$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: UfGQ9EmNDvfkL/POgnepPxm1/RS1pBLhJI24zwWoRws= Subject key identifier: 87:04:D9:71:32:78:54:E9:26:B7:CD:6E:A8:14:58:C0:66:CB:E9:79 Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 0163 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 0161 Signing time: Tue 05 Aug 2025 04:23:45 +0000 Manifest this update: Tue 05 Aug 2025 04:23:44 +0000 Manifest next update: Tue 12 Aug 2025 04:23:44 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: gQTR4G7VNUQwOkohmUnxdYomf0dkuPu485EED0bOevE=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: s8Vu/R6gOMwvLzsGf3nk9tFhiMljx1hOH6LnsMms3Vg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:23:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 355 (0x163) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Aug 5 04:23:44 2025 GMT Not After : Aug 12 04:23:44 2025 GMT Subject: CN=68918750-c051 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8c:32:cc:95:f2:98:88:09:6e:ab:db:8e:76: f7:ca:9b:ee:bc:0f:1d:aa:2d:14:f1:3f:44:97:84: f7:e0:bd:a5:b6:6f:f9:7d:ea:b3:68:c8:75:ef:20: 72:da:07:5b:42:e0:d1:e9:f0:65:50:4e:30:3a:8c: 17:f6:43:bf:9a:3f:72:56:53:47:b4:45:3b:17:8e: ce:79:41:d5:32:6c:fb:7d:cd:b2:a2:4a:2a:b3:4f: f6:35:83:43:a8:ae:8d:17:3b:c3:2b:c9:fb:0b:60: fe:77:66:9c:76:6f:fb:c4:8e:d3:b0:fd:18:0d:f4: 4b:32:b1:8a:09:9e:21:82:52:4c:69:2d:e5:ec:f5: 10:7d:55:35:1f:f0:80:89:41:ef:6c:a8:8a:86:1b: 42:6b:79:2b:18:77:e8:2a:8b:c0:32:b1:2e:5c:b0: 47:ee:3c:bb:9f:6c:d8:23:cb:8b:df:93:d6:1d:7a: 14:84:6b:e3:83:4b:84:49:86:d0:53:e3:41:47:aa: 7a:8e:64:3c:e7:bd:44:18:0a:c1:76:33:11:8b:f1: 6f:21:6d:09:03:45:00:ac:46:e4:77:50:98:80:10: 5f:d6:e8:20:ab:b2:c3:c3:ed:d7:b7:2e:3c:66:ff: 6d:cc:22:d2:c5:32:b8:52:fa:b4:ce:45:0b:85:9a: 0c:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:04:D9:71:32:78:54:E9:26:B7:CD:6E:A8:14:58:C0:66:CB:E9:79 X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:d2:70:0f:f1:8d:e9:92:ce:ca:2a:99:5a:74:7c:f6:a4:cd: 1e:82:04:7b:b6:4b:16:50:64:11:7f:59:2b:3a:21:e6:4d:4f: 6c:c5:99:53:ab:6c:a4:ca:4a:02:5a:cd:e8:37:20:7f:e5:8c: 92:1a:32:de:93:39:56:19:06:a8:fc:a2:71:bc:f9:bc:10:bc: b6:3b:70:d3:c5:3a:75:7e:3c:2f:93:0a:d3:6c:af:90:53:ea: 1e:f9:94:91:ec:90:6b:8d:09:b0:c4:d7:45:d7:56:80:e2:e0: 3d:a6:7d:a1:ce:10:5f:02:17:05:e2:a2:75:a5:67:20:b0:99: 0b:85:44:3e:d9:9a:30:39:63:23:18:c8:65:0e:5b:54:6b:5b: a2:a7:d2:f6:be:b4:dc:0b:c9:99:46:d6:2f:9b:ea:fb:e8:6a: c0:c4:f1:a1:b4:82:dd:9c:da:80:2d:80:0f:3c:51:e8:10:09: b1:57:ea:02:26:67:d7:cc:d9:d3:57:c4:81:c4:86:30:fb:c8: 7b:90:ca:52:2f:b8:cd:4e:e9:a3:d6:6f:4c:69:3f:5f:06:72: ca:26:a7:d6:2c:60:a1:ac:f4:2d:65:fc:f7:47:6d:b8:a8:a4: 22:14:a2:fe:49:66:3e:f6:df:3a:9e:c7:97:29:56:40:3f:ed: bb:7f:18:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUwODA1MDQyMzQ0WhcNMjUwODEyMDQyMzQ0WjAYMRYwFAYD VQQDEw02ODkxODc1MC1jMDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvowyzJXymIgJbqvbjnb3ypvuvA8dqi0U8T9El4T34L2ltm/5feqzaMh17yBy 2gdbQuDR6fBlUE4wOowX9kO/mj9yVlNHtEU7F47OeUHVMmz7fc2yokoqs0/2NYND qK6NFzvDK8n7C2D+d2acdm/7xI7TsP0YDfRLMrGKCZ4hglJMaS3l7PUQfVU1H/CA iUHvbKiKhhtCa3krGHfoKovAMrEuXLBH7jy7n2zYI8uL35PWHXoUhGvjg0uESYbQ U+NBR6p6jmQ8571EGArBdjMRi/FvIW0JA0UArEbkd1CYgBBf1uggq7LDw+3Xty48 Zv9tzCLSxTK4Uvq0zkULhZoMwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIcE2XEy eFTpJrfNbqgUWMBmy+l5MB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAX0nAP8Y3pks7KKpladHz2pM0eggR7tksWUGQRf1krOiHmTU9sxZlT q2ykykoCWs3oNyB/5YySGjLekzlWGQao/KJxvPm8ELy2O3DTxTp1fjwvkwrTbK+Q U+oe+ZSR7JBrjQmwxNdF11aA4uA9pn2hzhBfAhcF4qJ1pWcgsJkLhUQ+2ZowOWMj GMhlDltUa1uip9L2vrTcC8mZRtYvm+r76GrAxPGhtILdnNqALYAPPFHoEAmxV+oC JmfXzNnTV8SBxIYw+8h7kMpSL7jNTumj1m9MaT9fBnLKJqfWLGChrPQtZfz3R224 qKQiFKL+SWY+9t86nseXKVZAP+27fxiz -----END CERTIFICATE-----Generated at Wed Aug 6 13:17:45 2025 by rpki-client