$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: vqHS1kpLAVa/LJnh8eADLQ3s/7Fe1niB4muGCbVrimc= Subject key identifier: 77:FA:D5:84:D2:07:9D:17:CE:36:5E:91:92:74:37:43:5F:5F:B5:6C Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 101E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 100D Signing time: Sun 20 Jul 2025 17:28:22 +0000 Manifest this update: Sun 20 Jul 2025 17:28:22 +0000 Manifest next update: Sun 27 Jul 2025 17:28:22 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: pXYoT6DWpuzXaOUipZIeRYmBPn+2Yzl2Z40zRjIlTXs=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 17:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4126 (0x101e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Jul 20 17:28:22 2025 GMT Not After : Jul 27 17:28:22 2025 GMT Subject: CN=687d2736-b89b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ec:ff:ca:75:8b:8e:1d:f1:4b:08:19:47:e9: 99:49:0a:6e:70:a1:77:6e:38:7e:e7:f6:a3:86:6f: 3e:d5:05:cf:49:a9:52:39:21:01:ab:ea:3b:35:84: ad:93:eb:11:46:67:9b:35:60:85:71:de:c1:2c:94: 13:54:b0:58:97:cc:b4:72:a8:fe:4b:e1:81:f0:12: bd:69:d2:80:dd:b2:42:1d:e3:af:ca:8e:93:51:3b: b4:83:02:69:11:e7:d6:58:e0:44:41:a5:40:5c:e4: 8d:71:cd:06:86:c8:02:e8:d9:c0:ca:8e:5c:e0:44: bd:77:e9:6d:68:ad:32:fb:6c:41:9a:b2:18:f8:63: 19:b4:a5:a7:b7:2e:26:bb:e7:94:7e:fb:42:5f:3e: 66:ea:cd:8f:99:05:f7:94:04:de:ca:50:d6:04:89: 63:e3:62:33:b0:69:33:7c:b8:36:69:7e:66:a6:89: 4b:ab:2f:ec:9c:03:65:db:f1:13:e5:20:67:7e:f4: b6:aa:ce:e4:f4:fc:5d:2b:b2:bb:1f:af:ae:38:45: 7d:f9:b1:91:24:de:fd:c7:46:7e:cc:b7:fc:f5:ce: e2:0b:09:60:50:49:07:81:13:4a:38:d0:a8:dc:31: 92:09:a5:3f:3a:4b:4a:a5:07:96:11:e2:fb:5d:38: 73:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FA:D5:84:D2:07:9D:17:CE:36:5E:91:92:74:37:43:5F:5F:B5:6C X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:00:4f:7b:ef:2b:a7:03:f3:b0:c7:eb:ee:20:64:bd:95:97: ed:31:60:f8:91:7e:09:0b:06:0e:66:b1:eb:64:90:e3:dc:a3: f6:2f:71:79:b9:bd:07:79:2a:ad:05:c6:bb:8a:1f:0d:8e:4a: 83:32:0e:e0:2c:2d:2f:7a:88:86:ae:f0:31:4e:d3:98:12:e1: 80:8c:7b:4f:10:f6:c1:e5:d4:a8:5e:80:04:5f:eb:73:73:d2: 8b:5d:4f:34:8c:ff:36:d9:ab:a6:ed:f3:54:8e:74:26:fa:05: 72:b7:f4:09:6c:b1:88:f6:27:f1:50:cd:e1:66:70:f1:c5:3e: 87:02:6d:de:7d:e5:24:4d:78:f3:35:5e:0f:df:8e:11:35:01: 8b:00:4c:32:7f:aa:20:cd:b7:26:8c:4d:89:45:b2:cf:78:8a: c9:5a:3f:1d:d0:40:0c:a3:31:2b:03:bd:47:af:0f:bb:33:2b: a6:ab:e8:6d:a2:f8:52:87:50:46:8f:82:46:7f:d9:bf:c8:c9: 3d:a8:b0:c8:59:92:7c:34:17:a8:89:3e:88:e4:00:2a:cb:a5: 1e:90:55:a2:3b:0c:91:51:34:64:20:ba:d4:0b:00:d3:f0:ac: 79:40:a5:cc:1b:e5:50:da:95:9d:9b:24:db:b8:7b:cd:b5:83: ec:0e:99:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEB4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUwNzIwMTcyODIyWhcNMjUwNzI3MTcyODIyWjAYMRYwFAYD VQQDEw02ODdkMjczNi1iODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsuz/ynWLjh3xSwgZR+mZSQpucKF3bjh+5/ajhm8+1QXPSalSOSEBq+o7NYSt k+sRRmebNWCFcd7BLJQTVLBYl8y0cqj+S+GB8BK9adKA3bJCHeOvyo6TUTu0gwJp EefWWOBEQaVAXOSNcc0GhsgC6NnAyo5c4ES9d+ltaK0y+2xBmrIY+GMZtKWnty4m u+eUfvtCXz5m6s2PmQX3lATeylDWBIlj42IzsGkzfLg2aX5mpolLqy/snANl2/ET 5SBnfvS2qs7k9PxdK7K7H6+uOEV9+bGRJN79x0Z+zLf89c7iCwlgUEkHgRNKONCo 3DGSCaU/OktKpQeWEeL7XThzpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHf61YTS B50XzjZekZJ0N0NfX7VsMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNAE977yunA/Owx+vuIGS9lZftMWD4kX4JCwYOZrHrZJDj3KP2L3F5 ub0HeSqtBca7ih8NjkqDMg7gLC0veoiGrvAxTtOYEuGAjHtPEPbB5dSoXoAEX+tz c9KLXU80jP822aum7fNUjnQm+gVyt/QJbLGI9ifxUM3hZnDxxT6HAm3efeUkTXjz NV4P344RNQGLAEwyf6ogzbcmjE2JRbLPeIrJWj8d0EAMozErA71Hrw+7Myumq+ht ovhSh1BGj4JGf9m/yMk9qLDIWZJ8NBeoiT6I5AAqy6UekFWiOwyRUTRkILrUCwDT 8Kx5QKXMG+VQ2pWdmyTbuHvNtYPsDplk -----END CERTIFICATE-----Generated at Mon Jul 21 13:22:13 2025 by rpki-client