$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: ET8CzDShceUSa96BUb2CpTz6q1z2cJRwWt2J4HHFz84= Subject key identifier: DA:28:32:7A:DB:F3:93:DF:BC:E0:7B:70:06:28:E0:CA:B5:43:B4:72 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 1029 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 1018 Signing time: Sun 10 Aug 2025 17:26:49 +0000 Manifest this update: Sun 10 Aug 2025 17:26:48 +0000 Manifest next update: Sun 17 Aug 2025 17:26:48 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: 4wYuLGWR8W3b6Ii4ETNTwgJVLGMCNvS5N3gsQevS1VU=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4137 (0x1029) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Aug 10 17:26:48 2025 GMT Not After : Aug 17 17:26:48 2025 GMT Subject: CN=6898d659-8188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b5:b0:6f:80:90:6f:34:d1:05:4b:fd:1d:b7: c6:f8:22:6e:88:c7:37:37:bc:ef:5c:99:64:c2:57: a5:35:f7:ff:e9:b8:b9:0e:bb:02:d3:e4:db:e0:96: b2:7e:5d:60:b9:5a:83:4d:2d:85:f3:99:61:06:bb: e6:99:2c:84:e0:04:d5:6e:9d:6a:82:1c:b5:67:02: 1d:c9:0a:2e:c0:f1:6b:f3:f9:fd:17:2f:9a:6d:98: 01:db:65:da:70:3d:79:12:97:3d:4e:b5:ed:92:ea: 13:2c:24:ce:e0:65:a4:18:b5:52:aa:ce:e1:9c:60: 53:09:a7:db:4c:5b:e9:2a:54:ea:83:08:4d:71:6e: df:f8:ab:2d:b8:f1:1c:37:ee:ab:d4:68:92:7a:88: 08:ac:d8:55:d7:65:15:9f:82:f7:bb:4a:83:80:cf: 17:37:5c:ae:9a:7e:a9:c0:a5:89:23:06:e6:39:18: 62:2a:15:84:c1:0a:7b:ee:38:03:6f:5e:76:12:c1: f1:b5:2a:65:7c:19:c6:c0:a8:84:ce:9d:bf:67:f9: 87:93:4b:9f:e3:1d:b5:3e:a7:ce:4d:c0:94:05:5c: b8:db:58:64:69:42:28:a9:1f:61:73:4d:6f:ef:50: 66:77:f8:b9:3a:48:6d:25:ba:9b:61:d9:07:33:8a: c8:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:28:32:7A:DB:F3:93:DF:BC:E0:7B:70:06:28:E0:CA:B5:43:B4:72 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:e3:9b:4c:a0:6d:7a:03:39:a7:9d:99:c3:a2:df:ad:0a:16: f5:92:0a:38:f7:cf:91:33:18:5f:2b:6c:4a:c6:d2:b4:5b:ca: f2:e0:c0:dc:d2:d6:15:17:38:0d:82:4b:0c:72:93:0a:1f:a8: fb:3c:bc:02:1d:95:00:c2:97:b7:7d:3c:28:cc:a0:16:ae:4b: cb:36:b7:92:b9:fd:23:17:c2:8d:25:24:2f:4f:54:77:e5:1a: 5f:cd:f5:82:00:d2:01:42:59:44:ef:06:91:a0:19:a4:7b:d7: 49:17:2c:a3:f3:f4:b0:b3:79:1f:3d:09:c9:97:28:8d:a6:d1: 8f:3d:e4:b4:fc:b5:50:5f:eb:74:ee:a5:9d:c2:03:dd:af:a8: 51:2e:ac:dc:fc:c5:0c:56:a9:ae:fe:aa:bd:5e:40:15:aa:cf: 48:1f:54:b9:c9:58:61:cd:8e:ba:34:25:d8:86:7b:c9:8f:62: e4:2e:5b:cb:bf:69:ce:94:45:9e:6b:bc:10:06:f7:af:30:3d: 33:bc:9d:f1:d3:fb:c6:b9:e9:72:f3:8f:1a:ae:da:39:ed:77: 29:ea:f7:8f:eb:09:82:78:ce:77:cf:68:6b:d6:4d:7c:93:3b: 10:5b:c6:ce:81:22:b6:4f:73:96:83:1e:e3:0d:f7:70:94:c3: 21:d4:5b:ee -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUwODEwMTcyNjQ4WhcNMjUwODE3MTcyNjQ4WjAYMRYwFAYD VQQDEw02ODk4ZDY1OS04MTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubWwb4CQbzTRBUv9HbfG+CJuiMc3N7zvXJlkwlelNff/6bi5DrsC0+Tb4Jay fl1guVqDTS2F85lhBrvmmSyE4ATVbp1qghy1ZwIdyQouwPFr8/n9Fy+abZgB22Xa cD15Epc9TrXtkuoTLCTO4GWkGLVSqs7hnGBTCafbTFvpKlTqgwhNcW7f+KstuPEc N+6r1GiSeogIrNhV12UVn4L3u0qDgM8XN1yumn6pwKWJIwbmORhiKhWEwQp77jgD b152EsHxtSplfBnGwKiEzp2/Z/mHk0uf4x21PqfOTcCUBVy421hkaUIoqR9hc01v 71Bmd/i5OkhtJbqbYdkHM4rI7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNooMnrb 85PfvOB7cAYo4Mq1Q7RyMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBb45tMoG16AzmnnZnDot+tChb1kgo498+RMxhfK2xKxtK0W8ry4MDc 0tYVFzgNgksMcpMKH6j7PLwCHZUAwpe3fTwozKAWrkvLNreSuf0jF8KNJSQvT1R3 5RpfzfWCANIBQllE7waRoBmke9dJFyyj8/Sws3kfPQnJlyiNptGPPeS0/LVQX+t0 7qWdwgPdr6hRLqzc/MUMVqmu/qq9XkAVqs9IH1S5yVhhzY66NCXYhnvJj2LkLlvL v2nOlEWea7wQBvevMD0zvJ3x0/vGuely848arto57Xcp6veP6wmCeM53z2hr1k18 kzsQW8bOgSK2T3OWgx7jDfdwlMMh1Fvu -----END CERTIFICATE-----Generated at Mon Aug 11 07:31:44 2025 by rpki-client