$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: SPjnYKADD+PXiFX24RpvieNDfI3lyCf5gwp9yW4EXp0= Subject key identifier: D6:B9:7B:35:86:CE:04:13:B3:F7:8C:33:C0:16:ED:0C:7C:D5:E6:84 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0B95 Signing time: Wed 06 Aug 2025 19:15:34 +0000 Manifest this update: Wed 06 Aug 2025 19:15:33 +0000 Manifest next update: Wed 13 Aug 2025 19:15:33 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: 86KGSa4JdxwNFmPNJ0JqeA01QWbj0ThRRKYf/cIUdSg=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Aug 6 19:15:33 2025 GMT Not After : Aug 13 19:15:33 2025 GMT Subject: CN=6893a9d6-9c43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:03:2b:18:2f:7b:d9:b3:3f:ba:f2:4e:b7: 0f:91:31:0a:47:a7:52:d8:61:9e:dc:0f:9c:e5:3a: 98:1b:2c:f4:91:ee:95:97:13:ca:41:3b:46:bf:6e: 17:08:30:47:a7:b2:b0:84:90:69:31:9f:e6:b8:6b: 85:13:2a:61:34:30:41:97:92:a9:30:65:46:48:15: a7:f3:fe:dd:c6:b8:2a:a8:39:0c:dd:6d:e5:a9:a1: 4f:2b:81:92:23:4a:82:24:6f:da:9d:8f:68:27:6a: a6:2b:e2:7c:59:c9:ac:1c:3d:bf:d2:25:2a:61:4a: 77:cd:01:5b:a0:55:b8:6e:38:93:b5:5d:09:1e:eb: 39:b8:e5:e3:76:e5:0e:1c:b5:a6:f5:04:c1:fe:af: 8b:1b:25:a9:51:43:b2:a4:df:f0:a9:64:58:c8:ba: e7:6d:a7:54:ed:56:63:76:5c:29:15:51:46:1b:91: bb:23:0a:f2:8c:0b:7c:02:c9:01:e0:a9:77:94:b0: 42:d3:b7:c0:a7:c4:69:52:9b:61:20:a7:7c:ed:04: 2b:ff:1e:a2:7f:ee:47:d8:c3:60:75:16:55:a6:39: db:7b:8d:32:31:83:7a:09:6c:79:58:04:4e:ff:93: 15:5b:5f:e2:01:ba:51:00:ac:27:8d:ce:a0:51:80: f8:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:B9:7B:35:86:CE:04:13:B3:F7:8C:33:C0:16:ED:0C:7C:D5:E6:84 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:04:5d:24:9f:ab:e1:0f:a9:66:35:5a:c5:c5:8c:7a:f9:94: df:71:ea:a7:d6:9b:73:11:39:cb:28:f0:ca:5a:6a:19:78:44: c7:52:c5:d0:1a:85:cb:8b:f1:57:b5:51:ac:61:12:64:f8:d6: 54:41:f1:50:72:8a:05:3c:1a:e9:16:30:8f:59:1a:c6:0a:78: 11:88:f6:f5:59:98:e7:19:ba:b7:86:a3:35:06:44:0b:31:f6: 6a:e3:f2:eb:0c:b0:67:60:03:2a:87:78:9d:8a:62:18:5c:cc: b2:39:ba:ce:96:63:d6:fe:5d:62:da:18:d0:02:f7:f4:01:4d: 56:3a:b7:ec:c9:ab:c5:dc:19:52:01:17:df:c0:27:b4:ba:7a: 8e:b6:1a:51:b7:de:2d:b1:65:21:48:fd:ca:84:5a:7a:df:90: 4d:3c:09:d3:cb:6f:7a:4e:3b:13:58:4e:12:18:24:5c:47:c9: c2:0b:fe:e9:f3:25:0d:47:bb:de:6b:dd:71:16:f1:91:cc:98: ab:c2:05:f8:b0:33:86:93:e9:ac:28:2b:ed:fc:4e:97:a6:3c: f3:ca:0a:d3:14:71:51:03:bb:ff:aa:48:ba:92:a2:fb:d5:6f: 7e:57:4a:a0:58:f3:99:50:e8:83:4b:a8:29:4b:2a:e8:73:a6: 8d:17:15:49 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUwODA2MTkxNTMzWhcNMjUwODEzMTkxNTMzWjAYMRYwFAYD VQQDEw02ODkzYTlkNi05YzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz8DKxgve9mzP7ryTrcPkTEKR6dS2GGe3A+c5TqYGyz0ke6VlxPKQTtGv24X CDBHp7KwhJBpMZ/muGuFEyphNDBBl5KpMGVGSBWn8/7dxrgqqDkM3W3lqaFPK4GS I0qCJG/anY9oJ2qmK+J8WcmsHD2/0iUqYUp3zQFboFW4bjiTtV0JHus5uOXjduUO HLWm9QTB/q+LGyWpUUOypN/wqWRYyLrnbadU7VZjdlwpFVFGG5G7IwryjAt8AskB 4Kl3lLBC07fAp8RpUpthIKd87QQr/x6if+5H2MNgdRZVpjnbe40yMYN6CWx5WARO /5MVW1/iAbpRAKwnjc6gUYD4pwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNa5ezWG zgQTs/eMM8AW7Qx81eaEMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApBF0kn6vhD6lmNVrFxYx6+ZTfceqn1ptzETnLKPDKWmoZeETHUsXQ GoXLi/FXtVGsYRJk+NZUQfFQcooFPBrpFjCPWRrGCngRiPb1WZjnGbq3hqM1BkQL MfZq4/LrDLBnYAMqh3idimIYXMyyObrOlmPW/l1i2hjQAvf0AU1WOrfsyavF3BlS ARffwCe0unqOthpRt94tsWUhSP3KhFp635BNPAnTy296TjsTWE4SGCRcR8nCC/7p 8yUNR7vea91xFvGRzJirwgX4sDOGk+msKCvt/E6XpjzzygrTFHFRA7v/qki6kqL7 1W9+V0qgWPOZUOiDS6gpSyroc6aNFxVJ -----END CERTIFICATE-----Generated at Fri Aug 8 13:10:06 2025 by rpki-client