$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft File: kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft (raw, json) Hash identifier: L/sy9yD6C0C5KT++t9pkT4oaU3phdAfrPGo0RW7fdNs= Subject key identifier: 79:0E:95:D9:C6:12:0B:26:ED:86:AA:19:3A:A1:69:4F:D6:02:BB:EC Authority key identifier: 91:A5:E6:E5:76:C3:15:C4:31:9E:EF:9F:DA:32:87:AD:20:C3:80:39 Certificate issuer: /CN=A91B6462/serialNumber=91A5E6E576C315C4319EEF9FDA3287AD20C38039 Certificate serial: 0C20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kaXm5XbDFcQxnu-f2jKHrSDDgDk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft Manifest number: 0C0D Signing time: Sat 26 Jul 2025 18:52:28 +0000 Manifest this update: Sat 26 Jul 2025 18:52:28 +0000 Manifest next update: Sat 02 Aug 2025 18:52:28 +0000 Files and hashes: 1: kaXm5XbDFcQxnu-f2jKHrSDDgDk.crl (hash: qMqKKxrHsEXE/T+p1dbQqWXQt53abRYkdV4V3DL30Nc=) 2: EA531ACE61C211EF89F25E2CC4F9AE02.roa (hash: wvS2IKCsAphgy9VmVy8jmzdrhXrxZNTENgiqGBEyqqY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.crl rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kaXm5XbDFcQxnu-f2jKHrSDDgDk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 02 Aug 2025 18:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6462, serialNumber=91A5E6E576C315C4319EEF9FDA3287AD20C38039 Validity Not Before: Jul 26 18:52:28 2025 GMT Not After : Aug 2 18:52:28 2025 GMT Subject: CN=688523ec-1030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9d:24:86:bf:ec:f5:c0:6a:08:53:42:49:ed: 0f:79:7e:7c:d1:63:2b:ad:90:d9:59:ab:d1:49:a1: 9a:a7:dd:b5:c5:82:0a:6d:00:d1:9f:97:23:0b:a5: 59:99:3a:d4:56:ae:10:cf:da:f7:fe:0d:f7:e8:5b: 01:3f:a5:32:b6:3d:26:7c:29:56:17:c7:1b:85:7c: d5:82:3a:6c:c3:0a:52:be:4b:74:3a:af:19:09:82: 39:b4:00:9e:db:ed:17:ba:dc:bf:a6:7e:a2:ab:46: eb:e2:f8:83:12:28:36:58:2d:96:c0:fe:0a:14:ba: f0:90:70:d3:0f:59:25:7f:11:e2:e8:3f:0b:ed:06: 1b:b2:9b:a2:19:31:6e:33:2e:ca:2a:19:7c:fd:6c: 10:ef:47:f2:e0:28:31:e6:a0:fe:c4:15:8a:aa:17: 59:f6:65:39:8d:1a:df:e7:61:61:fc:7d:35:7e:66: fc:5d:cb:5c:ab:12:75:46:43:57:60:61:7c:7f:9a: 01:5f:dd:91:fc:1e:13:97:a9:7a:2d:07:a4:7b:ef: 2a:57:7e:51:5b:19:56:81:ed:fb:69:8a:30:ff:7e: fa:18:39:97:e7:ce:d5:c4:49:22:f1:80:4b:0d:ef: d4:71:56:74:49:40:08:4a:ca:5d:fd:58:2e:dc:38: 05:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:0E:95:D9:C6:12:0B:26:ED:86:AA:19:3A:A1:69:4F:D6:02:BB:EC X509v3 Authority Key Identifier: keyid:91:A5:E6:E5:76:C3:15:C4:31:9E:EF:9F:DA:32:87:AD:20:C3:80:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kaXm5XbDFcQxnu-f2jKHrSDDgDk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6462/DAF435E0184311EAB0AF201DC4F9AE02/kaXm5XbDFcQxnu-f2jKHrSDDgDk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:2a:36:b3:5b:1e:29:b6:a3:10:46:a0:72:b1:cb:02:d3:7f: c0:52:9a:ea:d1:6e:9e:45:c3:2e:c8:b0:de:eb:54:06:4e:6c: 8a:1a:be:c9:cb:ea:d7:59:a4:99:31:33:0c:49:3c:a6:85:c4: 91:80:a2:af:0a:7a:9a:ac:49:a5:fc:ea:8a:01:b6:93:b9:a6: 19:bc:f0:ca:c9:87:f3:3b:81:5f:ab:68:df:34:84:10:6d:ec: ae:20:78:d8:5a:a8:0d:2c:f4:10:6e:f5:6a:c9:3b:82:0e:0a: 2b:7b:5a:8b:53:2d:e4:bf:9a:79:15:24:d0:6c:66:75:d0:73: 85:5c:e9:4c:e0:62:1e:1c:84:47:f2:ca:c0:f9:60:c5:f2:23: fc:af:2f:61:7a:e7:7f:5c:ea:10:80:28:fb:ad:2a:40:4f:31: 83:2d:ea:0c:ac:1f:6f:69:f9:6b:3c:71:08:5e:54:38:07:5f: 34:92:c7:50:15:cd:56:c1:34:d4:f6:a5:53:72:be:03:7f:39: 81:18:4a:f9:1e:b3:5a:0c:eb:02:6d:7f:f7:1f:7c:07:dc:7f: 15:eb:3b:6e:0b:d4:bb:8e:ca:e9:b6:06:51:63:cc:d4:af:d5: 95:e0:f4:fd:7e:fa:33:50:c7:cd:95:63:8e:f9:1f:8f:5a:01: 49:6a:c1:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY0NjIxMTAvBgNVBAUTKDkxQTVFNkU1NzZDMzE1QzQzMTlFRUY5RkRBMzI4N0FE MjBDMzgwMzkwHhcNMjUwNzI2MTg1MjI4WhcNMjUwODAyMTg1MjI4WjAYMRYwFAYD VQQDEw02ODg1MjNlYy0xMDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJ0khr/s9cBqCFNCSe0PeX580WMrrZDZWavRSaGap921xYIKbQDRn5cjC6VZ mTrUVq4Qz9r3/g336FsBP6Uytj0mfClWF8cbhXzVgjpswwpSvkt0Oq8ZCYI5tACe 2+0Xuty/pn6iq0br4viDEig2WC2WwP4KFLrwkHDTD1klfxHi6D8L7QYbspuiGTFu My7KKhl8/WwQ70fy4Cgx5qD+xBWKqhdZ9mU5jRrf52Fh/H01fmb8XctcqxJ1RkNX YGF8f5oBX92R/B4Tl6l6LQeke+8qV35RWxlWge37aYow/376GDmX587VxEki8YBL De/UcVZ0SUAISspd/Vgu3DgFUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHkOldnG Egsm7YaqGTqhaU/WArvsMB8GA1UdIwQYMBaAFJGl5uV2wxXEMZ7vn9oyh60gw4A5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjQ2Mi9EQUY0MzVFMDE4 NDMxMUVBQjBBRjIwMURDNEY5QUUwMi9rYVhtNVhiREZjUXhudS1mMmpLSHJTRERn RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2thWG01WGJERmNReG51LWYyaktIclNERGdEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NjQ2Mi9EQUY0MzVFMDE4NDMxMUVBQjBBRjIwMURDNEY5QUUwMi9rYVhtNVhiREZj UXhudS1mMmpLSHJTRERnRGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOKjazWx4ptqMQRqByscsC03/AUprq0W6eRcMuyLDe61QGTmyKGr7J y+rXWaSZMTMMSTymhcSRgKKvCnqarEml/OqKAbaTuaYZvPDKyYfzO4Ffq2jfNIQQ beyuIHjYWqgNLPQQbvVqyTuCDgore1qLUy3kv5p5FSTQbGZ10HOFXOlM4GIeHIRH 8srA+WDF8iP8ry9heud/XOoQgCj7rSpATzGDLeoMrB9vaflrPHEIXlQ4B180ksdQ Fc1WwTTU9qVTcr4DfzmBGEr5HrNaDOsCbX/3H3wH3H8V6ztuC9S7jsrptgZRY8zU r9WV4PT9fvozUMfNlWOO+R+PWgFJasHa -----END CERTIFICATE-----Generated at Sun Jul 27 02:27:28 2025 by rpki-client