$ rpki-client -vvf rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft File: pkvkSssA5L2uRJGw-gzXCZ0scnw.mft (raw, json) Hash identifier: F8j2Mp6E6HC3btlepbCaG9gD/+0yi1D9uNcPUC1tF6s= Subject key identifier: 6F:B8:84:85:A4:7B:A0:B9:CB:A5:1F:4A:4E:CF:22:10:02:5B:7C:9D Authority key identifier: A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C Certificate issuer: /CN=A91288D9/serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Certificate serial: 94 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft Manifest number: 92 Signing time: Thu 04 Sep 2025 19:24:37 +0000 Manifest this update: Thu 04 Sep 2025 19:24:37 +0000 Manifest next update: Thu 11 Sep 2025 19:24:37 +0000 Files and hashes: 1: pkvkSssA5L2uRJGw-gzXCZ0scnw.crl (hash: tuHSteYGto5JDEjicCGv0Sr6iG3HrJBAZOVQTE1KPuA=) 2: 8D431594FFDF11EF8DF72930C4F9AE02.roa (hash: pDBpwWzy3RFOzY6mOa1pibkze94QAdG3zJbynRenhAw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:24:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91288D9, serialNumber=A64BE44ACB00E4BDAE4491B0FA0CD7099D2C727C Validity Not Before: Sep 4 19:24:37 2025 GMT Not After : Sep 11 19:24:37 2025 GMT Subject: CN=68b9e775-d4c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:36:31:16:a8:d4:9c:7f:f0:eb:8c:af:fe:c1: 10:ac:d0:5c:8f:51:cb:7e:98:b5:54:70:b1:41:0e: a6:79:dd:04:e9:5d:69:f1:41:92:8f:26:7a:54:06: 10:07:ba:0e:d3:74:33:63:81:09:40:e4:e4:03:80: 1b:b4:00:d8:9e:bd:39:18:68:46:f1:6b:4f:2e:8a: bd:54:dd:97:5b:c9:89:5b:f9:72:37:d5:40:9f:6f: 51:7f:0d:e9:a5:57:08:2a:b2:5b:d0:85:8b:99:c7: 41:08:5f:f6:57:b5:b4:98:92:8e:e8:69:02:af:7e: bd:20:97:80:07:5a:af:da:29:93:47:dd:1f:7d:d3: 09:c5:99:2b:79:3a:e6:20:9b:f0:30:71:07:8c:7f: aa:36:93:dc:46:5c:a3:c2:cb:f2:f3:f6:5c:80:82: cf:2e:87:08:08:e5:62:a9:57:62:32:b7:1c:c7:55: 47:60:71:89:a8:f0:b8:02:50:f4:fd:11:bf:b6:4b: f5:f5:82:07:6e:97:72:4e:30:10:8a:06:d8:91:3a: ce:c1:ba:6b:4a:e7:46:71:48:02:2e:65:b0:a8:cf: 9d:ca:b9:ed:bb:da:b2:33:b2:9d:e2:30:d9:39:0c: 4a:33:88:14:88:d5:85:7b:9c:2d:ec:81:00:24:f0: 26:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:B8:84:85:A4:7B:A0:B9:CB:A5:1F:4A:4E:CF:22:10:02:5B:7C:9D X509v3 Authority Key Identifier: keyid:A6:4B:E4:4A:CB:00:E4:BD:AE:44:91:B0:FA:0C:D7:09:9D:2C:72:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pkvkSssA5L2uRJGw-gzXCZ0scnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91288D9/F83E3FCEADBC11EFB302983EC4F9AE02/pkvkSssA5L2uRJGw-gzXCZ0scnw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:38:66:75:11:75:cb:39:3d:b7:53:7a:76:5a:e3:54:e7:b0: 07:30:ee:50:30:98:a3:4a:7e:89:6b:dc:00:c4:33:11:ab:f5: 35:b5:ff:56:2b:c9:a4:05:23:a3:4d:65:32:b6:b1:d0:29:75: e8:b8:fe:c1:d5:32:4d:0f:2a:05:2f:dc:e8:d3:ed:6d:bd:29: 10:6d:af:53:94:e9:02:52:82:07:ec:58:e2:2a:0a:ef:90:4c: 2d:90:22:2c:23:e1:84:da:07:dd:ae:4c:ae:16:50:d7:ee:4b: c5:ca:48:29:ae:8d:64:dc:7a:39:e9:42:d1:de:0a:4a:c7:74: 75:c0:38:cd:76:43:6b:fc:65:47:7b:fa:1a:1c:16:b2:0f:f1: 3e:5f:b9:d4:66:58:cd:4e:e4:90:d3:40:7b:06:88:03:97:6f: a5:45:d0:9f:8b:ea:a7:57:05:b7:d9:15:10:3e:a2:60:e5:24: bc:06:47:6e:c4:bc:1a:77:01:78:c5:75:5c:72:a4:a8:c1:20: ba:d1:ef:3e:2b:79:66:56:21:fb:ce:6e:80:d8:17:b6:7c:df: 8a:b8:4b:f1:0a:3f:d2:fb:e4:a2:4a:7e:28:d4:4a:37:24:49: 20:15:e0:5a:86:b1:3f:34:32:ed:97:88:65:d3:13:89:19:73: 5c:24:4e:6c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg4RDkxMTAvBgNVBAUTKEE2NEJFNDRBQ0IwMEU0QkRBRTQ0OTFCMEZBMENENzA5 OUQyQzcyN0MwHhcNMjUwOTA0MTkyNDM3WhcNMjUwOTExMTkyNDM3WjAYMRYwFAYD VQQDEw02OGI5ZTc3NS1kNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TYxFqjUnH/w64yv/sEQrNBcj1HLfpi1VHCxQQ6med0E6V1p8UGSjyZ6VAYQ B7oO03QzY4EJQOTkA4AbtADYnr05GGhG8WtPLoq9VN2XW8mJW/lyN9VAn29Rfw3p pVcIKrJb0IWLmcdBCF/2V7W0mJKO6GkCr369IJeAB1qv2imTR90ffdMJxZkreTrm IJvwMHEHjH+qNpPcRlyjwsvy8/ZcgILPLocICOViqVdiMrccx1VHYHGJqPC4AlD0 /RG/tkv19YIHbpdyTjAQigbYkTrOwbprSudGcUgCLmWwqM+dyrntu9qyM7Kd4jDZ OQxKM4gUiNWFe5wt7IEAJPAmewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG+4hIWk e6C5y6UfSk7PIhACW3ydMB8GA1UdIwQYMBaAFKZL5ErLAOS9rkSRsPoM1wmdLHJ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODhEOS9GODNFM0ZDRUFE QkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVMMnVSSkd3LWd6WENaMHNj bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3BrdmtTc3NBNUwydVJKR3ctZ3pYQ1owc2Nudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODhEOS9GODNFM0ZDRUFEQkMxMUVGQjMwMjk4M0VDNEY5QUUwMi9wa3ZrU3NzQTVM MnVSSkd3LWd6WENaMHNjbncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnOGZ1EXXLOT23U3p2WuNU57AHMO5QMJijSn6Ja9wAxDMRq/U1tf9W K8mkBSOjTWUytrHQKXXouP7B1TJNDyoFL9zo0+1tvSkQba9TlOkCUoIH7FjiKgrv kEwtkCIsI+GE2gfdrkyuFlDX7kvFykgpro1k3Ho56ULR3gpKx3R1wDjNdkNr/GVH e/oaHBayD/E+X7nUZljNTuSQ00B7BogDl2+lRdCfi+qnVwW32RUQPqJg5SS8Bkdu xLwadwF4xXVccqSowSC60e8+K3lmViH7zm6A2Be2fN+KuEvxCj/S++SiSn4o1Eo3 JEkgFeBahrE/NDLtl4hl0xOJGXNcJE5s -----END CERTIFICATE-----Generated at Sat Sep 6 15:29:19 2025 by rpki-client