$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: lCD00iqiaXNO0DB54sjcKzcJ096RQRNYKfq6tVs+0j4= Subject key identifier: 07:3A:52:CA:76:CC:5E:5B:4E:77:16:58:78:6F:BD:F7:DA:DA:DB:59 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: B1 Signing time: Wed 17 Sep 2025 06:43:47 +0000 Manifest this update: Wed 17 Sep 2025 06:43:46 +0000 Manifest next update: Wed 24 Sep 2025 06:43:46 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: MpZIk1KKJE6aANP78tGPdfd1RqVynZwp/y5748sGavI=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 06:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 178 (0xb2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Sep 17 06:43:46 2025 GMT Not After : Sep 24 06:43:46 2025 GMT Subject: CN=68ca58a2-d0fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ae:c3:f4:c5:fe:79:49:6d:80:f6:17:ea:b5: 97:85:cc:d5:18:12:62:6a:59:7c:4f:20:92:9b:93: b6:f1:36:d5:bf:da:ca:33:e2:d2:0f:8d:98:5f:7b: ce:55:d1:94:d1:98:5a:32:7e:93:d4:ac:d3:36:ab: 0e:7a:a8:45:d9:73:a9:6d:0d:d6:9e:56:ba:07:f0: 89:a8:35:d3:43:51:79:cf:fe:4d:97:da:3e:45:76: 67:85:b2:5f:19:dd:8a:8a:99:e9:95:7b:8a:08:d2: 39:38:07:ae:31:4c:55:26:7e:54:92:2c:e3:28:f4: 55:c9:3e:4a:46:54:76:f2:f9:77:0c:66:13:d2:aa: b3:57:84:67:2a:c6:69:09:28:8f:08:4a:d0:e6:ce: ab:9e:24:09:02:00:50:e2:30:d3:02:99:c0:f7:4d: 81:89:f3:84:9c:d9:ef:7d:ba:c4:3e:bc:2d:73:2d: 4c:1e:39:6d:df:ed:e8:49:93:ad:d8:90:f4:7a:a2: 1d:c6:c3:57:bd:87:b0:6c:8f:8a:8d:5e:7c:11:ee: b7:79:53:ef:ad:ed:3a:d6:5b:3f:28:35:68:19:68: 39:d0:30:f9:0e:92:eb:48:4e:47:a7:5e:e4:d7:bf: 12:83:c0:03:0e:bd:9c:83:ed:04:db:37:ad:92:23: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:3A:52:CA:76:CC:5E:5B:4E:77:16:58:78:6F:BD:F7:DA:DA:DB:59 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6f:49:1b:c9:04:b0:0b:8a:a3:d3:64:b1:3e:a6:ff:25:3a:63: 82:4f:a7:2d:24:04:f7:48:01:ff:0c:8b:70:63:67:15:15:ef: 6a:e1:78:55:79:36:53:bd:9f:95:85:4a:07:4b:1e:b4:db:88: be:5c:01:52:65:53:42:ec:43:c8:de:3a:80:c3:04:7f:5f:19: 51:7e:b2:30:1f:0d:56:ae:67:fa:10:0c:e0:73:e1:2a:a7:cf: 00:0d:7d:09:86:91:99:71:89:7a:bf:16:79:3c:a2:3f:0c:01: 5d:3a:d4:be:be:b0:da:d8:89:51:65:cd:83:38:09:e6:24:4e: 50:7b:f6:03:82:d9:b8:48:6f:a1:29:56:08:f3:2e:70:de:55: 4c:4c:64:c3:7e:1e:6a:0b:bc:e5:67:3d:3b:70:7d:fc:81:4e: ba:16:18:ef:d2:b6:b9:b5:38:a4:58:3c:2d:a4:d8:d2:51:dc: 32:df:68:e7:a4:fd:5c:f8:2e:c4:86:94:a7:39:ed:27:6f:3e: d2:9d:69:3d:78:4a:50:ab:e7:ca:a3:2c:74:f9:61:53:c9:98: b8:0c:dd:ce:08:71:57:cc:c8:6a:27:00:8c:ee:86:bc:04:8e: 4d:9f:8a:b8:0f:e2:a5:af:39:d1:21:e5:9c:a1:ff:89:ae:c5: 9d:8d:b1:b3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUwOTE3MDY0MzQ2WhcNMjUwOTI0MDY0MzQ2WjAYMRYwFAYD VQQDEw02OGNhNThhMi1kMGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA067D9MX+eUltgPYX6rWXhczVGBJiall8TyCSm5O28TbVv9rKM+LSD42YX3vO VdGU0ZhaMn6T1KzTNqsOeqhF2XOpbQ3Wnla6B/CJqDXTQ1F5z/5Nl9o+RXZnhbJf Gd2KipnplXuKCNI5OAeuMUxVJn5UkizjKPRVyT5KRlR28vl3DGYT0qqzV4RnKsZp CSiPCErQ5s6rniQJAgBQ4jDTApnA902BifOEnNnvfbrEPrwtcy1MHjlt3+3oSZOt 2JD0eqIdxsNXvYewbI+KjV58Ee63eVPvre061ls/KDVoGWg50DD5DpLrSE5Hp17k 178Sg8ADDr2cg+0E2zetkiNaAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAc6Usp2 zF5bTncWWHhvvffa2ttZMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBvSRvJBLALiqPTZLE+pv8lOmOCT6ctJAT3SAH/DItwY2cVFe9q4XhV eTZTvZ+VhUoHSx6024i+XAFSZVNC7EPI3jqAwwR/XxlRfrIwHw1Wrmf6EAzgc+Eq p88ADX0JhpGZcYl6vxZ5PKI/DAFdOtS+vrDa2IlRZc2DOAnmJE5Qe/YDgtm4SG+h KVYI8y5w3lVMTGTDfh5qC7zlZz07cH38gU66Fhjv0ra5tTikWDwtpNjSUdwy32jn pP1c+C7EhpSnOe0nbz7SnWk9eEpQq+fKoyx0+WFTyZi4DN3OCHFXzMhqJwCM7oa8 BI5Nn4q4D+KlrznRIeWcof+JrsWdjbGz -----END CERTIFICATE-----Generated at Fri Sep 19 05:50:18 2025 by rpki-client