$ rpki-client -vvf rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft File: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft (raw, json) Hash identifier: PKozcvQ2tt66vuYYw2wx72yKv+DqVR5MXBthw98Z3Fc= Subject key identifier: E1:15:09:FE:B2:87:46:57:56:B8:B7:C5:C9:27:0B:EA:D1:26:9F:C2 Authority key identifier: 28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B Certificate issuer: /CN=A91C744F/serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Certificate serial: 079D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft Manifest number: 0788 Signing time: Sat 02 Aug 2025 21:53:43 +0000 Manifest this update: Sat 02 Aug 2025 21:53:43 +0000 Manifest next update: Sat 09 Aug 2025 21:53:43 +0000 Files and hashes: 1: KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl (hash: QMyNl/JB9xniYPqdGwVEi6O6xsz1HJZaPMZWCz0fPXU=) 2: E7EFEDC07C1F11EB95B6492DC4F9AE02.roa (hash: PfwMudypLXBG0l/8zURzPSjDmL/lqt08xsdYYn3A5t8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 21:53:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1949 (0x79d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C744F, serialNumber=289EB23F28C9CF23FA5B918A650CB8428050307B Validity Not Before: Aug 2 21:53:43 2025 GMT Not After : Aug 9 21:53:43 2025 GMT Subject: CN=688e88e7-e813 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:ea:df:c7:3a:69:c3:1e:e2:4a:d9:ed:20: f5:0f:5e:4c:32:9d:d3:1b:be:ba:7b:b8:a8:1e:98: a8:e8:7a:c9:f7:91:8a:0b:12:84:46:a1:dd:1a:f1: 0b:0a:c2:6a:3c:e0:e7:ff:bb:c6:aa:8b:f6:aa:84: 2c:dd:ab:03:03:d6:e7:cc:10:39:88:4b:14:20:74: ec:5c:ba:d5:3c:09:09:81:89:81:61:2a:64:26:41: fd:f6:c2:2c:06:03:bb:78:ef:c4:3b:13:60:4c:94: 3c:0b:01:5f:fe:05:c0:0b:d8:0b:fe:32:b3:e4:a6: bd:86:bf:3f:55:e3:77:40:c5:d3:e7:24:19:70:02: 9d:01:e8:85:7b:30:59:8b:76:b7:eb:15:5a:6d:58: e6:5f:6f:6d:43:27:be:91:f3:05:1e:91:4e:46:23: 85:f1:01:5c:7c:a8:0a:03:3a:35:ae:0f:ff:83:0b: b2:0a:cd:be:04:d9:03:0f:28:ed:7a:64:47:b0:0e: 2a:d2:4a:14:77:e4:51:41:69:ce:e6:e0:41:ab:84: 07:cb:eb:66:cd:7d:10:d0:c3:52:ac:ec:2a:9a:60: 16:38:e6:f4:6b:93:24:bc:40:14:63:03:b8:b1:0e: db:95:e2:a7:4f:65:40:09:0c:8f:91:6a:0f:77:db: e8:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:15:09:FE:B2:87:46:57:56:B8:B7:C5:C9:27:0B:EA:D1:26:9F:C2 X509v3 Authority Key Identifier: keyid:28:9E:B2:3F:28:C9:CF:23:FA:5B:91:8A:65:0C:B8:42:80:50:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C744F/B7F9385E22B711EB8C37033CC4F9AE02/KJ6yPyjJzyP6W5GKZQy4QoBQMHs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:63:c3:6f:71:2b:5c:e6:b1:c8:09:10:ba:8f:7d:4f:38:1a: 12:55:03:53:e0:e9:3f:33:77:7d:ac:ec:70:52:05:4f:0e:9b: f5:8a:84:f4:d8:6a:f5:69:92:ea:a2:f4:f0:ab:41:33:7b:26: b2:57:14:43:04:d1:ee:ae:ff:40:0c:20:0b:3e:93:04:dc:0d: d1:d6:66:0f:b0:76:33:28:88:c6:b1:78:b9:fb:49:0a:ff:9e: bc:47:f5:1f:fe:f2:31:04:fd:2f:b4:6f:ea:d8:8f:8f:02:00: eb:29:ab:78:52:2c:c0:5f:9a:09:5c:ea:e1:b0:f4:b5:63:de: 26:50:7d:55:48:e0:21:69:b9:e9:66:c4:f8:46:20:6d:12:8a: 06:33:37:08:fa:f1:9e:fa:69:74:cf:e3:d0:d3:80:45:84:95: de:ac:fe:40:66:9b:72:12:0e:18:cd:ab:15:c4:37:2a:a0:5a: a4:e0:c7:47:10:ce:91:6e:29:f3:95:8c:06:a5:47:fb:cb:0f: a7:6a:9d:b9:53:ff:fa:14:51:99:29:2d:87:21:17:37:f9:71: bc:b2:29:5a:0d:98:45:c1:d5:8a:61:83:53:c5:44:e0:c5:4a: 52:84:5d:74:6e:fd:fd:59:e5:53:e9:60:b9:86:6b:db:3f:6e: 41:92:0c:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc0NEYxMTAvBgNVBAUTKDI4OUVCMjNGMjhDOUNGMjNGQTVCOTE4QTY1MENCODQy ODA1MDMwN0IwHhcNMjUwODAyMjE1MzQzWhcNMjUwODA5MjE1MzQzWjAYMRYwFAYD VQQDEw02ODhlODhlNy1lODEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu+/q38c6acMe4krZ7SD1D15MMp3TG766e7ioHpio6HrJ95GKCxKERqHdGvEL CsJqPODn/7vGqov2qoQs3asDA9bnzBA5iEsUIHTsXLrVPAkJgYmBYSpkJkH99sIs BgO7eO/EOxNgTJQ8CwFf/gXAC9gL/jKz5Ka9hr8/VeN3QMXT5yQZcAKdAeiFezBZ i3a36xVabVjmX29tQye+kfMFHpFORiOF8QFcfKgKAzo1rg//gwuyCs2+BNkDDyjt emRHsA4q0koUd+RRQWnO5uBBq4QHy+tmzX0Q0MNSrOwqmmAWOOb0a5MkvEAUYwO4 sQ7bleKnT2VACQyPkWoPd9voDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOEVCf6y h0ZXVri3xcknC+rRJp/CMB8GA1UdIwQYMBaAFCiesj8oyc8j+luRimUMuEKAUDB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzQ0Ri9CN0Y5Mzg1RTIy QjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5UDZXNUdLWlF5NFFvQlFN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKNnlQeWpKenlQNlc1R0taUXk0UW9CUU1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzQ0Ri9CN0Y5Mzg1RTIyQjcxMUVCOEMzNzAzM0NDNEY5QUUwMi9LSjZ5UHlqSnp5 UDZXNUdLWlF5NFFvQlFNSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZY8NvcStc5rHICRC6j31POBoSVQNT4Ok/M3d9rOxwUgVPDpv1ioT0 2Gr1aZLqovTwq0EzeyayVxRDBNHurv9ADCALPpME3A3R1mYPsHYzKIjGsXi5+0kK /568R/Uf/vIxBP0vtG/q2I+PAgDrKat4UizAX5oJXOrhsPS1Y94mUH1VSOAhabnp ZsT4RiBtEooGMzcI+vGe+ml0z+PQ04BFhJXerP5AZptyEg4YzasVxDcqoFqk4MdH EM6RbinzlYwGpUf7yw+nap25U//6FFGZKS2HIRc3+XG8silaDZhFwdWKYYNTxUTg xUpShF10bv39WeVT6WC5hmvbP25Bkgwm -----END CERTIFICATE-----Generated at Mon Aug 4 11:10:27 2025 by rpki-client