$ rpki-client -vvf rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft File: KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft (raw, json) Hash identifier: ju29UkA/NbTsXGfvgxv06FYOBWa+zb9CDboLwmaRSr4= Subject key identifier: 86:B6:BC:95:FE:55:DC:C4:9C:34:16:7A:8F:1D:CC:4C:7C:37:D2:7B Authority key identifier: 28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A Certificate issuer: /CN=A91A308F/serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Certificate serial: 0A4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft Manifest number: 0A47 Signing time: Fri 08 Aug 2025 20:01:42 +0000 Manifest this update: Fri 08 Aug 2025 20:01:42 +0000 Manifest next update: Fri 15 Aug 2025 20:01:42 +0000 Files and hashes: 1: KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl (hash: DuU+JvLgryaLE/5Z8NVj5fX8qfLJJBGLoOPlU/WAJ/U=) 2: 6303AF646F8911EA92087E39C4F9AE02.roa (hash: MlTCpmNvZBXbaN3j5f/1p2NogI1xqgj2n12XSV4tPcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2638 (0xa4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A308F, serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Validity Not Before: Aug 8 20:01:42 2025 GMT Not After : Aug 15 20:01:42 2025 GMT Subject: CN=689657a6-8dfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:cd:67:22:d5:54:f0:b4:24:71:e3:63:d8:4d: f7:12:ce:d8:1e:3e:ab:9e:f8:f5:68:6e:4e:09:ed: 4f:b8:86:84:11:29:35:fe:26:70:67:ce:54:d2:11: 31:3a:01:e8:9a:9f:c9:76:a6:ca:e5:0e:5a:2f:e7: be:63:7f:12:e7:c7:31:81:f3:90:0b:05:99:c2:af: 04:48:00:82:96:13:e3:b9:e2:c8:34:db:6e:83:2d: a7:48:3a:71:72:55:17:e6:0f:17:46:34:c2:2b:69: 08:c2:4c:15:d6:88:6d:30:3e:06:bb:43:bd:af:dc: f3:d7:5d:2e:e2:be:5e:f7:c4:17:ba:86:76:0d:b5: 29:04:46:87:56:45:ca:f8:5b:8d:f5:3a:69:b2:42: f1:4d:2b:b1:0a:1a:9c:22:83:2b:04:f3:59:8c:b2: 7f:81:0f:6d:6b:2b:cf:a2:29:bb:e8:d7:02:2f:dc: bf:90:93:5a:d5:80:84:87:dd:90:3c:83:1b:6e:37: 3c:24:7a:fc:22:67:a6:ec:77:a9:f1:ca:1e:93:d0: c1:27:9a:9a:ad:42:39:f3:ba:31:dc:d8:1a:96:f7: 20:cc:21:d8:43:39:30:23:e6:1e:68:fd:dc:83:3a: 9d:f2:c3:63:be:e0:c4:2d:23:77:41:29:4f:92:0a: 19:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B6:BC:95:FE:55:DC:C4:9C:34:16:7A:8F:1D:CC:4C:7C:37:D2:7B X509v3 Authority Key Identifier: keyid:28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:ec:3e:8f:56:7c:19:9d:f9:aa:8e:8d:f2:0f:8d:e0:94:b5: 1f:18:92:e0:4b:09:14:e1:c9:e7:4c:85:fc:a6:90:e1:e4:db: a9:54:92:b2:e8:49:22:f0:fb:6a:08:9d:d9:e7:f7:cb:84:5c: b8:7c:9b:43:70:3b:cc:73:80:05:29:45:14:98:1f:2d:4b:4b: c7:f8:63:ff:9d:fe:5e:99:bb:63:13:37:e3:f5:69:41:f4:ce: 36:4b:49:26:9c:0b:1d:59:e4:3a:d6:d2:61:b3:5a:de:4a:5b: e8:9a:18:81:19:d0:bb:08:7c:f1:4d:84:53:20:2b:9d:a7:be: 28:34:fa:9e:0c:c3:3a:70:1d:71:29:87:eb:f9:55:85:76:32: 54:47:f8:7f:34:e3:b4:f4:2b:3f:3b:90:d6:3c:2b:13:25:46: c7:fb:d5:c3:3a:c9:28:d3:96:c9:8d:ec:4a:bb:3d:3b:7c:45: 61:ec:77:ee:00:39:23:db:93:aa:da:bd:d9:1f:58:a5:40:b9: f4:4f:31:20:cd:06:4b:40:18:97:da:3f:9d:40:c1:05:29:ba: 80:2d:20:7b:57:13:d7:2d:52:66:ad:42:61:68:ac:59:5e:c3: f8:35:11:84:28:69:03:06:81:76:d3:f8:f9:43:8c:05:1b:98: 1d:76:05:6b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCk4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwOEYxMTAvBgNVBAUTKDI4NjgyRUM3MjNDQ0UzMzYxODVCMzMzMDIwMTNGRjAw NjBEREUwOUEwHhcNMjUwODA4MjAwMTQyWhcNMjUwODE1MjAwMTQyWjAYMRYwFAYD VQQDEw02ODk2NTdhNi04ZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvc1nItVU8LQkceNj2E33Es7YHj6rnvj1aG5OCe1PuIaEESk1/iZwZ85U0hEx OgHomp/JdqbK5Q5aL+e+Y38S58cxgfOQCwWZwq8ESACClhPjueLINNtugy2nSDpx clUX5g8XRjTCK2kIwkwV1ohtMD4Gu0O9r9zz110u4r5e98QXuoZ2DbUpBEaHVkXK +FuN9TppskLxTSuxChqcIoMrBPNZjLJ/gQ9tayvPoim76NcCL9y/kJNa1YCEh92Q PIMbbjc8JHr8Imem7Hep8coek9DBJ5qarUI587ox3NgalvcgzCHYQzkwI+YeaP3c gzqd8sNjvuDELSN3QSlPkgoZYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIa2vJX+ VdzEnDQWeo8dzEx8N9J7MB8GA1UdIwQYMBaAFChoLscjzOM2GFszMCAT/wBg3eCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA4Ri9COUIzNDQ1QzZG ODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6WVlXek13SUJQX0FHRGQ0 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tHZ3V4eVBNNHpZWVd6TXdJQlBfQUdEZDRKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA4Ri9COUIzNDQ1QzZGODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6 WVlXek13SUJQX0FHRGQ0Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBW7D6PVnwZnfmqjo3yD43glLUfGJLgSwkU4cnnTIX8ppDh5NupVJKy 6Eki8PtqCJ3Z5/fLhFy4fJtDcDvMc4AFKUUUmB8tS0vH+GP/nf5embtjEzfj9WlB 9M42S0kmnAsdWeQ61tJhs1reSlvomhiBGdC7CHzxTYRTICudp74oNPqeDMM6cB1x KYfr+VWFdjJUR/h/NOO09Cs/O5DWPCsTJUbH+9XDOsko05bJjexKuz07fEVh7Hfu ADkj25Oq2r3ZH1ilQLn0TzEgzQZLQBiX2j+dQMEFKbqALSB7VxPXLVJmrUJhaKxZ XsP4NRGEKGkDBoF20/j5Q4wFG5gddgVr -----END CERTIFICATE-----Generated at Sat Aug 9 01:15:19 2025 by rpki-client