$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: fq8MvOVddMibEUOXox/WtCsR/c4BjI2nrx5RbbeEUkY= Subject key identifier: EE:5D:20:62:78:FF:95:D9:78:F7:D3:60:99:A6:C6:FD:BC:BA:90:34 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 0381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 0377 Signing time: Fri 25 Jul 2025 01:17:36 +0000 Manifest this update: Fri 25 Jul 2025 01:17:36 +0000 Manifest next update: Fri 01 Aug 2025 01:17:36 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: bCNkOervzCFyZKqQR+bdwvxvr6JOATX3o2zcW64Vbgw=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 01:17:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 897 (0x381) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Jul 25 01:17:36 2025 GMT Not After : Aug 1 01:17:36 2025 GMT Subject: CN=6882db30-839a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:dd:4c:d7:ce:6d:0f:ac:a0:c8:71:5d:3f: f1:cd:5f:79:bd:04:f8:21:03:da:6b:8a:24:d0:96: ee:47:82:0a:52:8c:71:dc:72:c1:1b:c2:ca:d1:63: 76:2b:79:d6:ad:5a:6b:81:37:36:ee:4b:ba:07:83: 34:6c:b1:e5:e8:42:05:17:29:48:59:e9:19:73:6b: 10:64:b8:20:86:d2:b3:c5:5e:9b:f0:b7:e8:4c:76: a7:52:91:f2:37:1c:6a:c8:ce:8e:ee:3f:31:b4:7d: ca:37:8d:2c:42:0e:9e:41:7f:f3:f2:f3:1e:78:4c: eb:8e:40:ba:42:3e:ae:8a:2d:64:e6:69:55:56:e8: 11:e2:5f:7c:96:6f:4d:1f:df:2a:32:c7:32:a8:b3: 9d:c1:b2:af:ab:3d:30:0b:9d:66:00:fe:a1:9c:df: 8f:b8:54:d2:ae:32:d1:89:e7:c8:d7:19:77:de:22: 48:c4:72:dc:80:8d:b0:d5:6f:11:d8:da:dc:eb:fb: 9a:de:b4:d2:10:8e:a9:7f:62:1d:c7:25:93:d7:e8: ae:01:34:d3:0d:3b:70:b4:a2:4a:3b:1b:60:c9:6b: ae:8b:dc:37:ff:dc:95:c3:cc:d8:2b:b2:28:a7:99: 63:b1:63:b5:11:25:53:5c:8d:f4:58:6a:c8:04:ef: 35:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:5D:20:62:78:FF:95:D9:78:F7:D3:60:99:A6:C6:FD:BC:BA:90:34 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:13:3d:91:9a:af:20:e7:3d:81:05:ac:42:0b:31:32:bf:c4: 8a:21:7a:ca:45:c8:73:2d:6c:12:5a:64:d5:c1:bb:5d:8c:c7: b0:68:b3:87:2c:5c:a0:7a:f5:78:3c:09:62:68:97:8e:4f:ec: 78:5d:8e:43:3a:2a:58:33:c5:dc:14:58:f2:a8:99:a2:04:92: 89:db:22:30:16:d4:83:fe:66:a0:4a:c4:84:e0:b8:c8:86:2e: 81:73:70:d8:ca:ce:c7:91:db:1c:14:b6:1c:05:01:de:49:20: d1:41:e2:22:7e:49:5e:1a:ed:4d:c9:4a:d2:c0:7e:c5:2b:56: 12:fb:5b:d9:95:5f:0e:3f:41:e5:fd:eb:1a:46:6c:ee:f6:61: 32:98:35:16:32:67:bc:be:27:6b:14:7b:d9:d5:18:85:15:d2: 6c:21:db:dd:18:b0:45:6c:93:dc:93:b9:3d:09:8d:98:54:ca: 0d:31:c6:57:67:f8:14:cb:af:cc:f3:f2:42:42:ae:38:0f:32: 39:45:ec:8e:2d:90:8a:e8:1a:a3:be:51:6a:0b:c7:96:e6:08: b3:31:77:0f:14:14:04:98:49:dd:ee:2e:7e:b3:9f:2b:00:0a: ec:45:8d:71:73:b5:c0:85:01:25:c9:13:36:69:8a:d6:b3:8e: aa:7a:93:c1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA4EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUwNzI1MDExNzM2WhcNMjUwODAxMDExNzM2WjAYMRYwFAYD VQQDEw02ODgyZGIzMC04MzlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOvdTNfObQ+soMhxXT/xzV95vQT4IQPaa4ok0JbuR4IKUoxx3HLBG8LK0WN2 K3nWrVprgTc27ku6B4M0bLHl6EIFFylIWekZc2sQZLgghtKzxV6b8LfoTHanUpHy NxxqyM6O7j8xtH3KN40sQg6eQX/z8vMeeEzrjkC6Qj6uii1k5mlVVugR4l98lm9N H98qMscyqLOdwbKvqz0wC51mAP6hnN+PuFTSrjLRiefI1xl33iJIxHLcgI2w1W8R 2Nrc6/ua3rTSEI6pf2IdxyWT1+iuATTTDTtwtKJKOxtgyWuui9w3/9yVw8zYK7Io p5ljsWO1ESVTXI30WGrIBO81RwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO5dIGJ4 /5XZePfTYJmmxv28upA0MB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjEz2Rmq8g5z2BBaxCCzEyv8SKIXrKRchzLWwSWmTVwbtdjMewaLOH LFygevV4PAliaJeOT+x4XY5DOipYM8XcFFjyqJmiBJKJ2yIwFtSD/magSsSE4LjI hi6Bc3DYys7HkdscFLYcBQHeSSDRQeIifkleGu1NyUrSwH7FK1YS+1vZlV8OP0Hl /esaRmzu9mEymDUWMme8vidrFHvZ1RiFFdJsIdvdGLBFbJPck7k9CY2YVMoNMcZX Z/gUy6/M8/JCQq44DzI5ReyOLZCK6BqjvlFqC8eW5gizMXcPFBQEmEnd7i5+s58r AArsRY1xc7XAhQElyRM2aYrWs46qepPB -----END CERTIFICATE-----Generated at Sat Jul 26 12:08:13 2025 by rpki-client