$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: uWWZ1FPc65t8w50SmEac7MQVpAKNyM8SckH80IxkaSw= Subject key identifier: 3F:30:0C:E5:5B:3A:F0:91:51:E8:6C:A7:D6:06:2A:3B:93:05:9A:6E Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 134A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1342 Signing time: Sun 10 Aug 2025 17:00:21 +0000 Manifest this update: Sun 10 Aug 2025 17:00:19 +0000 Manifest next update: Sun 17 Aug 2025 17:00:19 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: U1LCEQYd7X4F3FDdQDfxfGMt9ZE2HK/Mg+9DDCUG+LA=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: Uautv1XlrGIKG3uUq9YoWLtURxeqWmVrl93Jj3fy9ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4938 (0x134a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Aug 10 17:00:19 2025 GMT Not After : Aug 17 17:00:19 2025 GMT Subject: CN=6898d023-81bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:52:a1:4d:1d:d9:6f:e0:65:ee:83:70:a8:f7: 7c:07:64:5b:98:7f:89:ac:ab:7d:48:b7:f6:7a:35: 11:50:a5:24:db:82:81:c0:73:f8:79:b9:ec:c1:08: 9d:ae:30:17:1b:67:c2:a9:d5:d7:71:0d:e6:0f:d2: 17:10:a9:76:e2:a0:c1:43:65:51:c8:c6:60:65:12: 56:46:5b:b2:8c:b5:d4:fe:dd:53:74:65:cf:2c:0b: be:29:f0:c1:9e:a7:61:ca:45:95:00:7b:a0:ab:8f: cc:6b:bf:54:07:46:ea:06:01:45:b4:54:db:07:b8: b8:67:21:b3:e8:3b:a6:05:9a:90:77:40:4f:01:55: ee:b3:5a:a7:a1:23:71:9e:2f:fe:5c:7b:d8:b5:26: 7f:23:ae:e4:2a:eb:a0:5c:ee:b7:17:9b:37:12:56: e2:c9:90:09:7c:0f:f0:a8:51:bd:f2:8f:18:21:99: 8c:ed:6c:84:3c:78:a8:38:25:07:7d:d4:fc:90:44: 01:74:9c:7b:5e:f9:a2:dc:6e:6e:70:f2:12:a2:cd: 96:75:e3:48:d0:6f:f5:80:12:1d:1a:54:03:5a:a5: d2:36:68:7c:79:b3:cd:4a:d4:81:1f:5d:5f:4e:d2: d0:d5:2f:10:8a:b6:a1:92:e6:21:17:64:4d:96:28: aa:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:30:0C:E5:5B:3A:F0:91:51:E8:6C:A7:D6:06:2A:3B:93:05:9A:6E X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:46:cb:d6:41:71:14:a1:25:4b:4a:44:de:26:b8:a9:b5:81: b2:74:49:5f:07:96:fa:8e:65:a5:ee:62:a0:09:43:8d:29:85: 31:4f:2e:12:24:28:ff:97:eb:ed:52:1c:4a:1b:05:3a:7c:b7: 71:ec:51:10:3f:ce:b8:57:a1:db:79:e5:42:2c:8d:0c:2e:fc: b6:8d:ab:b3:46:41:3d:0d:f5:ab:d8:b6:18:b7:7b:af:1a:31: 2d:43:f1:58:69:e4:48:5d:f4:35:de:b5:6c:bb:8b:3b:49:41: e8:11:23:16:16:4b:31:20:c0:57:3a:10:2b:dc:8b:8f:b7:36: 7e:ea:ac:40:95:38:6e:fb:b7:4a:f1:7d:5b:b5:8b:63:53:93: c1:40:d3:4a:63:72:af:81:ad:ea:be:7c:dc:da:c9:ad:b7:e9: 76:68:03:d8:ef:13:fb:24:74:2c:b8:5c:0e:cf:ed:10:9b:29: 4b:ac:83:77:ad:3f:83:9b:4f:0d:40:19:51:6d:cd:7c:76:9f: fc:3f:c2:d3:b9:2e:d9:05:41:da:6d:f9:99:75:92:f6:ca:67: 8c:0c:23:b3:90:8d:42:71:76:c6:3c:36:55:00:c6:d0:3f:30: 8d:1e:94:24:fc:34:b5:75:dd:6d:0c:5e:77:5c:7d:46:95:f2: 67:1f:2e:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE0owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUwODEwMTcwMDE5WhcNMjUwODE3MTcwMDE5WjAYMRYwFAYD VQQDEw02ODk4ZDAyMy04MWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr1KhTR3Zb+Bl7oNwqPd8B2RbmH+JrKt9SLf2ejURUKUk24KBwHP4ebnswQid rjAXG2fCqdXXcQ3mD9IXEKl24qDBQ2VRyMZgZRJWRluyjLXU/t1TdGXPLAu+KfDB nqdhykWVAHugq4/Ma79UB0bqBgFFtFTbB7i4ZyGz6DumBZqQd0BPAVXus1qnoSNx ni/+XHvYtSZ/I67kKuugXO63F5s3ElbiyZAJfA/wqFG98o8YIZmM7WyEPHioOCUH fdT8kEQBdJx7Xvmi3G5ucPISos2WdeNI0G/1gBIdGlQDWqXSNmh8ebPNStSBH11f TtLQ1S8QirahkuYhF2RNliiqpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD8wDOVb OvCRUehsp9YGKjuTBZpuMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxRsvWQXEUoSVLSkTeJriptYGydElfB5b6jmWl7mKgCUONKYUxTy4S JCj/l+vtUhxKGwU6fLdx7FEQP864V6HbeeVCLI0MLvy2jauzRkE9DfWr2LYYt3uv GjEtQ/FYaeRIXfQ13rVsu4s7SUHoESMWFksxIMBXOhAr3IuPtzZ+6qxAlThu+7dK 8X1btYtjU5PBQNNKY3Kvga3qvnzc2smtt+l2aAPY7xP7JHQsuFwOz+0QmylLrIN3 rT+Dm08NQBlRbc18dp/8P8LTuS7ZBUHabfmZdZL2ymeMDCOzkI1CcXbGPDZVAMbQ PzCNHpQk/DS1dd1tDF53XH1GlfJnHy6P -----END CERTIFICATE-----Generated at Mon Aug 11 04:43:58 2025 by rpki-client