$ rpki-client -vvf rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft File: ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft (raw, json) Hash identifier: hYaBGniMjtktYrjOiiYtmx/srUSxezhWDyYi3Gt9+nw= Subject key identifier: 88:AA:DC:B7:61:70:76:A7:C6:98:24:0E:1D:7C:4A:DD:F4:47:D1:98 Authority key identifier: 91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F Certificate issuer: /CN=A91128B5/serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Certificate serial: 0602 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft Manifest number: 05FD Signing time: Sun 10 Aug 2025 22:57:52 +0000 Manifest this update: Sun 10 Aug 2025 22:57:52 +0000 Manifest next update: Sun 17 Aug 2025 22:57:52 +0000 Files and hashes: 1: ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl (hash: RoqUWEGFbhM1Pu2g1C8l1gft8iWY6mAqVtJtEJmI+IQ=) 2: 74BDB7D0B96C11EB956C1D2DC4F9AE02.roa (hash: IADvK+KgV5vnYxJ4wHU1Xtz8TSGee8Bm5ZckrfzrChM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128B5, serialNumber=91AEE960DC41FF98ED1B3723343173938126DC9F Validity Not Before: Aug 10 22:57:52 2025 GMT Not After : Aug 17 22:57:52 2025 GMT Subject: CN=689923f0-3586 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:29:f9:ed:58:fc:97:21:d9:b7:c4:24:4d:61: 79:06:2a:ec:90:0a:e4:5f:b4:85:75:5e:23:83:a9: 4b:34:ba:c6:b2:e9:d3:34:16:3b:b7:a5:94:55:a9: 77:55:10:79:96:f6:0a:4a:a5:9f:00:c3:da:3c:0e: 52:92:3e:80:25:33:13:58:7f:aa:58:42:8f:56:c9: ff:0d:50:6e:8d:3d:d6:f6:66:56:83:4d:18:2e:a5: 56:b1:ab:b0:e6:1f:d0:b8:67:67:82:20:01:ef:9e: 01:9b:f6:e1:13:09:3b:e6:dc:26:dd:b1:ba:5d:2e: c0:6b:77:05:54:11:7d:1a:59:b5:14:28:bf:a8:95: 09:3b:25:31:12:85:41:6f:c4:81:18:8e:3a:dd:b1: e9:ce:08:34:ed:ff:08:2a:33:0e:32:6d:eb:96:22: ba:da:88:15:c6:5e:d0:fd:23:fc:ea:03:2c:8c:e8: b9:fd:03:53:eb:e4:c0:27:ad:61:cc:87:3a:bc:a1: ae:e2:8a:ac:b2:2d:4a:eb:f4:2a:9a:e9:02:f8:71: 66:90:1c:0e:80:65:64:50:26:7b:7b:f6:a5:8b:c6: df:c2:c7:e0:06:4c:9a:1f:38:36:ca:ac:23:bd:db: f5:b4:91:41:5f:3b:39:e3:19:c6:ff:6a:e7:04:b5: fa:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:AA:DC:B7:61:70:76:A7:C6:98:24:0E:1D:7C:4A:DD:F4:47:D1:98 X509v3 Authority Key Identifier: keyid:91:AE:E9:60:DC:41:FF:98:ED:1B:37:23:34:31:73:93:81:26:DC:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ka7pYNxB_5jtGzcjNDFzk4Em3J8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128B5/3EBCD1DAB96B11EBB16EEF2CC4F9AE02/ka7pYNxB_5jtGzcjNDFzk4Em3J8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4d:c3:57:be:8a:3f:61:e4:80:bb:43:e5:76:b4:15:55:63: 6b:5c:10:24:44:1d:68:7c:e1:51:7a:b5:88:e9:5e:ad:d0:be: 22:3d:fa:20:c7:30:66:8c:31:5c:b7:73:c9:fb:7a:18:2e:da: 52:ff:22:76:67:95:41:2d:75:d0:94:e1:7a:45:60:15:0d:7d: 75:9e:f1:5f:9e:af:a5:78:06:d3:67:96:f3:d6:63:36:ce:69: b1:45:0e:d9:70:5e:37:b0:1b:90:7a:3a:ad:fd:af:de:b2:52: 2a:a3:21:f9:6a:c6:d0:c3:c9:94:26:11:b4:90:cc:32:d0:a2: 03:eb:47:49:a7:09:b3:75:61:ef:ca:46:30:99:9f:11:1e:71: e4:eb:77:c6:fb:33:e9:1f:89:f2:3a:cb:32:d0:c6:be:09:1f: c7:ca:d7:07:16:8c:f9:cc:fc:a8:93:ae:14:d3:72:7d:52:c8: 7c:cf:4b:e2:22:0b:d9:bc:4e:f7:ad:78:e9:b9:13:7d:46:0a: b5:27:53:7c:4e:1e:2a:8d:be:3b:3d:39:2e:08:d8:c8:58:47: a1:aa:41:79:0b:7c:59:2c:e6:82:b9:af:48:7d:37:c2:8e:01: 37:90:f1:77:86:53:14:ed:e5:0f:6a:d5:6b:4c:23:a1:1c:43: 1f:6c:c7:cb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4QjUxMTAvBgNVBAUTKDkxQUVFOTYwREM0MUZGOThFRDFCMzcyMzM0MzE3Mzkz ODEyNkRDOUYwHhcNMjUwODEwMjI1NzUyWhcNMjUwODE3MjI1NzUyWjAYMRYwFAYD VQQDEw02ODk5MjNmMC0zNTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8yn57Vj8lyHZt8QkTWF5BirskArkX7SFdV4jg6lLNLrGsunTNBY7t6WUVal3 VRB5lvYKSqWfAMPaPA5Skj6AJTMTWH+qWEKPVsn/DVBujT3W9mZWg00YLqVWsauw 5h/QuGdngiAB754Bm/bhEwk75twm3bG6XS7Aa3cFVBF9Glm1FCi/qJUJOyUxEoVB b8SBGI463bHpzgg07f8IKjMOMm3rliK62ogVxl7Q/SP86gMsjOi5/QNT6+TAJ61h zIc6vKGu4oqssi1K6/QqmukC+HFmkBwOgGVkUCZ7e/ali8bfwsfgBkyaHzg2yqwj vdv1tJFBXzs54xnG/2rnBLX6vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIiq3Ldh cHanxpgkDh18St30R9GYMB8GA1UdIwQYMBaAFJGu6WDcQf+Y7Rs3IzQxc5OBJtyf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhCNS8zRUJDRDFEQUI5 NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81anRHemNqTkRGems0RW0z SjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thN3BZTnhCXzVqdEd6Y2pOREZ6azRFbTNKOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjhCNS8zRUJDRDFEQUI5NkIxMUVCQjE2RUVGMkNDNEY5QUUwMi9rYTdwWU54Ql81 anRHemNqTkRGems0RW0zSjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0TcNXvoo/YeSAu0PldrQVVWNrXBAkRB1ofOFRerWI6V6t0L4iPfog xzBmjDFct3PJ+3oYLtpS/yJ2Z5VBLXXQlOF6RWAVDX11nvFfnq+leAbTZ5bz1mM2 zmmxRQ7ZcF43sBuQejqt/a/eslIqoyH5asbQw8mUJhG0kMwy0KID60dJpwmzdWHv ykYwmZ8RHnHk63fG+zPpH4nyOssy0Ma+CR/HytcHFoz5zPyok64U03J9Ush8z0vi IgvZvE73rXjpuRN9Rgq1J1N8Th4qjb47PTkuCNjIWEehqkF5C3xZLOaCua9IfTfC jgE3kPF3hlMU7eUPatVrTCOhHEMfbMfL -----END CERTIFICATE-----Generated at Mon Aug 11 05:54:09 2025 by rpki-client