$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: Xpu2rmeAHRm+aK31UIFe3BCf1VokQIDzW1eiSIPpCM8= Subject key identifier: 99:24:89:97:A5:5C:CE:70:8F:E8:4F:C3:18:60:98:23:D6:2A:D7:F1 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 01ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 01D8 Signing time: Sat 09 Aug 2025 03:19:08 +0000 Manifest this update: Sat 09 Aug 2025 03:19:07 +0000 Manifest next update: Sat 16 Aug 2025 03:19:07 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: P5bdMedPnCTKPQWbWO8pb0ONd81YyffFmiwtaU91g3U=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 493 (0x1ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Aug 9 03:19:07 2025 GMT Not After : Aug 16 03:19:07 2025 GMT Subject: CN=6896be2c-b82e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:93:53:91:46:28:5a:0f:c9:48:87:db:45:fb: 3d:b1:47:aa:8e:31:23:a8:e7:fb:aa:45:2f:a8:6a: e9:02:91:32:7a:05:65:b6:8a:fb:52:b4:14:4e:13: 5b:4e:42:e1:a5:aa:c2:cb:50:61:c5:ac:d2:38:99: c8:e7:e6:bf:c4:92:6d:e6:b1:4c:98:e5:e5:14:ec: 83:64:e2:9e:43:04:fc:70:c0:a6:a7:3a:57:2f:aa: 40:fc:9c:c8:0e:ef:2e:bb:07:3e:ca:d3:3c:80:82: 99:85:f6:cd:3b:c6:79:1e:f8:03:93:96:64:d6:e9: d7:b0:a3:6f:f9:53:82:d7:48:2b:6c:fe:ad:6f:f9: 92:90:a0:2e:ed:b2:df:a8:b6:60:9f:f3:dd:66:72: 10:eb:a4:f7:26:96:75:3b:48:ba:75:2f:78:7a:67: bd:34:a1:d4:1e:bd:c6:d1:e2:53:b0:a8:95:5d:0f: af:39:c7:81:3c:b1:8f:e6:67:9f:f0:bb:3e:d1:86: 8b:53:38:84:16:2c:c5:cd:5e:69:ab:cd:ab:b2:f9: 56:a1:3d:55:7c:d5:e6:2b:6b:af:55:8f:3e:0b:23: e0:fd:b1:d1:9a:0b:2b:57:2c:e9:ea:1c:c1:7e:76: 81:e8:bf:19:09:8d:ac:80:2c:41:d6:04:de:30:e7: f8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:24:89:97:A5:5C:CE:70:8F:E8:4F:C3:18:60:98:23:D6:2A:D7:F1 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:67:16:39:07:01:06:9f:37:10:64:00:8b:ec:79:04:7b:30: fd:f0:61:27:2c:a4:39:6f:28:9f:8c:e2:98:03:4e:8b:4e:f9: f6:9f:89:ed:67:9b:61:9e:95:c3:d6:40:7e:1f:77:4b:1e:4b: 70:5f:66:1d:4f:72:bd:17:c2:b0:ad:ce:e0:35:a6:c5:42:39: d5:40:14:5a:07:bb:ec:00:34:2f:3d:01:5e:ca:44:59:bf:1a: f3:29:ba:93:12:95:76:5a:f7:d6:6d:8e:b7:cb:7f:eb:a0:11: 03:23:fa:d4:79:bf:9e:bf:a4:f3:e0:0d:73:10:2e:a5:c5:18: 1f:94:df:1a:e0:ea:7f:48:7f:d1:15:05:ec:4c:a3:c6:c7:a2: 98:32:4f:35:d5:c7:11:73:89:90:74:02:d5:f4:bf:91:15:59: 76:8c:84:cf:98:4a:2e:e9:5f:20:5e:17:f9:13:27:f6:6f:d3: fc:c0:55:b8:be:bb:28:ba:85:5a:35:50:b4:b0:3c:67:42:6f: 0b:f0:4d:b6:37:5c:a7:4b:04:da:38:13:3a:2a:94:e4:dc:1a: 2a:81:f0:6d:0e:26:40:06:6a:ea:b7:c4:54:af:a2:cd:95:b6: 54:0b:18:2c:51:9b:9e:f6:ac:08:99:55:ba:a3:9d:4e:ff:a8: 85:97:1a:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUwODA5MDMxOTA3WhcNMjUwODE2MDMxOTA3WjAYMRYwFAYD VQQDEw02ODk2YmUyYy1iODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJNTkUYoWg/JSIfbRfs9sUeqjjEjqOf7qkUvqGrpApEyegVltor7UrQUThNb TkLhparCy1BhxazSOJnI5+a/xJJt5rFMmOXlFOyDZOKeQwT8cMCmpzpXL6pA/JzI Du8uuwc+ytM8gIKZhfbNO8Z5HvgDk5Zk1unXsKNv+VOC10grbP6tb/mSkKAu7bLf qLZgn/PdZnIQ66T3JpZ1O0i6dS94eme9NKHUHr3G0eJTsKiVXQ+vOceBPLGP5mef 8Ls+0YaLUziEFizFzV5pq82rsvlWoT1VfNXmK2uvVY8+CyPg/bHRmgsrVyzp6hzB fnaB6L8ZCY2sgCxB1gTeMOf4OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkkiZel XM5wj+hPwxhgmCPWKtfxMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIZxY5BwEGnzcQZACL7HkEezD98GEnLKQ5byifjOKYA06LTvn2n4nt Z5thnpXD1kB+H3dLHktwX2YdT3K9F8Kwrc7gNabFQjnVQBRaB7vsADQvPQFeykRZ vxrzKbqTEpV2WvfWbY63y3/roBEDI/rUeb+ev6Tz4A1zEC6lxRgflN8a4Op/SH/R FQXsTKPGx6KYMk811ccRc4mQdALV9L+RFVl2jITPmEou6V8gXhf5Eyf2b9P8wFW4 vrsouoVaNVC0sDxnQm8L8E22N1ynSwTaOBM6KpTk3BoqgfBtDiZABmrqt8RUr6LN lbZUCxgsUZue9qwImVW6o51O/6iFlxpk -----END CERTIFICATE-----Generated at Sat Aug 9 05:44:54 2025 by rpki-client