4:a0:31:ab:8c:c4:f8:78:37:cd:2a:68: 41:7a:ef:58:cf:ee:70:35:b3:48:88:b8:12:64:1e:32:95:e6: b1:d6:d1:6a:45:9d:73:99:21:af:99:26:71:f8:87:eb:1f:44: 3f:db:9a:6f:9a:62:95:50:2e:7b:47:da:00:91:f3:13:d7:45: f0:a0:34:3c:be:9a:ac:2b:aa:95:fb:a7:e4:70:6b:e9:25:a7: 52:f3:0f:eb:63:0f:89:51:25:ab:50:9d:52:28:b8:5e:93:b4: 61:5f:d5:91:95:05:2c:5b:26:74:58:b0:3c:e3:ed:ab:ed:29: 06:dd:9c:06:7c:43:47:51:1a:8e:9b:87:58:1f:fa:da:2f:81: 31:38:4d:d7:19:17:0c:2e:b2:0b:7b:48:a6:51:45:7a:b7:f7: 36:35:93:17:36:92:99:fb:79:72:10:c3:1f:ab:6e:ea:83:46: 6f:5a:e2:7b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUwODIzMDUzNTQ2WhcNMjUwODMwMDUzNTQ2WjAYMRYwFAYD VQQDEw02OGE5NTMzMi02N2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwx67+O3lQVNIhbQ8D4blzXAvAWcomS0NPnvs23HP9KL68OJUmmtrpYmiEwXa g/YZXz9khRrxOQkPmeUqr3oKJsHd851lyNLFexTPs4oL17qHfYorJLhX4VowS4yl DUM2FnhBY6m+qiKIkAzgzOBzXIz529iwp2khP15/STZCC78ca4qmqjzEzEodto2s c3HcWINimn2RFG+4gQwHJra4T8Yr7FAcE572D4z9fovSR6OFfRY5CtJrituZEFfZ u5QWh7PK5oU4cAW27nus83rYLgZzlfZBnt73Jv9E08evTfxoquK0PZh2jyQzYYx5 nvAhnzF38AGfi2wh8/mRkmTjCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI57Tf83 fhm0TfIeLlCvjcLkRcxrMB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfqAK7HIDIEiusXG7bie52xgIAAy9X1tjAcxKnc5OA+8k5ntoo3p62 uqIicBK+QdjUHQEIBzAavQpeBpFEzfvP+RvJqZ4cqA/7pUoHH37EoDGrjMT4eDfN KmhBeu9Yz+5wNbNIiLgSZB4yleax1tFqRZ1zmSGvmSZx+IfrH0Q/25pvmmKVUC57 R9oAkfMT10XwoDQ8vpqsK6qV+6fkcGvpJadS8w/rYw+JUSWrUJ1SKLhek7RhX9WR lQUsWyZ0WLA84+2r7SkG3ZwGfENHURqOm4dYH/raL4ExOE3XGRcMLrILe0imUUV6 t/c2NZMXNpKZ+3lyEMMfq27qg0ZvWuJ7 -----END CERTIFICATE-----Generated at Sat Aug 23 10:23:46 2025 by rpki-client