$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: K+1wPJ2XbDlDE07tydzl9JNimpzJvhoiv4KS7ZxtTCA= Subject key identifier: 8B:77:DC:8D:3F:6A:33:92:26:83:CA:98:48:17:41:CF:EF:12:C3:5C Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 11EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 11E3 Signing time: Sun 10 Aug 2025 17:10:01 +0000 Manifest this update: Sun 10 Aug 2025 17:10:00 +0000 Manifest next update: Sun 17 Aug 2025 17:10:00 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: J+DcNdT/LmI9rFSYHTUZTXotJ3EurJXYI2P3/c/ZHs8=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4590 (0x11ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Aug 10 17:10:00 2025 GMT Not After : Aug 17 17:10:00 2025 GMT Subject: CN=6898d268-fb6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c7:dc:26:c6:e4:4b:f5:c1:75:00:22:d8:3b: be:78:15:84:5f:05:3c:9a:4e:b2:81:c7:cd:ec:d5: d3:eb:04:00:71:bb:6e:d4:5d:d0:1c:ae:c6:71:76: 27:9d:e0:2d:46:2c:17:c3:76:67:bb:2e:32:a2:a9: 9a:89:12:8f:93:d0:ec:97:21:97:21:ad:6e:1b:e9: ae:ac:2e:04:d3:7d:f5:d7:4f:1f:e5:34:b3:40:50: f9:91:ac:37:72:3d:4d:65:4f:ae:88:39:e6:0c:01: dc:fb:23:02:0d:2b:04:1a:7b:e8:fe:68:f5:41:25: 88:0c:95:3c:09:3b:9e:55:a7:de:84:c7:18:69:93: 20:78:f6:3c:dc:3b:63:dd:9e:a2:6c:d1:24:66:af: 1e:bb:3b:e4:bd:48:84:b5:31:a4:37:97:4d:94:90: 16:0c:fc:87:0a:10:27:1c:dd:30:8c:4a:1e:61:3a: 65:c1:4b:b6:17:52:6c:e1:56:c1:e8:c7:c7:40:04: 7c:6d:8b:d0:c0:57:b2:6f:8e:40:0f:05:69:a5:4c: 7e:82:06:b6:ce:37:f2:9b:2b:9c:65:f1:1d:b7:7a: bf:5d:04:39:5b:15:9b:df:a5:15:8d:98:fe:f9:1f: f3:aa:04:28:e7:e3:3f:a9:c5:d7:c3:e8:65:88:37: 62:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:77:DC:8D:3F:6A:33:92:26:83:CA:98:48:17:41:CF:EF:12:C3:5C X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:53:d0:15:3f:94:a2:9d:da:c1:7d:87:f0:ac:26:7b:09:16: 17:f6:ec:20:40:1c:37:70:3b:41:28:0a:da:d4:f6:56:3d:b8: c3:86:46:39:1d:50:de:33:38:16:d6:89:fc:7f:87:fb:52:90: 23:26:c1:11:91:35:5e:a8:14:0b:56:3b:88:94:67:eb:54:22: ef:3b:d0:6c:80:5e:1c:1f:02:00:49:57:10:6d:ef:cf:8a:80: 1f:a8:04:8f:01:1a:e6:57:4e:53:91:62:32:73:19:e2:80:9e: e4:bc:5c:de:fd:66:dd:7d:f4:27:46:44:d1:de:c8:88:06:6f: 62:b0:cd:da:76:fb:dd:a6:57:b4:a8:f6:12:a6:cd:8a:15:71: 94:7f:68:25:7e:5f:17:79:5d:a9:02:67:5a:a6:29:09:ec:02: c1:9c:f6:17:85:d5:76:4e:99:45:d9:55:d0:c1:d4:90:75:ad: aa:4b:5f:ca:ca:bc:4f:bb:0c:20:44:5b:78:e3:a3:21:05:03: 55:db:de:fa:cf:fd:c0:8e:a4:89:e0:ab:91:9b:1e:82:49:5f: 05:ec:64:1f:ee:00:c1:98:99:cd:c1:44:a1:56:2f:99:38:a9: 30:70:9b:3d:b2:65:fc:a8:fd:63:93:4e:bc:00:27:8e:d3:77: 26:34:ba:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEe4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUwODEwMTcxMDAwWhcNMjUwODE3MTcxMDAwWjAYMRYwFAYD VQQDEw02ODk4ZDI2OC1mYjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcfcJsbkS/XBdQAi2Du+eBWEXwU8mk6ygcfN7NXT6wQAcbtu1F3QHK7GcXYn neAtRiwXw3Znuy4yoqmaiRKPk9DslyGXIa1uG+murC4E0331108f5TSzQFD5kaw3 cj1NZU+uiDnmDAHc+yMCDSsEGnvo/mj1QSWIDJU8CTueVafehMcYaZMgePY83Dtj 3Z6ibNEkZq8euzvkvUiEtTGkN5dNlJAWDPyHChAnHN0wjEoeYTplwUu2F1Js4VbB 6MfHQAR8bYvQwFeyb45ADwVppUx+gga2zjfymyucZfEdt3q/XQQ5WxWb36UVjZj+ +R/zqgQo5+M/qcXXw+hliDdiAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIt33I0/ ajOSJoPKmEgXQc/vEsNcMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvU9AVP5SindrBfYfwrCZ7CRYX9uwgQBw3cDtBKAra1PZWPbjDhkY5 HVDeMzgW1on8f4f7UpAjJsERkTVeqBQLVjuIlGfrVCLvO9BsgF4cHwIASVcQbe/P ioAfqASPARrmV05TkWIycxnigJ7kvFze/WbdffQnRkTR3siIBm9isM3advvdple0 qPYSps2KFXGUf2glfl8XeV2pAmdapikJ7ALBnPYXhdV2TplF2VXQwdSQda2qS1/K yrxPuwwgRFt446MhBQNV2976z/3AjqSJ4KuRmx6CSV8F7GQf7gDBmJnNwUShVi+Z OKkwcJs9smX8qP1jk068ACeO03cmNLqF -----END CERTIFICATE-----Generated at Sun Aug 10 18:16:42 2025 by rpki-client