$ rpki-client -vvf rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft File: kSlbu3W_quuVMbObNux1Id3jDWM.mft (raw, json) Hash identifier: 1byL5/DF7Vaiu0mU16kSkOx2SnMuLJwik2yeHuGxXBc= Subject key identifier: 98:FB:AB:4A:41:89:52:5D:8C:A5:A5:E6:C7:26:2B:94:21:56:3B:67 Authority key identifier: 91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 Certificate issuer: /CN=A911D9B2/serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Certificate serial: 017B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft Manifest number: 0169 Signing time: Fri 05 Sep 2025 04:37:35 +0000 Manifest this update: Fri 05 Sep 2025 04:37:34 +0000 Manifest next update: Fri 12 Sep 2025 04:37:34 +0000 Files and hashes: 1: kSlbu3W_quuVMbObNux1Id3jDWM.crl (hash: dPFAVj20GB+aq8AdQl6N8ixS97M28I7ow1UipA9jvX8=) 2: 11A28878915611EE83F61C41C4F9AE02.roa (hash: wRjDxSYF9ME/+w7UeeO+MKXvgDC5w3qNX+JKTSzXhtw=) 3: 59962840D01911EE96596B16C4F9AE02.roa (hash: jM6outMgdpJ44HUHhOOUfnOx+r280G0rdmU4B0AEX90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:37:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D9B2, serialNumber=91295BBB75BFAAEB9531B39B36EC7521DDE30D63 Validity Not Before: Sep 5 04:37:34 2025 GMT Not After : Sep 12 04:37:34 2025 GMT Subject: CN=68ba690f-28fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c5:7c:55:c1:b2:4c:75:8d:6e:fb:66:2d:59: e4:90:a0:26:8f:c6:6e:1b:52:8f:23:7f:e3:9c:84: 05:9d:11:2c:9a:3a:4e:8f:e6:2b:1d:76:83:5e:9e: 5f:3a:a3:b6:14:0f:02:6d:9e:8a:fa:86:bf:8c:5a: ab:bb:b3:72:a2:cb:62:5e:6d:69:74:1b:93:61:9a: b5:65:14:ff:64:dd:b5:17:8e:f2:d2:31:b4:f1:c6: 50:2a:68:4b:3f:f1:6b:d0:be:b1:c2:27:47:b0:ea: b9:79:a5:b5:73:bb:9f:64:58:72:16:fe:25:e7:99: ab:ab:03:b0:63:77:3e:20:6e:8c:ae:15:39:db:2f: 21:1d:49:c5:77:f9:a6:39:7d:23:c8:3f:35:a4:66: 20:4b:e3:30:1c:08:bc:f3:f5:c0:27:24:01:4d:00: 75:ce:04:5e:24:ed:60:da:d3:e9:d9:f6:91:35:c9: f7:de:21:0e:f1:25:17:de:c4:47:f4:08:b7:fc:cc: 5f:83:05:97:7c:51:50:1d:2a:9e:c8:8a:be:d0:da: b9:cb:5e:01:76:47:aa:10:b3:e9:c8:c1:50:fe:5b: 26:e0:f6:87:6f:38:3c:fa:bc:2e:ad:47:31:36:08: e1:a3:e8:70:cb:fc:45:99:c2:ce:e0:d8:50:7c:85: 61:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:FB:AB:4A:41:89:52:5D:8C:A5:A5:E6:C7:26:2B:94:21:56:3B:67 X509v3 Authority Key Identifier: keyid:91:29:5B:BB:75:BF:AA:EB:95:31:B3:9B:36:EC:75:21:DD:E3:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSlbu3W_quuVMbObNux1Id3jDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D9B2/0A6F3B42915511EEA4C0F668C4F9AE02/kSlbu3W_quuVMbObNux1Id3jDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:fd:c5:ca:6f:e0:d2:19:b7:06:fd:93:79:3e:2e:5e:cd:27: b6:c1:31:cd:30:88:e8:4f:26:58:7b:15:38:f0:8b:09:1d:4a: 2f:57:ce:ea:b9:2b:e9:a7:16:c3:66:31:ff:3f:d4:a8:2f:27: bd:6b:d5:02:f4:16:fd:6b:73:2c:11:da:a5:ab:85:69:78:eb: 10:51:ed:a4:46:da:1b:a6:97:a7:40:40:47:cb:94:7d:7a:20: 7f:e2:13:af:6a:63:73:fd:0a:f1:d5:ad:f8:a3:b7:84:01:09: 4f:ea:ee:f1:7e:3a:78:ff:be:9f:64:ce:50:31:dc:49:f6:a2: f8:82:b7:91:9b:41:33:85:19:60:f2:1c:bd:a7:36:a3:73:a8: 0d:30:16:88:fd:4d:b0:22:2b:9e:c8:47:8e:30:66:27:85:eb: 85:eb:99:5b:32:a1:96:ec:91:eb:b6:5d:56:5e:54:1a:9c:3f: e4:8a:a4:c2:39:18:3a:b4:00:bf:43:13:45:28:51:12:eb:2d: b3:56:62:f9:2a:56:c8:28:69:fc:5f:24:23:d1:38:f2:77:16: 59:f4:da:74:78:56:91:b7:71:fb:2f:b4:16:a0:cb:10:a5:e4: 5b:90:de:9c:70:23:9c:5b:61:10:61:35:2d:9a:b6:00:56:58: 4d:41:c8:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUQ5QjIxMTAvBgNVBAUTKDkxMjk1QkJCNzVCRkFBRUI5NTMxQjM5QjM2RUM3NTIx RERFMzBENjMwHhcNMjUwOTA1MDQzNzM0WhcNMjUwOTEyMDQzNzM0WjAYMRYwFAYD VQQDEw02OGJhNjkwZi0yOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8V8VcGyTHWNbvtmLVnkkKAmj8ZuG1KPI3/jnIQFnREsmjpOj+YrHXaDXp5f OqO2FA8CbZ6K+oa/jFqru7NyostiXm1pdBuTYZq1ZRT/ZN21F47y0jG08cZQKmhL P/Fr0L6xwidHsOq5eaW1c7ufZFhyFv4l55mrqwOwY3c+IG6MrhU52y8hHUnFd/mm OX0jyD81pGYgS+MwHAi88/XAJyQBTQB1zgReJO1g2tPp2faRNcn33iEO8SUX3sRH 9Ai3/MxfgwWXfFFQHSqeyIq+0Nq5y14BdkeqELPpyMFQ/lsm4PaHbzg8+rwurUcx Ngjho+hwy/xFmcLO4NhQfIVh5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJj7q0pB iVJdjKWl5scmK5QhVjtnMB8GA1UdIwQYMBaAFJEpW7t1v6rrlTGzmzbsdSHd4w1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRDlCMi8wQTZGM0I0Mjkx NTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1dVZNYk9iTnV4MUlkM2pE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTbGJ1M1dfcXV1Vk1iT2JOdXgxSWQzakRXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDlCMi8wQTZGM0I0MjkxNTUxMUVFQTRDMEY2NjhDNEY5QUUwMi9rU2xidTNXX3F1 dVZNYk9iTnV4MUlkM2pEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCC/cXKb+DSGbcG/ZN5Pi5ezSe2wTHNMIjoTyZYexU48IsJHUovV87q uSvppxbDZjH/P9SoLye9a9UC9Bb9a3MsEdqlq4VpeOsQUe2kRtobppenQEBHy5R9 eiB/4hOvamNz/Qrx1a34o7eEAQlP6u7xfjp4/76fZM5QMdxJ9qL4greRm0EzhRlg 8hy9pzajc6gNMBaI/U2wIiueyEeOMGYnheuF65lbMqGW7JHrtl1WXlQanD/kiqTC ORg6tAC/QxNFKFES6y2zVmL5KlbIKGn8XyQj0TjydxZZ9Np0eFaRt3H7L7QWoMsQ peRbkN6ccCOcW2EQYTUtmrYAVlhNQcgv -----END CERTIFICATE-----Generated at Sat Sep 6 16:02:12 2025 by rpki-client