$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: UVjF5lQWH5Q+raWeeOxI5TIIqw6k60oPPC2R8/TlH0U= Subject key identifier: FD:4D:80:8E:8F:91:57:6C:2B:86:90:B9:11:CE:F7:19:41:C0:AB:A7 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 0119 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 0105 Signing time: Mon 21 Jul 2025 05:28:06 +0000 Manifest this update: Mon 21 Jul 2025 05:28:06 +0000 Manifest next update: Mon 28 Jul 2025 05:28:05 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: TlO1y6Wm8dOnSRj7sjsSKK2DLcPx+/WFeQ4J2PrcySo=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=) 3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:28:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 281 (0x119) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Jul 21 05:28:06 2025 GMT Not After : Jul 28 05:28:05 2025 GMT Subject: CN=687dcfe6-f053 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:71:bc:2a:bd:45:1b:62:38:d7:46:c3:5e:9a: 81:ab:cf:2c:96:29:5c:e0:9f:fa:df:97:a9:f4:22: 40:23:1b:82:c9:70:f1:4a:ef:a6:05:82:25:cf:75: 46:a1:94:54:cc:53:37:b9:c5:8c:3a:14:5f:96:71: 8a:01:2c:8b:43:ef:db:50:53:b4:8b:a4:e0:ef:97: eb:47:56:d7:10:4d:fa:29:20:49:06:6b:e0:a6:7a: bd:84:c2:49:01:15:fc:79:32:7c:e2:1e:ca:e0:cf: 03:11:bd:6d:0a:06:6d:bd:ad:9a:b0:f9:17:81:f5: c3:a5:c5:76:a0:29:d2:78:21:8d:59:a5:5d:7b:f1: 01:03:25:0d:8f:56:82:04:d5:4e:71:f5:c9:41:83: ed:f8:cf:a5:d6:2c:04:b2:52:9f:78:5b:73:19:4c: 35:b2:15:2e:be:f4:98:7f:3a:74:55:67:21:90:d5: 17:9a:26:b2:61:37:7e:0a:09:46:c7:65:3f:17:2c: de:16:ea:eb:64:f0:3b:0b:6a:4d:66:46:c4:22:46: 71:aa:09:ad:23:6c:cb:e6:7a:ed:fe:da:78:4a:ca: 6b:34:a3:6f:df:fc:90:3e:f2:d4:e1:c3:a5:8c:3e: 66:f2:4a:de:62:52:3c:50:48:a8:22:0e:e7:d4:0a: c4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:4D:80:8E:8F:91:57:6C:2B:86:90:B9:11:CE:F7:19:41:C0:AB:A7 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:64:81:2f:14:53:66:52:3e:fe:d5:3b:a9:dd:ec:7e:97:ae: 3f:28:b2:44:60:52:e7:96:37:27:18:ac:a1:89:67:db:c5:6e: 3c:b9:7a:87:52:d9:fe:9f:b4:f3:d7:98:54:35:32:7e:1f:be: 85:f4:3d:c6:0e:ef:98:d5:ef:73:11:ef:7d:44:d8:5b:6c:fc: 43:a0:1c:90:2f:16:1d:86:b3:11:40:31:ba:23:c9:94:de:37: c1:57:c9:84:9b:64:21:03:fa:86:d3:f5:e8:d5:b5:f2:8a:b4: 0c:88:31:83:de:30:4a:d0:1d:9b:1c:86:3e:cd:2b:19:13:0d: 4e:e1:94:7f:b2:4f:58:bd:1b:4b:09:d6:e9:b3:f3:cf:0c:ee: 59:45:93:3b:3b:f6:77:55:18:0b:79:a1:be:68:4a:48:eb:c3: 83:7d:24:fa:a6:68:c1:1f:52:0f:a4:59:c1:f7:8e:43:5a:17: 00:3b:30:d5:05:41:e1:8f:01:fd:45:e6:1b:0d:bf:d8:5f:86: f0:29:02:36:94:55:b8:79:2e:05:dd:f3:d2:d3:0b:68:12:05: e1:06:0b:03:0f:9f:b6:43:a5:5f:08:92:5a:cb:1c:69:1c:ce: ae:4b:44:9e:70:23:d8:05:b1:74:a2:d9:d9:1e:6a:f6:43:a6: 33:f3:df:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUwNzIxMDUyODA2WhcNMjUwNzI4MDUyODA1WjAYMRYwFAYD VQQDEw02ODdkY2ZlNi1mMDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXG8Kr1FG2I410bDXpqBq88slilc4J/635ep9CJAIxuCyXDxSu+mBYIlz3VG oZRUzFM3ucWMOhRflnGKASyLQ+/bUFO0i6Tg75frR1bXEE36KSBJBmvgpnq9hMJJ ARX8eTJ84h7K4M8DEb1tCgZtva2asPkXgfXDpcV2oCnSeCGNWaVde/EBAyUNj1aC BNVOcfXJQYPt+M+l1iwEslKfeFtzGUw1shUuvvSYfzp0VWchkNUXmiayYTd+CglG x2U/FyzeFurrZPA7C2pNZkbEIkZxqgmtI2zL5nrt/tp4SsprNKNv3/yQPvLU4cOl jD5m8kreYlI8UEioIg7n1ArE5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1NgI6P kVdsK4aQuRHO9xlBwKunMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCZIEvFFNmUj7+1Tup3ex+l64/KLJEYFLnljcnGKyhiWfbxW48uXqH Utn+n7Tz15hUNTJ+H76F9D3GDu+Y1e9zEe99RNhbbPxDoByQLxYdhrMRQDG6I8mU 3jfBV8mEm2QhA/qG0/Xo1bXyirQMiDGD3jBK0B2bHIY+zSsZEw1O4ZR/sk9YvRtL Cdbps/PPDO5ZRZM7O/Z3VRgLeaG+aEpI68ODfST6pmjBH1IPpFnB945DWhcAOzDV BUHhjwH9ReYbDb/YX4bwKQI2lFW4eS4F3fPS0wtoEgXhBgsDD5+2Q6VfCJJayxxp HM6uS0SecCPYBbF0otnZHmr2Q6Yz89+L -----END CERTIFICATE-----Generated at Tue Jul 22 04:49:42 2025 by rpki-client