$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: HIwMFnib/jy4/BJKvzx9MBZEuUKS9bAKcnTgLYULhBs= Subject key identifier: 97:E0:6A:F8:D4:33:2D:E6:0F:56:D7:6B:B3:F4:57:10:08:B5:27:1D Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 64 Signing time: Sat 19 Jul 2025 07:15:33 +0000 Manifest this update: Sat 19 Jul 2025 07:15:33 +0000 Manifest next update: Sat 26 Jul 2025 07:15:33 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: N7AcrBreT1qWL8MMldfbQncbnrbtlfXOyXipSqTHxhI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:15:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 100 (0x64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Jul 19 07:15:33 2025 GMT Not After : Jul 26 07:15:33 2025 GMT Subject: CN=687b4615-b768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:21:db:96:c7:ee:9d:f6:c0:89:04:16:af:3a: 1e:4b:80:32:53:e9:e5:1b:ed:f3:c5:b7:43:0b:f8: 4c:3a:79:39:2c:33:83:f8:1c:04:29:15:d1:07:22: 01:0f:e8:8e:4d:5e:3b:2c:8f:b5:da:67:c8:04:27: e9:c6:81:a5:db:41:54:5d:0d:d9:a2:a9:36:04:09: 02:76:0a:db:26:5c:b4:dc:33:9d:9c:d2:54:62:97: ff:67:35:a4:91:df:31:19:88:45:01:57:68:cf:52: 19:0c:17:79:cc:77:4a:62:17:2f:88:2a:4b:91:3d: b9:7c:6d:08:df:4a:de:ae:02:8b:8e:c1:ad:dc:85: 50:f7:2a:b2:0f:30:f2:d3:f7:2f:1d:4b:61:d7:09: 38:36:f4:55:ff:20:dc:63:70:ae:4d:aa:e0:42:f1: 0a:77:19:3b:4c:e6:8c:d7:e2:3d:e4:1c:4b:0f:8a: 8d:64:ca:f7:fc:6b:56:3e:35:53:03:ce:3d:ab:28: 68:84:b5:c7:7f:0c:d7:1d:30:c9:20:93:16:ab:b5: 6b:a5:4a:c2:8e:6b:ae:d9:cf:62:51:4d:51:83:91: 73:35:2b:85:68:17:b8:14:1f:d8:2f:54:3f:ec:19: 6d:56:be:90:04:26:12:17:5b:05:60:44:e5:a9:23: a5:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E0:6A:F8:D4:33:2D:E6:0F:56:D7:6B:B3:F4:57:10:08:B5:27:1D X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:e4:57:6e:cf:96:e5:fd:12:52:c3:3c:6c:71:5e:12:57:a9: 6e:5d:52:db:1a:7c:80:cd:30:49:da:71:64:58:9d:17:42:83: 2f:20:fc:6f:a4:2a:35:78:56:04:fc:73:04:9b:29:60:61:9b: e1:63:c5:58:8f:0c:84:6d:1b:96:02:59:e6:b9:0e:db:bf:86: 8e:9d:58:df:6b:88:54:bd:93:21:38:4c:da:f0:96:77:30:0d: 3f:9e:9e:68:5b:20:99:2d:fe:dd:dc:02:05:c4:65:33:12:3e: 1a:84:d2:77:24:f7:d6:8d:3f:70:e2:2d:aa:c5:f9:42:3c:70: 4b:4c:a0:92:1c:aa:4a:bc:71:bb:9d:7b:7e:b5:40:dc:43:3f: 07:50:a8:7a:f2:4e:f5:77:33:58:0a:6c:e2:3c:0b:7d:7f:ba: b7:49:9f:94:ad:3e:51:bd:2b:7b:7c:c9:04:6f:a3:17:03:e0: 13:50:82:81:43:bd:d0:5e:c9:a0:12:ed:11:c0:4a:de:31:7a: 96:13:75:b1:70:ff:45:28:85:aa:84:7b:61:6d:c2:ec:9d:a6: 7c:b1:6e:3f:ef:a8:84:ae:2c:05:cc:d3:e6:53:39:50:22:2f: 1f:b0:48:38:95:fc:41:3b:4f:c0:1b:e1:14:06:c1:b6:d6:89: 52:ad:79:c5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NTM3NzExMC8GA1UEBRMoOTA4MERCNTBGRjBCNzQzRkZBMzJCNzlEMERENUMzMTkw MjFENkUyNDAeFw0yNTA3MTkwNzE1MzNaFw0yNTA3MjYwNzE1MzNaMBgxFjAUBgNV BAMTDTY4N2I0NjE1LWI3NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnIduWx+6d9sCJBBavOh5LgDJT6eUb7fPFt0ML+Ew6eTksM4P4HAQpFdEHIgEP 6I5NXjssj7XaZ8gEJ+nGgaXbQVRdDdmiqTYECQJ2CtsmXLTcM52c0lRil/9nNaSR 3zEZiEUBV2jPUhkMF3nMd0piFy+IKkuRPbl8bQjfSt6uAouOwa3chVD3KrIPMPLT 9y8dS2HXCTg29FX/INxjcK5NquBC8Qp3GTtM5ozX4j3kHEsPio1kyvf8a1Y+NVMD zj2rKGiEtcd/DNcdMMkgkxartWulSsKOa67Zz2JRTVGDkXM1K4VoF7gUH9gvVD/s GW1WvpAEJhIXWwVgROWpI6VFAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUl+Bq+NQz LeYPVtdrs/RXEAi1Jx0wHwYDVR0jBBgwFoAUkIDbUP8LdD/6MredDdXDGQIdbiQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1Mzc3L0YzQzQ0QTc4Q0M1 ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJp US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0lEYlVQOExkRF82TXJlZERkWERHUUlkYmlRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI1 Mzc3L0YzQzQ0QTc4Q0M1ODExRUY5OTk4NUQ4NkM0RjlBRTAyL2tJRGJVUDhMZERf Nk1yZWREZFhER1FJZGJpUS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMnkV27PluX9ElLDPGxxXhJXqW5dUtsafIDNMEnacWRYnRdCgy8g/G+k KjV4VgT8cwSbKWBhm+FjxViPDIRtG5YCWea5Dtu/ho6dWN9riFS9kyE4TNrwlncw DT+enmhbIJkt/t3cAgXEZTMSPhqE0nck99aNP3DiLarF+UI8cEtMoJIcqkq8cbud e361QNxDPwdQqHryTvV3M1gKbOI8C31/urdJn5StPlG9K3t8yQRvoxcD4BNQgoFD vdBeyaAS7RHASt4xepYTdbFw/0UohaqEe2Ftwuydpnyxbj/vqISuLAXM0+ZTOVAi Lx+wSDiV/EE7T8Ab4RQGwbbWiVKtecU= -----END CERTIFICATE-----Generated at Mon Jul 21 06:26:12 2025 by rpki-client