$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: BCeXksKWor1DNCQLPxG/Dd1SGS/d8Kd4A8fGiY3HTu8= Subject key identifier: 3B:F2:3C:37:C7:7D:34:5C:33:44:47:7E:7C:34:5E:6F:92:F8:E4:33 Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: BA Signing time: Sat 19 Jul 2025 06:09:15 +0000 Manifest this update: Sat 19 Jul 2025 06:09:15 +0000 Manifest next update: Sat 26 Jul 2025 06:09:15 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: TxURByk0UqPAajJaMXfIDQjH5IPI25nNOdWz8lFxEpI=) 2: 77BDF1A0497B11EFAE69D243C4F9AE02.roa (hash: EAkL+z2TTbEwn03dT2Ny9vtbrcbH4dnoXpbzZjpawbU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:09:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Jul 19 06:09:15 2025 GMT Not After : Jul 26 06:09:15 2025 GMT Subject: CN=687b368b-20c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:54:31:7b:ab:0a:76:40:1d:1c:09:61:4f:fe: d5:0a:06:f9:1a:cb:8e:61:72:d2:e1:15:03:d2:69: 67:05:e6:a1:50:b5:aa:3d:97:02:ae:26:32:2f:d7: b5:0c:69:8a:76:4c:cc:31:82:8e:61:b0:44:0b:35: e1:80:f0:3e:84:98:69:c2:4f:5e:f8:7c:1b:cc:36: 68:0d:3a:01:00:37:b6:4a:aa:fc:b4:ab:a3:fe:4e: bd:05:da:06:0d:35:c0:52:0e:55:fe:66:d4:49:26: 82:12:f2:bf:ff:a9:13:78:4a:a1:71:e4:9a:db:2b: 7a:a2:75:17:1b:e6:1a:93:0c:ff:2d:b2:77:03:5c: 98:31:ff:5f:1e:9b:6d:13:60:02:dd:0e:e0:65:26: 44:d3:60:42:69:ab:b9:c5:fd:76:e5:34:a8:f0:24: 7b:08:da:d9:a4:b4:85:f9:e1:2b:30:e8:f1:a0:11: 83:4a:27:c9:71:d7:e3:c9:3b:07:ea:47:ca:cd:e7: 88:7b:15:3a:47:e1:28:35:4a:e3:1c:88:c9:91:b9: a8:44:91:2b:95:61:d9:7d:da:68:62:5c:cf:fc:fc: f0:8e:8f:7a:6f:1c:91:6b:05:20:0b:35:ed:b8:c6: 3d:93:5b:fe:51:ee:d2:49:e7:30:74:c1:12:25:c0: 66:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F2:3C:37:C7:7D:34:5C:33:44:47:7E:7C:34:5E:6F:92:F8:E4:33 X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:b0:2b:58:6e:89:c8:5f:79:b4:19:de:db:2a:e2:96:74:58: 21:b7:50:69:5c:83:9a:66:0e:7b:a3:87:63:3b:f6:52:a6:10: 39:c2:d2:c0:e7:04:9f:4d:c7:1b:f2:d2:1b:59:d7:d7:c3:b4: 81:23:ea:c2:c4:f0:39:0b:13:93:72:b6:4e:e9:dc:d1:fd:6b: 44:c5:41:ce:b6:b2:df:3c:76:8c:8d:b3:34:eb:9d:5c:cc:ad: 62:69:2b:58:e2:fa:5c:6f:6b:e9:81:29:c3:ba:77:d7:08:bd: 3b:28:41:58:3d:e5:b8:01:c2:6f:0a:99:4d:e8:43:21:82:7a: 03:3c:52:b9:f4:02:5f:ca:26:c6:35:32:33:c1:1e:32:12:95: af:6c:f8:cf:1e:eb:2e:2b:1b:79:ff:46:40:09:7d:d2:d1:d4: 2a:c2:23:0a:6e:1c:41:e4:4d:62:df:00:e5:8f:05:ce:e8:6a: da:df:e5:a8:19:40:2c:da:9e:7f:b3:04:68:e9:a0:90:30:44: 1c:ad:27:09:c7:ec:aa:2e:c1:1b:ac:c7:f4:84:f0:82:62:f6: 4e:d8:fb:13:9b:06:cd:6b:2e:5f:cb:5b:c3:2c:30:df:a5:1d: 46:dd:92:dd:ba:88:fa:2a:75:dc:5f:8c:38:80:d7:b4:c6:6b: 7b:50:d0:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwNzE5MDYwOTE1WhcNMjUwNzI2MDYwOTE1WjAYMRYwFAYD VQQDEw02ODdiMzY4Yi0yMGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lQxe6sKdkAdHAlhT/7VCgb5GsuOYXLS4RUD0mlnBeahULWqPZcCriYyL9e1 DGmKdkzMMYKOYbBECzXhgPA+hJhpwk9e+HwbzDZoDToBADe2Sqr8tKuj/k69BdoG DTXAUg5V/mbUSSaCEvK//6kTeEqhceSa2yt6onUXG+Yakwz/LbJ3A1yYMf9fHptt E2AC3Q7gZSZE02BCaau5xf125TSo8CR7CNrZpLSF+eErMOjxoBGDSifJcdfjyTsH 6kfKzeeIexU6R+EoNUrjHIjJkbmoRJErlWHZfdpoYlzP/Pzwjo96bxyRawUgCzXt uMY9k1v+Ue7SSecwdMESJcBmFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvyPDfH fTRcM0RHfnw0Xm+S+OQzMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCTsCtYbonIX3m0Gd7bKuKWdFght1BpXIOaZg57o4djO/ZSphA5wtLA 5wSfTccb8tIbWdfXw7SBI+rCxPA5CxOTcrZO6dzR/WtExUHOtrLfPHaMjbM0651c zK1iaStY4vpcb2vpgSnDunfXCL07KEFYPeW4AcJvCplN6EMhgnoDPFK59AJfyibG NTIzwR4yEpWvbPjPHusuKxt5/0ZACX3S0dQqwiMKbhxB5E1i3wDljwXO6Gra3+Wo GUAs2p5/swRo6aCQMEQcrScJx+yqLsEbrMf0hPCCYvZO2PsTmwbNay5fy1vDLDDf pR1G3ZLduoj6KnXcX4w4gNe0xmt7UNDh -----END CERTIFICATE-----Generated at Sun Jul 20 03:44:30 2025 by rpki-client