$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: BsuzG3Zi6Sc5gjN9+EMKd6zoVt3bNghsdH9lwuxWibM= Subject key identifier: 78:6C:06:EB:6F:25:8B:36:B3:51:16:BD:36:89:4F:FB:78:19:7B:C1 Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 0128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 0128 Signing time: Sat 09 Aug 2025 04:59:18 +0000 Manifest this update: Sat 09 Aug 2025 04:59:18 +0000 Manifest next update: Sat 16 Aug 2025 04:59:18 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: owvholjhW6HzRoamX6/wNLhl5f51ObJEHoaOuyx4+I8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 296 (0x128) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Aug 9 04:59:18 2025 GMT Not After : Aug 16 04:59:18 2025 GMT Subject: CN=6896d5a6-9b1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:5b:81:91:22:08:bd:71:12:1e:c7:27:40:0e: 42:4a:20:fc:33:8d:d9:33:07:56:d3:d6:15:41:5b: 90:b5:4a:fb:e7:35:60:11:49:20:92:62:98:ca:a4: d5:9a:7d:e9:a1:01:2b:3b:a0:0e:47:23:08:20:df: 33:13:bd:e4:bd:11:45:dd:9e:20:de:46:d7:e8:94: 78:e0:11:60:55:c3:27:53:52:c1:d0:cf:04:f6:ef: 95:4a:ac:88:40:c4:a1:c4:31:3f:81:92:ad:08:9b: ca:e5:cb:ef:02:d7:ba:03:49:df:31:d1:aa:f4:c2: 18:29:3c:b6:48:c2:75:3f:e9:b9:ee:fb:09:72:a2: 3e:0d:bc:52:7d:9c:3c:0f:e6:99:6d:20:d4:07:9c: 6d:c5:63:27:15:0c:c7:4a:89:fe:29:e5:3a:0a:39: 7d:bf:e7:0f:45:39:06:62:08:9b:26:f1:3c:4f:19: eb:f3:5c:1d:4d:a6:cb:09:d9:88:fc:cf:63:83:ca: a8:44:04:cf:7a:bd:d3:4f:e0:87:8d:55:e6:2c:67: 92:cf:77:96:ca:00:1d:2e:2a:18:c7:5d:b1:0c:b2: 35:8e:53:cb:44:c5:ef:d3:fc:61:ac:8c:d6:3c:1c: 5e:13:eb:58:9a:92:46:bf:dc:1c:4f:a2:7e:fb:11: 40:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:6C:06:EB:6F:25:8B:36:B3:51:16:BD:36:89:4F:FB:78:19:7B:C1 X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:c3:50:47:cb:ec:35:38:0c:a1:79:c5:3e:9d:c3:d5:2a:20: 14:91:7f:17:12:66:2c:16:62:dc:22:7d:31:47:38:f2:9b:11: f7:0f:ed:62:86:62:b1:2c:32:e2:e6:36:90:b5:ba:69:98:46: 54:7f:27:30:c8:39:8f:0d:05:08:08:4b:c1:79:f7:c2:3d:22: 1e:9f:ec:22:23:01:6d:c7:12:b1:22:d5:af:6f:1f:42:0f:a3: fc:a5:54:e4:16:ee:0e:63:b7:59:2e:2c:c3:61:94:ac:7f:75: 40:d0:08:a6:f3:95:82:f0:39:34:a3:3a:3e:59:71:f3:66:6d: 33:55:df:9d:e8:f3:58:f8:65:39:27:31:96:c4:10:e1:29:21: a8:e5:23:fb:bf:41:b8:75:4b:57:a3:a1:41:49:46:5a:b2:b8: 40:0a:8b:67:1f:38:b9:57:b8:f7:8f:a8:10:1f:4d:ef:0c:31: 80:c1:36:bd:d2:10:57:6a:4d:92:7b:69:08:18:39:dd:94:bd: 97:b2:a2:90:89:71:55:36:7e:10:f8:fc:f7:a2:ca:6d:ff:78: f1:87:e0:82:f2:4c:30:17:17:9e:40:44:4c:73:a0:8e:ba:b8: f7:f8:ce:04:76:75:b0:9e:05:6e:b4:db:c0:ce:9d:2a:42:40: e8:e4:8c:39 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjUwODA5MDQ1OTE4WhcNMjUwODE2MDQ1OTE4WjAYMRYwFAYD VQQDEw02ODk2ZDVhNi05YjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVuBkSIIvXESHscnQA5CSiD8M43ZMwdW09YVQVuQtUr75zVgEUkgkmKYyqTV mn3poQErO6AORyMIIN8zE73kvRFF3Z4g3kbX6JR44BFgVcMnU1LB0M8E9u+VSqyI QMShxDE/gZKtCJvK5cvvAte6A0nfMdGq9MIYKTy2SMJ1P+m57vsJcqI+DbxSfZw8 D+aZbSDUB5xtxWMnFQzHSon+KeU6Cjl9v+cPRTkGYgibJvE8Txnr81wdTabLCdmI /M9jg8qoRATPer3TT+CHjVXmLGeSz3eWygAdLioYx12xDLI1jlPLRMXv0/xhrIzW PBxeE+tYmpJGv9wcT6J++xFA5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHhsButv JYs2s1EWvTaJT/t4GXvBMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/w1BHy+w1OAyhecU+ncPVKiAUkX8XEmYsFmLcIn0xRzjymxH3D+1i hmKxLDLi5jaQtbppmEZUfycwyDmPDQUICEvBeffCPSIen+wiIwFtxxKxItWvbx9C D6P8pVTkFu4OY7dZLizDYZSsf3VA0Aim85WC8Dk0ozo+WXHzZm0zVd+d6PNY+GU5 JzGWxBDhKSGo5SP7v0G4dUtXo6FBSUZasrhACotnHzi5V7j3j6gQH03vDDGAwTa9 0hBXak2Se2kIGDndlL2XsqKQiXFVNn4Q+Pz3ospt/3jxh+CC8kwwFxeeQERMc6CO urj3+M4EdnWwngVutNvAzp0qQkDo5Iw5 -----END CERTIFICATE-----Generated at Sun Aug 10 18:59:36 2025 by rpki-client