$ rpki-client -vvf rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft File: KcmzN9Z7DxREgXmLTVsNc9eIrys.mft (raw, json) Hash identifier: faYEYGGbx7erE8VuInwLF2Br3YtMxnYTijCWmBAVIsI= Subject key identifier: 53:5B:7C:33:CC:60:F6:8E:93:12:5B:E9:82:BC:40:B8:8D:A6:9B:17 Authority key identifier: 29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B Certificate issuer: /CN=A91608B2/serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft Manifest number: 20 Signing time: Sat 09 Aug 2025 08:24:20 +0000 Manifest this update: Sat 09 Aug 2025 08:24:19 +0000 Manifest next update: Sat 16 Aug 2025 08:24:19 +0000 Files and hashes: 1: KcmzN9Z7DxREgXmLTVsNc9eIrys.crl (hash: FEx1827qYYM3m+1ddCxux3vTmPMt7aC9b96OAvJyBGg=) 2: 13B4125A4A5311F08B06EF0FC4F9AE02.roa (hash: JRzGJdFSse2irDcL+W7kuHv+w+d8AeO+g8YTYnBtHyU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91608B2, serialNumber=29C9B337D67B0F144481798B4D5B0D73D788AF2B Validity Not Before: Aug 9 08:24:19 2025 GMT Not After : Aug 16 08:24:19 2025 GMT Subject: CN=689705b4-3961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:62:98:4d:f6:cd:4b:f3:4a:70:c5:f8:e6:fb: 09:e2:80:d7:60:35:3c:3d:e9:c9:f8:59:77:b4:23: 87:ff:42:44:59:80:6d:1d:fe:c6:0d:2f:79:27:a3: 1f:36:f5:0a:60:b4:76:bc:5f:9e:27:be:96:37:17: 7b:c5:64:fe:9b:a0:0c:01:42:f7:06:88:31:e9:54: f1:f5:72:08:fc:79:b7:92:09:6f:7e:c2:12:da:8c: d1:63:14:47:b1:dd:9e:68:f4:c6:ed:d4:fd:ab:ee: 4a:4f:20:28:5c:8a:e3:7e:16:fd:83:15:6c:89:bf: 4e:2f:72:01:c2:c5:67:0a:57:40:7e:1b:d3:2d:35: 18:1b:df:3c:be:6c:cb:98:b4:4a:d4:7c:d0:5a:8e: 49:71:c6:76:68:93:e5:bc:8d:36:fc:aa:5c:3b:5e: 7d:0d:72:d8:22:0a:47:e6:dd:9a:ee:1d:3b:01:66: e6:41:be:22:c7:fc:46:7b:6b:b8:bf:51:ab:a5:f6: d7:dc:a0:25:7e:81:ed:b6:3b:21:e0:24:40:90:b5: 11:d9:22:04:1b:77:01:4c:a1:62:c8:bc:b3:db:61: e2:5f:df:56:6d:3e:19:37:31:20:87:78:75:6f:46: af:58:f8:34:52:93:00:ad:3a:17:c8:69:62:b4:86: 62:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:5B:7C:33:CC:60:F6:8E:93:12:5B:E9:82:BC:40:B8:8D:A6:9B:17 X509v3 Authority Key Identifier: keyid:29:C9:B3:37:D6:7B:0F:14:44:81:79:8B:4D:5B:0D:73:D7:88:AF:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KcmzN9Z7DxREgXmLTVsNc9eIrys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91608B2/C95A49AE4A5211F0989D700FC4F9AE02/KcmzN9Z7DxREgXmLTVsNc9eIrys.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:3c:b9:d0:f9:d2:81:d8:e4:b3:e4:62:8f:07:a3:14:e6:47: 3c:6a:b6:11:5f:7d:7e:05:76:1f:69:e2:be:dd:0b:1e:20:d4: 52:26:d8:d8:4f:4c:84:00:3f:c5:51:0c:65:c1:63:4e:f4:9e: 5d:6d:3d:0e:45:5b:e1:5e:79:33:ee:7c:83:e9:5a:15:dc:c1: 55:88:f8:e2:42:52:12:2e:35:ef:3e:db:c7:72:97:22:54:d5: 3e:ff:66:1f:3a:3c:05:ff:f5:7c:be:4b:5a:e5:b9:d4:c7:1a: fc:7c:4b:4f:0e:5d:d4:38:64:2c:dc:98:48:a4:1f:5b:25:d2: cc:12:41:4f:0a:db:57:f8:c4:20:b2:fe:a2:36:ce:5a:9e:27: a1:c4:da:63:c4:05:9e:3a:6d:22:87:ab:51:b6:9d:eb:aa:dc: 97:a6:f9:b8:52:d5:23:b8:9e:ea:d3:25:f5:3c:10:3b:09:19: 80:fa:6f:f4:91:1b:4d:d4:ea:bb:2c:2e:ce:11:25:8e:b2:cf: 87:5e:ca:a4:09:c3:7c:41:e5:c3:65:bd:89:46:fb:c0:de:7a: 15:73:74:14:62:34:39:0c:6e:69:a4:47:46:e8:27:7b:63:a7: f6:58:d5:cb:88:7d:35:1a:32:ed:97:af:6a:df:45:13:64:c9: 03:4d:68:9b -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDhCMjExMC8GA1UEBRMoMjlDOUIzMzdENjdCMEYxNDQ0ODE3OThCNEQ1QjBENzNE Nzg4QUYyQjAeFw0yNTA4MDkwODI0MTlaFw0yNTA4MTYwODI0MTlaMBgxFjAUBgNV BAMTDTY4OTcwNWI0LTM5NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8YphN9s1L80pwxfjm+wnigNdgNTw96cn4WXe0I4f/QkRZgG0d/sYNL3knox82 9QpgtHa8X54nvpY3F3vFZP6boAwBQvcGiDHpVPH1cgj8ebeSCW9+whLajNFjFEex 3Z5o9Mbt1P2r7kpPIChciuN+Fv2DFWyJv04vcgHCxWcKV0B+G9MtNRgb3zy+bMuY tErUfNBajklxxnZok+W8jTb8qlw7Xn0NctgiCkfm3ZruHTsBZuZBviLH/EZ7a7i/ Uaul9tfcoCV+ge22OyHgJECQtRHZIgQbdwFMoWLIvLPbYeJf31ZtPhk3MSCHeHVv Rq9Y+DRSkwCtOhfIaWK0hmJHAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUU1t8M8xg 9o6TElvpgrxAuI2mmxcwHwYDVR0jBBgwFoAUKcmzN9Z7DxREgXmLTVsNc9eIrysw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwOEIyL0M5NUE0OUFFNEE1 MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhSRWdYbUxUVnNOYzllSXJ5 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Ntek45WjdEeFJFZ1htTFRWc05jOWVJcnlzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYw OEIyL0M5NUE0OUFFNEE1MjExRjA5ODlENzAwRkM0RjlBRTAyL0tjbXpOOVo3RHhS RWdYbUxUVnNOYzllSXJ5cy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADM8udD50oHY5LPkYo8HoxTmRzxqthFffX4Fdh9p4r7dCx4g1FIm2NhP TIQAP8VRDGXBY070nl1tPQ5FW+FeeTPufIPpWhXcwVWI+OJCUhIuNe8+28dylyJU 1T7/Zh86PAX/9Xy+S1rludTHGvx8S08OXdQ4ZCzcmEikH1sl0swSQU8K21f4xCCy /qI2zlqeJ6HE2mPEBZ46bSKHq1G2neuq3Jem+bhS1SO4nurTJfU8EDsJGYD6b/SR G03U6rssLs4RJY6yz4deyqQJw3xB5cNlvYlG+8DeehVzdBRiNDkMbmmkR0boJ3tj p/ZY1cuIfTUaMu2Xr2rfRRNkyQNNaJs= -----END CERTIFICATE-----Generated at Sat Aug 9 10:34:19 2025 by rpki-client