$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: Z337zXNrq+nlNDCHsQF32g1lrcr0dUSs/5i38ONSveE= Subject key identifier: 82:52:82:11:83:29:A9:76:D7:64:B3:71:09:BA:B8:6A:02:B7:D6:65 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 40 Signing time: Wed 23 Jul 2025 07:54:30 +0000 Manifest this update: Wed 23 Jul 2025 07:54:29 +0000 Manifest next update: Wed 30 Jul 2025 07:54:29 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: YGUsHO7HGd9dCgok5fwzOgbFz+GLvy+jb+uh7irfQlI=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:54:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Jul 23 07:54:29 2025 GMT Not After : Jul 30 07:54:29 2025 GMT Subject: CN=68809535-a045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:71:c5:0a:b6:08:79:3e:65:46:cb:4e:88:06: 56:1c:6a:da:b0:53:85:f4:71:ea:6c:7f:aa:4b:4e: 8e:9d:c1:25:24:05:46:ee:e1:42:57:0e:ba:aa:f8: ea:82:af:30:e4:c8:df:eb:52:85:53:4d:da:e1:31: 9f:2a:68:71:c1:ee:f8:ec:10:32:14:95:4e:4e:b7: a2:19:13:7b:24:5a:e4:9b:d9:b1:4e:07:d6:a1:50: 57:42:e0:b7:87:74:55:9f:be:af:da:b1:b1:fc:bb: e2:5b:14:de:08:b0:af:db:bc:46:64:97:66:8e:66: 45:fa:bd:63:ad:db:47:8c:f1:71:b8:64:2d:5f:a5: e3:4a:33:1d:fa:2d:33:32:f8:70:fa:a8:36:cf:7b: 18:85:c7:4b:ad:56:df:dd:04:f2:09:32:a0:84:42: 19:41:bb:d4:ff:c1:88:52:c4:3f:59:48:5a:5e:01: 5d:04:a6:a3:22:05:f0:eb:fb:08:f1:ac:38:d9:f3: fa:f0:af:57:91:62:6e:41:58:5c:14:74:97:ec:8e: 86:59:2f:bf:b4:99:43:08:a6:e1:8f:ad:5a:96:d5: 64:c2:18:66:30:ce:8a:3c:08:a1:7f:65:ad:f9:9b: 54:2f:83:0f:be:59:05:ee:fb:cf:5c:13:69:b5:21: 6d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:52:82:11:83:29:A9:76:D7:64:B3:71:09:BA:B8:6A:02:B7:D6:65 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:3c:6b:38:e5:b8:5a:04:f7:b0:9a:dd:59:66:49:1d:7a:de: ad:11:64:9e:59:b7:7d:88:10:d9:0d:88:88:76:49:a0:4e:23: 5f:99:06:d7:e3:b2:51:9f:60:ad:f6:b2:25:f8:05:95:90:5a: 17:62:2a:c9:30:cd:da:00:ae:d7:db:e4:8f:81:ea:8b:cf:d9: c0:f0:f1:3d:7f:80:8d:e2:29:10:bf:03:bb:5e:fd:61:52:c7: f7:93:06:fa:c5:bf:56:3a:29:0a:d0:21:22:57:f4:15:16:46: 95:dd:3d:ac:2e:3c:23:ce:05:47:7f:77:7c:2c:47:bd:92:74: 08:f6:7e:b0:a4:bc:4f:19:f2:92:13:cc:11:04:04:fa:ab:12: 1f:71:df:c3:f3:23:ec:1a:63:e0:39:90:24:4a:7c:4d:a0:6a: a3:e0:67:ba:24:6b:0d:f1:ff:50:56:7c:0c:fa:0b:87:cf:63: f0:55:46:4a:b1:4a:04:e7:7f:e9:1e:c9:e8:cb:00:41:70:04: d9:fe:31:7e:ff:13:df:e0:e7:25:ab:99:48:5d:bc:b1:a2:c2: c4:e6:5a:6a:9c:33:c4:1c:ac:da:da:30:80:75:11:63:b5:12: d3:09:05:fc:e8:1e:5c:7e:b8:3e:1d:d9:84:77:2c:be:ec:71: 42:dd:f6:57 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTA3MjMwNzU0MjlaFw0yNTA3MzAwNzU0MjlaMBgxFjAUBgNV BAMTDTY4ODA5NTM1LWEwNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwccUKtgh5PmVGy06IBlYcatqwU4X0cepsf6pLTo6dwSUkBUbu4UJXDrqq+OqC rzDkyN/rUoVTTdrhMZ8qaHHB7vjsEDIUlU5Ot6IZE3skWuSb2bFOB9ahUFdC4LeH dFWfvq/asbH8u+JbFN4IsK/bvEZkl2aOZkX6vWOt20eM8XG4ZC1fpeNKMx36LTMy +HD6qDbPexiFx0utVt/dBPIJMqCEQhlBu9T/wYhSxD9ZSFpeAV0EpqMiBfDr+wjx rDjZ8/rwr1eRYm5BWFwUdJfsjoZZL7+0mUMIpuGPrVqW1WTCGGYwzoo8CKF/Za35 m1Qvgw++WQXu+89cE2m1IW0RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUglKCEYMp qXbXZLNxCbq4agK31mUwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJI8azjluFoE97Ca3VlmSR163q0RZJ5Zt32IENkNiIh2SaBOI1+ZBtfj slGfYK32siX4BZWQWhdiKskwzdoArtfb5I+B6ovP2cDw8T1/gI3iKRC/A7te/WFS x/eTBvrFv1Y6KQrQISJX9BUWRpXdPawuPCPOBUd/d3wsR72SdAj2frCkvE8Z8pIT zBEEBPqrEh9x38PzI+waY+A5kCRKfE2gaqPgZ7okaw3x/1BWfAz6C4fPY/BVRkqx SgTnf+keyejLAEFwBNn+MX7/E9/g5yWrmUhdvLGiwsTmWmqcM8QcrNraMIB1EWO1 EtMJBfzoHlx+uD4d2YR3LL7scULd9lc= -----END CERTIFICATE-----Generated at Wed Jul 23 23:52:07 2025 by rpki-client