$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: DT/rmWS0ToCzpALNZKDvzyVQd12M+RVKW5E3K/toEjw= Subject key identifier: F7:AF:17:F6:7F:DC:93:A7:70:01:35:A9:E9:D5:D4:8A:6F:1E:80:3B Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 06FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 06F8 Signing time: Fri 08 Aug 2025 22:20:24 +0000 Manifest this update: Fri 08 Aug 2025 22:20:23 +0000 Manifest next update: Fri 15 Aug 2025 22:20:23 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: pcRSq2cU+FIK4pndAXsQws5INo/AZ5Npmi3ArayXKFk=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1790 (0x6fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD, serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Aug 8 22:20:23 2025 GMT Not After : Aug 15 22:20:23 2025 GMT Subject: CN=68967828-7d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:04:a0:b8:76:9d:ca:36:ed:7e:78:5e:55:72: f6:46:b3:39:1f:2b:c9:f1:6f:91:87:71:35:04:a2: b4:a4:3a:ab:d5:14:34:3c:a2:15:09:ea:dd:5e:59: 83:56:1f:fb:5d:d5:72:7f:2e:80:d6:6e:7a:e4:06: 7b:65:b8:3c:09:b1:cd:1c:1d:a6:24:cd:fd:4c:b1: 34:5a:25:39:78:0e:8b:3f:e4:4c:fb:f8:08:4f:ff: 26:ad:5f:34:28:01:43:47:ec:32:52:f5:55:71:53: 69:fd:3c:b7:1f:6e:20:14:18:af:3a:97:a6:d5:1f: f4:2d:ec:b7:e3:df:f1:86:9c:8d:bb:28:53:7d:45: a4:b9:96:53:dd:3a:a3:fb:05:6c:df:78:8f:c2:07: cb:a0:4b:2b:43:32:e0:93:c6:41:32:3e:b0:24:0e: 13:7e:26:ea:79:66:96:d4:80:e8:96:00:20:e7:39: 98:61:60:56:fb:8a:6f:68:f0:81:3a:f3:0a:6b:1a: 97:dd:9a:70:8b:49:59:f1:99:22:ea:aa:65:8d:e2: 4c:63:39:79:23:1b:5d:65:02:c9:fa:e4:7c:7d:4a: f3:79:7b:7f:4e:46:d7:4b:3b:a3:6d:91:80:c5:d9: 34:03:c4:12:4f:9b:52:ad:ec:58:85:f5:73:4a:69: 95:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:AF:17:F6:7F:DC:93:A7:70:01:35:A9:E9:D5:D4:8A:6F:1E:80:3B X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:a3:16:8b:e0:33:1c:49:2a:0a:3d:2a:76:a8:64:66:4a:76: b2:af:ab:ef:7f:73:81:a8:cf:5d:22:4c:76:de:a2:34:93:02: 01:35:73:5c:f5:f5:6f:40:52:21:4a:b0:44:90:ef:65:f8:ec: 97:6d:60:63:07:3a:1d:76:d6:63:ae:1b:a9:e9:52:b2:d2:b6: 01:19:dc:11:84:68:dd:ca:05:0d:8e:e9:f7:78:12:ce:f8:04: a0:db:0d:f5:60:3c:14:f3:c9:f4:4a:67:bb:da:07:2f:ea:65: f7:64:fb:75:93:c2:61:7b:bc:db:ed:bc:5b:46:fa:e1:3c:b6: fd:63:1e:7e:cd:8b:f9:00:67:3a:7d:02:b0:b3:49:fd:5f:9b: fb:8e:4b:58:d3:6a:a1:c0:76:6c:30:4c:7c:12:2a:f4:4f:3a: 19:f3:46:da:e8:37:3a:60:b2:5f:ea:a1:95:4a:fc:33:99:76: ad:2c:93:18:49:92:31:1b:70:39:f7:18:4e:68:ca:7a:72:d7: f4:cc:21:be:1f:8a:c8:df:03:4a:55:fd:2a:26:fb:0e:83:74: c0:8f:37:0e:4d:07:61:45:8f:68:d7:45:36:9e:7d:9d:58:2d: 5b:18:63:24:76:46:c8:c8:fd:51:66:10:95:32:a9:0c:a4:d3: c1:28:05:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBv4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjUwODA4MjIyMDIzWhcNMjUwODE1MjIyMDIzWjAYMRYwFAYD VQQDEw02ODk2NzgyOC03ZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wSguHadyjbtfnheVXL2RrM5HyvJ8W+Rh3E1BKK0pDqr1RQ0PKIVCerdXlmD Vh/7XdVyfy6A1m565AZ7Zbg8CbHNHB2mJM39TLE0WiU5eA6LP+RM+/gIT/8mrV80 KAFDR+wyUvVVcVNp/Ty3H24gFBivOpem1R/0Ley349/xhpyNuyhTfUWkuZZT3Tqj +wVs33iPwgfLoEsrQzLgk8ZBMj6wJA4TfibqeWaW1IDolgAg5zmYYWBW+4pvaPCB OvMKaxqX3Zpwi0lZ8Zki6qpljeJMYzl5IxtdZQLJ+uR8fUrzeXt/TkbXSzujbZGA xdk0A8QST5tSrexYhfVzSmmVnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPevF/Z/ 3JOncAE1qenV1IpvHoA7MB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfoxaL4DMcSSoKPSp2qGRmSnayr6vvf3OBqM9dIkx23qI0kwIBNXNc 9fVvQFIhSrBEkO9l+OyXbWBjBzoddtZjrhup6VKy0rYBGdwRhGjdygUNjun3eBLO +ASg2w31YDwU88n0Sme72gcv6mX3ZPt1k8Jhe7zb7bxbRvrhPLb9Yx5+zYv5AGc6 fQKws0n9X5v7jktY02qhwHZsMEx8Eir0TzoZ80ba6Dc6YLJf6qGVSvwzmXatLJMY SZIxG3A59xhOaMp6ctf0zCG+H4rI3wNKVf0qJvsOg3TAjzcOTQdhRY9o10U2nn2d WC1bGGMkdkbIyP1RZhCVMqkMpNPBKAXp -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:19 2025 by rpki-client