$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: CbxSVDfnGwtAr4GkJy5XhvmE54gQpBlPaGI4VSBEVlQ= Subject key identifier: 7A:7E:A9:89:98:38:F5:20:20:77:13:CC:DD:D3:3D:57:A4:9B:93:40 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: 96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: 95 Signing time: Fri 25 Jul 2025 06:43:56 +0000 Manifest this update: Fri 25 Jul 2025 06:43:55 +0000 Manifest next update: Fri 01 Aug 2025 06:43:55 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: fk/vr7ZYcn/tUHpoM08spn0oWDXjCxoq64SQjj9DrG0=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:43:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 150 (0x96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Jul 25 06:43:55 2025 GMT Not After : Aug 1 06:43:55 2025 GMT Subject: CN=688327ac-eaf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:46:1f:1d:84:43:2f:14:f0:3b:7d:e8:59:e5: 69:7a:9c:62:10:2e:90:6f:b4:1d:ae:59:3f:83:19: d2:dd:b4:9a:84:66:67:77:90:30:ef:c2:f7:81:cd: 04:c2:39:2b:71:ba:85:1e:12:5a:73:b3:b0:7c:0a: 5c:df:51:ad:91:84:64:9f:3b:59:29:5b:58:0e:7f: 0e:c3:ac:b8:36:fd:03:45:54:18:d2:ca:00:2c:34: bb:3a:0f:69:5d:01:92:76:04:95:b1:5a:9f:c4:c4: ad:70:af:be:55:56:d8:ba:34:35:03:74:95:db:b1: db:12:6f:1e:dc:02:0a:66:f0:c3:57:b3:65:18:8a: 96:44:85:23:51:78:5e:3e:d6:81:ac:58:26:e2:9a: a0:41:59:3d:79:ab:d8:4e:4e:aa:f6:3b:7b:18:84: 3a:7f:f9:45:ad:68:5a:45:f0:ee:8b:d9:07:47:ee: 50:f5:78:d7:1f:1f:74:4b:f9:20:8a:d2:9b:fb:ef: 34:22:47:b7:00:4d:68:7b:c9:f5:eb:7c:7b:1e:7a: 23:4f:59:9d:38:51:5f:ca:78:06:88:01:1f:2c:aa: 13:28:3f:4d:0b:81:cd:de:2a:8a:45:df:1a:e4:68: 10:e5:a3:0d:5c:a3:09:af:44:a9:f8:3a:85:fc:6b: 07:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:7E:A9:89:98:38:F5:20:20:77:13:CC:DD:D3:3D:57:A4:9B:93:40 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f3:68:c9:f5:37:5e:0c:9c:83:8c:56:2a:9b:59:ac:11:4e: 0f:b8:24:c9:c7:dd:0d:b6:78:6e:a3:2f:a5:bc:97:4a:0f:9e: b3:1f:fb:0e:93:7f:ff:46:b6:0c:06:86:80:bf:e5:66:04:37: cd:8d:6f:33:76:04:5e:a0:b1:11:c8:90:64:9c:8b:11:74:db: ac:7e:23:19:41:4e:de:be:66:ad:ff:4f:eb:64:06:cd:4d:3d: 7f:fd:e6:38:9a:5c:04:c0:04:b2:bc:ab:21:96:a5:5f:29:44: e1:c5:97:8f:2f:c8:61:f5:8c:0f:aa:36:5e:ce:20:90:12:a5: 5e:ca:24:1b:e5:b7:ce:f8:16:d1:7b:b9:d2:b3:fc:c9:7d:aa: 88:c1:17:f0:ee:23:eb:7f:5e:f7:11:01:7e:85:ae:38:7a:18: 28:ad:6b:05:de:86:b2:70:85:9e:bc:58:ae:ef:d9:11:ab:e4: 35:0b:69:b0:88:56:50:5c:41:45:5a:cf:17:14:7d:54:45:37: 8a:26:30:e6:d6:91:89:76:f1:28:82:1e:78:28:47:74:60:fa: e7:f9:0e:1e:a4:74:a9:31:15:79:74:7e:aa:c3:17:d2:01:e8: 7e:b8:45:cd:dc:fd:a9:8f:a2:ab:b4:de:e0:92:6a:8d:d0:1f: 9b:8c:79:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUwNzI1MDY0MzU1WhcNMjUwODAxMDY0MzU1WjAYMRYwFAYD VQQDEw02ODgzMjdhYy1lYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2EYfHYRDLxTwO33oWeVpepxiEC6Qb7Qdrlk/gxnS3bSahGZnd5Aw78L3gc0E wjkrcbqFHhJac7OwfApc31GtkYRknztZKVtYDn8Ow6y4Nv0DRVQY0soALDS7Og9p XQGSdgSVsVqfxMStcK++VVbYujQ1A3SV27HbEm8e3AIKZvDDV7NlGIqWRIUjUXhe PtaBrFgm4pqgQVk9eavYTk6q9jt7GIQ6f/lFrWhaRfDui9kHR+5Q9XjXHx90S/kg itKb++80Ike3AE1oe8n163x7HnojT1mdOFFfyngGiAEfLKoTKD9NC4HN3iqKRd8a 5GgQ5aMNXKMJr0Sp+DqF/GsHpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHp+qYmY OPUgIHcTzN3TPVekm5NAMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA982jJ9TdeDJyDjFYqm1msEU4PuCTJx90Ntnhuoy+lvJdKD56zH/sO k3//RrYMBoaAv+VmBDfNjW8zdgReoLERyJBknIsRdNusfiMZQU7evmat/0/rZAbN TT1//eY4mlwEwASyvKshlqVfKUThxZePL8hh9YwPqjZeziCQEqVeyiQb5bfO+BbR e7nSs/zJfaqIwRfw7iPrf173EQF+ha44ehgorWsF3oaycIWevFiu79kRq+Q1C2mw iFZQXEFFWs8XFH1URTeKJjDm1pGJdvEogh54KEd0YPrn+Q4epHSpMRV5dH6qwxfS Aeh+uEXN3P2pj6KrtN7gkmqN0B+bjHmL -----END CERTIFICATE-----Generated at Sat Jul 26 21:16:01 2025 by rpki-client