$ rpki-client -vvf rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft File: m-KS59FtTo6BYWnDtQLr5O9FwWM.mft (raw, json) Hash identifier: FRJ1AVC0bEm5555VD2QAjywC0MTvQxg1Y3hnI6ROn/o= Subject key identifier: 4A:FD:67:99:F2:DB:8E:C0:57:0A:ED:7D:83:4B:7B:7A:E3:75:F2:E4 Authority key identifier: 9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 Certificate issuer: /CN=A91897B3/serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Certificate serial: 05C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft Manifest number: 05BD Signing time: Sun 20 Jul 2025 23:17:39 +0000 Manifest this update: Sun 20 Jul 2025 23:17:38 +0000 Manifest next update: Sun 27 Jul 2025 23:17:38 +0000 Files and hashes: 1: m-KS59FtTo6BYWnDtQLr5O9FwWM.crl (hash: EwlX/9/4ggnhQ4RiY0xkTAg61w2ZRugk1SJz2Zg6DUk=) 2: E3D745E4049C11F0A6EDC22CC4F9AE02.roa (hash: px/As8pki2KLZRbmQBjTDtiyZ+5fgWEf49lQhcXaLv8=) 3: 034BA52C03AE11F0BDE1863DC4F9AE02.roa (hash: paq7kuxsaTc9AvIuFqICTToZpA0Jq132ZaYgNXR44RU=) 4: 6D353E4E97F711EFB3A27D59C4F9AE02.roa (hash: kw1Gr6Odxudr/FJkrtaM+rmCUMWq3czGnQtcOZ5fgIA=) 5: 101ED47C04A811F0B2A84883C4F9AE02.roa (hash: z+c9NTtbF9p/XObcI5GpVa5IpkCw1psUhuzIxI8+BQo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 23:17:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91897B3, serialNumber=9BE292E7D16D4E8E816169C3B502EBE4EF45C163 Validity Not Before: Jul 20 23:17:38 2025 GMT Not After : Jul 27 23:17:38 2025 GMT Subject: CN=687d7913-b165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0b:10:86:e0:dd:55:f7:78:30:45:2b:ad:3a: 0e:a6:8b:05:a3:c9:57:e1:59:e5:ed:94:20:81:1d: ce:63:c1:57:c4:b2:e6:4a:7c:13:e2:ce:92:f1:e0: 4e:76:b5:cc:15:92:4c:8e:c8:04:a7:3f:03:75:d6: ed:eb:ca:68:bf:f8:01:b7:b8:d1:35:f0:cc:ed:fd: 9d:55:dd:42:59:8d:e7:88:d5:11:c2:bf:5e:b6:89: 29:7a:af:e0:39:30:d7:3f:b5:9e:52:37:49:bd:b9: 92:6f:5e:35:c5:fe:25:d7:c4:a3:fe:e3:a7:22:2b: 08:9e:5f:b3:1e:65:61:24:68:ba:bf:6a:e0:da:d3: 9b:15:31:fe:0e:47:02:89:f5:4a:d0:ac:f6:8a:9d: 83:d9:47:6a:79:0e:bb:62:b9:09:22:85:6b:67:2d: f1:f1:1d:15:b3:e1:3b:da:ba:99:5d:91:e3:b0:3f: 57:f1:80:63:fd:73:fd:07:a6:25:a4:21:ae:5b:d6: 96:84:e8:8b:1d:fd:6b:0e:57:81:99:9e:50:9b:13: b8:f1:ca:a4:07:85:7a:32:47:6c:1b:25:71:58:7e: d1:90:c9:e0:98:3d:40:da:a1:04:99:5e:fc:89:7c: 01:16:bd:f5:cc:1c:03:44:1c:b3:a6:0a:ba:32:9b: 7d:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FD:67:99:F2:DB:8E:C0:57:0A:ED:7D:83:4B:7B:7A:E3:75:F2:E4 X509v3 Authority Key Identifier: keyid:9B:E2:92:E7:D1:6D:4E:8E:81:61:69:C3:B5:02:EB:E4:EF:45:C1:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m-KS59FtTo6BYWnDtQLr5O9FwWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91897B3/67212DFECEA811EB9A969E0FC4F9AE02/m-KS59FtTo6BYWnDtQLr5O9FwWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:da:17:b5:dc:57:28:96:1a:11:2e:82:9d:2b:62:13:b4:2b: 35:ce:cd:bc:0a:5a:f1:81:29:b5:c1:43:a4:be:1b:40:18:ba: 4b:30:8a:cb:3e:bc:40:f5:d7:e2:97:ab:bf:9b:2c:3a:1d:76: 0f:9d:43:4a:e2:b8:94:8b:b1:3d:e9:c4:fb:04:93:85:a7:a4: a1:67:db:ad:ae:3a:8c:73:bc:d7:d2:a7:1d:c7:08:a2:77:1e: 66:b1:83:b0:da:b6:bf:d1:a4:10:81:77:09:4b:7a:d8:23:51: ae:73:79:09:b7:60:73:ff:f8:cf:12:61:ad:47:65:8c:c9:53: eb:68:17:b2:e9:09:7d:43:92:e8:e8:69:91:f9:8f:6a:69:6a: b0:3c:2d:db:02:8f:37:bc:6d:94:e1:f6:38:f9:ee:ad:14:fd: b7:c3:e1:fc:dd:30:11:13:74:90:c7:0d:ce:ba:40:5b:5d:5d: b6:35:f2:82:33:b7:38:c7:bc:2e:95:39:6e:04:67:3a:5a:e8: 0d:df:27:7e:e5:8a:03:6b:9d:94:69:e8:37:1f:73:4b:48:2c: 23:fe:51:8a:2a:3d:66:61:73:97:03:54:33:82:d8:26:ce:c0: ce:78:70:9a:9b:d9:be:e0:5c:e2:be:2a:4b:48:92:ee:44:e1: 2a:59:d8:ff -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk3QjMxMTAvBgNVBAUTKDlCRTI5MkU3RDE2RDRFOEU4MTYxNjlDM0I1MDJFQkU0 RUY0NUMxNjMwHhcNMjUwNzIwMjMxNzM4WhcNMjUwNzI3MjMxNzM4WjAYMRYwFAYD VQQDEw02ODdkNzkxMy1iMTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgsQhuDdVfd4MEUrrToOposFo8lX4Vnl7ZQggR3OY8FXxLLmSnwT4s6S8eBO drXMFZJMjsgEpz8Dddbt68pov/gBt7jRNfDM7f2dVd1CWY3niNURwr9etokpeq/g OTDXP7WeUjdJvbmSb141xf4l18Sj/uOnIisInl+zHmVhJGi6v2rg2tObFTH+DkcC ifVK0Kz2ip2D2UdqeQ67YrkJIoVrZy3x8R0Vs+E72rqZXZHjsD9X8YBj/XP9B6Yl pCGuW9aWhOiLHf1rDleBmZ5QmxO48cqkB4V6MkdsGyVxWH7RkMngmD1A2qEEmV78 iXwBFr31zBwDRByzpgq6Mpt9wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEr9Z5ny 247AVwrtfYNLe3rjdfLkMB8GA1UdIwQYMBaAFJvikufRbU6OgWFpw7UC6+TvRcFj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTdCMy82NzIxMkRGRUNF QTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRvNkJZV25EdFFMcjVPOUZ3 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20tS1M1OUZ0VG82QllXbkR0UUxyNU85RndXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OTdCMy82NzIxMkRGRUNFQTgxMUVCOUE5NjlFMEZDNEY5QUUwMi9tLUtTNTlGdFRv NkJZV25EdFFMcjVPOUZ3V00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCv2he13FcolhoRLoKdK2ITtCs1zs28ClrxgSm1wUOkvhtAGLpLMIrL PrxA9dfil6u/myw6HXYPnUNK4riUi7E96cT7BJOFp6ShZ9utrjqMc7zX0qcdxwii dx5msYOw2ra/0aQQgXcJS3rYI1Guc3kJt2Bz//jPEmGtR2WMyVPraBey6Ql9Q5Lo 6GmR+Y9qaWqwPC3bAo83vG2U4fY4+e6tFP23w+H83TARE3SQxw3OukBbXV22NfKC M7c4x7wulTluBGc6WugN3yd+5YoDa52Uaeg3H3NLSCwj/lGKKj1mYXOXA1Qzgtgm zsDOeHCam9m+4FzivipLSJLuROEqWdj/ -----END CERTIFICATE-----Generated at Mon Jul 21 12:33:10 2025 by rpki-client