$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft File: K6PqbAvX8YRghmD5ogTlEYZaAN0.mft (raw, json) Hash identifier: 9+QUT1NXh0ffQKtPQtYP7zcOF9J6ZuCIj6/RPEgtw6U= Subject key identifier: 51:06:76:0F:2F:5B:C8:4B:47:DD:E4:FA:D7:36:43:D4:35:F7:1A:CF Authority key identifier: 2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD Certificate issuer: /CN=A91F1E8B/serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Certificate serial: 0941 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft Manifest number: 093A Signing time: Fri 08 Aug 2025 20:32:41 +0000 Manifest this update: Fri 08 Aug 2025 20:32:41 +0000 Manifest next update: Fri 15 Aug 2025 20:32:41 +0000 Files and hashes: 1: K6PqbAvX8YRghmD5ogTlEYZaAN0.crl (hash: bi1Vx9iG8TnX5wHJ5YiCprRWcN0nh3MSvO1oofT/fus=) 2: 33F713A8A3CF11EAA31D8C20C4F9AE02.roa (hash: U+2Kae/qqfcPAGDUNj2rc7ly1La28a/4nOUamtVuvAQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2369 (0x941) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1E8B, serialNumber=2BA3EA6C0BD7F184608660F9A204E511865A00DD Validity Not Before: Aug 8 20:32:41 2025 GMT Not After : Aug 15 20:32:41 2025 GMT Subject: CN=68965ee9-56f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:be:29:1e:69:fa:b3:b1:82:67:37:3e:b4:ce: 0f:2a:f4:71:2b:26:48:ac:91:cf:42:7b:72:03:4c: 34:f8:56:61:e6:5c:dc:56:8e:92:30:38:a4:d4:1a: bd:dd:44:a0:9b:42:90:99:1d:6e:8d:97:f6:99:3d: 24:e2:0f:a4:13:13:d8:c4:8d:8a:42:fc:49:16:bb: 01:62:d4:0e:75:f5:82:92:e0:3c:24:c7:67:fa:b0: 97:68:21:eb:c5:14:65:c3:ab:c4:24:a7:4a:14:85: d7:2e:1d:15:b5:bc:07:20:03:09:d2:99:da:26:e8: 25:75:df:f2:09:75:ca:5f:c2:e8:6a:0d:25:3f:cd: 3f:f9:24:71:16:fd:c7:86:d9:e2:54:d4:12:1e:86: f4:18:85:fb:d4:31:02:2d:2f:15:49:fc:15:65:9f: 36:aa:2d:0d:2e:9f:21:f1:23:5f:55:b1:7f:4f:f8: 9b:a3:41:51:93:2f:1a:01:bf:c1:c6:a5:e9:b2:78: 60:15:97:b1:29:7e:86:a3:9f:bc:a0:6b:39:4c:6b: 48:28:66:88:e9:5c:26:b7:5d:e5:2f:9a:9a:f1:19: 95:fe:ee:9b:87:32:c9:bf:47:ab:50:14:82:5a:6c: 3e:02:10:cf:72:92:51:81:75:6d:83:5c:8b:c1:06: 9f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:06:76:0F:2F:5B:C8:4B:47:DD:E4:FA:D7:36:43:D4:35:F7:1A:CF X509v3 Authority Key Identifier: keyid:2B:A3:EA:6C:0B:D7:F1:84:60:86:60:F9:A2:04:E5:11:86:5A:00:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K6PqbAvX8YRghmD5ogTlEYZaAN0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1E8B/807DFDA0A3CE11EA8BAE6520C4F9AE02/K6PqbAvX8YRghmD5ogTlEYZaAN0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:2f:d3:5f:f0:5e:ec:da:1e:41:ca:50:a7:56:a9:86:13:4f: 1f:38:bd:ad:d4:d7:4f:f3:a3:a2:26:eb:e5:d1:59:ae:fd:37: 41:b9:d1:ad:6a:fc:7a:ac:6f:31:84:d6:53:46:8e:7c:6e:37: 67:cb:46:2e:8d:7b:b2:2e:b3:7a:47:91:0c:59:1f:00:b0:12: a0:a3:a2:d0:dc:41:5a:b1:97:7d:6c:00:bc:39:94:5b:4d:e1: ed:bf:c8:be:f1:2c:56:3e:72:d1:2a:90:f4:e2:04:45:13:55: 3f:9a:73:50:cc:5d:cc:29:f9:34:ce:d3:ae:a4:98:27:aa:d0: 1c:0a:1f:3b:44:20:3f:01:20:19:b2:35:84:1f:5b:84:3c:2e: 29:ce:b8:26:37:37:fb:98:52:83:a8:22:93:a6:0b:ea:69:55: 82:f4:bc:56:7e:ac:79:e2:27:04:af:10:a3:1e:db:8c:29:72: c1:15:b2:8a:26:8b:47:1b:90:78:0d:ac:2c:7d:db:5a:54:dd: 25:7f:5b:b2:74:d8:32:aa:07:13:d4:80:f9:b5:f9:1d:dc:83: 3c:fe:81:4b:75:ba:39:93:56:88:d4:1b:4f:75:66:6e:da:98: be:c4:09:6d:45:10:11:95:2d:44:36:a0:66:6c:3c:e8:ec:9c: c5:1f:ce:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCUEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFFOEIxMTAvBgNVBAUTKDJCQTNFQTZDMEJEN0YxODQ2MDg2NjBGOUEyMDRFNTEx ODY1QTAwREQwHhcNMjUwODA4MjAzMjQxWhcNMjUwODE1MjAzMjQxWjAYMRYwFAYD VQQDEw02ODk2NWVlOS01NmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmb4pHmn6s7GCZzc+tM4PKvRxKyZIrJHPQntyA0w0+FZh5lzcVo6SMDik1Bq9 3USgm0KQmR1ujZf2mT0k4g+kExPYxI2KQvxJFrsBYtQOdfWCkuA8JMdn+rCXaCHr xRRlw6vEJKdKFIXXLh0VtbwHIAMJ0pnaJugldd/yCXXKX8Loag0lP80/+SRxFv3H htniVNQSHob0GIX71DECLS8VSfwVZZ82qi0NLp8h8SNfVbF/T/ibo0FRky8aAb/B xqXpsnhgFZexKX6Go5+8oGs5TGtIKGaI6Vwmt13lL5qa8RmV/u6bhzLJv0erUBSC Wmw+AhDPcpJRgXVtg1yLwQafhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFEGdg8v W8hLR93k+tc2Q9Q19xrPMB8GA1UdIwQYMBaAFCuj6mwL1/GEYIZg+aIE5RGGWgDd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUU4Qi84MDdERkRBMEEz Q0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZUmdobUQ1b2dUbEVZWmFB TjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s2UHFiQXZYOFlSZ2htRDVvZ1RsRVlaYUFOMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUU4Qi84MDdERkRBMEEzQ0UxMUVBOEJBRTY1MjBDNEY5QUUwMi9LNlBxYkF2WDhZ UmdobUQ1b2dUbEVZWmFBTjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3L9Nf8F7s2h5BylCnVqmGE08fOL2t1NdP86OiJuvl0Vmu/TdBudGt avx6rG8xhNZTRo58bjdny0YujXuyLrN6R5EMWR8AsBKgo6LQ3EFasZd9bAC8OZRb TeHtv8i+8SxWPnLRKpD04gRFE1U/mnNQzF3MKfk0ztOupJgnqtAcCh87RCA/ASAZ sjWEH1uEPC4pzrgmNzf7mFKDqCKTpgvqaVWC9LxWfqx54icErxCjHtuMKXLBFbKK JotHG5B4DawsfdtaVN0lf1uydNgyqgcT1ID5tfkd3IM8/oFLdbo5k1aI1BtPdWZu 2pi+xAltRRARlS1ENqBmbDzo7JzFH863 -----END CERTIFICATE-----Generated at Sun Aug 10 04:21:42 2025 by rpki-client