$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: MhFjPBl6XZaslwrDqRy8JNblmm9FVcOm7WTpPyYKDBQ= Subject key identifier: 3B:21:66:5B:1F:1E:11:1E:43:F1:0D:D6:A6:F3:36:B6:B2:A9:2C:89 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 46 Signing time: Sun 03 Aug 2025 07:52:34 +0000 Manifest this update: Sun 03 Aug 2025 07:52:34 +0000 Manifest next update: Sun 10 Aug 2025 07:52:34 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: oNVZG0dqO+oLjuhPmymnDLW+47YFnkRJ/mRzgVq9C50=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 07:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Aug 3 07:52:34 2025 GMT Not After : Aug 10 07:52:34 2025 GMT Subject: CN=688f1542-8c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2c:8b:23:83:49:e7:15:e4:13:13:5d:20:b2: 6a:7f:99:11:21:11:7c:34:16:4f:25:f4:aa:71:00: 15:f2:09:e8:cb:e4:20:78:19:bf:bd:ea:79:24:df: 58:f4:6e:50:e9:7c:2a:21:ad:21:7f:ef:01:0b:0e: f8:bc:65:87:69:c8:37:97:6b:22:0a:40:8e:86:22: 22:be:17:9d:10:6c:1e:20:60:27:c7:1b:7f:85:11: f5:af:af:61:cb:39:fc:82:16:c3:27:7a:d7:32:51: 68:d1:68:86:9a:8d:78:e4:d7:be:61:6b:bc:27:4f: 03:dd:b4:18:75:b0:26:13:8e:00:f4:6c:f4:a5:71: 15:bb:cf:5a:64:5e:f8:ae:0d:ac:f5:1e:ac:a1:8e: 4a:ca:0a:10:a7:2a:56:29:a0:30:94:2e:e5:6b:03: 51:c0:08:c3:a1:06:bd:c0:db:36:63:2c:e4:2c:1b: 14:46:81:b6:f5:bb:0e:e9:51:6b:f9:a8:ba:3e:3b: 88:c9:d3:b4:a4:88:e5:ad:3f:15:2b:99:40:75:df: e1:48:3a:39:9e:31:e0:72:47:c5:e0:0c:ed:89:56: f6:2d:ba:c8:38:45:df:c8:ff:72:8d:84:65:2b:30: 88:f9:87:97:a8:7c:d8:79:24:05:5c:57:f6:3c:82: 00:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:21:66:5B:1F:1E:11:1E:43:F1:0D:D6:A6:F3:36:B6:B2:A9:2C:89 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:9e:72:5a:a4:a3:78:d1:f3:d9:12:28:09:65:96:17:e6:d2: 50:39:c1:9c:98:67:2a:43:0e:20:07:23:27:ca:7d:9a:f7:1e: 13:53:ee:04:38:e0:e5:b2:0a:80:72:03:87:60:57:5b:b6:9e: 15:da:bb:81:72:c7:8d:25:50:93:23:73:0e:86:1f:c1:66:65: 7c:ed:66:cb:06:0c:92:fb:e0:ca:f5:62:12:18:a0:86:60:e1: 67:c6:43:4d:3d:20:be:47:ae:ab:3d:d1:41:74:21:c7:4b:ed: 75:e2:1d:c1:33:e3:05:f2:17:12:ea:c5:cc:20:91:9d:8b:14: 8f:19:49:7a:12:18:e1:5d:02:0b:86:69:e0:af:77:e9:9d:51: 51:26:a9:7f:f9:ed:1e:f1:52:ea:62:92:2f:4b:df:d1:82:6a: f6:a8:2a:03:da:b7:b4:ba:3f:27:84:25:84:aa:5d:b3:ca:63: 6f:36:31:af:26:00:a3:83:1f:4d:53:e0:06:f7:d2:1b:86:0b: 3b:8f:5a:e6:ea:cf:a6:32:fb:a9:2a:26:c2:85:c8:bf:44:35: 9d:96:99:4d:98:c9:59:76:a7:16:31:24:aa:9a:b5:63:2b:80: 79:b5:d8:0d:e8:0e:3d:8f:bd:c8:34:08:9e:32:27:92:91:64: 6f:ba:0e:29 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTA4MDMwNzUyMzRaFw0yNTA4MTAwNzUyMzRaMBgxFjAUBgNV BAMTDTY4OGYxNTQyLThjMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6LIsjg0nnFeQTE10gsmp/mREhEXw0Fk8l9KpxABXyCejL5CB4Gb+96nkk31j0 blDpfCohrSF/7wELDvi8ZYdpyDeXayIKQI6GIiK+F50QbB4gYCfHG3+FEfWvr2HL OfyCFsMnetcyUWjRaIaajXjk175ha7wnTwPdtBh1sCYTjgD0bPSlcRW7z1pkXviu Daz1HqyhjkrKChCnKlYpoDCULuVrA1HACMOhBr3A2zZjLOQsGxRGgbb1uw7pUWv5 qLo+O4jJ07SkiOWtPxUrmUB13+FIOjmeMeByR8XgDO2JVvYtusg4Rd/I/3KNhGUr MIj5h5eofNh5JAVcV/Y8ggBrAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUOyFmWx8e ER5D8Q3WpvM2trKpLIkwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJ2eclqko3jR89kSKAlllhfm0lA5wZyYZypDDiAHIyfKfZr3HhNT7gQ4 4OWyCoByA4dgV1u2nhXau4Fyx40lUJMjcw6GH8FmZXztZssGDJL74Mr1YhIYoIZg 4WfGQ009IL5Hrqs90UF0IcdL7XXiHcEz4wXyFxLqxcwgkZ2LFI8ZSXoSGOFdAguG aeCvd+mdUVEmqX/57R7xUupiki9L39GCavaoKgPat7S6PyeEJYSqXbPKY282Ma8m AKODH01T4Ab30huGCzuPWubqz6Yy+6kqJsKFyL9ENZ2WmU2YyVl2pxYxJKqatWMr gHm12A3oDj2Pvcg0CJ4yJ5KRZG+6Dik= -----END CERTIFICATE-----Generated at Mon Aug 4 16:11:54 2025 by rpki-client