$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft File: _Kk1XBq-QE8_PPUZL9NLEloAvxs.mft (raw, json) Hash identifier: 28j+TxeVHJj7UAXGsFv0U0zi3aQSuM/ikGBWa0E+PfI= Subject key identifier: 66:59:AE:84:1D:0C:B0:F7:50:23:81:68:0D:9F:C8:32:F4:8A:83:AD Authority key identifier: FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B Certificate issuer: /CN=A91ADD64/serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft Manifest number: EA Signing time: Mon 11 Aug 2025 05:33:00 +0000 Manifest this update: Mon 11 Aug 2025 05:33:00 +0000 Manifest next update: Mon 18 Aug 2025 05:33:00 +0000 Files and hashes: 1: _Kk1XBq-QE8_PPUZL9NLEloAvxs.crl (hash: ZoAGStPJPWqn4JswZz/QCQu/TWyiIw3yMbc6fPY4gQs=) 2: 57FBE074370111F094BF7862C4F9AE02.roa (hash: NzrXfR/7zniLvrCXQlmVGg2isIi5LfwP1ubwC3yxm7E=) 3: 5740BDF8370111F094BF7862C4F9AE02.roa (hash: /GfdIIe6m1dYDx7Tm/mUgCqzxCNCLDFcedZ67s1StUY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Validity Not Before: Aug 11 05:33:00 2025 GMT Not After : Aug 18 05:33:00 2025 GMT Subject: CN=6899808c-1ed2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:96:fb:4e:e7:a8:1a:74:d5:c7:2a:52:1c:4c: 1f:aa:f0:e2:1f:97:23:66:b7:8a:37:6b:d3:7b:2d: dc:ba:f3:5c:ad:9c:65:4e:ec:48:3b:f5:e9:38:24: 25:d9:7c:ac:97:76:5f:97:b1:53:9f:96:47:92:b1: 61:80:3a:c5:b6:ff:32:e8:6f:cb:a3:a4:7a:e7:11: ae:79:6f:5f:a7:b9:c5:48:44:ca:85:1b:8c:48:d3: de:d0:bf:c5:3c:79:87:72:cf:fa:1a:4d:8a:3c:09: 90:39:12:c0:48:bb:72:fd:ee:4c:18:c6:08:f1:4d: 16:54:22:eb:76:68:d3:76:0e:e7:b4:1a:5f:26:86: ca:f8:56:c5:44:79:7d:0c:54:6b:0b:72:cd:7d:c9: a4:5b:05:1b:b0:d3:1d:40:3a:d3:02:d3:8b:90:f4: 35:d6:37:21:bd:de:f9:9c:f4:7a:83:67:02:e9:16: 63:0b:b6:b0:8f:3a:2e:86:f1:48:b6:6b:9b:35:ba: 45:ab:74:a5:ae:09:0e:71:fa:cb:a0:bf:39:2f:82: 8d:42:65:bb:49:36:ed:e1:da:43:d0:04:2e:ad:7c: 1b:ed:e7:6d:ae:d5:56:bd:4a:39:8f:a6:ab:74:0b: 50:bf:2a:56:3d:ec:3d:23:18:78:c6:e1:32:ec:aa: 9a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:59:AE:84:1D:0C:B0:F7:50:23:81:68:0D:9F:C8:32:F4:8A:83:AD X509v3 Authority Key Identifier: keyid:FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:7f:d4:f2:1f:57:af:2b:31:ed:51:d0:59:e6:cd:7b:41:aa: 7a:19:2e:1e:44:d6:05:1a:41:bf:a7:da:c4:1d:8b:95:10:91: ca:c2:19:f0:a8:55:76:6b:a5:21:81:b0:a5:15:2c:47:1d:21: de:3a:64:49:e3:21:54:2f:ad:3f:df:5e:6b:a7:6a:10:02:8a: 6e:19:8a:1a:0a:b2:81:b3:43:c6:eb:83:17:b8:8c:be:81:bf: bb:ef:97:27:78:15:22:fb:70:6f:d9:b1:f5:27:2c:92:d6:e0: fd:80:c2:35:14:f3:d0:50:5c:e6:bc:8c:e4:69:c5:3f:b0:d4: 5b:49:3c:a9:4f:22:81:3f:19:66:30:e4:bf:19:42:95:7f:51: 60:95:56:f0:53:8d:af:5b:d8:45:8f:b1:ae:ef:42:f8:f8:65: c3:fe:76:71:bb:19:66:9e:87:75:d6:60:99:42:f6:7d:02:e7: 55:33:6e:ca:3e:49:9b:e0:ff:ae:c6:6b:0a:ad:e0:58:3c:13: be:a3:d3:79:c9:42:05:c2:b4:ed:4c:63:d8:d6:68:d7:b3:e7: 7f:cf:a1:3d:78:7e:01:0c:33:74:10:45:15:37:d7:17:92:bc: cc:24:6b:e7:b0:b2:bb:7f:bd:90:c9:d9:6e:b1:57:8d:f2:72: ab:e8:05:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKEZDQTkzNTVDMUFCRTQwNEYzRjNDRjUxOTJGRDM0QjEy NUEwMEJGMUIwHhcNMjUwODExMDUzMzAwWhcNMjUwODE4MDUzMzAwWjAYMRYwFAYD VQQDEw02ODk5ODA4Yy0xZWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Jb7TueoGnTVxypSHEwfqvDiH5cjZreKN2vTey3cuvNcrZxlTuxIO/XpOCQl 2Xysl3Zfl7FTn5ZHkrFhgDrFtv8y6G/Lo6R65xGueW9fp7nFSETKhRuMSNPe0L/F PHmHcs/6Gk2KPAmQORLASLty/e5MGMYI8U0WVCLrdmjTdg7ntBpfJobK+FbFRHl9 DFRrC3LNfcmkWwUbsNMdQDrTAtOLkPQ11jchvd75nPR6g2cC6RZjC7awjzouhvFI tmubNbpFq3SlrgkOcfrLoL85L4KNQmW7STbt4dpD0AQurXwb7edtrtVWvUo5j6ar dAtQvypWPew9Ixh4xuEy7Kqa9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZZroQd DLD3UCOBaA2fyDL0ioOtMB8GA1UdIwQYMBaAFPypNVwavkBPPzz1GS/TSxJaAL8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC80RUIyQjQyODEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFFOF9QUFVaTDlOTEVsb0F2 eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19LazFYQnEtUUU4X1BQVVpMOU5MRWxvQXZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC80RUIyQjQyODEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFF OF9QUFVaTDlOTEVsb0F2eHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmf9TyH1evKzHtUdBZ5s17Qap6GS4eRNYFGkG/p9rEHYuVEJHKwhnw qFV2a6UhgbClFSxHHSHeOmRJ4yFUL60/315rp2oQAopuGYoaCrKBs0PG64MXuIy+ gb+775cneBUi+3Bv2bH1JyyS1uD9gMI1FPPQUFzmvIzkacU/sNRbSTypTyKBPxlm MOS/GUKVf1FglVbwU42vW9hFj7Gu70L4+GXD/nZxuxlmnod11mCZQvZ9AudVM27K Pkmb4P+uxmsKreBYPBO+o9N5yUIFwrTtTGPY1mjXs+d/z6E9eH4BDDN0EEUVN9cX krzMJGvnsLK7f72QydlusVeN8nKr6AXt -----END CERTIFICATE-----Generated at Mon Aug 11 13:16:18 2025 by rpki-client