$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: 5qY8KkpqPoVdnca0hlPliqNKMoOn3IbkBP9ySPbzl9w= Subject key identifier: 67:DC:28:AE:27:95:32:BE:07:A1:F3:C6:ED:D9:5D:2F:F8:55:F7:DA Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07A2 Signing time: Tue 12 Aug 2025 21:40:12 +0000 Manifest this update: Tue 12 Aug 2025 21:40:12 +0000 Manifest next update: Tue 19 Aug 2025 21:40:12 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: Y/pbh1pML/TRnQhtDL877hv4c1unQH0P+5B25sxXcWs=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 21:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1960 (0x7a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Aug 12 21:40:12 2025 GMT Not After : Aug 19 21:40:12 2025 GMT Subject: CN=689bb4bc-a4cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:01:5e:14:ca:15:b0:99:c0:22:28:f7:45:f4: 3b:52:eb:b1:10:c9:b1:71:e2:31:c0:eb:fb:70:4a: 05:0f:f4:14:b1:88:c4:8f:8b:89:02:ca:95:f6:c7: 1d:d4:78:3d:db:68:59:a9:be:c5:af:92:90:c0:ee: 12:1b:09:09:a7:6b:60:f3:87:63:c3:32:0e:6b:53: f4:d3:4b:5c:31:43:8a:99:5d:c5:40:80:0d:c6:62: f5:1b:c6:05:18:95:21:6c:09:d5:e2:f1:a3:64:58: 84:d4:71:4b:b5:41:2f:96:b6:ee:9b:0a:18:bc:b1: 5a:0a:3e:ff:14:e3:2e:58:73:8f:cc:e7:de:ca:2e: e4:36:1a:0c:6d:ad:8a:cb:54:af:62:77:52:88:8a: b8:94:47:fa:05:1e:c7:c6:33:40:3b:b7:1f:3a:5a: 31:9e:76:df:c1:cb:b0:1c:27:23:48:4a:96:14:7f: 88:25:64:ae:84:5a:80:5e:86:db:84:27:26:3c:69: 80:1e:2e:63:0d:45:ed:06:d5:05:03:a8:de:89:6d: 1b:8d:c2:3f:07:c0:d4:9b:5d:4e:ba:2b:12:a3:34: ae:fe:86:0e:28:f0:fa:6a:8a:17:b7:66:c1:d7:a6: a4:f5:5e:5d:59:d9:fa:1f:2f:57:af:5b:06:e2:54: 1f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:DC:28:AE:27:95:32:BE:07:A1:F3:C6:ED:D9:5D:2F:F8:55:F7:DA X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:8d:93:cc:6a:de:93:33:8e:d5:ca:c9:26:07:a2:fc:fe:d5: 09:48:9c:f2:61:05:1d:f1:ce:1f:80:e6:13:68:7a:e5:a0:33: c9:b7:99:23:e2:de:dc:be:55:8d:48:57:da:a5:ad:b5:d1:b7: dc:b7:4f:eb:fa:e8:83:52:67:a9:58:1a:a1:f7:dc:0e:1f:b9: 08:54:a0:76:56:80:28:1e:c3:b0:77:6d:ff:82:9d:4e:1e:a3: 6c:f7:14:c0:de:8c:8c:90:7a:c6:e2:95:22:62:60:29:09:22: 7a:7c:41:4a:2d:33:9d:cc:b1:21:ad:02:ee:c9:95:16:be:4f: 3b:a2:66:6e:14:92:52:b6:98:5c:50:82:cb:47:da:e5:6b:5c: d7:d9:fe:36:10:50:0e:51:65:fa:17:02:b5:e7:70:f3:11:ec: f8:95:99:55:b6:da:91:e0:f2:b6:c3:05:c5:92:97:9e:34:9c: 8a:03:ce:7b:84:eb:29:fb:fe:ed:da:4b:cd:d8:ad:4d:e2:23: e8:4c:df:9a:cd:9b:3c:62:3e:43:ea:2f:b9:07:f2:eb:7d:09: 3d:5e:ad:ea:68:c4:ea:36:a2:0a:46:0e:71:b2:34:7d:ca:2c: 6a:a6:26:b2:db:0c:5b:76:6e:a0:25:a9:ea:6a:e0:d4:05:02: 67:45:0b:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwODEyMjE0MDEyWhcNMjUwODE5MjE0MDEyWjAYMRYwFAYD VQQDEw02ODliYjRiYy1hNGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8wFeFMoVsJnAIij3RfQ7UuuxEMmxceIxwOv7cEoFD/QUsYjEj4uJAsqV9scd 1Hg922hZqb7Fr5KQwO4SGwkJp2tg84djwzIOa1P000tcMUOKmV3FQIANxmL1G8YF GJUhbAnV4vGjZFiE1HFLtUEvlrbumwoYvLFaCj7/FOMuWHOPzOfeyi7kNhoMba2K y1SvYndSiIq4lEf6BR7HxjNAO7cfOloxnnbfwcuwHCcjSEqWFH+IJWSuhFqAXobb hCcmPGmAHi5jDUXtBtUFA6jeiW0bjcI/B8DUm11OuisSozSu/oYOKPD6aooXt2bB 16ak9V5dWdn6Hy9Xr1sG4lQf/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfcKK4n lTK+B6Hzxu3ZXS/4VffaMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJjZPMat6TM47VyskmB6L8/tUJSJzyYQUd8c4fgOYTaHrloDPJt5kj 4t7cvlWNSFfapa210bfct0/r+uiDUmepWBqh99wOH7kIVKB2VoAoHsOwd23/gp1O HqNs9xTA3oyMkHrG4pUiYmApCSJ6fEFKLTOdzLEhrQLuyZUWvk87omZuFJJStphc UILLR9rla1zX2f42EFAOUWX6FwK153DzEez4lZlVttqR4PK2wwXFkpeeNJyKA857 hOsp+/7t2kvN2K1N4iPoTN+azZs8Yj5D6i+5B/LrfQk9Xq3qaMTqNqIKRg5xsjR9 yixqpiay2wxbdm6gJanqauDUBQJnRQsh -----END CERTIFICATE-----Generated at Wed Aug 13 02:49:18 2025 by rpki-client