$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: D2SM1wT16VILQdNtOjqT1m455WgOqXi6C8i4chiN+iw= Subject key identifier: E8:CC:B4:32:BB:28:78:DC:69:C2:1B:B2:C2:68:37:72:B4:03:E8:C8 Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: CB Signing time: Mon 11 Aug 2025 05:59:48 +0000 Manifest this update: Mon 11 Aug 2025 05:59:48 +0000 Manifest next update: Mon 18 Aug 2025 05:59:48 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: y3U9AwN4eQjJj0Sud/5qOufhliDzrXcDXltFXan/pcM=) 2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 05:59:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Aug 11 05:59:48 2025 GMT Not After : Aug 18 05:59:48 2025 GMT Subject: CN=689986d4-4a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a1:c5:cf:a3:52:30:ed:ab:45:08:26:a4:92: 44:eb:36:71:6d:79:ba:49:fc:e7:f1:cc:59:98:c7: 49:db:04:22:3e:83:f1:91:43:13:14:1a:bd:dd:8a: d0:c9:d6:92:a4:93:ab:48:17:78:b4:a4:e1:43:05: 8b:fd:a6:4f:98:83:5d:e7:d4:b1:00:62:b8:3d:24: c9:87:5e:83:6f:d9:c4:84:b9:5a:6a:3d:95:0a:2f: 4a:ba:81:f6:fb:a2:6e:a2:cb:14:28:ba:39:46:83: 4d:40:33:5b:2f:c3:51:0c:63:37:11:92:98:bf:e4: 79:03:53:7f:86:13:c2:cf:bf:25:d1:9a:e0:46:d5: 5d:6d:68:54:4f:fa:75:ef:99:0e:57:7c:db:e4:14: 3d:cd:c5:5f:97:8c:ea:89:d9:79:7b:79:ac:0c:8e: 69:29:e5:8c:19:6b:62:18:32:e4:2a:26:20:7d:6e: c8:a8:71:75:7d:29:af:b0:fc:ab:60:87:63:fd:23: ea:ba:ce:f4:cb:ee:a7:2b:75:ff:0b:e8:07:a0:d7: 1f:72:eb:c0:97:83:e3:ad:c0:74:0f:5c:ca:e2:75: 89:c4:8c:aa:e3:b0:59:c6:5f:55:00:2f:ce:64:3d: 0f:42:99:23:95:83:b6:94:ff:1e:7c:c1:cc:c3:57: 79:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:CC:B4:32:BB:28:78:DC:69:C2:1B:B2:C2:68:37:72:B4:03:E8:C8 X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:cb:90:ee:00:84:85:7c:d1:15:bf:7d:c7:4e:22:c4:e3:0e: 13:3b:f5:dd:e4:55:9e:7b:dd:7e:c1:65:f0:64:6d:11:aa:ff: 76:89:07:ea:0d:4a:70:1d:0f:07:f3:be:b6:c6:32:40:1a:4c: 23:fa:0e:96:a5:3b:21:0b:1d:cd:61:74:3d:2f:64:de:ae:1b: be:f6:da:d4:a8:e2:41:b2:5a:ca:2d:ae:f8:db:4f:e9:48:3c: 32:95:db:78:80:19:43:9b:d1:3d:6b:53:f8:08:68:7e:3c:a6: c5:d1:15:70:a1:4b:ab:4a:b3:43:a5:34:4a:3c:5a:15:2b:d8: 90:e1:3c:0e:2f:82:46:b7:4d:0b:66:1d:42:6d:6a:76:3a:22: fd:da:af:1a:0a:cf:35:ef:37:7d:ec:5a:41:1f:f8:8b:cd:81: 12:ed:79:25:10:e5:5f:75:5b:77:97:b1:07:74:74:b7:cc:9e: ee:a7:94:1e:43:c1:e8:bc:a7:08:f4:50:db:c9:c7:58:19:92: 28:68:a3:76:7e:8c:fd:a1:a3:c8:db:2f:82:bd:cc:79:8c:38: 31:08:c9:39:9d:b8:73:63:c1:2d:37:44:27:97:9a:f9:b6:f6: 4f:0a:44:87:92:b9:be:b5:13:33:75:52:1b:9f:c5:bb:af:83: 5d:fa:aa:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwODExMDU1OTQ4WhcNMjUwODE4MDU1OTQ4WjAYMRYwFAYD VQQDEw02ODk5ODZkNC00YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKHFz6NSMO2rRQgmpJJE6zZxbXm6Sfzn8cxZmMdJ2wQiPoPxkUMTFBq93YrQ ydaSpJOrSBd4tKThQwWL/aZPmINd59SxAGK4PSTJh16Db9nEhLlaaj2VCi9KuoH2 +6JuossUKLo5RoNNQDNbL8NRDGM3EZKYv+R5A1N/hhPCz78l0ZrgRtVdbWhUT/p1 75kOV3zb5BQ9zcVfl4zqidl5e3msDI5pKeWMGWtiGDLkKiYgfW7IqHF1fSmvsPyr YIdj/SPqus70y+6nK3X/C+gHoNcfcuvAl4PjrcB0D1zK4nWJxIyq47BZxl9VAC/O ZD0PQpkjlYO2lP8efMHMw1d5QQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjMtDK7 KHjcacIbssJoN3K0A+jIMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBby5DuAISFfNEVv33HTiLE4w4TO/Xd5FWee91+wWXwZG0Rqv92iQfq DUpwHQ8H8762xjJAGkwj+g6WpTshCx3NYXQ9L2Terhu+9trUqOJBslrKLa7420/p SDwyldt4gBlDm9E9a1P4CGh+PKbF0RVwoUurSrNDpTRKPFoVK9iQ4TwOL4JGt00L Zh1CbWp2OiL92q8aCs817zd97FpBH/iLzYES7XklEOVfdVt3l7EHdHS3zJ7up5Qe Q8HovKcI9FDbycdYGZIoaKN2foz9oaPI2y+Cvcx5jDgxCMk5nbhzY8EtN0Qnl5r5 tvZPCkSHkrm+tRMzdVIbn8W7r4Nd+qrU -----END CERTIFICATE-----Generated at Wed Aug 13 00:32:03 2025 by rpki-client