$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: uMrSLnhYWJR5KjIivRpRdY2QJpII9XpwVYgJNjn6gLo= Subject key identifier: 96:E6:35:BE:9C:F7:87:A0:E4:85:95:EC:37:BC:BA:FB:78:7F:ED:EE Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09CA Signing time: Fri 08 Aug 2025 20:17:52 +0000 Manifest this update: Fri 08 Aug 2025 20:17:51 +0000 Manifest next update: Fri 15 Aug 2025 20:17:51 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: 5ywYQwu8htjZBwjQpoPrgWr/iUUOM1DP7iMdx4IzH1E=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2512 (0x9d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Aug 8 20:17:51 2025 GMT Not After : Aug 15 20:17:51 2025 GMT Subject: CN=68965b70-4c53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:b6:53:37:81:66:c0:41:1c:c6:13:9a:09: eb:42:7f:5f:e1:1c:dd:0f:83:10:63:7c:91:62:02: 35:14:5e:0e:97:4b:59:3d:9f:70:78:f4:27:3e:4c: 7e:2d:05:d1:81:29:e3:a7:b6:bf:f7:46:13:2e:71: d4:6c:c8:02:5c:a9:a3:e2:93:16:36:4d:18:fc:49: 47:38:20:40:58:de:18:19:d7:4a:f2:e2:5c:aa:ef: b5:cb:27:d3:e4:e9:71:06:3c:44:da:03:ba:2c:54: 74:9e:6a:e3:90:75:92:0b:c4:8d:83:b4:42:6f:87: 6c:7c:c3:79:52:51:71:80:55:02:e5:0d:74:a7:db: 64:86:74:b5:2b:46:24:04:22:d9:c5:07:a8:70:49: f1:b6:03:08:b5:95:7c:5f:4f:bf:88:45:85:3f:5c: ba:a5:4a:eb:f6:d9:0c:d6:6b:66:4f:13:5d:e3:61: ec:a9:2d:03:bb:3e:31:57:d9:a1:5f:e1:81:fd:d8: 6b:6b:96:15:f8:54:bc:61:02:da:8b:01:33:4a:45: b4:8c:40:23:60:b5:c2:86:27:60:b5:f4:ca:0c:39: 13:7c:31:d0:73:a7:b4:40:08:49:a4:4c:8c:22:a5: 2a:cb:c2:93:8c:0b:0a:90:83:a4:21:c1:0f:fd:ec: fa:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:E6:35:BE:9C:F7:87:A0:E4:85:95:EC:37:BC:BA:FB:78:7F:ED:EE X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:4c:14:52:c0:44:8f:4e:63:6c:0e:44:ba:7f:9f:f9:d9:3f: cd:f2:0d:c2:e0:14:e8:d7:38:55:60:9d:b8:d6:4b:95:b5:0e: a0:f1:14:15:36:fb:b7:ef:9d:89:ff:18:57:79:f9:a3:f7:74: ee:07:f8:74:d0:e7:90:fc:2c:8e:19:56:c7:27:3a:e2:a3:98: 35:66:b3:17:fa:99:b8:25:f7:1d:1a:b2:61:1a:bb:db:64:5e: 41:f9:15:99:48:b5:09:c3:d1:41:4c:af:85:6f:bd:88:5d:fa: a0:df:9a:27:f0:a7:9d:bc:97:36:8c:ad:b3:a6:1d:76:3b:1d: c9:f8:5d:d5:17:ec:67:d6:f4:00:48:af:d7:fd:13:f6:8e:3a: 06:fd:1f:02:34:26:09:03:20:d3:35:60:09:a9:39:a6:4e:28: 18:ea:07:19:3f:17:c8:cf:60:46:03:42:34:3a:d0:f1:b1:14: dd:3a:6e:8c:2b:1b:6d:7e:8b:b5:3f:cb:b8:9d:a2:c4:17:b3: 80:4e:7e:1b:02:2a:02:7c:02:e4:a0:4e:59:c4:bf:fc:8b:88: cb:32:65:42:c6:cd:1b:c0:83:71:cd:d8:68:66:95:19:a0:8c: 2a:2c:93:c4:5e:1b:0d:43:25:8c:61:95:9f:bc:8e:98:7f:e3: 6e:fa:6b:90 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwODA4MjAxNzUxWhcNMjUwODE1MjAxNzUxWjAYMRYwFAYD VQQDEw02ODk2NWI3MC00YzUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1u2UzeBZsBBHMYTmgnrQn9f4RzdD4MQY3yRYgI1FF4Ol0tZPZ9wePQnPkx+ LQXRgSnjp7a/90YTLnHUbMgCXKmj4pMWNk0Y/ElHOCBAWN4YGddK8uJcqu+1yyfT 5OlxBjxE2gO6LFR0nmrjkHWSC8SNg7RCb4dsfMN5UlFxgFUC5Q10p9tkhnS1K0Yk BCLZxQeocEnxtgMItZV8X0+/iEWFP1y6pUrr9tkM1mtmTxNd42HsqS0Duz4xV9mh X+GB/dhra5YV+FS8YQLaiwEzSkW0jEAjYLXChidgtfTKDDkTfDHQc6e0QAhJpEyM IqUqy8KTjAsKkIOkIcEP/ez6hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJbmNb6c 94eg5IWV7De8uvt4f+3uMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCATBRSwESPTmNsDkS6f5/52T/N8g3C4BTo1zhVYJ241kuVtQ6g8RQV Nvu3752J/xhXefmj93TuB/h00OeQ/CyOGVbHJzrio5g1ZrMX+pm4JfcdGrJhGrvb ZF5B+RWZSLUJw9FBTK+Fb72IXfqg35on8KedvJc2jK2zph12Ox3J+F3VF+xn1vQA SK/X/RP2jjoG/R8CNCYJAyDTNWAJqTmmTigY6gcZPxfIz2BGA0I0OtDxsRTdOm6M Kxttfou1P8u4naLEF7OATn4bAioCfALkoE5ZxL/8i4jLMmVCxs0bwINxzdhoZpUZ oIwqLJPEXhsNQyWMYZWfvI6Yf+Nu+muQ -----END CERTIFICATE-----Generated at Sun Aug 10 13:49:45 2025 by rpki-client