$ rpki-client -vvf rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft File: kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft (raw, json) Hash identifier: SDQQ/9Nmg3EcGmVCuybIKlMIbjfgyAY037uqo7RVhcw= Subject key identifier: AC:D8:9A:01:33:CC:C1:DE:86:EF:C4:D4:42:5E:32:51:74:E4:97:40 Authority key identifier: 92:24:16:65:95:58:21:7C:93:62:7B:96:D9:C9:EA:FA:C1:FA:A3:EE Certificate issuer: /CN=A91774FB/serialNumber=922416659558217C93627B96D9C9EAFAC1FAA3EE Certificate serial: CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft Manifest number: C9 Signing time: Mon 21 Jul 2025 05:53:19 +0000 Manifest this update: Mon 21 Jul 2025 05:53:18 +0000 Manifest next update: Mon 28 Jul 2025 05:53:18 +0000 Files and hashes: 1: kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl (hash: LnipZN0yhpH7cIjMIodKUzInxOcNxB41IUM82DndIfI=) 2: 671EAC66343D11EFB36ED310C4F9AE02.roa (hash: 01Cn3pOh4671ZkIDU6odEQ9G33TuU+ryqBzUYewO8xQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91774FB, serialNumber=922416659558217C93627B96D9C9EAFAC1FAA3EE Validity Not Before: Jul 21 05:53:18 2025 GMT Not After : Jul 28 05:53:18 2025 GMT Subject: CN=687dd5cf-e35f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:13:1b:8b:5d:10:b9:af:dc:48:d8:de:69:bf: 02:8e:6a:bb:87:b5:d0:cb:bb:63:7d:22:9f:3e:d9: 0a:8b:d4:2b:71:18:01:1d:53:51:4f:71:77:8e:a2: 93:ec:26:cc:26:8b:48:d9:4e:19:5c:c7:24:ec:78: 29:94:86:24:44:87:17:87:30:a8:c3:c9:a8:5a:70: 48:ad:a3:67:35:15:dc:ed:54:3f:d9:d1:af:01:27: 48:f0:2c:c1:69:46:66:3f:74:60:9a:e8:fc:c6:f2: 9b:06:08:91:87:f7:b1:bb:58:aa:af:63:d7:79:01: c7:3e:65:e5:54:62:cb:08:44:4e:55:15:94:1c:c2: 82:da:99:eb:05:88:43:1d:d5:74:67:f1:c1:3e:a3: 34:c1:37:94:0d:e1:3d:67:9f:9a:74:52:c3:43:62: af:c3:69:65:80:cd:71:e3:96:97:97:30:16:8c:c9: 90:ce:a2:bb:67:20:04:2a:92:99:1e:d7:9e:19:b7: 57:d3:59:56:81:a3:2a:14:5a:f6:9d:56:be:d3:4f: 78:c5:4a:d1:f1:65:2c:c5:35:69:c3:70:df:36:68: f9:bd:24:bb:e1:9b:9a:64:58:ec:ab:47:ba:ad:bb: a4:9c:53:ac:9f:61:a2:8e:33:43:92:a4:bb:15:02: 5d:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D8:9A:01:33:CC:C1:DE:86:EF:C4:D4:42:5E:32:51:74:E4:97:40 X509v3 Authority Key Identifier: keyid:92:24:16:65:95:58:21:7C:93:62:7B:96:D9:C9:EA:FA:C1:FA:A3:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kiQWZZVYIXyTYnuW2cnq-sH6o-4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91774FB/816972C6343911EF9C3D213EC4F9AE02/kiQWZZVYIXyTYnuW2cnq-sH6o-4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:ab:b1:bf:3c:c8:82:7c:fe:6f:2b:a8:f1:96:00:0c:f8:48: c4:06:d8:3d:9e:e3:8f:18:32:32:bc:58:28:2e:e0:ff:be:1d: 59:7d:c6:07:4f:61:d4:96:8e:03:8d:f2:f6:57:9d:ce:bc:36: 77:62:ea:0e:35:47:4c:d7:f7:c2:da:17:1a:cd:85:7b:4f:24: 87:80:c4:53:eb:ad:f7:6c:8f:2a:d1:06:c2:f6:fd:6a:0a:22: ba:42:d6:ad:23:05:10:36:46:75:06:c6:24:bf:7a:5d:cb:c4: b6:82:20:4f:63:b6:d6:c0:a9:ea:a8:b2:5d:0e:00:15:c4:fd: 83:f8:43:2f:4f:40:0e:b4:a5:da:5b:63:0f:62:b6:60:f9:f0: af:40:91:b8:71:0d:75:fc:48:85:bf:23:b3:8b:bf:c5:78:be: 0a:35:8e:e3:8a:26:13:97:ef:24:55:ba:ab:71:3a:6d:8e:64: fb:b6:0b:bc:1c:57:92:93:4d:35:ba:28:96:ea:ff:83:41:7c: 34:6b:3a:4a:2d:a5:b5:db:73:53:54:22:cf:d9:df:14:93:7a: 49:fd:6d:2e:27:8d:21:53:6b:a2:e3:9c:30:92:5a:81:c8:6f: 8d:50:14:b9:aa:ce:60:5d:d3:e4:bd:14:5a:04:09:cd:8e:ae: 5b:32:b4:d8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc0RkIxMTAvBgNVBAUTKDkyMjQxNjY1OTU1ODIxN0M5MzYyN0I5NkQ5QzlFQUZB QzFGQUEzRUUwHhcNMjUwNzIxMDU1MzE4WhcNMjUwNzI4MDU1MzE4WjAYMRYwFAYD VQQDEw02ODdkZDVjZi1lMzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuxMbi10Qua/cSNjeab8Cjmq7h7XQy7tjfSKfPtkKi9QrcRgBHVNRT3F3jqKT 7CbMJotI2U4ZXMck7HgplIYkRIcXhzCow8moWnBIraNnNRXc7VQ/2dGvASdI8CzB aUZmP3Rgmuj8xvKbBgiRh/exu1iqr2PXeQHHPmXlVGLLCEROVRWUHMKC2pnrBYhD HdV0Z/HBPqM0wTeUDeE9Z5+adFLDQ2Kvw2llgM1x45aXlzAWjMmQzqK7ZyAEKpKZ HteeGbdX01lWgaMqFFr2nVa+0094xUrR8WUsxTVpw3DfNmj5vSS74ZuaZFjsq0e6 rbuknFOsn2GijjNDkqS7FQJdBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKzYmgEz zMHehu/E1EJeMlF05JdAMB8GA1UdIwQYMBaAFJIkFmWVWCF8k2J7ltnJ6vrB+qPu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzRGQi84MTY5NzJDNjM0 MzkxMUVGOUMzRDIxM0VDNEY5QUUwMi9raVFXWlpWWUlYeVRZbnVXMmNucS1zSDZv LTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tpUVdaWlZZSVh5VFludVcyY25xLXNINm8tNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzRGQi84MTY5NzJDNjM0MzkxMUVGOUMzRDIxM0VDNEY5QUUwMi9raVFXWlpWWUlY eVRZbnVXMmNucS1zSDZvLTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0q7G/PMiCfP5vK6jxlgAM+EjEBtg9nuOPGDIyvFgoLuD/vh1ZfcYH T2HUlo4DjfL2V53OvDZ3YuoONUdM1/fC2hcazYV7TySHgMRT6633bI8q0QbC9v1q CiK6QtatIwUQNkZ1BsYkv3pdy8S2giBPY7bWwKnqqLJdDgAVxP2D+EMvT0AOtKXa W2MPYrZg+fCvQJG4cQ11/EiFvyOzi7/FeL4KNY7jiiYTl+8kVbqrcTptjmT7tgu8 HFeSk001uiiW6v+DQXw0azpKLaW123NTVCLP2d8Uk3pJ/W0uJ40hU2ui45wwklqB yG+NUBS5qs5gXdPkvRRaBAnNjq5bMrTY -----END CERTIFICATE-----Generated at Mon Jul 21 07:53:12 2025 by rpki-client