$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: XsZh+ogdjkKKthgRa0qT1LOpV/5twe9bNNn/SfID/9o= Subject key identifier: 9F:84:96:84:71:73:E8:F8:29:17:D9:77:DF:6A:8E:03:AC:E1:36:AA Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 013E Signing time: Mon 11 Aug 2025 04:36:00 +0000 Manifest this update: Mon 11 Aug 2025 04:35:59 +0000 Manifest next update: Mon 18 Aug 2025 04:35:59 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: o+Su2cmTUBU+HCzbOTmPDyPIg3+nP+sd786q9k/VC7w=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Aug 11 04:35:59 2025 GMT Not After : Aug 18 04:35:59 2025 GMT Subject: CN=6899732f-534e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a0:00:da:f2:16:25:53:81:99:3a:89:4e:a7: 83:c9:d3:70:8e:a3:2e:f5:62:81:16:02:e1:eb:e2: c4:40:a1:68:84:02:3b:7c:34:b9:b9:a0:92:43:95: ed:38:38:38:c1:fb:ee:ea:fe:97:4b:76:53:93:52: 90:6e:f1:78:3a:d1:d0:bd:27:e1:1e:c2:d5:48:6d: 46:ba:70:03:c0:22:60:db:5c:b1:7a:f8:03:c9:c8: b9:fd:b6:d4:a4:ea:a7:d4:2a:50:f1:90:2e:fd:b5: 05:8c:6f:e1:a8:f6:28:dc:9d:6e:51:f3:32:e8:e7: 4a:c0:cd:27:d0:c0:e3:c2:de:c1:42:9b:6b:c7:69: d2:f8:6a:53:9d:c5:b0:f3:f1:dc:44:d7:5f:b5:1b: fa:5d:5e:36:67:28:3a:36:91:50:4e:f4:10:8d:70: 58:ce:67:52:00:bb:95:9c:12:14:f2:e9:b3:27:a8: dd:61:06:ba:aa:88:5f:fe:66:0f:0a:04:c1:03:f2: 48:b9:ca:dc:56:5b:43:22:9c:8a:fd:10:67:f7:39: ce:56:e2:32:53:cb:ac:fc:0f:b2:f5:9a:36:b1:6e: 3f:cd:6d:59:22:7e:29:d9:b0:c8:7d:78:d8:8e:20: 52:89:94:69:c2:8a:6c:a2:f1:ea:c4:73:89:43:7c: d9:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:84:96:84:71:73:E8:F8:29:17:D9:77:DF:6A:8E:03:AC:E1:36:AA X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:7b:eb:8d:da:a6:2a:81:f4:62:2a:96:f8:55:5e:1e:0c:12: 0a:4b:70:05:41:a9:a4:ed:13:56:1f:21:ca:b0:2f:8e:97:d9: 27:d7:22:d4:13:6b:69:15:50:e9:70:31:c7:23:55:f0:6d:dc: 72:96:f1:8c:10:a1:30:90:19:c1:be:26:ac:cb:72:47:02:e2: bc:c7:54:fd:ce:6b:9b:5a:72:a0:f5:56:56:6c:81:1e:45:57: 33:46:fe:2c:33:3e:67:5d:a4:30:1a:14:1a:8a:d0:4b:47:55: 1c:b8:c0:7d:bb:c9:e5:c7:ae:6f:75:8c:64:f2:25:47:41:8c: 17:4a:df:19:3b:fb:27:1a:8f:94:60:a3:04:e6:59:95:8e:79: 29:6b:85:5f:0f:31:7d:09:a9:9b:5a:1f:d0:07:94:e3:86:63: 5b:18:13:25:cc:b6:a5:0c:57:76:4d:20:5c:d7:c9:8c:02:2f: 61:75:5c:e9:1d:0f:48:f6:ba:93:e8:73:28:8a:2d:56:52:fc: 8b:46:6d:c5:ee:b9:43:e5:58:b5:06:91:a3:37:42:d7:2a:89: 00:d6:c9:e6:62:10:83:2c:98:06:13:4d:6e:83:9a:f3:dc:dd: 07:f3:38:34:73:06:94:db:27:9c:97:22:49:11:90:e2:0f:0d: 59:2a:b7:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwODExMDQzNTU5WhcNMjUwODE4MDQzNTU5WjAYMRYwFAYD VQQDEw02ODk5NzMyZi01MzRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaAA2vIWJVOBmTqJTqeDydNwjqMu9WKBFgLh6+LEQKFohAI7fDS5uaCSQ5Xt ODg4wfvu6v6XS3ZTk1KQbvF4OtHQvSfhHsLVSG1GunADwCJg21yxevgDyci5/bbU pOqn1CpQ8ZAu/bUFjG/hqPYo3J1uUfMy6OdKwM0n0MDjwt7BQptrx2nS+GpTncWw 8/HcRNdftRv6XV42Zyg6NpFQTvQQjXBYzmdSALuVnBIU8umzJ6jdYQa6qohf/mYP CgTBA/JIucrcVltDIpyK/RBn9znOVuIyU8us/A+y9Zo2sW4/zW1ZIn4p2bDIfXjY jiBSiZRpwopsovHqxHOJQ3zZMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ+EloRx c+j4KRfZd99qjgOs4TaqMB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAee+uN2qYqgfRiKpb4VV4eDBIKS3AFQamk7RNWHyHKsC+Ol9kn1yLU E2tpFVDpcDHHI1XwbdxylvGMEKEwkBnBviasy3JHAuK8x1T9zmubWnKg9VZWbIEe RVczRv4sMz5nXaQwGhQaitBLR1UcuMB9u8nlx65vdYxk8iVHQYwXSt8ZO/snGo+U YKME5lmVjnkpa4VfDzF9CambWh/QB5TjhmNbGBMlzLalDFd2TSBc18mMAi9hdVzp HQ9I9rqT6HMoii1WUvyLRm3F7rlD5Vi1BpGjN0LXKokA1snmYhCDLJgGE01ug5rz 3N0H8zg0cwaU2yeclyJJEZDiDw1ZKrcm -----END CERTIFICATE-----Generated at Mon Aug 11 06:18:49 2025 by rpki-client