$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: Bx45IZdUhDORZXO5Dc2x/6EnlxF590rj18MAKYtVWtU= Subject key identifier: FB:71:4C:A4:B7:29:D0:6F:EC:0D:AA:B2:E8:DB:7D:C1:9A:69:10:D4 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 070D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0704 Signing time: Fri 08 Aug 2025 22:17:13 +0000 Manifest this update: Fri 08 Aug 2025 22:17:13 +0000 Manifest next update: Fri 15 Aug 2025 22:17:13 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: PtMWWqVmFOY0LN8TLY04CWMSCrgLRLefeWC27N2T4/w=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1805 (0x70d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Aug 8 22:17:13 2025 GMT Not After : Aug 15 22:17:13 2025 GMT Subject: CN=68967769-42f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6c:7e:bc:42:f0:67:7b:34:f4:64:ad:61:d1: 64:d5:c2:a2:34:bf:ec:17:be:82:da:71:4b:ba:d4: e1:2a:4a:39:fe:42:56:fa:2d:1c:04:c9:3c:f1:09: 3b:28:ae:99:cf:7d:02:e2:29:30:40:96:cb:f0:63: 4a:6d:19:7e:de:df:58:6c:ad:ca:dd:8d:f2:42:b6: e3:4e:2a:ed:71:d8:18:7d:60:ef:a9:73:8f:29:71: 43:62:da:32:88:a8:39:95:b4:ef:9c:fb:93:98:3a: d4:48:ef:22:d7:69:b7:11:00:06:07:a4:7f:9e:58: bd:9a:7b:e9:4e:09:26:14:32:81:0f:23:53:d5:b0: 3d:83:40:39:d2:41:cb:1c:ea:c5:35:78:d4:3c:09: 0e:c1:13:64:03:b9:cd:89:05:fc:d0:6b:9d:e0:8a: db:b1:ad:0e:41:0e:83:ce:e3:fa:cc:62:50:9b:9d: 53:db:55:65:01:c3:e5:06:9b:ef:fc:2c:ea:b8:e3: e2:2f:c6:8a:8c:7c:be:c3:a4:d9:e8:4f:65:dd:9e: 9f:24:85:0d:99:d9:73:82:53:9f:65:d2:4a:c9:a7: d6:a4:e0:13:cf:3e:a4:20:8b:cd:c3:dc:bb:58:18: 9b:e2:36:16:b0:98:49:3a:77:61:a3:25:1b:eb:2d: 78:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:71:4C:A4:B7:29:D0:6F:EC:0D:AA:B2:E8:DB:7D:C1:9A:69:10:D4 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:7e:12:25:c4:52:70:6f:3c:69:e6:aa:96:8b:b8:e7:09:ff: bd:8d:e9:74:5e:98:17:e7:67:29:60:fa:e1:a9:fd:0a:74:d6: d4:3b:20:8a:09:3e:9a:36:f7:08:ae:e4:4d:20:11:a6:c8:a1: ce:50:5c:9d:73:ba:ad:c9:6a:c2:28:c6:78:4f:3f:34:01:c0: 07:74:aa:88:b0:7f:93:43:0c:d7:68:14:17:62:17:8e:0a:cd: 19:91:cd:61:6c:2e:92:be:ef:7c:2d:53:fe:30:8b:59:4e:81: 22:92:d2:5f:ad:ca:97:1f:bf:4f:57:71:91:7a:8a:4e:84:e8: ad:f2:a0:cd:4a:13:4d:94:55:4a:a8:4b:7a:a3:b6:de:0d:db: 14:67:d3:5d:d8:36:8f:53:63:8e:dd:f6:61:1d:04:58:86:05: e6:5d:b8:e0:60:51:36:63:ae:04:c9:bf:74:96:66:8c:28:b2: e9:8e:02:ff:4e:05:40:1f:66:61:dd:8d:5d:1a:c6:40:93:5c: 03:18:d5:55:f5:4c:cd:fb:3d:07:b2:09:15:e3:a0:b1:39:c3: f6:97:94:63:be:12:2a:a2:5a:3b:6c:9e:a1:d5:ac:1f:28:c6: a3:44:81:8b:da:97:c0:f2:82:bd:e2:d1:e9:ae:ca:2f:8e:6a: ca:12:00:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBw0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUwODA4MjIxNzEzWhcNMjUwODE1MjIxNzEzWjAYMRYwFAYD VQQDEw02ODk2Nzc2OS00MmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Gx+vELwZ3s09GStYdFk1cKiNL/sF76C2nFLutThKko5/kJW+i0cBMk88Qk7 KK6Zz30C4ikwQJbL8GNKbRl+3t9YbK3K3Y3yQrbjTirtcdgYfWDvqXOPKXFDYtoy iKg5lbTvnPuTmDrUSO8i12m3EQAGB6R/nli9mnvpTgkmFDKBDyNT1bA9g0A50kHL HOrFNXjUPAkOwRNkA7nNiQX80Gud4Irbsa0OQQ6DzuP6zGJQm51T21VlAcPlBpvv /CzquOPiL8aKjHy+w6TZ6E9l3Z6fJIUNmdlzglOfZdJKyafWpOATzz6kIIvNw9y7 WBib4jYWsJhJOndhoyUb6y14QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPtxTKS3 KdBv7A2qsujbfcGaaRDUMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYfhIlxFJwbzxp5qqWi7jnCf+9jel0XpgX52cpYPrhqf0KdNbUOyCK CT6aNvcIruRNIBGmyKHOUFydc7qtyWrCKMZ4Tz80AcAHdKqIsH+TQwzXaBQXYheO Cs0Zkc1hbC6Svu98LVP+MItZToEiktJfrcqXH79PV3GReopOhOit8qDNShNNlFVK qEt6o7beDdsUZ9Nd2DaPU2OO3fZhHQRYhgXmXbjgYFE2Y64Eyb90lmaMKLLpjgL/ TgVAH2Zh3Y1dGsZAk1wDGNVV9UzN+z0HsgkV46CxOcP2l5RjvhIqolo7bJ6h1awf KMajRIGL2pfA8oK94tHprsovjmrKEgAp -----END CERTIFICATE-----Generated at Sat Aug 9 23:11:52 2025 by rpki-client