$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: ARQFpsfloRtLiDdygVcB8FPvBXwsddQyxxrQzbXOGHc= Subject key identifier: E0:DC:38:A4:FD:3B:81:D5:46:37:12:54:EA:B9:89:AB:D4:73:54:93 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: AF Signing time: Sat 19 Jul 2025 06:14:16 +0000 Manifest this update: Sat 19 Jul 2025 06:14:15 +0000 Manifest next update: Sat 26 Jul 2025 06:14:15 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: ef01AJQXHd3ppMULeQFgUMHwDMdR5X5CjZ6n7RLR7gM=) 2: B377200E5ADD11EF9A462440C4F9AE02.roa (hash: ku0nQgImAfjqlfmOWSwIKN/zsrk6kYnMycZSjI2lh3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:14:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Jul 19 06:14:15 2025 GMT Not After : Jul 26 06:14:15 2025 GMT Subject: CN=687b37b8-3266 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a1:af:49:10:c7:9e:31:c4:26:28:43:00:8a: 46:8d:e1:0b:1f:ee:c9:29:9f:73:50:9d:5b:71:f7: fa:15:15:38:c0:ff:1a:13:d6:7a:81:32:35:bb:c8: 4e:d9:73:25:63:8d:df:3b:6b:ed:52:01:4d:7b:4b: 50:71:90:61:96:cc:4f:f1:32:ba:4a:8e:fb:44:38: 9b:66:2a:de:4b:1e:c3:1b:ba:01:f5:33:ac:b1:93: fb:4c:81:d7:ed:5a:e9:22:8e:ee:dc:f6:3f:1d:d6: ce:20:e9:1f:b2:06:84:2f:be:79:2f:b8:26:6b:01: ae:a1:04:6e:45:1b:e9:14:1d:52:4f:0d:86:08:49: 4e:9f:8e:17:f9:aa:55:d1:1e:d1:be:22:89:12:b3: ab:a1:d1:a5:75:da:21:37:d2:35:11:ed:e2:b2:a4: 61:f0:73:d5:bd:d3:90:9a:41:e1:b6:2f:a2:bd:01: f5:3d:d7:58:43:68:30:e6:a8:47:1a:54:d5:e7:82: 95:01:a6:e5:9f:29:cc:b1:5f:05:2f:df:e7:63:2f: b8:70:aa:ae:45:95:3b:66:f2:a2:9f:e1:2b:eb:c5: c5:1c:f4:70:e6:e5:4e:2c:f3:ab:cd:8b:f2:69:65: 1f:3f:9f:e7:40:1a:1d:54:5f:6d:b3:bd:88:05:12: 13:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DC:38:A4:FD:3B:81:D5:46:37:12:54:EA:B9:89:AB:D4:73:54:93 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:a2:3e:4f:17:88:74:0c:3b:b1:73:d3:24:ca:de:00:fe:a2: cb:49:65:7d:eb:f5:93:2d:bd:e5:fa:a5:56:95:e1:83:b7:89: 81:e4:e5:9b:d3:70:b9:c8:61:a4:1d:ae:1a:fa:01:6d:6e:55: c3:23:76:39:b6:57:bd:0f:4d:e4:6e:07:d3:a0:a8:c9:6f:db: c6:66:63:2f:4e:6e:b3:ff:c8:96:c0:60:1d:4b:a6:38:3c:38: e6:23:86:88:61:4a:38:f5:10:5b:bb:76:d2:6f:6d:7d:41:82: cb:3b:99:38:af:19:cc:0c:6d:a0:18:9e:9e:c6:9e:aa:0b:3f: 6d:20:bf:75:2b:86:80:36:9d:74:d9:74:b9:db:a3:4d:fd:17: 04:fa:1d:16:b8:9e:62:01:11:28:df:ee:01:45:4c:ab:4b:ba: e3:6c:80:c3:62:68:34:68:9d:db:60:62:38:a0:07:04:48:29: b1:e9:5a:de:9e:a6:22:9f:c8:bb:07:0d:6e:e7:cd:85:b6:df: 3f:11:19:17:a4:8e:ed:6e:c3:71:75:50:00:3b:b7:c7:72:27: 59:89:65:15:f7:3c:89:40:6e:a5:35:a6:53:61:47:bc:af:60: eb:c8:3f:7e:83:15:e8:cf:12:c1:b1:bf:83:88:00:35:45:3c: 21:d8:e2:83 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUwNzE5MDYxNDE1WhcNMjUwNzI2MDYxNDE1WjAYMRYwFAYD VQQDEw02ODdiMzdiOC0zMjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlaGvSRDHnjHEJihDAIpGjeELH+7JKZ9zUJ1bcff6FRU4wP8aE9Z6gTI1u8hO 2XMlY43fO2vtUgFNe0tQcZBhlsxP8TK6So77RDibZireSx7DG7oB9TOssZP7TIHX 7VrpIo7u3PY/HdbOIOkfsgaEL755L7gmawGuoQRuRRvpFB1STw2GCElOn44X+apV 0R7RviKJErOrodGlddohN9I1Ee3isqRh8HPVvdOQmkHhti+ivQH1PddYQ2gw5qhH GlTV54KVAablnynMsV8FL9/nYy+4cKquRZU7ZvKin+Er68XFHPRw5uVOLPOrzYvy aWUfP5/nQBodVF9ts72IBRITfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFODcOKT9 O4HVRjcSVOq5iavUc1STMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9oj5PF4h0DDuxc9Mkyt4A/qLLSWV96/WTLb3l+qVWleGDt4mB5OWb 03C5yGGkHa4a+gFtblXDI3Y5tle9D03kbgfToKjJb9vGZmMvTm6z/8iWwGAdS6Y4 PDjmI4aIYUo49RBbu3bSb219QYLLO5k4rxnMDG2gGJ6exp6qCz9tIL91K4aANp10 2XS526NN/RcE+h0WuJ5iAREo3+4BRUyrS7rjbIDDYmg0aJ3bYGI4oAcESCmx6Vre nqYin8i7Bw1u582Ftt8/ERkXpI7tbsNxdVAAO7fHcidZiWUV9zyJQG6lNaZTYUe8 r2DryD9+gxXozxLBsb+DiAA1RTwh2OKD -----END CERTIFICATE-----Generated at Sun Jul 20 15:05:25 2025 by rpki-client