$ rpki-client -vvf rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft File: kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft (raw, json) Hash identifier: gz5PBJ0TxsR9DZF8VjAVq/8JRHhPqVyZrkKlQL60WY8= Subject key identifier: 20:31:86:3F:72:FD:98:7E:86:9B:DF:85:F2:77:5C:DC:F3:89:CA:B8 Authority key identifier: 91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 Certificate issuer: /CN=A917F4D3/serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft Manifest number: 01FF Signing time: Thu 07 Aug 2025 02:45:38 +0000 Manifest this update: Thu 07 Aug 2025 02:45:38 +0000 Manifest next update: Thu 14 Aug 2025 02:45:38 +0000 Files and hashes: 1: kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl (hash: RdRDRIBH/2J2jSnAsWIZIN4DEIQTjlhKRYdFMiYbrpE=) 2: 32091726626D11ED87BDAC82C4F9AE02.roa (hash: hbdkOUT0eBQ98Cc0oj/9P37h6+6Kubs6FMec8+3wPTM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 02:45:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F4D3, serialNumber=9126EFE50D5E3B531FEEE4549AB30BFE7A545507 Validity Not Before: Aug 7 02:45:38 2025 GMT Not After : Aug 14 02:45:38 2025 GMT Subject: CN=68941352-d530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:5d:61:bb:f0:3a:40:54:00:a7:ef:38:a6:b5: d0:1f:b9:cd:35:4c:50:9f:70:2c:84:e2:8a:11:04: 61:00:36:68:66:4f:1b:92:f7:6b:2e:17:69:d8:60: 61:ad:7c:c4:58:a4:a0:d2:37:b5:4e:7b:33:b1:8f: a0:f5:f4:f7:f9:63:44:c5:0d:35:5a:2b:16:82:a6: a0:47:8f:f2:d3:d4:12:53:44:d7:de:03:54:eb:05: bb:b3:56:6f:c9:6e:ba:c3:d2:65:48:0c:75:4f:2a: d9:4d:b0:dc:98:b2:d5:41:b5:ac:44:77:b6:3f:b5: 0f:04:9d:00:bd:fc:e9:11:4f:04:92:8f:47:e6:b2: 12:03:75:5f:30:d9:c3:54:1a:60:ac:37:7a:e1:80: 4a:d7:3e:f5:db:1f:f9:8c:c7:4f:d3:9b:5b:75:d8: a5:da:71:5f:f4:91:38:b7:2a:2a:ea:78:76:37:84: b2:11:30:61:6d:2e:1f:5e:95:85:bd:5a:36:12:6e: 06:89:e7:92:25:d6:b8:28:b8:f5:56:f8:b4:68:e3: ff:f7:a1:0b:00:8a:2e:fc:be:cc:62:e5:21:d6:c1: d8:f4:c9:94:ec:1f:50:6c:6c:ba:e2:48:ac:a9:bd: b2:28:87:aa:3f:76:0e:b2:57:a3:d4:4d:e0:c4:ee: ae:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:31:86:3F:72:FD:98:7E:86:9B:DF:85:F2:77:5C:DC:F3:89:CA:B8 X509v3 Authority Key Identifier: keyid:91:26:EF:E5:0D:5E:3B:53:1F:EE:E4:54:9A:B3:0B:FE:7A:54:55:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSbv5Q1eO1Mf7uRUmrML_npUVQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F4D3/68034C68626611ED8242C786C4F9AE02/kSbv5Q1eO1Mf7uRUmrML_npUVQc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:0c:4a:7d:7e:59:a3:db:8a:b0:04:05:e4:b9:4d:1c:69:12: 39:0d:aa:ff:58:65:3e:e9:e3:6e:05:ae:c0:f3:60:7b:93:55: 6a:a3:71:47:57:cb:40:a5:b4:78:4f:d1:d9:39:a1:57:3a:58: 75:bd:8a:ba:ff:2e:31:34:3d:1d:c6:21:f1:7f:1d:fa:6b:e9: 02:07:34:44:f0:a9:a7:b0:23:3e:64:07:43:3b:21:8e:cf:5f: d4:ea:0e:70:6c:33:4a:be:20:56:44:ae:fa:00:31:74:ce:26: 34:57:f6:49:3f:52:d6:41:d4:e8:4c:77:2d:06:fc:44:08:84: ce:4e:6f:6d:13:a6:ef:fc:53:c2:68:38:51:06:25:57:3c:54: 46:60:ad:36:4f:c1:a9:b3:07:c0:e8:c9:63:cc:4b:92:ad:ff: 64:45:d2:11:ac:cb:c1:df:92:1e:64:a8:17:82:c8:d4:ce:5f: 95:72:6b:51:6b:4c:f7:0b:eb:d9:59:50:65:78:b5:6d:df:ef: 1f:30:b9:62:8f:e5:43:cb:e4:7c:41:76:d9:57:95:00:de:9d: bc:38:03:a1:42:b6:9e:a7:30:ea:9e:c5:3a:7f:fb:41:fa:be: 48:1b:36:b6:5e:fe:15:24:20:a4:bb:80:fc:8f:d7:2b:b3:72: 82:53:5c:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0Y0RDMxMTAvBgNVBAUTKDkxMjZFRkU1MEQ1RTNCNTMxRkVFRTQ1NDlBQjMwQkZF N0E1NDU1MDcwHhcNMjUwODA3MDI0NTM4WhcNMjUwODE0MDI0NTM4WjAYMRYwFAYD VQQDEw02ODk0MTM1Mi1kNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA511hu/A6QFQAp+84prXQH7nNNUxQn3AshOKKEQRhADZoZk8bkvdrLhdp2GBh rXzEWKSg0je1TnszsY+g9fT3+WNExQ01WisWgqagR4/y09QSU0TX3gNU6wW7s1Zv yW66w9JlSAx1TyrZTbDcmLLVQbWsRHe2P7UPBJ0AvfzpEU8Eko9H5rISA3VfMNnD VBpgrDd64YBK1z712x/5jMdP05tbddil2nFf9JE4tyoq6nh2N4SyETBhbS4fXpWF vVo2Em4GieeSJda4KLj1Vvi0aOP/96ELAIou/L7MYuUh1sHY9MmU7B9QbGy64kis qb2yKIeqP3YOslej1E3gxO6uUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCAxhj9y /Zh+hpvfhfJ3XNzzicq4MB8GA1UdIwQYMBaAFJEm7+UNXjtTH+7kVJqzC/56VFUH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjREMy82ODAzNEM2ODYy NjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8xTWY3dVJVbXJNTF9ucFVW UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTYnY1UTFlTzFNZjd1UlVtck1MX25wVVZRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjREMy82ODAzNEM2ODYyNjYxMUVEODI0MkM3ODZDNEY5QUUwMi9rU2J2NVExZU8x TWY3dVJVbXJNTF9ucFVWUWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB1DEp9flmj24qwBAXkuU0caRI5Dar/WGU+6eNuBa7A82B7k1Vqo3FH V8tApbR4T9HZOaFXOlh1vYq6/y4xND0dxiHxfx36a+kCBzRE8KmnsCM+ZAdDOyGO z1/U6g5wbDNKviBWRK76ADF0ziY0V/ZJP1LWQdToTHctBvxECITOTm9tE6bv/FPC aDhRBiVXPFRGYK02T8GpswfA6MljzEuSrf9kRdIRrMvB35IeZKgXgsjUzl+VcmtR a0z3C+vZWVBleLVt3+8fMLlij+VDy+R8QXbZV5UA3p28OAOhQraepzDqnsU6f/tB +r5IGza2Xv4VJCCku4D8j9crs3KCU1zn -----END CERTIFICATE-----Generated at Sat Aug 9 02:57:49 2025 by rpki-client