$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: QtPGxbEtYXuObm8PKKDvuiKBHmhkEPnwsLX0r8VPQgo= Subject key identifier: E9:D8:D2:53:B1:BC:72:51:00:97:75:A7:CB:CB:81:BF:53:EE:C2:13 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: AE Signing time: Sat 09 Aug 2025 06:32:33 +0000 Manifest this update: Sat 09 Aug 2025 06:32:32 +0000 Manifest next update: Sat 16 Aug 2025 06:32:32 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: eEjCNegS4ztgru8bgMeBvpe6WqVVeqUrcZLiA5otvcA=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: v8gSdO2Oyevi0udRA9oSIzZPAk2F5XphTGY0llKdCYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 175 (0xaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Aug 9 06:32:32 2025 GMT Not After : Aug 16 06:32:32 2025 GMT Subject: CN=6896eb81-c06c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a8:69:92:49:a1:fa:1d:a1:5f:2b:72:e9:89: 88:be:0d:4e:25:19:eb:ff:01:d6:3e:e8:f1:ce:e2: c5:a5:51:e7:d5:99:ae:f0:8b:79:c8:a1:4d:de:9f: 23:db:ad:63:75:78:3a:34:8b:21:45:22:99:e4:0b: 59:d8:6b:b0:51:fb:61:e8:cb:f2:f9:3f:44:95:98: 60:fd:38:c8:5d:17:f9:0b:fe:cf:70:0b:69:da:c0: 1e:ee:ee:0a:9e:1d:40:71:df:06:30:88:6f:72:11: d6:82:2a:ae:a4:05:67:8f:24:61:1d:49:85:6d:25: 1a:85:a0:ac:1b:3b:b4:7f:08:61:00:ea:a6:e7:53: cb:14:c9:78:c4:06:da:31:78:5a:9f:e2:d0:ec:8a: a8:5a:91:06:5b:fd:80:e1:a1:b6:bb:7c:95:7a:ee: 8b:2d:40:27:7e:a0:b5:e1:bf:43:0a:a3:c6:61:a5: bf:a3:bb:c6:38:39:04:32:5a:23:87:2d:02:26:98: e7:88:fa:7a:6f:6f:34:2c:6a:b4:65:8a:97:b4:ac: e1:8f:14:0f:82:57:18:da:ce:d8:a7:a0:93:e9:71: 33:8c:96:5a:df:d5:e5:fd:ea:81:ef:e0:31:21:cd: 46:9c:c9:c1:0c:91:76:29:a6:cb:45:37:af:6d:38: 84:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:D8:D2:53:B1:BC:72:51:00:97:75:A7:CB:CB:81:BF:53:EE:C2:13 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:ae:12:e2:4e:2c:2b:32:84:2a:b6:ed:25:69:10:f9:ce:da: c1:a6:4b:00:f3:4d:6e:18:18:05:0e:ef:7d:b1:e3:33:e7:70: 7a:5a:64:e2:68:7f:25:ba:1e:b4:95:cd:53:a3:4f:02:d8:2e: b0:91:b7:75:e7:91:f2:81:d5:28:4f:40:3f:89:11:29:40:d2: c3:79:52:c7:1e:ba:20:b6:da:13:59:ca:cb:c8:61:f5:d0:c7: 50:94:22:d6:be:cc:3a:df:c2:67:e8:60:c1:00:71:ab:7b:82: bd:bc:f2:fd:18:cf:30:8c:a8:2e:8d:c9:33:2c:b3:3a:68:04: 82:c6:81:3e:e8:35:e5:62:d5:7b:ef:10:9b:bd:51:e7:57:19: 35:12:aa:37:08:42:72:a9:3d:81:72:d4:d8:47:14:ba:18:91: e1:5f:c0:dd:13:ed:1e:0e:af:f9:80:52:4d:36:ef:7a:0a:2e: c3:12:2f:07:ff:7b:f8:9c:6d:07:1d:0e:67:57:54:c7:70:00: 7c:59:f7:92:e0:05:b9:28:bb:9e:e7:ad:49:94:64:9b:bd:21: 05:d7:cf:b8:02:f2:39:da:fb:54:83:52:d5:69:f7:4d:38:b3: 96:09:25:f8:6f:0d:e9:80:cf:eb:24:a3:e9:fb:cb:b3:47:80: f2:7a:cb:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAK8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUwODA5MDYzMjMyWhcNMjUwODE2MDYzMjMyWjAYMRYwFAYD VQQDEw02ODk2ZWI4MS1jMDZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6hpkkmh+h2hXyty6YmIvg1OJRnr/wHWPujxzuLFpVHn1Zmu8It5yKFN3p8j 261jdXg6NIshRSKZ5AtZ2GuwUfth6Mvy+T9ElZhg/TjIXRf5C/7PcAtp2sAe7u4K nh1Acd8GMIhvchHWgiqupAVnjyRhHUmFbSUahaCsGzu0fwhhAOqm51PLFMl4xAba MXhan+LQ7IqoWpEGW/2A4aG2u3yVeu6LLUAnfqC14b9DCqPGYaW/o7vGODkEMloj hy0CJpjniPp6b280LGq0ZYqXtKzhjxQPglcY2s7Yp6CT6XEzjJZa39Xl/eqB7+Ax Ic1GnMnBDJF2KabLRTevbTiEtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOnY0lOx vHJRAJd1p8vLgb9T7sITMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxrhLiTiwrMoQqtu0laRD5ztrBpksA801uGBgFDu99seMz53B6WmTi aH8luh60lc1To08C2C6wkbd155HygdUoT0A/iREpQNLDeVLHHrogttoTWcrLyGH1 0MdQlCLWvsw638Jn6GDBAHGre4K9vPL9GM8wjKgujckzLLM6aASCxoE+6DXlYtV7 7xCbvVHnVxk1Eqo3CEJyqT2BctTYRxS6GJHhX8DdE+0eDq/5gFJNNu96Ci7DEi8H /3v4nG0HHQ5nV1THcAB8WfeS4AW5KLue561JlGSbvSEF18+4AvI52vtUg1LVafdN OLOWCSX4bw3pgM/rJKPp+8uzR4DyesvZ -----END CERTIFICATE-----Generated at Sat Aug 9 23:16:47 2025 by rpki-client