$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: 1HfbndVWwVkWBEhrgODv86/0NPBM2XC3LTSp1w/a5YE= Subject key identifier: 5A:73:FB:51:90:04:6A:E5:6F:D2:35:3E:A0:B9:9A:C8:92:6C:61:9A Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0EB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E6B Signing time: Sun 20 Jul 2025 17:49:29 +0000 Manifest this update: Sun 20 Jul 2025 17:49:28 +0000 Manifest next update: Sun 27 Jul 2025 17:49:28 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: E36FBT9XxAwbpybFMlOMTzpml96qdK7DGPU5Gh3rqPY=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: q8VjbfesBfjBXJ1O+TtlGTvZbuy2Q6Gq6lc9iUM1cKc=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: L+aUrfi/IHEm4FCCzrEf6AdJOcO/5KYjXAI+VHu0xCQ=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: mROz4ndcci/lFowjKQt8EppikBLu2fjIlvGiFhvH3EY=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: LliQbQ1JrB45v11EWXMUYtz6YL9U5wdtSwrWMJkpnsM=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: mlWu4QI6RV3Fazg24ou9fVsCNac8uNLMWZTkxYffaU4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:45:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3766 (0xeb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Jul 20 17:49:28 2025 GMT Not After : Jul 27 17:49:28 2025 GMT Subject: CN=687d2c28-0331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:0a:24:dd:f0:3d:c4:05:c9:be:3e:b1:47:01: dc:30:f0:89:0e:31:1e:be:65:be:60:10:a5:29:fb: 5d:b6:cf:c9:32:f6:81:af:17:51:24:5f:40:9b:a1: c6:c9:01:fa:4e:bb:e7:6b:9c:aa:22:0b:d5:f0:b5: 23:05:cf:c1:dc:10:03:32:a1:e3:8f:32:29:8c:6a: 0c:c2:2f:70:6b:73:ec:30:74:ab:cc:d0:6e:f5:a6: 5f:3b:d4:54:f3:76:c7:6a:fa:21:43:60:45:bd:de: a3:4b:2f:cc:bb:83:37:9a:6c:4c:ed:e5:92:6b:9e: 87:d8:85:8b:c7:2e:c3:ce:94:48:87:95:16:fc:c7: f1:b8:b9:9e:55:51:d7:d2:dc:66:3a:69:58:fa:ec: b8:7e:59:6a:2d:74:ad:95:14:f6:0a:66:2c:6d:88: 21:06:f2:8b:52:e5:43:ee:1c:6e:e8:a7:09:32:56: bb:2c:50:2e:2c:f6:a3:1f:b0:f1:19:6c:c9:7b:16: b4:35:85:dd:1f:60:92:78:97:63:f2:68:48:81:0e: ca:2f:1b:00:b9:79:76:28:65:6c:2d:3d:ef:f9:36: 65:9d:e9:9f:c5:92:57:b4:c6:33:c8:d4:cd:ab:8d: df:1e:be:bb:79:a8:da:7f:77:f0:76:fa:89:c5:28: 82:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:73:FB:51:90:04:6A:E5:6F:D2:35:3E:A0:B9:9A:C8:92:6C:61:9A X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:f1:f2:55:2f:15:0c:de:42:9f:9e:87:1f:37:5d:8d:33:95: 9d:a2:a3:a5:9a:55:c9:e9:50:22:bf:fc:32:8a:83:41:bf:9d: 2e:64:c1:86:87:28:79:97:b8:9d:ed:ef:b5:45:48:09:c0:48: f5:7b:55:f4:42:07:89:e4:05:c2:7b:96:00:16:b6:f7:32:6c: 99:7a:40:6b:ef:5d:35:81:9b:8d:b1:4b:29:17:92:13:36:b3: ec:8a:46:86:a0:1d:e9:46:f6:15:a4:25:c5:c8:a5:7c:60:95: aa:ca:37:56:cc:bf:36:71:88:8e:26:7f:d6:df:e9:16:ff:3c: 88:63:6e:49:f8:ec:7d:5a:28:52:1f:34:e0:28:35:42:f8:8e: 3d:56:05:da:0a:bb:4e:5b:28:d4:31:19:28:32:d2:9d:46:5d: 00:db:04:22:70:c6:f6:31:e9:be:a9:3c:e4:e7:5f:3d:b8:ab: 20:8b:98:32:c8:16:67:d2:5e:26:c8:72:5e:9b:1a:ea:3f:15: 65:7e:9d:f5:e9:9a:f2:b8:80:ee:10:1c:72:21:dd:fa:5c:74: 2b:da:e5:d5:76:cb:f8:41:34:d1:80:d8:c3:e2:de:a9:a8:e6: 1f:c6:64:b5:ca:f5:7c:e1:00:d2:d6:6e:4f:08:53:1b:bc:81: 79:7b:66:5f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwNzIwMTc0OTI4WhcNMjUwNzI3MTc0OTI4WjAYMRYwFAYD VQQDEw02ODdkMmMyOC0wMzMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Aok3fA9xAXJvj6xRwHcMPCJDjEevmW+YBClKftdts/JMvaBrxdRJF9Am6HG yQH6Trvna5yqIgvV8LUjBc/B3BADMqHjjzIpjGoMwi9wa3PsMHSrzNBu9aZfO9RU 83bHavohQ2BFvd6jSy/Mu4M3mmxM7eWSa56H2IWLxy7DzpRIh5UW/MfxuLmeVVHX 0txmOmlY+uy4fllqLXStlRT2CmYsbYghBvKLUuVD7hxu6KcJMla7LFAuLPajH7Dx GWzJexa0NYXdH2CSeJdj8mhIgQ7KLxsAuXl2KGVsLT3v+TZlnemfxZJXtMYzyNTN q43fHr67eajaf3fwdvqJxSiCnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFpz+1GQ BGrlb9I1PqC5msiSbGGaMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH8fJVLxUM3kKfnocfN12NM5WdoqOlmlXJ6VAiv/wyioNBv50uZMGG hyh5l7id7e+1RUgJwEj1e1X0QgeJ5AXCe5YAFrb3MmyZekBr7101gZuNsUspF5IT NrPsikaGoB3pRvYVpCXFyKV8YJWqyjdWzL82cYiOJn/W3+kW/zyIY25J+Ox9WihS HzTgKDVC+I49VgXaCrtOWyjUMRkoMtKdRl0A2wQicMb2Mem+qTzk5189uKsgi5gy yBZn0l4myHJemxrqPxVlfp316ZryuIDuEBxyId36XHQr2uXVdsv4QTTRgNjD4t6p qOYfxmS1yvV84QDS1m5PCFMbvIF5e2Zf -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:09 2025 by rpki-client