$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: ECWf7SZF4obuE6qb4i2s+eHuCmj6UDDkJSwiD7DsoCY= Subject key identifier: 26:D4:DC:FB:B9:A4:87:8C:F5:E2:EA:95:1B:4B:97:5A:23:2A:02:AF Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 075D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 0746 Signing time: Wed 06 Aug 2025 22:07:15 +0000 Manifest this update: Wed 06 Aug 2025 22:07:14 +0000 Manifest next update: Wed 13 Aug 2025 22:07:14 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: dOak1yQzfpj2OjyQKVrJkku7aFV0ZNYrugIFw0xvsKk=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1885 (0x75d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Aug 6 22:07:14 2025 GMT Not After : Aug 13 22:07:14 2025 GMT Subject: CN=6893d213-297b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:49:58:b1:01:b8:f7:12:9c:2f:e4:e6:8b:6e: a6:8b:dd:66:0e:cd:c7:cc:30:d9:26:e9:8f:4e:79: 73:7c:a5:1b:4e:b4:50:b5:e3:6a:3f:8f:b8:f5:28: 2b:29:9b:7d:de:b5:2c:0b:06:57:e2:21:ee:2b:3c: e2:5a:d1:bd:a3:4e:69:06:08:9b:f4:fa:0a:99:13: 6d:43:28:f1:13:e5:dc:92:62:d9:d4:65:1b:3d:8d: b5:c9:5c:d1:e1:a6:25:a7:33:0d:a1:bd:0b:27:8a: 05:bf:ec:71:bf:fc:ca:b7:10:e2:c3:89:6b:a4:93: df:80:a6:dd:ac:cf:dd:bc:f5:e8:85:e4:85:ed:3f: 98:79:de:89:4a:4e:24:66:a0:d6:b5:76:0b:3b:58: e6:3c:5b:19:d3:ae:58:29:5d:da:29:2f:a5:95:d8: 48:88:43:66:da:c1:45:bd:74:aa:95:00:cc:3c:95: fa:b6:4e:77:22:80:2d:01:b1:8f:b0:94:43:0e:f0: fe:93:38:c1:01:a4:31:1b:33:3f:2d:07:36:2b:64: 6b:95:42:4b:3b:d1:13:44:3c:31:32:85:b8:9e:54: 1c:81:56:28:39:fc:da:64:71:b5:d4:51:75:39:1c: c4:25:4d:f7:30:b1:36:10:27:94:df:e4:1d:0c:5a: fd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:D4:DC:FB:B9:A4:87:8C:F5:E2:EA:95:1B:4B:97:5A:23:2A:02:AF X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:fb:2d:f7:98:37:7b:cc:20:7c:a7:99:f8:2c:86:9d:6d:8e: e3:f7:84:28:82:54:02:b3:76:c7:19:9a:b4:57:52:c8:27:ee: 3a:87:62:50:68:d0:0c:80:ff:28:63:7d:6b:3a:87:ab:90:e3: ea:7e:65:09:41:d3:c1:88:0c:10:bd:6a:bc:de:9c:bd:ce:95: 5a:e0:b5:2d:93:cd:ad:78:e1:e6:25:83:87:2d:a2:7b:23:1f: d6:b8:03:81:7e:4d:08:f1:c2:10:8e:9f:5f:e5:86:08:f2:98: bb:cd:c0:0f:32:04:54:ba:6c:d6:e2:ea:99:cb:d9:08:7b:cc: de:90:38:cd:6c:bd:8d:89:8a:39:29:44:61:89:34:aa:f5:4f: 95:7e:fc:a6:c2:9f:a7:06:4b:7c:21:2a:69:7d:17:c1:0e:a2: 84:89:d5:53:a3:13:49:68:4b:b1:85:d8:29:f8:82:87:84:00: a3:0f:5f:00:1e:2f:d3:f7:45:3d:33:bc:ab:f8:e3:d1:12:7b: f9:55:4f:b0:bd:1d:0f:ff:76:e4:b7:0b:64:20:1d:d8:8f:e5: 48:8a:35:16:9c:49:61:f9:ea:7d:2f:3d:86:6f:d3:b5:59:43: f9:9e:e2:0f:16:e7:de:29:e5:aa:f9:b8:b0:56:03:87:05:58: e6:57:fe:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUwODA2MjIwNzE0WhcNMjUwODEzMjIwNzE0WjAYMRYwFAYD VQQDEw02ODkzZDIxMy0yOTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsklYsQG49xKcL+Tmi26mi91mDs3HzDDZJumPTnlzfKUbTrRQteNqP4+49Sgr KZt93rUsCwZX4iHuKzziWtG9o05pBgib9PoKmRNtQyjxE+XckmLZ1GUbPY21yVzR 4aYlpzMNob0LJ4oFv+xxv/zKtxDiw4lrpJPfgKbdrM/dvPXoheSF7T+Yed6JSk4k ZqDWtXYLO1jmPFsZ065YKV3aKS+lldhIiENm2sFFvXSqlQDMPJX6tk53IoAtAbGP sJRDDvD+kzjBAaQxGzM/LQc2K2RrlUJLO9ETRDwxMoW4nlQcgVYoOfzaZHG11FF1 ORzEJU33MLE2ECeU3+QdDFr9BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCbU3Pu5 pIeM9eLqlRtLl1ojKgKvMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBx+y33mDd7zCB8p5n4LIadbY7j94QoglQCs3bHGZq0V1LIJ+46h2JQ aNAMgP8oY31rOoerkOPqfmUJQdPBiAwQvWq83py9zpVa4LUtk82teOHmJYOHLaJ7 Ix/WuAOBfk0I8cIQjp9f5YYI8pi7zcAPMgRUumzW4uqZy9kIe8zekDjNbL2NiYo5 KURhiTSq9U+Vfvymwp+nBkt8ISppfRfBDqKEidVToxNJaEuxhdgp+IKHhACjD18A Hi/T90U9M7yr+OPREnv5VU+wvR0P/3bktwtkIB3Yj+VIijUWnElh+ep9Lz2Gb9O1 WUP5nuIPFufeKeWq+biwVgOHBVjmV/5R -----END CERTIFICATE-----Generated at Fri Aug 8 19:23:05 2025 by rpki-client