$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft File: kN_cE0DUTo_iVh19jeSe71QGEII.mft (raw, json) Hash identifier: mODLsC93xGdww4iQFrHS4R6AGms36KTFa5U2XhkKjUg= Subject key identifier: 70:57:40:D1:70:0A:5D:BD:35:B9:1E:0E:DD:16:AB:7D:9F:47:D7:76 Authority key identifier: 90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 Certificate issuer: /CN=A91C9C05/serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Certificate serial: 34AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft Manifest number: 34A9 Signing time: Tue 12 Aug 2025 15:20:42 +0000 Manifest this update: Tue 12 Aug 2025 15:20:42 +0000 Manifest next update: Tue 19 Aug 2025 15:20:42 +0000 Files and hashes: 1: kN_cE0DUTo_iVh19jeSe71QGEII.crl (hash: 41ZAVD11zH9YsQjsZupoqyHn0OgK2NrPuIkW1eKDw2A=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 15:20:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13483 (0x34ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9C05, serialNumber=90DFDC1340D44E8FE2561D7D8DE49EEF54061082 Validity Not Before: Aug 12 15:20:42 2025 GMT Not After : Aug 19 15:20:42 2025 GMT Subject: CN=689b5bca-b68d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:79:0a:57:25:08:06:60:82:cd:4a:3c:8f:d7: 11:ac:66:f3:6a:69:41:47:97:a6:93:14:1b:55:95: 78:cd:67:c8:a3:cd:1e:62:9b:ae:74:08:e4:b9:be: d6:12:0d:e4:f3:3f:d3:e8:9b:e9:d9:db:29:19:70: 98:fe:7a:9c:5f:aa:c5:1e:ee:33:c8:c8:89:ba:97: 74:54:a7:41:8c:e5:7d:74:7d:65:1c:60:ab:73:e1: 03:37:94:c4:71:3a:27:20:3a:71:e3:d0:e0:a9:4d: f2:21:fe:2d:36:3e:18:9a:83:e3:3a:ed:2d:f2:19: f8:16:38:7b:7d:a5:bd:90:c8:06:7e:03:38:30:6d: b4:25:ec:91:e6:35:47:ea:17:09:ad:b9:07:4d:04: 6f:d2:9d:f4:24:64:58:51:33:3f:63:4e:cf:be:56: 2b:28:87:5f:11:88:e4:1e:02:98:15:f3:e6:b8:e3: 96:ae:93:c8:2f:5f:4b:4b:95:38:59:68:cc:f1:9a: c7:9f:b0:dc:46:41:57:be:52:da:5b:ed:29:19:3e: 9d:31:c6:01:6e:72:ad:57:25:02:8d:d9:63:43:b1: d2:b3:6e:92:a3:32:f2:3a:47:fd:c3:cb:40:cc:23: 66:7a:a3:bf:1f:65:e1:2c:b5:89:6d:03:0f:76:39: cc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:57:40:D1:70:0A:5D:BD:35:B9:1E:0E:DD:16:AB:7D:9F:47:D7:76 X509v3 Authority Key Identifier: keyid:90:DF:DC:13:40:D4:4E:8F:E2:56:1D:7D:8D:E4:9E:EF:54:06:10:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kN_cE0DUTo_iVh19jeSe71QGEII.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9C05/E9D9A0221DAA11E28C98DBA608B02CD2/kN_cE0DUTo_iVh19jeSe71QGEII.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:6b:94:9f:3d:c6:f3:26:72:c8:a4:cd:21:72:71:d0:c4:71: 27:c0:31:6f:f5:17:83:49:df:a2:8f:2d:34:ab:2c:f3:a0:63: 55:60:cc:dc:7d:63:4a:ca:12:8d:0c:53:dc:dd:f9:2c:5d:c5: 43:58:5f:9f:69:92:a9:61:ca:41:a7:dc:0c:3f:9f:2c:c2:f4: c2:b4:c0:55:7c:2b:c2:46:a2:0d:36:ac:05:2c:d2:4f:94:61: 6f:a3:7b:e7:0d:da:5a:bb:f6:7f:b4:44:e7:6b:60:3d:fb:cc: e9:8c:a8:58:97:16:02:6d:1c:e5:a4:3d:30:37:fc:14:27:5a: e3:e5:a5:47:30:1a:b0:cb:fa:32:8a:19:dc:2b:41:2f:5b:d3: 45:7d:a1:a2:24:99:93:90:77:d7:f9:7a:da:ae:12:f3:40:38: c0:85:c0:eb:2a:28:ea:7e:1d:b8:e7:cc:35:78:cc:e0:52:cb: 57:a7:1a:d0:34:bb:f4:c3:f0:46:a7:87:b9:24:9b:48:3e:8c: 80:c5:51:75:db:b1:48:6a:11:6c:cd:c3:d9:c5:c7:80:00:57: cc:fd:5c:e4:57:d4:fc:c6:b8:2d:10:52:b0:b2:c9:c7:97:db: e9:be:d1:4c:f3:56:01:d9:00:75:a1:d7:3a:58:3f:5d:41:16: 13:d2:b8:ac -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlDMDUxMTAvBgNVBAUTKDkwREZEQzEzNDBENDRFOEZFMjU2MUQ3RDhERTQ5RUVG NTQwNjEwODIwHhcNMjUwODEyMTUyMDQyWhcNMjUwODE5MTUyMDQyWjAYMRYwFAYD VQQDEw02ODliNWJjYS1iNjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3kKVyUIBmCCzUo8j9cRrGbzamlBR5emkxQbVZV4zWfIo80eYpuudAjkub7W Eg3k8z/T6Jvp2dspGXCY/nqcX6rFHu4zyMiJupd0VKdBjOV9dH1lHGCrc+EDN5TE cTonIDpx49DgqU3yIf4tNj4YmoPjOu0t8hn4Fjh7faW9kMgGfgM4MG20JeyR5jVH 6hcJrbkHTQRv0p30JGRYUTM/Y07PvlYrKIdfEYjkHgKYFfPmuOOWrpPIL19LS5U4 WWjM8ZrHn7DcRkFXvlLaW+0pGT6dMcYBbnKtVyUCjdljQ7HSs26SozLyOkf9w8tA zCNmeqO/H2XhLLWJbQMPdjnMQwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHBXQNFw Cl29NbkeDt0Wq32fR9d2MB8GA1UdIwQYMBaAFJDf3BNA1E6P4lYdfY3knu9UBhCC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUMwNS9FOUQ5QTAyMjFE QUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRvX2lWaDE5amVTZTcxUUdF SUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tOX2NFMERVVG9faVZoMTlqZVNlNzFRR0VJSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUMwNS9FOUQ5QTAyMjFEQUExMUUyOEM5OERCQTYwOEIwMkNEMi9rTl9jRTBEVVRv X2lWaDE5amVTZTcxUUdFSUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBua5SfPcbzJnLIpM0hcnHQxHEnwDFv9ReDSd+ijy00qyzzoGNVYMzc fWNKyhKNDFPc3fksXcVDWF+faZKpYcpBp9wMP58swvTCtMBVfCvCRqINNqwFLNJP lGFvo3vnDdpau/Z/tETna2A9+8zpjKhYlxYCbRzlpD0wN/wUJ1rj5aVHMBqwy/oy ihncK0EvW9NFfaGiJJmTkHfX+XrarhLzQDjAhcDrKijqfh2458w1eMzgUstXpxrQ NLv0w/BGp4e5JJtIPoyAxVF127FIahFszcPZxceAAFfM/VzkV9T8xrgtEFKwssnH l9vpvtFM81YB2QB1odc6WD9dQRYT0ris -----END CERTIFICATE-----Generated at Wed Aug 13 00:38:15 2025 by rpki-client