$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft (raw, json) Hash identifier: kMxx6qCcvSpbqWeBC+tCnG2Iuq463YMRQYmsUsxwkkc= Subject key identifier: 5C:80:19:A6:73:FF:43:05:25:E0:D4:1B:DD:B7:AB:47:3C:F6:73:42 Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: 6A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft Manifest number: 69 Signing time: Sat 09 Aug 2025 07:27:17 +0000 Manifest this update: Sat 09 Aug 2025 07:27:17 +0000 Manifest next update: Sat 16 Aug 2025 07:27:17 +0000 Files and hashes: 1: kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl (hash: sL0ljbVCImd8SGVVD3d77ycZq10SlehJg27IF9hPiNc=) 2: 06522672D49411EFA8DF5E69C4F9AE02.roa (hash: xnlYEk4KW2VhWwSazH9YyKPxeFaHVTp0cHWmf0iyBnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Validity Not Before: Aug 9 07:27:17 2025 GMT Not After : Aug 16 07:27:17 2025 GMT Subject: CN=6896f855-071f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:dd:81:8b:e5:38:b8:5b:78:a0:45:55:2f:61: 62:4a:94:e6:02:c6:21:87:11:62:74:4f:d3:66:c7: dc:03:26:bd:23:9d:f9:72:98:97:51:8a:8f:26:25: cf:39:dc:ff:05:e5:56:f8:2f:59:d4:be:4b:70:99: 7b:f3:a6:91:86:a8:0c:9c:cb:68:c4:eb:f7:9c:5e: b7:0c:8f:65:35:c6:ce:16:19:c4:27:93:75:72:87: 66:29:ca:86:5d:28:94:1a:79:f3:a4:cd:38:87:86: 1d:27:55:84:9e:47:af:fa:06:40:93:44:e1:fc:bc: b8:2d:2a:e0:a4:be:15:97:9f:4b:d2:0f:49:2e:0a: 0b:60:40:26:0f:da:78:53:95:84:3c:e1:45:25:73: db:18:ef:b5:3c:ae:63:bf:15:0c:15:10:53:82:7f: a4:32:48:cf:2f:cf:e4:84:7b:33:b5:6b:4d:45:21: a9:ca:7b:12:86:ec:f2:7c:07:c2:04:2a:b5:af:81: 39:fc:6e:c6:8b:c0:2d:ff:3d:5a:a9:a3:44:6c:71: a1:1c:f2:fd:4e:90:eb:ec:b5:a3:66:39:76:d9:c8: 2d:c1:5b:c7:b2:e3:96:9f:06:3d:70:08:7f:63:ef: 3b:bf:1c:8f:26:fd:bf:6e:90:70:b8:bd:b3:2b:09: db:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:80:19:A6:73:FF:43:05:25:E0:D4:1B:DD:B7:AB:47:3C:F6:73:42 X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:9d:07:ac:62:e2:ab:7b:59:c2:75:35:67:41:75:4b:59:b7: 8a:eb:9e:2e:2b:b6:57:dc:63:a9:a0:01:91:18:48:5e:8d:99: 7b:0d:e1:92:49:c2:43:9c:ae:94:cd:07:18:1b:a3:59:3c:b4: 12:a8:4b:ce:2e:4f:6f:ec:18:98:83:ab:11:d3:5a:4c:99:24: 34:55:2e:02:d5:79:0a:f5:a7:a5:dd:9f:a5:9c:19:06:1f:6f: 40:9e:f5:1f:17:16:77:81:ea:50:06:17:eb:f6:e1:82:4f:16: 5f:2d:90:a8:c6:37:91:8f:2b:f7:8f:84:dd:82:53:f0:df:a2: 0d:0d:11:69:af:95:9e:71:f0:89:97:97:3f:51:e7:83:5e:f7: db:16:e3:e6:ec:84:a8:7d:a9:f1:78:53:19:29:6b:29:57:ba: eb:d6:a5:e9:9b:9e:97:91:fc:5e:3d:08:06:a1:5e:eb:f9:43: c5:76:9f:1f:8d:07:29:e9:f1:a2:b0:fe:8e:7a:b2:6b:55:34: 59:76:d2:bd:96:66:5c:ab:1a:d4:bf:ea:89:bb:4d:2a:7b:f4: 0a:f8:a3:16:c2:32:10:4e:85:e1:44:94:83:8c:97:19:55:25: 82:93:9a:e3:28:a2:d0:56:49:2a:38:8e:cf:65:7c:e2:ef:fc: c1:86:02:4c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkEzNTExMC8GA1UEBRMoOTI0ODY2QjQwQzMwNDQyRDY5NkYyNDc3MDE1NDc1QzVG MDcwMkFDODAeFw0yNTA4MDkwNzI3MTdaFw0yNTA4MTYwNzI3MTdaMBgxFjAUBgNV BAMTDTY4OTZmODU1LTA3MWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV3YGL5Ti4W3igRVUvYWJKlOYCxiGHEWJ0T9Nmx9wDJr0jnflymJdRio8mJc85 3P8F5Vb4L1nUvktwmXvzppGGqAycy2jE6/ecXrcMj2U1xs4WGcQnk3Vyh2YpyoZd KJQaefOkzTiHhh0nVYSeR6/6BkCTROH8vLgtKuCkvhWXn0vSD0kuCgtgQCYP2nhT lYQ84UUlc9sY77U8rmO/FQwVEFOCf6QySM8vz+SEezO1a01FIanKexKG7PJ8B8IE KrWvgTn8bsaLwC3/PVqpo0RscaEc8v1OkOvstaNmOXbZyC3BW8ey45afBj1wCH9j 7zu/HI8m/b9ukHC4vbMrCdttAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXIAZpnP/ QwUl4NQb3berRzz2c0IwHwYDVR0jBBgwFoAUkkhmtAwwRC1pbyR3AVR1xfBwKsgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTM1Lzk5Mjc3ODQ2RDQ5 MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tz Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2tobXRBd3dSQzFwYnlSM0FWUjF4ZkJ3S3NnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2 QTM1Lzk5Mjc3ODQ2RDQ5MjExRUZCNTY0REU2MkM0RjlBRTAyL2traG10QXd3UkMx cGJ5UjNBVlIxeGZCd0tzZy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADadB6xi4qt7WcJ1NWdBdUtZt4rrni4rtlfcY6mgAZEYSF6NmXsN4ZJJ wkOcrpTNBxgbo1k8tBKoS84uT2/sGJiDqxHTWkyZJDRVLgLVeQr1p6Xdn6WcGQYf b0Ce9R8XFneB6lAGF+v24YJPFl8tkKjGN5GPK/ePhN2CU/Dfog0NEWmvlZ5x8ImX lz9R54Ne99sW4+bshKh9qfF4UxkpaylXuuvWpembnpeR/F49CAahXuv5Q8V2nx+N Bynp8aKw/o56smtVNFl20r2WZlyrGtS/6om7TSp79Ar4oxbCMhBOheFElIOMlxlV JYKTmuMootBWSSo4js9lfOLv/MGGAkw= -----END CERTIFICATE-----Generated at Sun Aug 10 10:39:32 2025 by rpki-client