$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: wObmuZs61BOsupDKOVKLI9d7GwspALH3xfmSy6sqbBA= Subject key identifier: FD:4A:3F:78:86:AF:4F:C1:5F:00:4A:C8:14:67:C4:67:D3:1F:F1:0E Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0ACF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0AC7 Signing time: Tue 12 Aug 2025 19:45:50 +0000 Manifest this update: Tue 12 Aug 2025 19:45:49 +0000 Manifest next update: Tue 19 Aug 2025 19:45:49 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: TCgpNpl7jyScvW5IoRWYaDGBUuv6HqLGFvLHUG2EASA=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 19:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2767 (0xacf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Aug 12 19:45:49 2025 GMT Not After : Aug 19 19:45:49 2025 GMT Subject: CN=689b99ee-59f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:06:5c:ff:78:79:a2:a0:ca:7c:4f:73:f5:b6: 32:6a:02:c3:55:5f:05:78:c8:60:3d:71:70:fa:0b: b0:fd:74:d8:df:00:c2:85:c6:f1:ce:7d:94:8a:a8: 4f:98:e2:60:4d:27:50:1e:03:e9:c9:01:b1:b7:b6: 4e:51:c5:0e:ad:7d:1c:76:25:87:51:43:f9:d4:08: be:3e:f0:03:eb:3b:75:4a:75:e4:9b:c1:e8:5b:a7: c8:4e:b8:b2:ad:b7:07:71:c3:e3:24:e4:47:1d:1f: f9:b9:15:a7:df:ae:42:04:f8:5a:76:cf:95:d9:91: bb:d7:3c:b3:70:fd:48:ba:7d:e1:e9:c2:5d:82:cf: 7e:80:5c:8c:11:ef:b6:b0:63:c2:71:61:43:48:be: 71:20:10:53:80:a1:25:aa:53:61:ff:76:cf:dc:ac: b1:c4:f4:cf:10:7f:53:28:c6:97:65:d2:d0:0a:8e: 36:b3:93:7a:3b:01:a5:0c:2e:9a:e2:0f:6a:74:a0: 5c:74:da:2e:31:ed:c5:a3:68:40:a1:b5:0a:19:b2: 25:bc:07:e5:9a:3a:c5:c3:8b:99:78:28:b0:20:4f: 4f:7e:e3:48:49:16:9d:0a:95:55:94:f6:3c:46:9a: 29:39:40:8e:fb:95:31:68:eb:13:9d:0a:ff:f4:45: 33:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4A:3F:78:86:AF:4F:C1:5F:00:4A:C8:14:67:C4:67:D3:1F:F1:0E X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:8e:1a:cd:b8:37:3a:5a:db:94:3d:0f:d9:70:02:08:2b:87: b7:cc:9e:33:6b:0b:3c:96:0b:06:97:a0:8e:2e:d6:0a:46:b1: c2:36:3a:3c:9c:ac:84:71:2c:72:5c:99:82:21:3c:62:8c:f9: 11:d6:73:97:86:fc:2c:97:e5:7b:79:4c:ac:7a:dc:87:89:5c: f6:9d:c1:c2:04:d1:f1:f5:6c:c0:49:1d:27:99:fc:37:4a:c4: 2e:bf:0f:85:ff:ee:af:9f:31:58:24:9e:ae:4e:3d:a9:62:33: 41:88:56:fc:0d:29:98:8c:a1:8b:cc:ac:a3:9d:6d:b2:8d:53: 28:c9:2a:78:da:b6:61:18:17:f0:f4:62:0a:f9:2b:dc:8c:ee: 36:89:c4:2e:bb:5d:82:11:ea:9a:6e:ce:37:3e:65:3d:d4:cc: 15:66:06:8f:54:be:30:d2:1c:45:9f:2f:e8:1a:18:b8:7f:e4: 54:15:4d:0b:60:ed:b8:01:e7:0b:f3:82:d2:25:26:72:4e:b2: 16:c0:37:64:77:47:8e:21:32:f0:1a:07:cc:a5:f4:f0:2c:87: 16:7e:0c:1e:06:06:f9:e7:4a:db:c1:c8:04:a5:9d:62:73:ce: c2:c8:ce:96:36:d3:16:6b:53:39:41:b0:ee:66:63:5c:c8:dd: bc:c7:56:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUwODEyMTk0NTQ5WhcNMjUwODE5MTk0NTQ5WjAYMRYwFAYD VQQDEw02ODliOTllZS01OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgZc/3h5oqDKfE9z9bYyagLDVV8FeMhgPXFw+guw/XTY3wDChcbxzn2UiqhP mOJgTSdQHgPpyQGxt7ZOUcUOrX0cdiWHUUP51Ai+PvAD6zt1SnXkm8HoW6fITriy rbcHccPjJORHHR/5uRWn365CBPhads+V2ZG71zyzcP1Iun3h6cJdgs9+gFyMEe+2 sGPCcWFDSL5xIBBTgKElqlNh/3bP3KyxxPTPEH9TKMaXZdLQCo42s5N6OwGlDC6a 4g9qdKBcdNouMe3Fo2hAobUKGbIlvAflmjrFw4uZeCiwIE9PfuNISRadCpVVlPY8 RpopOUCO+5UxaOsTnQr/9EUzjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1KP3iG r0/BXwBKyBRnxGfTH/EOMB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQASjhrNuDc6WtuUPQ/ZcAIIK4e3zJ4zaws8lgsGl6COLtYKRrHCNjo8 nKyEcSxyXJmCITxijPkR1nOXhvwsl+V7eUysetyHiVz2ncHCBNHx9WzASR0nmfw3 SsQuvw+F/+6vnzFYJJ6uTj2pYjNBiFb8DSmYjKGLzKyjnW2yjVMoySp42rZhGBfw 9GIK+SvcjO42icQuu12CEeqabs43PmU91MwVZgaPVL4w0hxFny/oGhi4f+RUFU0L YO24AecL84LSJSZyTrIWwDdkd0eOITLwGgfMpfTwLIcWfgweBgb550rbwcgEpZ1i c87CyM6WNtMWa1M5QbDuZmNcyN28x1ax -----END CERTIFICATE-----Generated at Thu Aug 14 11:05:54 2025 by rpki-client