$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: L5i+q6zmna2GujjZzcXRxLKFOxr0aW7jSoEebuQSX1o= Subject key identifier: 74:34:B3:F0:BD:86:48:13:2E:F4:A9:B0:28:85:93:BF:75:36:49:8F Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 03B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 03B0 Signing time: Mon 11 Aug 2025 00:56:54 +0000 Manifest this update: Mon 11 Aug 2025 00:56:53 +0000 Manifest next update: Mon 18 Aug 2025 00:56:53 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: NrfJBmnuYSg6VFsswWreRn+ZbS+VPadCxe0nCPG6Nhg=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 8U+UsiCXDKifnoegufsPJKGalX6CUXoFX96X70pYMYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 951 (0x3b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Aug 11 00:56:53 2025 GMT Not After : Aug 18 00:56:53 2025 GMT Subject: CN=68993fd5-b3a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:86:41:3e:88:a0:4d:91:32:fc:f6:83:6e:49: 8f:0e:b6:99:44:35:d1:3d:a7:ec:9d:5f:24:b1:7e: a9:a8:49:43:f0:37:80:8e:f4:09:dc:dc:fb:dc:74: 4a:e9:5c:85:69:5c:10:ab:4c:18:c2:56:bb:69:21: 62:2e:15:08:a1:89:91:3c:b5:74:fe:c0:b6:9d:df: 87:c3:32:e3:b4:76:b7:ac:25:37:59:97:82:56:2d: 30:17:d9:56:2d:0a:4c:61:84:1c:82:1c:9e:92:d8: 02:b1:0c:93:d4:de:84:ef:89:5e:be:26:55:26:b1: c0:d0:f5:58:64:3b:ca:89:0a:f3:fa:2b:1a:53:e0: 6d:32:fe:4e:2c:ce:dd:79:1f:8b:17:34:1b:50:93: 31:dc:b4:8b:9e:d7:5c:be:d2:47:49:eb:9c:c6:ee: 2a:e2:9c:26:4a:e5:0c:2d:5b:16:12:86:80:8a:e3: a6:d8:0a:7f:5a:e0:91:7b:fe:2f:d7:02:06:b4:62: f6:e1:32:1e:7a:68:09:37:0d:1c:16:4f:e8:ce:14: 31:e7:b2:48:e6:1b:5b:97:06:59:da:cc:82:50:36: da:23:a7:41:a2:97:a4:0b:36:19:8d:f9:d1:12:08: 76:ef:93:28:df:55:cf:e9:6a:44:38:a4:39:60:e9: 8f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:34:B3:F0:BD:86:48:13:2E:F4:A9:B0:28:85:93:BF:75:36:49:8F X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:75:92:f8:72:55:2d:c3:57:58:a2:66:b7:67:9c:b2:38:c0: b4:e4:a8:99:9b:f6:7c:49:97:2c:4d:d0:89:cf:2a:15:13:50: 8a:5d:3a:7e:8c:9e:05:3f:f3:d6:2a:4b:15:43:37:e9:d3:d0: 6f:62:86:7a:60:ab:af:8d:d0:6d:8e:3d:80:b3:9b:47:e6:17: 64:ce:75:45:0e:4e:63:d8:52:84:29:fa:15:d1:d6:66:6d:48: 00:8c:1d:6e:6b:c4:c8:19:6c:0e:83:29:d4:d0:51:91:7d:85: bc:dd:a7:c1:98:05:35:59:4e:e0:20:08:9e:ee:66:d9:16:63: 35:19:f7:d5:07:fc:39:88:82:bd:29:b2:7c:e6:2e:3a:d0:66: 45:71:2b:22:20:f7:5c:73:3c:cc:57:b9:b6:9e:0f:c5:2f:1e: c9:9e:d7:8f:14:b8:d3:dc:b2:f6:16:d3:c7:24:53:cd:c0:7b: b7:da:a1:0a:84:1f:4b:1f:6e:66:ee:f8:6a:3a:e5:31:f9:d2: 09:75:b0:4c:38:59:48:9f:48:cb:21:5b:12:68:f3:a8:81:9e: aa:0f:d4:95:bb:ec:b5:4d:2b:6f:e6:d5:84:cf:d2:32:b4:c5: 44:49:a6:fb:f3:74:1b:64:64:01:04:88:a9:a8:21:c9:8d:e4: d2:10:33:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUwODExMDA1NjUzWhcNMjUwODE4MDA1NjUzWjAYMRYwFAYD VQQDEw02ODk5M2ZkNS1iM2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy4ZBPoigTZEy/PaDbkmPDraZRDXRPafsnV8ksX6pqElD8DeAjvQJ3Nz73HRK 6VyFaVwQq0wYwla7aSFiLhUIoYmRPLV0/sC2nd+HwzLjtHa3rCU3WZeCVi0wF9lW LQpMYYQcghyektgCsQyT1N6E74leviZVJrHA0PVYZDvKiQrz+isaU+BtMv5OLM7d eR+LFzQbUJMx3LSLntdcvtJHSeucxu4q4pwmSuUMLVsWEoaAiuOm2Ap/WuCRe/4v 1wIGtGL24TIeemgJNw0cFk/ozhQx57JI5htblwZZ2syCUDbaI6dBopekCzYZjfnR Egh275Mo31XP6WpEOKQ5YOmPRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHQ0s/C9 hkgTLvSpsCiFk791NkmPMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0dZL4clUtw1dYoma3Z5yyOMC05KiZm/Z8SZcsTdCJzyoVE1CKXTp+ jJ4FP/PWKksVQzfp09BvYoZ6YKuvjdBtjj2As5tH5hdkznVFDk5j2FKEKfoV0dZm bUgAjB1ua8TIGWwOgynU0FGRfYW83afBmAU1WU7gIAie7mbZFmM1GffVB/w5iIK9 KbJ85i460GZFcSsiIPdcczzMV7m2ng/FLx7JntePFLjT3LL2FtPHJFPNwHu32qEK hB9LH25m7vhqOuUx+dIJdbBMOFlIn0jLIVsSaPOogZ6qD9SVu+y1TStv5tWEz9Iy tMVESab783QbZGQBBIipqCHJjeTSEDNc -----END CERTIFICATE-----Generated at Mon Aug 11 06:00:52 2025 by rpki-client