$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft File: Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft (raw, json) Hash identifier: rv7crgfOJBtzW0W4Hxb9PiSO+BdMZl78wWQv+eSDgsQ= Subject key identifier: 5E:DE:97:74:19:A4:77:8C:7C:46:25:86:F9:8C:0A:43:20:50:67:75 Authority key identifier: 29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 Certificate issuer: /CN=A91FC985/serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Certificate serial: 4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft Manifest number: 4B Signing time: Sat 19 Jul 2025 07:36:38 +0000 Manifest this update: Sat 19 Jul 2025 07:36:38 +0000 Manifest next update: Sat 26 Jul 2025 07:36:38 +0000 Files and hashes: 1: Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl (hash: ObVzQFDAH49ufu0rgdVECnM1fc8OwKcZqZFh8aBn8fg=) 2: DA3E289CF5B811EFA1046714C4F9AE02.roa (hash: ghtYYnHvBHOXjjafNw/o3b7nWMJznKoJtYacsPdc8uY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC985, serialNumber=29ADB39B620EAE3CB8AFCA2CA185F5C4876FD043 Validity Not Before: Jul 19 07:36:38 2025 GMT Not After : Jul 26 07:36:38 2025 GMT Subject: CN=687b4b06-1a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:df:60:5a:e3:a4:35:db:bd:fe:ac:ca:e2:80: ce:51:53:03:f2:b1:a1:44:cf:dd:8c:41:4a:7e:14: 4c:51:dc:c4:38:d4:15:3e:2b:7f:c1:99:c4:a0:d7: 90:49:c9:54:78:d3:dc:66:08:b4:22:75:45:d3:5f: f2:53:6f:99:d6:55:e7:ce:84:ba:2a:6b:b0:99:83: 34:c9:79:da:ad:eb:f2:e7:a1:36:ad:29:dd:ab:53: b0:9a:19:2f:e4:5d:06:63:33:0a:66:4a:af:00:e3: 18:d0:93:d2:6e:0f:a0:2b:92:0c:51:0b:db:65:a4: 21:6e:db:f7:b4:f7:b7:65:79:44:09:23:ce:7c:c4: 98:53:8a:f4:df:98:73:b6:51:3d:0d:fb:06:e1:ad: cb:fe:9f:29:1a:9c:b2:fb:59:6d:82:01:59:2f:5f: 2d:bc:b6:61:24:0a:5e:62:e2:8a:a8:a4:26:dd:9d: 0b:55:38:b9:bd:3a:9a:da:04:a5:d9:d7:a7:cb:d9: cb:7e:ce:c2:49:b3:d7:00:3c:cb:56:74:7e:f5:9c: 72:33:e8:28:27:dc:5f:f4:29:ff:01:03:4a:8d:62: 13:bd:94:42:c3:ac:50:b4:77:ea:ea:8a:4c:51:44: 2f:b9:3c:27:bd:21:58:9b:a9:fa:4b:1a:9d:7c:ee: f6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:DE:97:74:19:A4:77:8C:7C:46:25:86:F9:8C:0A:43:20:50:67:75 X509v3 Authority Key Identifier: keyid:29:AD:B3:9B:62:0E:AE:3C:B8:AF:CA:2C:A1:85:F5:C4:87:6F:D0:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ka2zm2IOrjy4r8osoYX1xIdv0EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC985/673AA2F4F5B711EF8C1FF611C4F9AE02/Ka2zm2IOrjy4r8osoYX1xIdv0EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:78:e3:03:a9:c0:5b:05:74:d8:d1:20:44:6e:1c:15:cd:ec: a0:b9:45:ba:78:f8:25:ae:09:45:44:06:21:f3:83:06:d7:42: e1:d1:b7:ad:6d:81:96:68:47:1c:b9:89:6e:06:20:15:cb:ef: 79:c2:3a:87:6e:ea:a2:92:dd:a5:f4:1d:9b:68:30:bb:2d:fc: 2e:7d:a1:17:01:d4:4a:ce:35:6e:1d:db:4f:78:9c:b9:b5:5b: 88:c7:9c:89:92:a7:e9:e1:a3:01:3d:3e:e5:79:5d:8d:af:06: 8b:a5:4a:e9:9d:23:1d:63:4b:20:df:f1:5b:3b:f8:27:6a:90: 02:aa:0f:4e:33:13:37:f0:0a:38:9a:20:11:51:a2:73:f4:80: ea:38:7e:d1:c9:0e:e9:52:05:5e:f0:81:02:75:14:3a:4e:62: 11:8e:ad:1d:99:c0:71:54:81:ee:fb:1e:3f:55:e1:7c:83:17: 12:ef:da:ee:4c:22:5f:c8:56:3f:19:02:56:4d:2e:9d:b6:64: cc:b4:9a:d1:19:97:2c:8b:39:52:c2:e9:f6:6c:ed:30:76:95: d5:66:6f:a9:28:48:a2:c2:27:f9:89:86:bb:19:a2:52:2b:5a: fb:78:42:26:22:9b:ce:db:07:4a:51:f2:75:7b:35:e2:05:5a: d8:26:52:aa -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Qzk4NTExMC8GA1UEBRMoMjlBREIzOUI2MjBFQUUzQ0I4QUZDQTJDQTE4NUY1QzQ4 NzZGRDA0MzAeFw0yNTA3MTkwNzM2MzhaFw0yNTA3MjYwNzM2MzhaMBgxFjAUBgNV BAMTDTY4N2I0YjA2LTFhNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO32Ba46Q1273+rMrigM5RUwPysaFEz92MQUp+FExR3MQ41BU+K3/BmcSg15BJ yVR409xmCLQidUXTX/JTb5nWVefOhLoqa7CZgzTJedqt6/LnoTatKd2rU7CaGS/k XQZjMwpmSq8A4xjQk9JuD6ArkgxRC9tlpCFu2/e097dleUQJI858xJhTivTfmHO2 UT0N+wbhrcv+nykanLL7WW2CAVkvXy28tmEkCl5i4oqopCbdnQtVOLm9OpraBKXZ 16fL2ct+zsJJs9cAPMtWdH71nHIz6Cgn3F/0Kf8BA0qNYhO9lELDrFC0d+rqikxR RC+5PCe9IVibqfpLGp187vb7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXt6XdBmk d4x8RiWG+YwKQyBQZ3UwHwYDVR0jBBgwFoAUKa2zm2IOrjy4r8osoYX1xIdv0EMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDOTg1LzY3M0FBMkY0RjVC NzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5NHI4b3NvWVgxeElkdjBF TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2Eyem0ySU9yank0cjhvc29ZWDF4SWR2MEVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZD OTg1LzY3M0FBMkY0RjVCNzExRUY4QzFGRjYxMUM0RjlBRTAyL0thMnptMklPcmp5 NHI4b3NvWVgxeElkdjBFTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACl44wOpwFsFdNjRIERuHBXN7KC5Rbp4+CWuCUVEBiHzgwbXQuHRt61t gZZoRxy5iW4GIBXL73nCOodu6qKS3aX0HZtoMLst/C59oRcB1ErONW4d2094nLm1 W4jHnImSp+nhowE9PuV5XY2vBoulSumdIx1jSyDf8Vs7+CdqkAKqD04zEzfwCjia IBFRonP0gOo4ftHJDulSBV7wgQJ1FDpOYhGOrR2ZwHFUge77Hj9V4XyDFxLv2u5M Il/IVj8ZAlZNLp22ZMy0mtEZlyyLOVLC6fZs7TB2ldVmb6koSKLCJ/mJhrsZolIr Wvt4QiYim87bB0pR8nV7NeIFWtgmUqo= -----END CERTIFICATE-----Generated at Sun Jul 20 12:23:22 2025 by rpki-client