$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/C73C45982EC711EF82208273C4F9AE02/kuuO8sbiYWmIqY_VsT7io2siHEM.mft File: kuuO8sbiYWmIqY_VsT7io2siHEM.mft (raw, json) Hash identifier: eWqzZDUzgj7/HJ2XrFlWetVO2MffepUbfmIEpHpjChQ= Subject key identifier: 43:F8:13:E7:D3:CD:19:1A:5E:2D:4B:C7:1A:CA:A3:0C:4F:50:DD:34 Authority key identifier: 92:EB:8E:F2:C6:E2:61:69:88:A9:8F:D5:B1:3E:E2:A3:6B:22:1C:43 Certificate issuer: /CN=A91A15FB/serialNumber=92EB8EF2C6E2616988A98FD5B13EE2A36B221C43 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kuuO8sbiYWmIqY_VsT7io2siHEM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/C73C45982EC711EF82208273C4F9AE02/kuuO8sbiYWmIqY_VsT7io2siHEM.mft Manifest number: D0 Signing time: Fri 25 Jul 2025 05:56:38 +0000 Manifest this update: Fri 25 Jul 2025 05:56:37 +0000 Manifest next update: Fri 01 Aug 2025 05:56:37 +0000 Files and hashes: 1: kuuO8sbiYWmIqY_VsT7io2siHEM.crl (hash: WwGTeEmcgK2BhQ8FRLDcwWy/rXyqql5x2S7st/bM0C8=) 2: E61BEE5C605711EF9150403FC4F9AE02.roa (hash: CCiK9Z7hOvpBEdDuVHROFOhxvRBudD3Mcnii4SWAHa4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/C73C45982EC711EF82208273C4F9AE02/kuuO8sbiYWmIqY_VsT7io2siHEM.crl rsync://rpki.apnic.net/member_repository/A91A15FB/C73C45982EC711EF82208273C4F9AE02/kuuO8sbiYWmIqY_VsT7io2siHEM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kuuO8sbiYWmIqY_VsT7io2siHEM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 05:56:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92EB8EF2C6E2616988A98FD5B13EE2A36B221C43 Validity Not Before: Jul 25 05:56:37 2025 GMT Not After : Aug 1 05:56:37 2025 GMT Subject: CN=68831c95-c10c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:2b:92:e1:2b:f7:4c:d8:a2:1b:05:78:dd:26: 49:65:b9:e3:3f:2e:9f:9c:b6:29:8f:7d:6d:35:1e: 11:2c:9a:40:da:af:ba:81:fd:67:ed:81:84:81:c9: 25:46:33:96:b6:c6:04:30:aa:fa:53:ee:3f:a1:e2: 02:b8:f8:c8:21:d6:e9:c0:16:ab:c4:af:93:34:7f: fb:3b:ad:27:2c:e0:73:4b:84:47:cb:b7:03:12:48: ab:73:e3:77:fe:18:32:9d:4a:2f:cf:25:81:8c:61: 4e:34:37:06:11:11:a3:b0:da:a8:e9:29:59:69:86: cf:9e:58:8d:2f:34:58:6c:93:ae:46:ee:29:eb:5a: 2b:a0:0d:ab:a8:f5:dc:1f:12:d3:19:21:23:ee:2e: 91:2b:6a:53:c0:c1:fc:7a:e6:04:10:13:06:96:11: 13:15:2b:a8:e8:f6:09:81:8f:20:52:04:eb:4f:18: 94:84:47:64:44:ff:5f:76:38:88:6a:a2:62:26:19: 35:5f:01:94:96:64:b8:d6:6c:c8:5d:63:17:90:b7: 96:a1:05:9a:56:f0:08:6a:6a:65:ef:be:d7:a1:58: b0:2e:fd:1d:ef:4f:6d:55:a8:88:54:e0:d7:b0:ef: c4:04:b5:6e:9d:18:4a:de:69:e8:56:7d:21:21:32: 54:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F8:13:E7:D3:CD:19:1A:5E:2D:4B:C7:1A:CA:A3:0C:4F:50:DD:34 X509v3 Authority Key Identifier: keyid:92:EB:8E:F2:C6:E2:61:69:88:A9:8F:D5:B1:3E:E2:A3:6B:22:1C:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/C73C45982EC711EF82208273C4F9AE02/kuuO8sbiYWmIqY_VsT7io2siHEM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kuuO8sbiYWmIqY_VsT7io2siHEM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/C73C45982EC711EF82208273C4F9AE02/kuuO8sbiYWmIqY_VsT7io2siHEM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:79:21:e4:16:79:ca:a7:c3:54:91:3e:fb:53:e9:44:ed:e2: bd:67:7b:ab:32:de:fd:dd:c0:34:e0:17:df:ba:3c:27:92:87: 8c:d0:92:7f:70:ac:ac:e8:9e:1e:9a:5b:b5:68:23:be:b0:ba: e4:ec:6d:cc:c9:e0:e9:7e:54:c2:da:9d:d1:1d:f5:82:da:2b: ee:63:e5:2d:7d:43:76:a5:53:fc:34:9a:e2:cf:7d:28:8a:ea: a5:23:55:99:75:2e:1b:e4:9b:be:24:21:53:12:9f:33:20:79: 4a:09:81:c9:68:c5:8d:73:86:38:82:f2:7e:ab:96:54:d8:cb: 7e:12:48:ab:c7:37:c5:cb:b0:38:88:6e:ca:fb:95:fd:37:78: ca:b9:68:21:1d:c1:3d:63:c1:9e:dc:06:6d:99:72:c3:53:98: 3d:3a:1b:84:06:c7:65:e9:85:00:fe:7d:93:0b:14:c3:d7:55: a9:23:7c:11:f3:0c:d3:ed:97:7c:43:2f:5e:98:8d:6b:3f:45: 07:36:46:83:21:d2:8a:4b:1a:79:2c:17:15:d6:af:13:7e:e4: 9d:3f:ca:97:59:dc:50:c3:34:ac:67:99:22:b9:c6:66:65:46: 94:b8:61:d4:21:6f:ed:e1:d9:13:a4:33:02:ea:79:a0:78:c6: 60:80:a0:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRUI4RUYyQzZFMjYxNjk4OEE5OEZENUIxM0VFMkEz NkIyMjFDNDMwHhcNMjUwNzI1MDU1NjM3WhcNMjUwODAxMDU1NjM3WjAYMRYwFAYD VQQDEw02ODgzMWM5NS1jMTBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuyuS4Sv3TNiiGwV43SZJZbnjPy6fnLYpj31tNR4RLJpA2q+6gf1n7YGEgckl RjOWtsYEMKr6U+4/oeICuPjIIdbpwBarxK+TNH/7O60nLOBzS4RHy7cDEkirc+N3 /hgynUovzyWBjGFONDcGERGjsNqo6SlZaYbPnliNLzRYbJOuRu4p61oroA2rqPXc HxLTGSEj7i6RK2pTwMH8euYEEBMGlhETFSuo6PYJgY8gUgTrTxiUhEdkRP9fdjiI aqJiJhk1XwGUlmS41mzIXWMXkLeWoQWaVvAIampl777XoViwLv0d709tVaiIVODX sO/EBLVunRhK3mnoVn0hITJUaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEP4E+fT zRkaXi1LxxrKowxPUN00MB8GA1UdIwQYMBaAFJLrjvLG4mFpiKmP1bE+4qNrIhxD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9DNzNDNDU5ODJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdXVPOHNiaVlXbUlxWV9Wc1Q3aW8yc2lI RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t1dU84c2JpWVdtSXFZX1ZzVDdpbzJzaUhFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9DNzNDNDU5ODJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdXVPOHNiaVlX bUlxWV9Wc1Q3aW8yc2lIRU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/eSHkFnnKp8NUkT77U+lE7eK9Z3urMt793cA04BffujwnkoeM0JJ/ cKys6J4emlu1aCO+sLrk7G3MyeDpflTC2p3RHfWC2ivuY+UtfUN2pVP8NJriz30o iuqlI1WZdS4b5Ju+JCFTEp8zIHlKCYHJaMWNc4Y4gvJ+q5ZU2Mt+EkirxzfFy7A4 iG7K+5X9N3jKuWghHcE9Y8Ge3AZtmXLDU5g9OhuEBsdl6YUA/n2TCxTD11WpI3wR 8wzT7Zd8Qy9emI1rP0UHNkaDIdKKSxp5LBcV1q8TfuSdP8qXWdxQwzSsZ5kiucZm ZUaUuGHUIW/t4dkTpDMC6nmgeMZggKDa -----END CERTIFICATE-----Generated at Sat Jul 26 15:43:38 2025 by rpki-client