$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: OEqbhXaogmJ4SHgdu3w9NNb93dg0Y+9iTxw/4ihApsM= Subject key identifier: 35:81:2E:82:27:B8:1B:CA:12:C1:2D:7C:81:5D:33:44:8B:0E:CC:C1 Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: CC Signing time: Sat 09 Aug 2025 06:06:59 +0000 Manifest this update: Sat 09 Aug 2025 06:06:59 +0000 Manifest next update: Sat 16 Aug 2025 06:06:59 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: U/MZYaDF/IxnRoEjBmIXwr0FwtG2PvHJrhRXta58ySQ=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Aug 9 06:06:59 2025 GMT Not After : Aug 16 06:06:59 2025 GMT Subject: CN=6896e583-95cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5c:e1:7e:62:78:3a:84:90:e1:25:1f:4e:af: 49:78:1c:39:5b:30:af:a0:4f:c5:66:86:d7:3c:01: d2:56:a8:66:31:e0:38:7e:02:70:6f:31:e7:4d:4f: 2d:0b:7d:67:03:e6:a2:b2:7c:66:01:57:3d:a9:0c: af:55:42:a2:d5:fa:3f:fd:a8:17:b3:82:55:23:e7: a5:b4:43:26:b1:9a:69:bd:d0:47:d4:04:a2:cf:ef: a1:6d:4f:5e:a9:70:c5:83:d1:85:06:16:56:64:cc: 1e:03:3a:48:42:e1:93:3c:e7:01:4a:fe:6e:b3:33: de:6a:77:79:e1:c0:d5:f9:f3:f4:eb:5a:ec:3e:db: 20:0f:be:69:9e:3d:c1:34:35:01:0b:d6:2c:e0:b4: e4:d5:95:fc:74:46:30:ab:62:f4:19:1c:5b:96:7f: b0:8f:69:93:82:e5:5e:4f:c6:0a:fa:04:0a:c5:55: 3c:68:e1:98:ae:4f:99:2f:dc:78:76:da:f8:3d:b7: 15:73:9a:c1:cf:19:49:78:7d:4e:54:79:03:79:a6: 38:aa:a1:99:ce:d0:a7:7c:e5:e8:99:62:32:be:26: 47:81:4e:03:71:18:6a:03:ca:d8:e2:50:d2:d2:aa: 42:5f:06:c7:f9:79:5f:e8:52:e2:ce:2c:63:50:da: 63:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:81:2E:82:27:B8:1B:CA:12:C1:2D:7C:81:5D:33:44:8B:0E:CC:C1 X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:05:ae:5a:20:ad:03:fd:b6:a9:8a:52:f6:d9:67:3d:ee:44: a0:c5:d8:7c:28:a8:cb:c8:5e:5f:f5:05:9e:10:71:f9:59:7c: 8a:de:97:b2:1e:14:ca:4d:58:21:d6:66:c9:d2:ec:b0:f4:84: 7e:bc:bc:68:5e:c9:39:b8:25:1c:95:3f:e6:b3:6f:a3:de:6a: 5b:71:29:7d:97:5c:46:ad:0a:3c:ed:db:65:bf:7b:48:4e:ce: 96:9f:26:74:2c:03:f5:0e:65:2f:ca:a9:da:e1:e2:3f:ad:42: 36:c2:0c:d0:a9:d1:a7:22:ed:d2:33:ac:8f:1c:f6:fd:e0:6a: 2d:9c:52:f3:de:79:c0:78:61:4c:01:49:3f:23:85:32:5e:b6: d8:b1:c0:8e:5b:f7:6a:f6:4c:53:87:47:26:d5:33:88:48:62: e2:73:f8:7f:c7:dc:af:ff:13:a4:12:4a:9d:5a:2d:26:82:2f: 51:0b:a7:86:8c:72:e6:82:fe:2a:06:39:c9:5b:67:14:8e:54: 98:b6:35:ee:da:12:e4:ba:d1:c4:c6:bd:9b:93:9a:8d:c4:f5: 17:37:ec:4a:95:03:53:50:14:a3:8d:62:bc:e9:0c:94:ae:f3: 81:6f:b7:b5:35:b0:d3:dc:3f:87:0f:f7:c7:ff:bc:c4:4b:cd: 08:35:de:8f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUwODA5MDYwNjU5WhcNMjUwODE2MDYwNjU5WjAYMRYwFAYD VQQDEw02ODk2ZTU4My05NWNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVzhfmJ4OoSQ4SUfTq9JeBw5WzCvoE/FZobXPAHSVqhmMeA4fgJwbzHnTU8t C31nA+aisnxmAVc9qQyvVUKi1fo//agXs4JVI+eltEMmsZppvdBH1ASiz++hbU9e qXDFg9GFBhZWZMweAzpIQuGTPOcBSv5uszPeand54cDV+fP061rsPtsgD75pnj3B NDUBC9Ys4LTk1ZX8dEYwq2L0GRxbln+wj2mTguVeT8YK+gQKxVU8aOGYrk+ZL9x4 dtr4PbcVc5rBzxlJeH1OVHkDeaY4qqGZztCnfOXomWIyviZHgU4DcRhqA8rY4lDS 0qpCXwbH+Xlf6FLizixjUNpjtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDWBLoIn uBvKEsEtfIFdM0SLDszBMB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjBa5aIK0D/bapilL22Wc97kSgxdh8KKjLyF5f9QWeEHH5WXyK3pey HhTKTVgh1mbJ0uyw9IR+vLxoXsk5uCUclT/ms2+j3mpbcSl9l1xGrQo87dtlv3tI Ts6WnyZ0LAP1DmUvyqna4eI/rUI2wgzQqdGnIu3SM6yPHPb94GotnFLz3nnAeGFM AUk/I4UyXrbYscCOW/dq9kxTh0cm1TOISGLic/h/x9yv/xOkEkqdWi0mgi9RC6eG jHLmgv4qBjnJW2cUjlSYtjXu2hLkutHExr2bk5qNxPUXN+xKlQNTUBSjjWK86QyU rvOBb7e1NbDT3D+HD/fH/7zES80INd6P -----END CERTIFICATE-----Generated at Mon Aug 11 02:05:41 2025 by rpki-client