$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: SWXbF/DIv92XFmWmLigz6nPLDvogeeUPV8ltwmpXP8E= Subject key identifier: B2:8A:AE:D9:2E:EB:D5:26:66:B8:18:41:3D:03:E1:54:DE:7E:12:3E Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 011A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 0106 Signing time: Wed 23 Jul 2025 05:36:29 +0000 Manifest this update: Wed 23 Jul 2025 05:36:28 +0000 Manifest next update: Wed 30 Jul 2025 05:36:28 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: O7wEtL5RpvNvm+hMn3m/T9xcyK1tc6aDdIpyR176MJE=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=) 3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 05:36:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Jul 23 05:36:28 2025 GMT Not After : Jul 30 05:36:28 2025 GMT Subject: CN=688074dd-a1a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ac:1a:6c:66:97:a2:6a:99:81:98:8f:f5:bb: 80:6e:4f:03:85:7e:1c:ad:a2:22:07:ea:50:67:22: 0e:07:22:25:f9:16:18:11:38:7a:01:58:01:6b:7d: ce:9c:df:5f:79:3b:9e:0e:db:a9:ef:c3:5e:da:9e: 87:e9:6a:ed:31:91:58:3e:0b:7e:f0:85:06:f7:de: 30:ff:34:c5:bd:06:1a:43:e5:7a:a7:06:15:65:e2: d0:40:cc:9f:d3:85:33:90:f3:e8:70:eb:ea:ab:50: 90:7f:ef:6b:31:e9:4b:17:e4:79:68:c3:5c:c6:82: 91:33:c5:1f:95:d3:38:8e:07:23:36:b1:ff:87:a2: 4c:bd:4e:1a:f5:e0:0c:8a:30:9d:86:cb:d1:a9:6b: 3a:d3:c8:e6:0b:78:58:de:5d:64:a9:74:f5:2a:4e: ae:b6:9c:e7:42:9e:19:0f:57:92:c7:dd:b2:1f:37: a6:a0:85:39:04:5a:7c:29:d5:1a:c7:8a:c4:26:bf: a9:8b:98:b5:a5:9c:59:d2:f1:68:aa:2d:94:e8:77: 4a:45:60:df:87:18:54:ba:1a:7e:d6:b8:17:9d:b9: d9:5d:0e:82:18:31:6a:ca:04:9c:78:e6:7f:89:6d: 25:ab:1f:07:fd:68:93:f6:94:a3:9b:5e:41:fa:c5: db:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:8A:AE:D9:2E:EB:D5:26:66:B8:18:41:3D:03:E1:54:DE:7E:12:3E X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:4b:36:8d:43:2e:66:33:92:24:fd:1a:71:b0:e6:a8:c0:4e: 62:bb:8d:25:4a:6f:24:c7:b2:0f:fc:28:28:5b:8d:35:f6:17: 58:9d:cf:c3:42:a0:fc:c8:52:89:63:33:46:ab:d6:f6:2a:eb: da:a3:17:b6:8a:be:a2:d1:79:67:eb:c2:8e:ab:03:33:3c:7f: cb:54:2a:2e:af:bf:aa:24:ca:86:04:d7:98:6d:94:eb:ee:2c: 46:23:85:ee:23:0f:0c:05:25:48:1f:88:7d:e0:85:d5:89:fa: 72:96:ef:88:a3:79:5d:d6:8d:e5:69:3f:6e:14:8c:e6:1e:fe: 97:7f:27:d8:ab:77:42:98:e9:ed:b0:91:71:c9:f4:47:95:5e: 45:7e:77:40:1f:53:6b:95:a4:5b:a6:0d:fb:c6:3d:e5:20:89: af:6a:7e:30:06:32:28:2b:56:50:55:a4:93:08:6e:43:91:98: 5f:a1:5e:36:a7:29:83:2f:79:0b:5c:e1:cc:cf:e0:b4:a4:42: ca:21:3e:04:d5:9f:2d:58:a3:37:4b:a5:64:11:d0:4f:d5:ea: 09:f9:61:1e:f4:84:1a:20:bf:56:e1:42:68:2c:76:09:ea:f7: 49:95:c2:17:4a:b3:cd:24:0f:60:08:c0:aa:5d:98:31:8a:04: 9e:a1:6d:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUwNzIzMDUzNjI4WhcNMjUwNzMwMDUzNjI4WjAYMRYwFAYD VQQDEw02ODgwNzRkZC1hMWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqwabGaXomqZgZiP9buAbk8DhX4craIiB+pQZyIOByIl+RYYETh6AVgBa33O nN9feTueDtup78Ne2p6H6WrtMZFYPgt+8IUG994w/zTFvQYaQ+V6pwYVZeLQQMyf 04UzkPPocOvqq1CQf+9rMelLF+R5aMNcxoKRM8UfldM4jgcjNrH/h6JMvU4a9eAM ijCdhsvRqWs608jmC3hY3l1kqXT1Kk6utpznQp4ZD1eSx92yHzemoIU5BFp8KdUa x4rEJr+pi5i1pZxZ0vFoqi2U6HdKRWDfhxhUuhp+1rgXnbnZXQ6CGDFqygSceOZ/ iW0lqx8H/WiT9pSjm15B+sXbwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLKKrtku 69UmZrgYQT0D4VTefhI+MB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaSzaNQy5mM5Ik/RpxsOaowE5iu40lSm8kx7IP/CgoW4019hdYnc/D QqD8yFKJYzNGq9b2Kuvaoxe2ir6i0Xln68KOqwMzPH/LVCour7+qJMqGBNeYbZTr 7ixGI4XuIw8MBSVIH4h94IXVifpylu+Io3ld1o3laT9uFIzmHv6XfyfYq3dCmOnt sJFxyfRHlV5FfndAH1NrlaRbpg37xj3lIImvan4wBjIoK1ZQVaSTCG5DkZhfoV42 pymDL3kLXOHMz+C0pELKIT4E1Z8tWKM3S6VkEdBP1eoJ+WEe9IQaIL9W4UJoLHYJ 6vdJlcIXSrPNJA9gCMCqXZgxigSeoW02 -----END CERTIFICATE-----Generated at Thu Jul 24 03:52:11 2025 by rpki-client