$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: Wd+MIDOV5bsItE9HgCAvueU3/8vCfVuUvA9TvCoqCeY= Subject key identifier: 71:4A:88:13:A9:6E:32:57:2B:41:DA:30:56:FA:68:34:1B:51:01:A0 Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: D6 Signing time: Tue 05 Aug 2025 06:02:33 +0000 Manifest this update: Tue 05 Aug 2025 06:02:33 +0000 Manifest next update: Tue 12 Aug 2025 06:02:33 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: IsMNX0Op2QuyhJws3bsielTNCR8spzP6/lZYMVx8jBI=) 2: 6B9D491C379A11F0B3AC7740C4F9AE02.roa (hash: RLph3rOI+XvGrIXc+VEb/mig9QwsOBw+jIRI25aGTLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 06:02:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: Aug 5 06:02:33 2025 GMT Not After : Aug 12 06:02:33 2025 GMT Subject: CN=68919e79-2ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:74:bf:9a:8d:a5:18:4f:30:cf:3f:11:9b:a3: 95:5b:32:15:71:fe:2f:3b:b0:89:68:cf:d8:bc:63: ce:b1:1e:ab:e1:5b:78:65:4f:b4:d8:af:30:71:a8: d8:95:5d:36:8b:fa:8c:ac:a2:10:f2:86:c2:02:b6: 2b:af:ca:a8:fe:b3:b4:33:a0:94:e6:d1:1f:40:16: a2:01:50:ce:65:5e:1e:1a:06:47:0d:ce:ab:60:d4: 7c:e3:d4:88:b0:29:34:cc:85:21:d1:e8:69:20:82: c5:ed:af:59:25:4c:dd:f8:14:fa:6f:a0:08:19:15: 86:f9:01:58:08:d9:e4:78:5f:6d:0f:74:4c:62:65: 01:36:d8:1a:3d:f7:dd:d0:dc:8c:26:83:14:eb:07: 49:a4:b3:b1:46:99:82:ad:20:50:0a:f5:fe:40:82: 1b:3b:df:ea:68:d8:aa:78:05:d6:03:70:39:42:4b: 6e:b3:cc:57:da:9e:c5:09:f6:45:19:78:a5:6e:90: 30:0a:23:51:fa:f7:a5:bf:6a:73:45:b3:b9:d5:f7: e2:ef:f4:52:6e:14:71:7c:a4:3c:e3:fb:60:78:fa: e1:df:0a:90:52:5a:87:6b:26:80:e8:75:31:f7:e3: 9b:55:63:71:36:5e:3a:7f:99:4f:28:58:91:3e:cd: 92:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4A:88:13:A9:6E:32:57:2B:41:DA:30:56:FA:68:34:1B:51:01:A0 X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d0:f1:1f:a4:dd:af:31:b0:e4:6c:ad:e1:2a:93:98:b7:92:95: 46:b3:6f:6c:0d:47:f9:99:98:07:bf:3c:8a:fd:d1:9b:b7:70: 89:48:23:6b:27:78:07:74:18:56:1d:d6:1a:06:94:7a:ab:4f: 57:e2:d8:49:ac:70:67:30:cc:38:c4:18:7c:1d:86:c3:c2:3a: e9:3a:ce:4a:4c:66:cd:1b:2a:1f:11:a8:ff:c5:e5:6d:64:69: cf:dd:28:3e:bc:a0:30:ae:d1:79:bf:3b:07:e9:90:9a:66:c9: 2b:f7:f0:89:5f:87:75:49:1a:20:5e:b4:c6:c4:44:d1:e4:74: 95:90:1a:a0:3b:69:04:f0:83:2d:7b:df:a0:f4:3a:a3:c8:0d: 62:85:73:4b:2e:59:7d:45:8b:52:f6:08:a1:9f:df:7a:73:68: 9b:01:3b:bb:8e:1a:65:81:46:9a:44:48:d0:da:c1:2c:92:f6: 78:73:5a:d6:4b:a2:35:86:9a:b6:92:28:9f:e5:94:a3:6f:7f: d9:40:a9:95:12:34:12:a3:9d:18:03:97:2e:99:54:85:16:88: fc:a2:c6:da:16:e1:42:79:e1:4b:ef:60:1a:39:a4:be:d3:cf: af:97:3b:33:26:2a:75:40:2a:80:be:15:9e:5e:d7:2e:63:54: b7:64:e0:15 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUwODA1MDYwMjMzWhcNMjUwODEyMDYwMjMzWjAYMRYwFAYD VQQDEw02ODkxOWU3OS0yY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwnS/mo2lGE8wzz8Rm6OVWzIVcf4vO7CJaM/YvGPOsR6r4Vt4ZU+02K8wcajY lV02i/qMrKIQ8obCArYrr8qo/rO0M6CU5tEfQBaiAVDOZV4eGgZHDc6rYNR849SI sCk0zIUh0ehpIILF7a9ZJUzd+BT6b6AIGRWG+QFYCNnkeF9tD3RMYmUBNtgaPffd 0NyMJoMU6wdJpLOxRpmCrSBQCvX+QIIbO9/qaNiqeAXWA3A5Qktus8xX2p7FCfZF GXilbpAwCiNR+velv2pzRbO51ffi7/RSbhRxfKQ84/tgePrh3wqQUlqHayaA6HUx 9+ObVWNxNl46f5lPKFiRPs2SwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHFKiBOp bjJXK0HaMFb6aDQbUQGgMB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDQ8R+k3a8xsORsreEqk5i3kpVGs29sDUf5mZgHvzyK/dGbt3CJSCNr J3gHdBhWHdYaBpR6q09X4thJrHBnMMw4xBh8HYbDwjrpOs5KTGbNGyofEaj/xeVt ZGnP3Sg+vKAwrtF5vzsH6ZCaZskr9/CJX4d1SRogXrTGxETR5HSVkBqgO2kE8IMt e9+g9DqjyA1ihXNLLll9RYtS9gihn996c2ibATu7jhplgUaaREjQ2sEskvZ4c1rW S6I1hpq2kiif5ZSjb3/ZQKmVEjQSo50YA5cumVSFFoj8osbaFuFCeeFL72AaOaS+ 08+vlzszJip1QCqAvhWeXtcuY1S3ZOAV -----END CERTIFICATE-----Generated at Wed Aug 6 09:31:49 2025 by rpki-client