$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: 5SLwBDRKxpC+aPJkEPMoXaqFvyfMzbMOauWKI8/Ul7g= Subject key identifier: 64:71:B5:D7:B6:3F:C3:81:AC:F8:37:C7:0D:44:89:29:C7:43:E4:EF Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1FA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1F96 Signing time: Sun 10 Aug 2025 15:57:14 +0000 Manifest this update: Sun 10 Aug 2025 15:57:14 +0000 Manifest next update: Sun 17 Aug 2025 15:57:14 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: SlbJRUBfRY0WOrq1c3N1rnnoCFnOhlh4VSedAilwWEs=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: bpwG3qWkZqt3c9e2parZM85DcFLWLncfBgOv3ugwly0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8100 (0x1fa4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Aug 10 15:57:14 2025 GMT Not After : Aug 17 15:57:14 2025 GMT Subject: CN=6898c15a-3fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f5:1e:38:d9:65:4f:38:e3:c9:85:b7:0c:eb: 2c:a8:6e:bc:19:41:16:f6:39:25:4b:cd:3a:9c:d9: fb:0d:6e:ab:1b:43:b6:fd:9d:73:c2:87:62:f2:18: f1:ad:ea:d7:5d:a5:c6:9e:09:a6:92:ba:12:87:33: 8f:ad:b5:3a:5b:0c:d1:fd:30:9d:32:fd:7d:1e:67: 47:f8:eb:bc:4b:ac:8f:c6:c5:7e:4a:60:51:d6:cf: 6b:e7:57:e8:3b:79:09:0f:57:5b:2e:f4:de:d0:08: 03:6a:0d:23:5b:0f:99:fd:25:e2:8b:67:61:93:ac: 8d:bf:e4:de:22:53:03:19:e4:2b:af:90:e3:0f:3d: 76:14:01:86:5a:f2:e6:2e:bb:13:07:ac:2b:26:1d: 04:4c:ec:a4:9e:51:d0:fd:3d:02:bc:ed:57:e6:05: 48:80:90:2c:f1:88:25:cb:4b:55:69:8f:fb:40:51: 92:8e:2b:e7:59:29:54:37:2e:bc:c7:67:0b:73:cd: 75:eb:d9:68:7d:63:5c:67:b7:53:01:9c:62:19:9f: ea:aa:76:aa:b6:8e:5d:ee:62:82:44:1d:d6:91:30: f5:86:b1:71:23:09:1f:a5:55:81:6a:a4:20:87:e7: d3:d2:50:d3:fe:b5:b1:33:65:29:a0:c7:87:16:f3: 99:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:71:B5:D7:B6:3F:C3:81:AC:F8:37:C7:0D:44:89:29:C7:43:E4:EF X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:68:78:91:c3:16:1a:26:c3:58:02:99:ad:b8:0c:70:0f:56: ba:4f:d0:2b:4f:6d:62:52:8b:da:f0:a7:2b:78:65:f2:50:60: 25:a3:e6:42:35:2f:55:bb:94:1a:e7:01:fa:82:ee:1f:0d:bf: 86:a9:b1:c5:aa:11:95:c6:d3:5d:15:e7:51:a4:0c:80:b1:17: cd:d5:9d:2b:8b:48:2c:46:70:96:1b:cf:bf:60:a0:3f:21:10: a4:ad:0c:96:3b:dc:2e:56:3c:b7:10:53:5c:20:e6:4f:c6:d7: 2a:08:d3:54:f7:31:a6:51:d5:08:40:4c:21:fe:3c:4d:cb:1b: e8:25:c9:49:4e:39:da:a3:ad:95:02:f4:c9:99:eb:08:6c:23: fd:5a:78:ff:f3:43:c0:df:7c:d7:44:ee:15:bd:6d:f8:c9:bc: 93:4f:b9:94:61:b0:6b:ea:d2:77:f9:c8:44:c8:35:5e:39:4b: 15:f9:44:f6:cd:f1:7c:61:83:0f:a2:ed:47:c9:fb:b4:00:e4: ae:0b:53:f4:02:24:e9:cd:82:6f:61:ab:3e:62:9a:61:7e:a7: d8:0f:cf:01:22:68:a2:28:2f:54:ca:8a:39:ec:99:c7:45:7d: 63:f4:a1:a3:c5:a2:b8:d1:00:c5:c9:1e:8d:0c:96:88:db:58: 17:eb:6a:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH6QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUwODEwMTU1NzE0WhcNMjUwODE3MTU1NzE0WjAYMRYwFAYD VQQDEw02ODk4YzE1YS0zZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvUeONllTzjjyYW3DOssqG68GUEW9jklS806nNn7DW6rG0O2/Z1zwodi8hjx rerXXaXGngmmkroShzOPrbU6WwzR/TCdMv19HmdH+Ou8S6yPxsV+SmBR1s9r51fo O3kJD1dbLvTe0AgDag0jWw+Z/SXii2dhk6yNv+TeIlMDGeQrr5DjDz12FAGGWvLm LrsTB6wrJh0ETOyknlHQ/T0CvO1X5gVIgJAs8Ygly0tVaY/7QFGSjivnWSlUNy68 x2cLc81169lofWNcZ7dTAZxiGZ/qqnaqto5d7mKCRB3WkTD1hrFxIwkfpVWBaqQg h+fT0lDT/rWxM2UpoMeHFvOZuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGRxtde2 P8OBrPg3xw1EiSnHQ+TvMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAaHiRwxYaJsNYApmtuAxwD1a6T9ArT21iUova8KcreGXyUGAlo+ZC NS9Vu5Qa5wH6gu4fDb+GqbHFqhGVxtNdFedRpAyAsRfN1Z0ri0gsRnCWG8+/YKA/ IRCkrQyWO9wuVjy3EFNcIOZPxtcqCNNU9zGmUdUIQEwh/jxNyxvoJclJTjnao62V AvTJmesIbCP9Wnj/80PA33zXRO4VvW34ybyTT7mUYbBr6tJ3+chEyDVeOUsV+UT2 zfF8YYMPou1Hyfu0AOSuC1P0AiTpzYJvYas+YpphfqfYD88BImiiKC9Uyoo57JnH RX1j9KGjxaK40QDFyR6NDJaI21gX62oO -----END CERTIFICATE-----Generated at Sun Aug 10 19:01:27 2025 by rpki-client