$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: CPpVC+/aw+GmNlNupO5bQAzvN4355jfhY7EJwVCVjZ8= Subject key identifier: EC:AE:E5:3E:47:10:1C:8A:D2:E7:73:5E:18:39:34:8E:3C:B7:E6:40 Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 06F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 06EF Signing time: Tue 22 Jul 2025 22:17:06 +0000 Manifest this update: Tue 22 Jul 2025 22:17:06 +0000 Manifest next update: Tue 29 Jul 2025 22:17:06 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: 6F94K5fk+piW21kLbhAFoUNR9DxtFyfXikZHhg7J5KU=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 22:17:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD, serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Jul 22 22:17:06 2025 GMT Not After : Jul 29 22:17:06 2025 GMT Subject: CN=68800de2-5a72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:97:31:67:30:6a:dd:6b:f1:90:07:30:bb:81: 6d:da:f6:5f:bd:1a:31:05:66:78:93:2f:59:8c:2e: eb:6c:18:f6:88:af:79:98:00:38:63:31:eb:e7:23: 26:73:42:b2:fd:ab:22:d7:f7:dd:fa:06:49:8a:d1: e0:bf:fe:3d:bb:fe:30:18:3f:2d:46:4a:f9:b2:6e: f2:f2:0d:b7:81:9c:29:9f:1e:4d:0c:55:a8:7c:3c: f8:d4:dc:8a:46:a0:6b:39:22:7a:bc:a6:f6:f1:2e: 4e:18:f1:e5:b0:cd:0c:f5:12:29:9f:4b:46:57:d6: 88:c2:a3:9d:e3:84:02:7c:ff:1e:65:7d:b6:4f:df: 42:aa:4e:be:40:80:83:bc:b9:99:3f:16:7e:05:e0: 5e:d6:ab:e7:f6:7b:d2:0f:5f:d9:d4:4d:6c:7d:84: 5f:08:a2:a3:7b:96:50:9e:c0:c5:da:1d:5a:fd:b5: 95:81:3a:aa:d9:48:43:f0:9d:5a:95:33:d1:08:db: 68:07:f5:63:62:07:38:05:f3:62:b6:16:0c:c2:b5: c6:6e:99:0d:15:6a:97:db:ae:cd:55:5e:52:7d:5a: ca:24:1f:cc:2d:1b:0e:60:7d:c9:5d:f6:45:69:47: 92:36:00:b0:00:6f:07:0c:3b:4f:1c:c4:3c:1c:3b: 55:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AE:E5:3E:47:10:1C:8A:D2:E7:73:5E:18:39:34:8E:3C:B7:E6:40 X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:6f:84:1d:22:9b:23:a1:fb:4c:fe:76:c8:44:75:c8:f0:56: 0e:b6:f8:56:70:74:7d:d7:9e:0a:cc:91:6d:50:78:e5:b1:c3: 24:dc:ba:af:47:d3:36:00:94:ac:67:8c:1f:4d:a1:f9:2e:4b: 13:01:dc:67:a8:a6:f0:6c:4b:f5:72:6c:03:a0:3c:fd:25:da: f9:9f:34:78:5e:ec:79:81:cd:b8:51:b6:3c:5b:d9:48:e9:87: 01:78:94:c5:e5:cb:99:30:62:53:8a:9d:c3:3b:19:15:54:0b: 69:69:e0:bb:88:e4:be:17:c2:78:67:14:79:78:44:47:26:5b: d7:74:97:72:23:e5:03:94:29:34:1c:d1:6a:7c:9b:18:ac:56: 6d:29:09:51:52:ec:2b:62:b8:e9:d1:e4:56:1a:44:20:71:36: 2a:46:1e:d7:00:0d:bb:ca:bc:1d:97:9c:e5:ec:92:64:78:2e: 44:1f:00:46:c2:65:41:71:b3:25:25:97:49:65:df:e8:10:34: 2f:26:4a:33:de:27:7b:fa:01:33:e8:77:c7:07:ea:d6:7b:2a: 8d:3e:c4:ad:5c:2e:f3:f8:4f:51:09:20:86:3a:5c:51:69:4f: 71:3c:73:8f:03:29:4f:65:c0:7b:bf:e2:a6:dd:d8:b4:29:9d: 7d:66:cd:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjUwNzIyMjIxNzA2WhcNMjUwNzI5MjIxNzA2WjAYMRYwFAYD VQQDEw02ODgwMGRlMi01YTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypcxZzBq3WvxkAcwu4Ft2vZfvRoxBWZ4ky9ZjC7rbBj2iK95mAA4YzHr5yMm c0Ky/asi1/fd+gZJitHgv/49u/4wGD8tRkr5sm7y8g23gZwpnx5NDFWofDz41NyK RqBrOSJ6vKb28S5OGPHlsM0M9RIpn0tGV9aIwqOd44QCfP8eZX22T99Cqk6+QICD vLmZPxZ+BeBe1qvn9nvSD1/Z1E1sfYRfCKKje5ZQnsDF2h1a/bWVgTqq2UhD8J1a lTPRCNtoB/VjYgc4BfNithYMwrXGbpkNFWqX267NVV5SfVrKJB/MLRsOYH3JXfZF aUeSNgCwAG8HDDtPHMQ8HDtVJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOyu5T5H EByK0udzXhg5NI48t+ZAMB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBPb4QdIpsjoftM/nbIRHXI8FYOtvhWcHR9154KzJFtUHjlscMk3Lqv R9M2AJSsZ4wfTaH5LksTAdxnqKbwbEv1cmwDoDz9Jdr5nzR4Xux5gc24UbY8W9lI 6YcBeJTF5cuZMGJTip3DOxkVVAtpaeC7iOS+F8J4ZxR5eERHJlvXdJdyI+UDlCk0 HNFqfJsYrFZtKQlRUuwrYrjp0eRWGkQgcTYqRh7XAA27yrwdl5zl7JJkeC5EHwBG wmVBcbMlJZdJZd/oEDQvJkoz3id7+gEz6HfHB+rWeyqNPsStXC7z+E9RCSCGOlxR aU9xPHOPAylPZcB7v+Km3di0KZ19Zs0n -----END CERTIFICATE-----Generated at Thu Jul 24 08:28:43 2025 by rpki-client