$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft File: KMruhJZWnFc8PlsYkMWhs0z8jjA.mft (raw, json) Hash identifier: eJ3xzuqCu4g7SmwgHIWhdJRy7ofKgWoYjIgu15aRlq8= Subject key identifier: 3E:5E:91:99:F8:AA:A2:C8:E2:13:AD:C5:15:06:B0:EE:AA:08:1A:66 Authority key identifier: 28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30 Certificate issuer: /CN=A91E4EF6/serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30 Certificate serial: 0706 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft Manifest number: 117B Signing time: Tue 22 Jul 2025 19:50:01 +0000 Manifest this update: Tue 22 Jul 2025 19:50:00 +0000 Manifest next update: Tue 29 Jul 2025 19:50:00 +0000 Files and hashes: 1: KMruhJZWnFc8PlsYkMWhs0z8jjA.crl (hash: nezzV11/lY2DQReD3qf5NVOCQPkER3mlorIhE+QkqK0=) 2: 377B6620506B11EBAD849641C4F9AE02.roa (hash: kG/awft1YnlMUcGo/TLCAbm8s2p3POH5kub747SVbDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 19:49:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4EF6, serialNumber=28CAEE8496569C573C3E5B1890C5A1B34CFC8E30 Validity Not Before: Jul 22 19:50:00 2025 GMT Not After : Jul 29 19:50:00 2025 GMT Subject: CN=687feb68-677a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a4:27:5c:38:86:a7:e3:83:f4:f2:d1:a7:01: 7e:9b:b6:fb:60:44:af:e0:bf:01:1d:db:ba:8f:6c: e2:cd:82:cb:dd:d3:c1:4a:b0:69:de:65:86:ce:5e: 3a:c9:95:ce:7a:9d:18:11:ab:16:f5:5b:57:cd:24: aa:ae:a4:04:a7:b5:03:d3:c6:78:62:69:83:df:6f: 5a:70:3b:16:96:9c:d5:95:be:55:8c:7f:99:fc:9a: f1:ca:1a:f6:91:01:85:2b:c8:43:3f:dd:37:f0:89: 79:63:f4:7c:f2:32:c2:a0:5f:03:f5:7a:4a:8a:43: a8:3f:d0:0a:9e:e3:3a:36:bc:1c:69:3f:aa:cc:77: 7c:d9:96:37:1c:cd:c9:40:32:a3:30:55:e4:f1:25: 58:51:7d:10:06:0f:4a:56:ee:b1:ea:e6:f8:23:1e: 1e:84:9e:fb:17:d5:ce:f1:51:8a:67:31:45:4b:35: 61:50:a1:2f:25:f3:f1:b4:89:d5:92:18:4d:b8:71: 1a:64:04:1c:8b:6f:d5:83:a8:ec:50:d2:74:49:92: 55:c5:09:b0:44:26:c7:db:34:c6:c4:ee:32:62:31: b6:a7:52:27:2b:a1:fc:63:8c:a5:6d:88:48:94:89: 54:f0:0a:ef:eb:22:ab:28:d5:87:de:83:ba:5a:04: 66:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:5E:91:99:F8:AA:A2:C8:E2:13:AD:C5:15:06:B0:EE:AA:08:1A:66 X509v3 Authority Key Identifier: keyid:28:CA:EE:84:96:56:9C:57:3C:3E:5B:18:90:C5:A1:B3:4C:FC:8E:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMruhJZWnFc8PlsYkMWhs0z8jjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4EF6/9380078E61D611EAB8D0155BC4F9AE02/KMruhJZWnFc8PlsYkMWhs0z8jjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:d2:23:7a:b4:8d:57:c6:2d:55:24:c4:8b:3c:4e:12:59:01: 3e:d3:6f:1a:b5:79:46:99:ad:b5:f7:e5:c7:02:43:ef:8d:04: ac:cf:ba:b2:f5:b4:5c:4c:24:4e:87:95:9e:88:80:dd:19:96: 8e:54:0b:33:e3:9c:6f:e5:88:87:2d:87:1d:5b:8e:6e:f2:fe: d3:67:15:89:7f:cc:ca:ac:3f:32:08:ac:6f:23:b6:c8:94:a6: 67:8a:af:43:16:13:3d:26:a6:a2:76:99:e5:27:91:07:b0:84: 98:81:76:60:e1:74:67:af:90:25:16:f3:e4:41:7a:6d:2b:1a: c4:0e:81:d2:a3:c6:6c:7c:71:2f:24:e6:e6:68:3b:79:14:4e: 82:48:a7:06:4d:19:a2:b7:e4:0e:d5:ac:9e:28:cf:17:87:4c: 49:fd:4d:08:da:c4:91:6c:f1:d9:2f:a7:a7:a5:1a:13:fe:16: 1f:68:ba:a4:9b:c4:c8:75:e5:c1:f7:3e:7e:33:ff:46:3a:d4: e9:50:36:45:30:b7:1b:00:67:b4:bb:45:27:2d:4a:f6:20:62: 07:0d:7c:e9:62:9d:8b:61:92:40:41:d5:3d:d6:fb:ea:05:f3: a3:8c:7a:0b:d5:e7:b4:33:1a:3b:c9:07:35:0c:dd:a9:a6:ad: 4b:71:ab:ef -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRFRjYxMTAvBgNVBAUTKDI4Q0FFRTg0OTY1NjlDNTczQzNFNUIxODkwQzVBMUIz NENGQzhFMzAwHhcNMjUwNzIyMTk1MDAwWhcNMjUwNzI5MTk1MDAwWjAYMRYwFAYD VQQDEw02ODdmZWI2OC02NzdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvaQnXDiGp+OD9PLRpwF+m7b7YESv4L8BHdu6j2zizYLL3dPBSrBp3mWGzl46 yZXOep0YEasW9VtXzSSqrqQEp7UD08Z4YmmD329acDsWlpzVlb5VjH+Z/Jrxyhr2 kQGFK8hDP9038Il5Y/R88jLCoF8D9XpKikOoP9AKnuM6NrwcaT+qzHd82ZY3HM3J QDKjMFXk8SVYUX0QBg9KVu6x6ub4Ix4ehJ77F9XO8VGKZzFFSzVhUKEvJfPxtInV khhNuHEaZAQci2/Vg6jsUNJ0SZJVxQmwRCbH2zTGxO4yYjG2p1InK6H8Y4ylbYhI lIlU8Arv6yKrKNWH3oO6WgRmcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD5ekZn4 qqLI4hOtxRUGsO6qCBpmMB8GA1UdIwQYMBaAFCjK7oSWVpxXPD5bGJDFobNM/I4w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEVGNi85MzgwMDc4RTYx RDYxMUVBQjhEMDE1NUJDNEY5QUUwMi9LTXJ1aEpaV25GYzhQbHNZa01XaHMwejhq akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNcnVoSlpXbkZjOFBsc1lrTVdoczB6OGpqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEVGNi85MzgwMDc4RTYxRDYxMUVBQjhEMDE1NUJDNEY5QUUwMi9LTXJ1aEpaV25G YzhQbHNZa01XaHMwejhqakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCw0iN6tI1Xxi1VJMSLPE4SWQE+028atXlGma219+XHAkPvjQSsz7qy 9bRcTCROh5WeiIDdGZaOVAsz45xv5YiHLYcdW45u8v7TZxWJf8zKrD8yCKxvI7bI lKZniq9DFhM9JqaidpnlJ5EHsISYgXZg4XRnr5AlFvPkQXptKxrEDoHSo8ZsfHEv JObmaDt5FE6CSKcGTRmit+QO1ayeKM8Xh0xJ/U0I2sSRbPHZL6enpRoT/hYfaLqk m8TIdeXB9z5+M/9GOtTpUDZFMLcbAGe0u0UnLUr2IGIHDXzpYp2LYZJAQdU91vvq BfOjjHoL1ee0Mxo7yQc1DN2ppq1Lcavv -----END CERTIFICATE-----Generated at Wed Jul 23 02:31:32 2025 by rpki-client