$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: MxLJBAn7T9g4D9Yp6SIZpO/uYHBuHK9f0qYsTsySnUo= Subject key identifier: B7:DA:ED:60:22:F2:29:F9:E1:5C:C0:1C:E4:49:69:00:22:0B:87:FC Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 03BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 03B9 Signing time: Sat 09 Aug 2025 01:14:49 +0000 Manifest this update: Sat 09 Aug 2025 01:14:49 +0000 Manifest next update: Sat 16 Aug 2025 01:14:49 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: Z3OLdfmxaVt1PM10Hok8Aw7hZ6z2/Kfh47RWBM97Zx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7, serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: Aug 9 01:14:49 2025 GMT Not After : Aug 16 01:14:49 2025 GMT Subject: CN=6896a109-8cdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:f5:db:1b:47:a5:6c:6a:4b:2f:ed:9a:bc:ed: 13:ad:b5:6b:5a:0d:84:9b:5d:7b:55:18:58:f1:d0: 42:ed:59:73:7a:32:28:ec:51:63:d5:63:71:c4:83: 40:78:5f:16:a2:46:e5:b2:cf:96:5d:59:91:00:f8: 7a:f0:21:de:79:ec:24:94:68:b0:e4:bc:7f:dc:e4: d6:e2:7d:b3:ae:2a:2c:45:42:06:76:4e:64:d6:ff: 48:01:ff:ce:b3:19:76:54:65:28:22:51:1f:d9:e4: 0f:02:c1:42:e5:ae:31:f5:62:8b:62:00:0c:a4:07: f0:42:fb:a5:02:99:b3:48:da:22:8d:e9:87:c5:02: 3b:a9:0e:9d:29:1e:27:2d:e8:18:25:26:7b:ba:bb: e0:23:f1:a8:b3:c4:c8:83:32:dd:35:34:1e:4f:65: 4e:d6:3f:59:52:2d:bb:f9:87:c9:e9:4d:7e:46:2e: aa:ac:b2:14:96:e8:b6:ff:aa:13:b9:70:18:43:43: 10:71:e3:1c:ba:a7:eb:f1:bf:04:4f:f0:fd:17:c4: 2a:b2:a7:45:42:6a:2a:05:df:68:39:80:88:b0:ff: 26:ef:5e:c9:da:3c:da:63:27:40:61:c3:39:bf:1f: a2:26:cf:1a:9c:37:b7:cd:45:cf:4d:1f:30:e8:11: 86:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:DA:ED:60:22:F2:29:F9:E1:5C:C0:1C:E4:49:69:00:22:0B:87:FC X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:5f:ff:7f:f1:61:90:f6:be:24:6f:cd:d2:44:77:e5:42:b6: b4:f2:6c:9d:2a:a3:7a:3b:5e:5b:fc:98:69:50:04:6d:2d:f6: 97:d1:07:22:f3:ea:27:02:19:d4:7a:5c:1b:ff:42:7a:0b:98: ca:ea:1e:07:db:c6:f6:a7:bb:2b:e2:1d:b4:0a:8d:c9:30:f7: 10:18:1e:0f:17:a6:5b:a3:d1:95:a9:a6:57:b5:ab:35:aa:e9: 50:cb:e6:67:d0:27:11:3e:5b:33:e4:ce:86:3b:fe:71:86:1d: e1:8b:38:64:79:fc:99:ac:a2:59:a6:54:83:f3:cb:0a:b5:b3: cc:11:98:b7:c6:25:55:b3:f2:ae:15:13:8d:d6:13:86:f0:6c: 3b:c5:74:ed:a4:19:1f:2b:5d:33:2d:ea:fd:5c:8d:cb:6b:8f: 84:2d:9c:12:36:a9:7a:7b:75:0d:19:9b:c0:3f:ab:da:f9:25: 73:3e:f1:ba:b8:15:b3:06:29:28:90:6e:9e:c4:dc:24:76:21: 8f:af:be:6a:d6:ee:f4:8c:05:77:60:22:04:2c:37:37:55:77: a7:39:f4:12:91:58:87:d8:f5:04:18:42:67:6e:6f:1c:50:44: db:64:c8:ae:ea:06:d8:89:70:88:6b:bd:9a:ce:0a:eb:0f:45: df:9e:eb:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjUwODA5MDExNDQ5WhcNMjUwODE2MDExNDQ5WjAYMRYwFAYD VQQDEw02ODk2YTEwOS04Y2RiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt/XbG0elbGpLL+2avO0TrbVrWg2Em117VRhY8dBC7VlzejIo7FFj1WNxxINA eF8Wokblss+WXVmRAPh68CHeeewklGiw5Lx/3OTW4n2zriosRUIGdk5k1v9IAf/O sxl2VGUoIlEf2eQPAsFC5a4x9WKLYgAMpAfwQvulApmzSNoijemHxQI7qQ6dKR4n LegYJSZ7urvgI/Gos8TIgzLdNTQeT2VO1j9ZUi27+YfJ6U1+Ri6qrLIUlui2/6oT uXAYQ0MQceMcuqfr8b8ET/D9F8QqsqdFQmoqBd9oOYCIsP8m717J2jzaYydAYcM5 vx+iJs8anDe3zUXPTR8w6BGGgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLfa7WAi 8in54VzAHORJaQAiC4f8MB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLX/9/8WGQ9r4kb83SRHflQra08mydKqN6O15b/JhpUARtLfaX0Qci 8+onAhnUelwb/0J6C5jK6h4H28b2p7sr4h20Co3JMPcQGB4PF6Zbo9GVqaZXtas1 qulQy+Zn0CcRPlsz5M6GO/5xhh3hizhkefyZrKJZplSD88sKtbPMEZi3xiVVs/Ku FRON1hOG8Gw7xXTtpBkfK10zLer9XI3La4+ELZwSNql6e3UNGZvAP6va+SVzPvG6 uBWzBikokG6exNwkdiGPr75q1u70jAV3YCIELDc3VXenOfQSkViH2PUEGEJnbm8c UETbZMiu6gbYiXCIa72azgrrD0Xfnuth -----END CERTIFICATE-----Generated at Sun Aug 10 10:46:10 2025 by rpki-client