$ rpki-client -vvf rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft File: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft (raw, json) Hash identifier: 14X6zwsujyqsJjo9ro1XBoDUJgij6wnsLpVFE5GJKZg= Subject key identifier: 10:A4:24:90:3C:FC:83:54:0F:03:2D:27:C0:14:4D:70:35:D6:CB:10 Authority key identifier: 91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 Certificate issuer: /CN=A91478C3/serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Certificate serial: 0E92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft Manifest number: 0E8A Signing time: Thu 18 Sep 2025 17:51:35 +0000 Manifest this update: Thu 18 Sep 2025 17:51:34 +0000 Manifest next update: Thu 25 Sep 2025 17:51:34 +0000 Files and hashes: 1: kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl (hash: QRwzIYvUvl1sFmHxmWBHkrF3nbHXswWBM1Akin3jx/Y=) 2: 36477FF69D2E11E99A95DC2AC4F9AE02.roa (hash: ZyYqi6bXWhaxHbfmn8t7NJwcl5ydCuydY4LMtE+EeW4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:51:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3730 (0xe92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91478C3, serialNumber=912AB39FC7BBCBEF1CF267E9D3F719C9A4F0A114 Validity Not Before: Sep 18 17:51:34 2025 GMT Not After : Sep 25 17:51:34 2025 GMT Subject: CN=68cc46a6-aac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:5e:c0:75:11:9c:2b:24:85:fa:ad:94:ed:d6: b1:83:e8:30:5f:54:a0:03:80:fe:fe:94:21:45:fc: 93:01:03:31:06:89:77:44:d8:66:61:05:5e:90:d9: 62:29:0e:d5:ab:b0:68:7a:31:78:2a:46:12:dd:15: a3:f2:f7:73:72:57:5b:38:11:76:6b:48:d5:e4:3d: 72:63:21:cf:71:52:a1:7a:88:b0:a5:6e:82:d0:f8: 64:11:0b:9f:c9:45:90:ce:5d:9e:45:c6:e9:3e:cb: 2f:04:46:04:df:1e:9b:3f:2d:f4:40:aa:7f:45:ef: 3d:de:02:28:c4:2d:2a:77:0b:36:f7:52:78:71:44: 62:fe:d9:84:81:62:dd:6d:4e:fc:0f:4d:b6:6e:ba: 2f:f2:ef:3f:d8:1b:b9:ae:fd:dc:10:cf:34:b3:7e: 9e:14:7f:ea:9f:0f:72:7c:49:9e:16:b4:ef:77:01: ad:e5:11:99:40:a5:93:7b:d3:8c:4b:31:18:20:35: c8:6d:c1:63:f4:38:e3:6f:01:5a:28:6d:9b:b1:a2: 5d:59:a7:8b:d3:04:d0:af:bf:6f:bf:5e:48:d4:f8: 97:2e:99:74:6f:02:ac:c3:87:78:44:98:3c:89:34: 91:6d:0e:63:da:f6:83:83:eb:45:49:fe:d5:9d:d2: 69:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:A4:24:90:3C:FC:83:54:0F:03:2D:27:C0:14:4D:70:35:D6:CB:10 X509v3 Authority Key Identifier: keyid:91:2A:B3:9F:C7:BB:CB:EF:1C:F2:67:E9:D3:F7:19:C9:A4:F0:A1:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91478C3/E3D9194C9D2C11E980221829C4F9AE02/kSqzn8e7y-8c8mfp0_cZyaTwoRQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:f5:2a:12:90:ad:5a:37:8b:89:7e:bc:a9:f3:d6:d1:23:e8: da:f1:cd:80:a2:56:81:af:33:56:eb:01:df:a5:7f:23:cc:4a: 5e:30:4b:58:b9:a0:4d:0f:8e:1e:09:70:b4:c6:4f:16:f4:4a: cf:2d:76:1c:1e:c8:ab:5f:ed:bb:18:f8:fd:1d:4f:f0:48:e9: b5:74:17:d5:16:59:83:d7:5e:7b:7a:89:9c:b3:78:55:2f:88: b5:f0:05:8d:8a:92:85:e8:98:f2:bb:ca:e9:fb:0a:a2:de:76: 52:e1:60:03:52:05:b3:a9:67:7d:c6:5d:d5:15:d6:8c:73:62: b3:8b:4b:57:4f:e8:30:5c:ae:a6:28:ba:bf:f3:74:cc:bb:5c: aa:34:44:e5:b1:5f:91:f9:30:05:6b:9b:eb:c9:6f:5c:79:82: 5f:5e:60:74:b8:1f:ef:98:b9:75:41:30:42:0b:d8:50:55:90: e0:0b:cc:77:f4:55:04:5f:34:93:ab:34:2f:f8:0b:b8:4b:eb: bb:1b:c3:bb:c7:8a:c4:3c:40:4b:aa:c9:5a:04:64:2d:79:42: 62:57:e2:ba:01:31:b8:b4:98:8b:3a:f9:e4:cf:6b:79:69:8f: 73:51:9e:bf:d0:90:4c:32:35:64:e3:5c:60:a6:3b:95:40:37: 4f:8c:24:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4QzMxMTAvBgNVBAUTKDkxMkFCMzlGQzdCQkNCRUYxQ0YyNjdFOUQzRjcxOUM5 QTRGMEExMTQwHhcNMjUwOTE4MTc1MTM0WhcNMjUwOTI1MTc1MTM0WjAYMRYwFAYD VQQDEw02OGNjNDZhNi1hYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkl7AdRGcKySF+q2U7daxg+gwX1SgA4D+/pQhRfyTAQMxBol3RNhmYQVekNli KQ7Vq7BoejF4KkYS3RWj8vdzcldbOBF2a0jV5D1yYyHPcVKheoiwpW6C0PhkEQuf yUWQzl2eRcbpPssvBEYE3x6bPy30QKp/Re893gIoxC0qdws291J4cURi/tmEgWLd bU78D022brov8u8/2Bu5rv3cEM80s36eFH/qnw9yfEmeFrTvdwGt5RGZQKWTe9OM SzEYIDXIbcFj9DjjbwFaKG2bsaJdWaeL0wTQr79vv15I1PiXLpl0bwKsw4d4RJg8 iTSRbQ5j2vaDg+tFSf7VndJpPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBCkJJA8 /INUDwMtJ8AUTXA11ssQMB8GA1UdIwQYMBaAFJEqs5/Hu8vvHPJn6dP3Gcmk8KEU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzhDMy9FM0Q5MTk0QzlE MkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3ktOGM4bWZwMF9jWnlhVHdv UlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTcXpuOGU3eS04YzhtZnAwX2NaeWFUd29SUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzhDMy9FM0Q5MTk0QzlEMkMxMUU5ODAyMjE4MjlDNEY5QUUwMi9rU3F6bjhlN3kt OGM4bWZwMF9jWnlhVHdvUlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBz9SoSkK1aN4uJfryp89bRI+ja8c2AolaBrzNW6wHfpX8jzEpeMEtY uaBND44eCXC0xk8W9ErPLXYcHsirX+27GPj9HU/wSOm1dBfVFlmD1157eomcs3hV L4i18AWNipKF6Jjyu8rp+wqi3nZS4WADUgWzqWd9xl3VFdaMc2Kzi0tXT+gwXK6m KLq/83TMu1yqNETlsV+R+TAFa5vryW9ceYJfXmB0uB/vmLl1QTBCC9hQVZDgC8x3 9FUEXzSTqzQv+Au4S+u7G8O7x4rEPEBLqslaBGQteUJiV+K6ATG4tJiLOvnkz2t5 aY9zUZ6/0JBMMjVk41xgpjuVQDdPjCRA -----END CERTIFICATE-----Generated at Fri Sep 19 01:01:18 2025 by rpki-client