$ rpki-client -vvf rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft File: D-jKZIcKPWORHI0tZRuinKztDso.mft (raw, json) Hash identifier: FuSJLugTJ5+PrMsiZ4bBTtr5TYEQ/Ge7u0f0BJqIe+A= Subject key identifier: A9:3D:8A:BD:86:7F:37:16:C2:01:53:63:3B:99:29:0A:3D:30:09:82 Authority key identifier: 0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA Certificate issuer: /CN=A91B428B/serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Certificate serial: 09D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft Manifest number: 09D1 Signing time: Thu 24 Jul 2025 20:07:31 +0000 Manifest this update: Thu 24 Jul 2025 20:07:30 +0000 Manifest next update: Thu 31 Jul 2025 20:07:30 +0000 Files and hashes: 1: D-jKZIcKPWORHI0tZRuinKztDso.crl (hash: AEt7znzVCXk+8751BydpG/0eCzfUF8lkC1W+maiiEpU=) 2: 319DF660847811EA8EE07E81C4F9AE02.roa (hash: ZlFR2HTwg3fDW4lClQanT4TaI4rdoCBr8+QBrXHDB9w=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 20:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2520 (0x9d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B428B, serialNumber=0FE8CA64870A3D63911C8D2D651BA29CACED0ECA Validity Not Before: Jul 24 20:07:30 2025 GMT Not After : Jul 31 20:07:30 2025 GMT Subject: CN=68829282-ca96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a6:06:0e:90:5c:9a:3e:f2:63:79:56:69:50: 5d:c4:aa:53:dd:a0:02:09:2e:1c:b1:a4:9b:49:38: 19:8b:b5:c9:61:14:aa:cf:2c:ea:1f:d1:07:5e:45: 48:31:aa:ca:5d:4c:7c:61:bd:1a:09:ef:42:34:e7: e6:1e:35:8e:1b:ad:b1:94:11:1a:f2:b1:36:b4:dc: fe:fd:0b:d5:ca:12:99:24:80:b0:77:29:45:42:86: 31:3d:ba:4a:44:ee:cd:7f:93:83:34:40:2c:ba:62: b4:ab:65:d5:f2:0b:42:b7:aa:dd:bc:c2:e8:48:4b: 59:30:f6:ab:cd:db:0f:b2:57:cd:99:72:ef:ea:b3: f0:c0:45:2a:ef:b2:9a:d2:e3:8a:d9:43:2d:79:d5: dd:ec:55:91:8b:3e:da:9c:1f:d5:bc:54:61:93:4d: 3b:87:b1:93:86:6c:f1:c6:48:88:c6:d7:f9:0b:77: 8b:92:71:0a:d1:e7:b3:52:6c:58:60:8b:9f:23:b5: 03:15:a9:de:9e:3c:57:9c:81:8e:37:99:91:a5:07: 6d:dd:c5:f4:17:0e:60:57:02:5c:e3:f3:d5:2f:44: 45:0a:85:49:cb:57:49:43:50:97:60:79:6a:89:68: 65:14:11:76:9c:a0:cc:1d:ed:8c:0f:51:9e:25:b7: ed:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3D:8A:BD:86:7F:37:16:C2:01:53:63:3B:99:29:0A:3D:30:09:82 X509v3 Authority Key Identifier: keyid:0F:E8:CA:64:87:0A:3D:63:91:1C:8D:2D:65:1B:A2:9C:AC:ED:0E:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D-jKZIcKPWORHI0tZRuinKztDso.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B428B/3A0B6C0C847711EAB3B43680C4F9AE02/D-jKZIcKPWORHI0tZRuinKztDso.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:cf:27:0b:4d:4d:87:e7:66:3d:cd:1c:dd:db:de:fb:04:0c: 07:c0:90:99:9a:b7:ac:c4:c0:b1:87:63:b1:7f:d4:a8:0c:86: c4:c8:03:5d:cc:06:9d:ec:fe:a5:44:f2:bf:8f:5a:82:d6:33: 3f:94:ce:1d:53:af:27:cc:44:50:06:2c:39:6e:96:ae:15:27: 40:a3:64:3b:9b:c5:ed:52:49:fd:d8:ca:6f:1e:75:b9:e0:ef: a8:5c:ae:e2:d7:03:08:fd:75:1f:14:ec:6b:07:99:dd:bc:6b: 6b:dc:11:58:d9:a8:fd:50:47:79:f7:35:6e:46:dd:01:49:63: cd:12:b3:7d:7d:26:7f:7a:bc:97:8c:8d:98:13:42:f8:5f:27: 05:52:28:d6:99:e6:18:9e:4f:bc:46:c6:38:7c:c1:fb:84:47: ab:5f:b1:f5:7c:ef:87:97:e1:07:a2:92:e4:79:70:87:a8:6e: 2e:52:b5:fd:01:8c:08:db:61:9b:3a:5f:45:89:bf:c6:f8:a9: 94:3e:02:b6:5a:4e:aa:70:cd:17:c6:e7:1f:da:54:0a:79:2c: 09:84:53:8f:33:1f:ea:b8:6f:56:95:e6:20:41:d0:17:1b:07: d7:54:86:73:0a:15:4e:69:98:6b:d7:27:40:16:96:54:cd:e5: 36:82:31:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQyOEIxMTAvBgNVBAUTKDBGRThDQTY0ODcwQTNENjM5MTFDOEQyRDY1MUJBMjlD QUNFRDBFQ0EwHhcNMjUwNzI0MjAwNzMwWhcNMjUwNzMxMjAwNzMwWjAYMRYwFAYD VQQDEw02ODgyOTI4Mi1jYTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6YGDpBcmj7yY3lWaVBdxKpT3aACCS4csaSbSTgZi7XJYRSqzyzqH9EHXkVI MarKXUx8Yb0aCe9CNOfmHjWOG62xlBEa8rE2tNz+/QvVyhKZJICwdylFQoYxPbpK RO7Nf5ODNEAsumK0q2XV8gtCt6rdvMLoSEtZMParzdsPslfNmXLv6rPwwEUq77Ka 0uOK2UMtedXd7FWRiz7anB/VvFRhk007h7GThmzxxkiIxtf5C3eLknEK0eezUmxY YIufI7UDFanenjxXnIGON5mRpQdt3cX0Fw5gVwJc4/PVL0RFCoVJy1dJQ1CXYHlq iWhlFBF2nKDMHe2MD1GeJbftLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKk9ir2G fzcWwgFTYzuZKQo9MAmCMB8GA1UdIwQYMBaAFA/oymSHCj1jkRyNLWUbopys7Q7K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDI4Qi8zQTBCNkMwQzg0 NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BXT1JISTB0WlJ1aW5LenRE c28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0QtaktaSWNLUFdPUkhJMHRaUnVpbkt6dERzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDI4Qi8zQTBCNkMwQzg0NzcxMUVBQjNCNDM2ODBDNEY5QUUwMi9ELWpLWkljS1BX T1JISTB0WlJ1aW5LenREc28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChzycLTU2H52Y9zRzd2977BAwHwJCZmresxMCxh2Oxf9SoDIbEyANd zAad7P6lRPK/j1qC1jM/lM4dU68nzERQBiw5bpauFSdAo2Q7m8XtUkn92MpvHnW5 4O+oXK7i1wMI/XUfFOxrB5ndvGtr3BFY2aj9UEd59zVuRt0BSWPNErN9fSZ/eryX jI2YE0L4XycFUijWmeYYnk+8RsY4fMH7hEerX7H1fO+Hl+EHopLkeXCHqG4uUrX9 AYwI22GbOl9Fib/G+KmUPgK2Wk6qcM0Xxucf2lQKeSwJhFOPMx/quG9WleYgQdAX GwfXVIZzChVOaZhr1ydAFpZUzeU2gjG3 -----END CERTIFICATE-----Generated at Fri Jul 25 09:33:16 2025 by rpki-client