$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: jh13yD5jCFXPePw9zDBh3CO2oe+HjQLPo6dPtWwb760= Subject key identifier: 8C:87:FF:7E:A6:03:5C:08:67:0E:B2:C5:AB:C8:A4:65:AC:9E:01:2C Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 6F Signing time: Sat 09 Aug 2025 07:21:54 +0000 Manifest this update: Sat 09 Aug 2025 07:21:53 +0000 Manifest next update: Sat 16 Aug 2025 07:21:53 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: iI/4LUBKazohKvr5Xwyk6p4ydCQjzvWHOvQ+FNyKjGU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Aug 9 07:21:53 2025 GMT Not After : Aug 16 07:21:53 2025 GMT Subject: CN=6896f711-6cfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a3:db:1f:71:69:62:fc:0c:72:88:79:d2:37: 76:0e:60:ab:02:c4:5d:8a:b7:39:91:48:a1:46:89: f1:11:60:94:0e:db:27:09:3e:f4:89:97:07:15:9d: ef:37:dc:b0:13:75:20:f4:4b:b1:97:80:e9:6e:65: 0e:71:99:de:e7:8a:92:66:cd:21:df:45:20:0f:6c: 07:0c:16:32:10:81:fc:11:a6:4a:ae:00:c3:f8:40: a9:bb:4d:bd:a6:ac:de:ae:fe:e9:7a:6f:04:4a:de: 97:e5:6a:19:b9:93:eb:21:47:d8:3d:55:77:0a:f2: c6:98:7c:75:7f:ca:ff:36:66:38:33:4f:b7:95:fa: ca:39:d7:4d:42:9e:3b:b8:b5:f2:62:5a:f4:60:37: 2f:92:2f:4a:e8:33:dc:67:ad:66:cc:4f:ed:9b:97: 8d:f7:c3:61:1b:c8:b3:e3:e2:d9:05:5e:21:3a:cd: 17:2d:50:3e:ab:f6:23:b0:fb:32:fa:2e:10:2e:bb: a7:3f:46:47:99:d2:bf:a6:7f:95:9f:f7:e9:4f:f3: 21:f6:6b:77:85:03:41:1d:cf:57:c0:15:91:2e:d7: ff:61:b9:28:74:50:a3:cc:83:4d:68:ac:d0:6e:99: b1:ab:1c:fc:65:b1:34:00:28:a4:66:02:94:3f:db: f3:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:87:FF:7E:A6:03:5C:08:67:0E:B2:C5:AB:C8:A4:65:AC:9E:01:2C X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:7b:8c:5c:6b:f5:ef:35:62:58:7e:50:9d:a1:1d:19:98:19: 0b:26:8f:7a:22:7e:f0:0f:67:8b:13:bf:37:7f:29:1b:40:b6: cd:29:ab:0b:9f:af:c8:7a:d9:2f:aa:28:08:b9:f2:ef:8c:c7: 69:c9:d9:60:9c:dc:4e:69:a9:55:19:ab:e9:92:87:9a:14:92: b7:d2:2f:9e:44:6a:47:2a:54:75:a5:f9:4d:0f:82:04:ec:c4: fc:5e:6f:b5:29:bf:90:95:63:59:b9:2e:54:6d:95:08:89:38: d6:0e:af:4d:d6:1f:3a:f2:6a:e2:16:a1:d2:f4:3f:c4:a9:c7: 4c:48:8f:b4:aa:09:6b:19:a9:1d:49:0b:09:0d:05:d6:57:be: 5b:da:bc:15:8b:83:2b:f4:59:48:6f:fb:09:e1:15:70:dd:ce: fa:25:7e:8a:c9:e7:98:d8:7a:cf:ce:92:a4:39:e6:65:0f:f2: ad:fa:2d:49:21:8f:65:1d:cb:59:95:6b:11:2a:ff:5c:7b:5e: db:34:59:c6:51:d2:22:06:b9:a9:d6:b7:82:f8:19:af:d0:c7: 84:e6:7e:b6:ac:8f:a7:90:12:c8:ca:0e:9d:10:49:3e:01:69: 48:e7:54:0d:18:53:56:73:e6:24:2a:e6:0e:e4:5c:07:41:7a: 5f:26:a9:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTA4MDkwNzIxNTNaFw0yNTA4MTYwNzIxNTNaMBgxFjAUBgNV BAMTDTY4OTZmNzExLTZjZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxo9sfcWli/AxyiHnSN3YOYKsCxF2KtzmRSKFGifERYJQO2ycJPvSJlwcVne83 3LATdSD0S7GXgOluZQ5xmd7nipJmzSHfRSAPbAcMFjIQgfwRpkquAMP4QKm7Tb2m rN6u/ul6bwRK3pflahm5k+shR9g9VXcK8saYfHV/yv82ZjgzT7eV+so5101Cnju4 tfJiWvRgNy+SL0roM9xnrWbMT+2bl433w2EbyLPj4tkFXiE6zRctUD6r9iOw+zL6 LhAuu6c/RkeZ0r+mf5Wf9+lP8yH2a3eFA0Edz1fAFZEu1/9huSh0UKPMg01orNBu mbGrHPxlsTQAKKRmApQ/2/NFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjIf/fqYD XAhnDrLFq8ikZayeASwwHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJt7jFxr9e81Ylh+UJ2hHRmYGQsmj3oifvAPZ4sTvzd/KRtAts0pqwuf r8h62S+qKAi58u+Mx2nJ2WCc3E5pqVUZq+mSh5oUkrfSL55EakcqVHWl+U0PggTs xPxeb7Upv5CVY1m5LlRtlQiJONYOr03WHzryauIWodL0P8Spx0xIj7SqCWsZqR1J CwkNBdZXvlvavBWLgyv0WUhv+wnhFXDdzvolforJ55jYes/OkqQ55mUP8q36LUkh j2Udy1mVaxEq/1x7Xts0WcZR0iIGuanWt4L4Ga/Qx4Tmfrasj6eQEsjKDp0QST4B aUjnVA0YU1Zz5iQq5g7kXAdBel8mqb4= -----END CERTIFICATE-----Generated at Sun Aug 10 03:50:26 2025 by rpki-client