$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft File: KdzyaXujSl1MV_LtlnGNAxu8VjA.mft (raw, json) Hash identifier: J9RzViTXs3CGc/pitC7vXqUnAwjfUmlQFTe2nPpvtUE= Subject key identifier: 6A:1C:6A:6B:56:AD:63:A4:69:3E:57:34:27:66:8E:93:41:49:EC:BD Authority key identifier: 29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 Certificate issuer: /CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Certificate serial: 1625 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft Manifest number: 161B Signing time: Fri 18 Jul 2025 16:52:47 +0000 Manifest this update: Fri 18 Jul 2025 16:52:47 +0000 Manifest next update: Fri 25 Jul 2025 16:52:47 +0000 Files and hashes: 1: KdzyaXujSl1MV_LtlnGNAxu8VjA.crl (hash: kenKhdaHQA6BOaJcgEsGJmQgIw2vG7Vrs4xqfDcQmxs=) 2: 1C85059C1EB911E88533FA4EC4F9AE02.roa (hash: RqHN2PwZe21iOjQw65O1dXW58VJkxhmOGxQkFQUXslk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 16:52:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5669 (0x1625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1103, serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Validity Not Before: Jul 18 16:52:47 2025 GMT Not After : Jul 25 16:52:47 2025 GMT Subject: CN=687a7bdf-6c03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:3f:c0:87:c0:8c:d5:13:5f:ca:f8:94:34:97: 84:24:18:f9:b5:c5:91:5f:b2:37:47:ab:d2:0d:e6: 8a:27:cf:f8:ba:5b:9b:df:f4:8f:78:c4:e1:ca:ea: fe:71:7d:22:ab:ad:96:67:17:1b:67:75:cc:1c:77: 8c:7c:ae:30:a6:1c:79:a1:72:61:e5:8e:b5:c7:62: d5:df:cb:0f:01:57:06:c9:c4:d9:9a:42:02:bb:20: d8:b5:6f:51:64:ef:49:ec:7a:f1:b4:86:b2:9f:86: 04:15:d2:b0:84:02:12:a1:56:52:67:f1:30:7f:91: dc:c0:eb:52:ee:ce:d7:a9:54:ad:2c:49:d4:2d:0c: 24:25:52:82:42:67:a6:91:e4:9b:07:4a:86:d1:e9: 82:67:5b:c6:72:a8:a5:cc:78:16:e0:e2:e1:6e:e7: ec:14:e0:ac:a5:3b:e1:cb:e0:e6:a6:eb:5a:41:dd: 67:78:5c:2a:d2:a4:df:ba:77:1a:43:bd:49:2b:3b: 09:9d:f0:14:e4:91:5a:12:e9:e1:03:8b:c3:30:bb: a6:af:75:c1:58:fb:af:e7:42:b2:be:9a:18:12:9f: f4:5d:25:09:5e:41:8d:2b:13:43:d1:95:74:86:56: 68:3c:90:22:fe:d7:d0:c4:fc:30:71:2d:d5:f8:e2: 48:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:1C:6A:6B:56:AD:63:A4:69:3E:57:34:27:66:8E:93:41:49:EC:BD X509v3 Authority Key Identifier: keyid:29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:fe:af:8c:24:52:c3:1d:77:45:74:ac:a7:52:4b:e3:53:b0: c9:16:be:74:6c:0c:c1:ce:bf:4c:d4:4e:52:08:e0:31:74:ec: 01:0d:5d:19:cc:2c:cc:a3:93:99:9e:07:38:06:28:3b:22:a0: a6:c0:bc:64:3c:64:ad:d9:8c:31:2d:33:26:cc:cc:d9:d3:0a: 01:64:27:1b:b1:d2:13:ac:bf:97:c4:bf:b3:28:52:0f:0a:d7: c4:a4:3e:50:73:8a:fc:3d:4d:90:62:59:af:1f:72:d5:6b:a9: f1:54:18:a1:5e:39:e8:d5:29:c7:77:23:6a:18:13:9b:3c:4c: e7:99:85:0b:d3:4e:5d:99:fd:6e:ac:00:ca:75:95:49:ec:6f: f3:74:15:1d:87:df:e4:2f:c0:d7:a5:20:84:8e:77:2e:98:75: 99:f4:83:d2:6e:ce:ea:50:e9:d1:e0:11:e3:ea:d7:1b:55:68: a2:86:5a:66:2b:31:7d:70:eb:c8:b7:3d:79:cf:2b:6a:bd:c3: 39:a2:fe:95:79:05:ce:9b:4d:56:7b:3a:22:b1:0d:c9:e4:5c: 36:1e:f8:46:60:46:ed:96:8b:9f:5c:ed:ff:54:60:f4:bc:b8: f4:a8:a3:4e:26:c6:1b:da:24:12:f8:e3:87:ff:b0:7d:c7:b0: b4:46:b7:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExMDMxMTAvBgNVBAUTKDI5RENGMjY5N0JBMzRBNUQ0QzU3RjJFRDk2NzE4RDAz MUJCQzU2MzAwHhcNMjUwNzE4MTY1MjQ3WhcNMjUwNzI1MTY1MjQ3WjAYMRYwFAYD VQQDEw02ODdhN2JkZi02YzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+D/Ah8CM1RNfyviUNJeEJBj5tcWRX7I3R6vSDeaKJ8/4ulub3/SPeMThyur+ cX0iq62WZxcbZ3XMHHeMfK4wphx5oXJh5Y61x2LV38sPAVcGycTZmkICuyDYtW9R ZO9J7HrxtIayn4YEFdKwhAISoVZSZ/Ewf5HcwOtS7s7XqVStLEnULQwkJVKCQmem keSbB0qG0emCZ1vGcqilzHgW4OLhbufsFOCspTvhy+DmputaQd1neFwq0qTfunca Q71JKzsJnfAU5JFaEunhA4vDMLumr3XBWPuv50KyvpoYEp/0XSUJXkGNKxND0ZV0 hlZoPJAi/tfQxPwwcS3V+OJIowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGocamtW rWOkaT5XNCdmjpNBSey9MB8GA1UdIwQYMBaAFCnc8ml7o0pdTFfy7ZZxjQMbvFYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTEwMy8yMDk1QUE2MjFB MDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNsMU1WX0x0bG5HTkF4dThW akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkenlhWHVqU2wxTVZfTHRsbkdOQXh1OFZqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTEwMy8yMDk1QUE2MjFBMDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNs MU1WX0x0bG5HTkF4dThWakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCN/q+MJFLDHXdFdKynUkvjU7DJFr50bAzBzr9M1E5SCOAxdOwBDV0Z zCzMo5OZngc4Big7IqCmwLxkPGSt2YwxLTMmzMzZ0woBZCcbsdITrL+XxL+zKFIP CtfEpD5Qc4r8PU2QYlmvH3LVa6nxVBihXjno1SnHdyNqGBObPEznmYUL005dmf1u rADKdZVJ7G/zdBUdh9/kL8DXpSCEjncumHWZ9IPSbs7qUOnR4BHj6tcbVWiihlpm KzF9cOvItz15zytqvcM5ov6VeQXOm01WezoisQ3J5Fw2HvhGYEbtloufXO3/VGD0 vLj0qKNOJsYb2iQS+OOH/7B9x7C0RrfE -----END CERTIFICATE-----Generated at Sun Jul 20 02:56:45 2025 by rpki-client