$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft File: kcPJZndvAR_FNQIdhfWue_utpX4.mft (raw, json) Hash identifier: 7qCtASVKmSU8dHrgNe+fC3977RrfxBTICC6NIBCxPHA= Subject key identifier: AA:E8:96:77:59:AA:09:94:D1:5D:8A:01:B7:A6:B2:8F:7A:A8:F2:90 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0B84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft Manifest number: 0B6F Signing time: Thu 24 Jul 2025 19:13:52 +0000 Manifest this update: Thu 24 Jul 2025 19:13:51 +0000 Manifest next update: Thu 31 Jul 2025 19:13:51 +0000 Files and hashes: 1: kcPJZndvAR_FNQIdhfWue_utpX4.crl (hash: v7eF9OsVNfvv9OTve/SDtIV+vGULsclVc8pd21yapgY=) 2: 41B2F448ECE611EA882BEA79C4F9AE02.roa (hash: jfARn5Pllx6IMjPiI7FxZYgxXYW94DALaj8qH2++9WY=) 3: 436F1AE2ECF411EA822E8D28C4F9AE02.roa (hash: akcNDk8y+ODsfpu3oKFQYxPcSwPpaVaD8Gu1z5j+dkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 19:13:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2948 (0xb84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jul 24 19:13:51 2025 GMT Not After : Jul 31 19:13:51 2025 GMT Subject: CN=688285f0-6494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:79:a4:96:11:ab:fa:7b:bd:1f:01:30:a0:f4: ef:d0:8d:f2:eb:1e:d3:e4:f6:25:70:f6:50:f1:a0: 73:77:99:6a:c3:b1:37:ff:b9:b6:1c:67:9b:c3:71: 37:56:66:41:19:c6:d8:c3:20:8a:af:71:81:2c:e3: 5a:e8:df:b6:62:3e:54:b0:80:2b:30:6e:b6:96:1a: 4c:00:46:17:bb:1a:f4:49:54:c0:ea:ff:ec:e2:71: 44:8a:b0:75:93:85:2b:77:5b:1b:2f:99:a0:6d:b3: 67:4d:fb:90:e8:95:8e:bb:d2:6f:e8:4b:c5:36:36: 3e:00:4d:32:e9:09:79:cb:a4:c5:c8:98:7c:8b:da: 7e:12:de:ad:69:a9:61:e3:f4:2b:10:07:5a:18:b0: e1:1c:e0:f1:d5:12:56:34:e7:7a:fc:0c:06:8a:7b: 99:4f:31:9d:d5:87:7e:ed:9e:0c:c9:54:48:10:9f: 71:ba:83:6e:9d:55:ca:5f:60:94:b6:7b:f2:d8:7c: 66:43:33:05:61:4a:93:3c:8e:83:38:69:27:90:7a: 12:75:8f:79:35:d6:02:cc:e5:4a:63:a0:6b:f4:34: 95:bf:a4:5c:d8:c8:27:75:6a:16:e7:4f:57:37:f0: e7:dd:44:95:4b:b0:f6:8e:6e:b3:8e:31:6d:3d:0a: 18:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E8:96:77:59:AA:09:94:D1:5D:8A:01:B7:A6:B2:8F:7A:A8:F2:90 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:d7:bd:19:37:18:5e:fd:ab:16:72:14:d5:5a:14:3a:e7:68: 7b:0e:a2:83:26:2c:7c:98:26:ec:e2:f6:2d:05:7f:49:d7:87: 62:47:cb:fe:30:33:71:c1:03:8a:55:a2:21:11:59:8e:81:53: 40:d7:88:c0:f6:4f:a1:f2:28:e9:c7:25:f5:23:59:fb:07:33: ea:70:36:3a:d6:d1:34:34:e1:c6:df:53:ed:4e:17:f0:33:8d: e7:c1:2b:64:0b:94:c2:40:a1:9c:b2:45:f1:af:38:fc:c8:72: 13:56:50:e0:1f:19:21:5c:6d:9c:44:bc:1a:33:4e:17:08:30: 7a:6d:85:ae:ad:c6:cb:a1:98:4d:94:d4:60:80:3d:4c:56:a7: ba:43:ef:6e:44:df:aa:04:d2:e2:a2:3d:13:00:e8:1d:30:ac: b3:21:a5:bb:be:21:e8:c8:44:8a:cf:f0:4d:ff:d0:9d:bd:f9: f3:0d:02:59:c9:84:8d:03:3c:87:03:39:1e:62:d9:e1:d3:8a: 63:20:f0:89:bc:09:87:60:3f:c2:5a:5e:3c:41:d8:3c:b2:ea: 48:f7:57:36:4d:6d:81:84:e0:7b:38:cc:71:32:b7:0d:ae:3f: 31:c0:5a:c1:df:54:28:fc:2a:df:4e:87:32:0a:a8:11:a1:e8: d0:ad:a5:19 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjUwNzI0MTkxMzUxWhcNMjUwNzMxMTkxMzUxWjAYMRYwFAYD VQQDEw02ODgyODVmMC02NDk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHmklhGr+nu9HwEwoPTv0I3y6x7T5PYlcPZQ8aBzd5lqw7E3/7m2HGebw3E3 VmZBGcbYwyCKr3GBLONa6N+2Yj5UsIArMG62lhpMAEYXuxr0SVTA6v/s4nFEirB1 k4Urd1sbL5mgbbNnTfuQ6JWOu9Jv6EvFNjY+AE0y6Ql5y6TFyJh8i9p+Et6taalh 4/QrEAdaGLDhHODx1RJWNOd6/AwGinuZTzGd1Yd+7Z4MyVRIEJ9xuoNunVXKX2CU tnvy2HxmQzMFYUqTPI6DOGknkHoSdY95NdYCzOVKY6Br9DSVv6Rc2MgndWoW509X N/Dn3USVS7D2jm6zjjFtPQoYEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKrolndZ qgmU0V2KAbemso96qPKQMB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTc4Ni9CMEQ3MjNFRTM1REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFS X0ZOUUlkaGZXdWVfdXRwWDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDa170ZNxhe/asWchTVWhQ652h7DqKDJix8mCbs4vYtBX9J14diR8v+ MDNxwQOKVaIhEVmOgVNA14jA9k+h8ijpxyX1I1n7BzPqcDY61tE0NOHG31PtThfw M43nwStkC5TCQKGcskXxrzj8yHITVlDgHxkhXG2cRLwaM04XCDB6bYWurcbLoZhN lNRggD1MVqe6Q+9uRN+qBNLioj0TAOgdMKyzIaW7viHoyESKz/BN/9CdvfnzDQJZ yYSNAzyHAzkeYtnh04pjIPCJvAmHYD/CWl48Qdg8supI91c2TW2BhOB7OMxxMrcN rj8xwFrB31Qo/CrfTocyCqgRoejQraUZ -----END CERTIFICATE-----Generated at Thu Jul 24 23:39:02 2025 by rpki-client