$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: FvZINSN0KqU6Q85b/H6osE/79APTnKdpWnD7FaAbrew= Subject key identifier: 95:90:EB:00:0A:05:B5:F1:31:A1:E2:6A:2F:A4:4A:41:5A:4F:EB:20 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C30 Signing time: Sun 10 Aug 2025 18:40:53 +0000 Manifest this update: Sun 10 Aug 2025 18:40:53 +0000 Manifest next update: Sun 17 Aug 2025 18:40:53 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: Ox/DrffbbgeqzAvv1ZHMjThXu5oBzllRIRhDhIXG0DE=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3138 (0xc42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Aug 10 18:40:53 2025 GMT Not After : Aug 17 18:40:53 2025 GMT Subject: CN=6898e7b5-0a41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fb:0e:6e:7e:0a:42:2b:ba:83:a1:ea:c8:89: ab:c6:19:e3:81:95:0f:1d:59:25:da:c3:d8:b8:30: 24:9a:e1:7e:67:aa:ff:6a:32:10:d8:ad:5c:21:7e: 9b:bd:a6:93:25:a1:60:c0:23:87:7c:47:0e:98:20: b7:ff:a2:e8:d5:ca:eb:6e:11:5e:a1:57:3d:cd:b5: 1a:58:3b:58:12:54:fb:d1:83:b5:d1:da:91:74:6a: 03:ce:cd:30:b7:33:60:96:f8:c0:ac:d7:18:79:87: 64:d2:80:02:86:30:4a:1c:fb:49:d0:1a:46:71:96: 18:e6:3c:b5:5a:c6:ab:85:48:21:36:05:4a:65:de: 9a:c6:53:78:a7:f6:ed:69:1c:28:16:8e:df:cf:6c: 80:1e:c8:b7:c8:52:25:1d:a9:96:82:0f:86:58:69: 91:7f:74:99:e9:47:5e:9c:78:72:2e:16:05:38:a0: 37:e7:2a:7c:3b:4e:47:00:88:ff:8c:26:7c:6e:be: ac:50:8d:61:88:36:d1:40:58:07:a8:14:bf:f3:cb: 3f:26:ef:4b:08:2a:c2:90:6e:3f:f1:37:bb:f7:5f: e2:8c:01:dc:05:fb:a0:1f:d7:bb:4e:85:e5:ad:42: 4b:d3:cf:5f:d2:95:b0:27:5d:cf:53:36:be:a5:b1: 0e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:90:EB:00:0A:05:B5:F1:31:A1:E2:6A:2F:A4:4A:41:5A:4F:EB:20 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:97:04:5b:04:58:23:0b:06:5b:f4:8d:c1:26:bf:c6:9a:df: 23:2f:c8:ef:76:69:05:db:01:0f:85:20:ff:ff:a7:ed:74:89: 25:c5:ef:5d:27:c9:56:b7:c3:29:6b:50:1b:b2:eb:2e:66:84: c6:14:90:01:7d:ab:9e:1d:5c:13:dc:00:30:76:5d:57:aa:ba: d2:e7:94:96:33:6b:c5:41:9c:86:a9:4c:e3:7f:63:e6:71:da: 78:6a:a8:38:c0:cb:73:6a:2f:a1:a4:d8:8a:20:26:38:46:a8: 02:80:33:f1:9b:84:27:73:1c:b2:6b:cc:17:a6:e7:78:24:38: d2:73:a7:27:0e:31:70:a6:0c:7b:d1:c4:e9:f6:2c:5b:a0:b7: 37:9f:43:2e:94:d8:1a:8f:9a:87:67:42:74:3e:17:62:ac:19: 1a:ef:50:40:76:00:ff:9c:12:9a:a1:c4:d0:12:4c:ae:f5:bf: 4f:d1:c6:25:74:ab:c1:df:f5:ba:6e:2d:86:c1:9c:9f:cb:11: 73:f8:a6:1d:f9:14:95:ec:11:b3:35:d3:86:38:b5:6e:1f:09: 3b:3e:52:3c:b7:b7:68:3c:09:af:37:c6:d1:e9:2c:0a:a4:59: 3f:7b:62:76:64:21:85:02:c6:e1:36:c8:7c:58:52:63:77:48: e3:96:04:22 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwODEwMTg0MDUzWhcNMjUwODE3MTg0MDUzWjAYMRYwFAYD VQQDEw02ODk4ZTdiNS0wYTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuvsObn4KQiu6g6HqyImrxhnjgZUPHVkl2sPYuDAkmuF+Z6r/ajIQ2K1cIX6b vaaTJaFgwCOHfEcOmCC3/6Lo1crrbhFeoVc9zbUaWDtYElT70YO10dqRdGoDzs0w tzNglvjArNcYeYdk0oAChjBKHPtJ0BpGcZYY5jy1WsarhUghNgVKZd6axlN4p/bt aRwoFo7fz2yAHsi3yFIlHamWgg+GWGmRf3SZ6UdenHhyLhYFOKA35yp8O05HAIj/ jCZ8br6sUI1hiDbRQFgHqBS/88s/Ju9LCCrCkG4/8Te791/ijAHcBfugH9e7ToXl rUJL089f0pWwJ13PUza+pbEO9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJWQ6wAK BbXxMaHiai+kSkFaT+sgMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBxlwRbBFgjCwZb9I3BJr/Gmt8jL8jvdmkF2wEPhSD//6ftdIklxe9d J8lWt8Mpa1AbsusuZoTGFJABfaueHVwT3AAwdl1XqrrS55SWM2vFQZyGqUzjf2Pm cdp4aqg4wMtzai+hpNiKICY4RqgCgDPxm4Qncxyya8wXpud4JDjSc6cnDjFwpgx7 0cTp9ixboLc3n0MulNgaj5qHZ0J0PhdirBka71BAdgD/nBKaocTQEkyu9b9P0cYl dKvB3/W6bi2GwZyfyxFz+KYd+RSV7BGzNdOGOLVuHwk7PlI8t7doPAmvN8bR6SwK pFk/e2J2ZCGFAsbhNsh8WFJjd0jjlgQi -----END CERTIFICATE-----Generated at Mon Aug 11 10:31:48 2025 by rpki-client