$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: N//C8sRnJjVPwnFApDKyldMGNjGgutvrHMyHUjSwv7Q= Subject key identifier: 76:E5:51:96:D3:59:B0:7E:05:9F:14:F8:3E:65:D7:83:0C:59:F5:FF Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0151 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 014D Signing time: Tue 09 Sep 2025 04:21:21 +0000 Manifest this update: Tue 09 Sep 2025 04:21:21 +0000 Manifest next update: Tue 16 Sep 2025 04:21:21 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: 8yhkfHLQx9fA2TWq6OR/R6quod/FulsW2ITjFF1s46E=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:21:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 337 (0x151) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Sep 9 04:21:21 2025 GMT Not After : Sep 16 04:21:21 2025 GMT Subject: CN=68bfab41-f466 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:85:d8:3d:6d:d9:a6:b9:b8:e2:6e:91:b9:e4: 71:fe:bb:11:07:70:91:30:94:50:ab:cb:c2:fc:f2: d0:3e:1b:4f:7b:31:bd:19:13:3c:8c:d8:5d:f3:dd: 17:20:a9:5f:7b:bb:bd:d3:c7:29:e8:af:aa:a6:24: b1:56:15:a7:fe:0e:dc:c6:da:41:0f:07:9e:a6:07: c7:14:03:97:62:ee:4d:82:5d:7f:15:e8:9e:79:97: b5:f6:22:9f:82:94:6d:ea:68:a5:86:d0:64:26:f8: d7:22:2c:54:56:a9:4c:63:a9:5d:88:73:22:65:d8: 04:03:c4:08:2d:58:13:92:19:8d:e1:6c:fb:03:fd: 4d:e0:a8:79:54:54:01:47:dd:b2:49:ac:a0:26:b3: d8:2b:14:f1:29:40:03:ba:dc:94:9e:5c:4e:07:bb: 81:f9:71:33:75:46:1d:39:57:88:6d:56:c2:bb:84: b0:ca:12:65:05:7d:28:e5:f0:7f:b7:35:f9:56:d6: 79:13:55:7d:01:18:51:4e:45:d5:35:4b:13:ba:61: 28:8e:f4:b2:95:ce:42:48:d3:c9:ee:81:6e:bb:f8: 98:27:2b:c6:28:37:6d:98:40:61:79:de:ff:56:4a: cf:1b:df:b0:a6:a3:d5:88:74:0c:66:a5:0f:d3:5a: 18:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:E5:51:96:D3:59:B0:7E:05:9F:14:F8:3E:65:D7:83:0C:59:F5:FF X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:33:95:1a:c0:49:73:5b:15:70:60:e7:65:4d:3a:07:b3:d6: d1:f4:07:a8:cf:b0:39:99:e1:d4:22:78:d9:26:dc:8a:bd:c2: 3c:57:20:01:ff:3b:09:2d:df:5f:69:7d:c0:99:0b:19:e4:cd: fc:09:59:2a:a3:52:d0:d5:e0:7d:c0:1b:1e:08:4f:79:bd:9c: fe:1f:f4:ea:05:f0:a7:f2:c6:c6:54:10:78:68:a1:0d:81:cf: de:7c:58:2c:fd:cf:67:77:48:55:97:25:88:ef:df:69:26:c5: 2e:6c:40:44:13:63:23:53:69:8a:5b:fe:6d:8e:17:be:ed:17: 4c:95:dd:58:96:0b:e2:2a:22:89:81:ff:2f:b9:17:23:26:0e: eb:06:d8:30:ab:7e:46:e2:81:da:08:2e:3c:9a:b6:cd:9e:6a: a1:67:f8:eb:6b:19:6d:5f:88:98:61:1d:3f:06:7c:bb:0f:14: e6:82:d3:ce:71:d3:ff:2d:6e:9b:a5:98:7f:fb:bf:8f:06:02: 58:fa:c3:06:4a:7d:d9:45:53:2e:90:7c:8f:67:50:c4:d3:01: 4f:69:6e:91:c3:22:90:db:33:0f:93:43:36:de:a2:68:24:49: 48:27:bf:26:61:b3:ca:c9:7e:a9:8b:c9:67:12:73:e5:0d:af: eb:01:56:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUwOTA5MDQyMTIxWhcNMjUwOTE2MDQyMTIxWjAYMRYwFAYD VQQDEw02OGJmYWI0MS1mNDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzoXYPW3Zprm44m6RueRx/rsRB3CRMJRQq8vC/PLQPhtPezG9GRM8jNhd890X IKlfe7u908cp6K+qpiSxVhWn/g7cxtpBDweepgfHFAOXYu5Ngl1/FeieeZe19iKf gpRt6milhtBkJvjXIixUVqlMY6ldiHMiZdgEA8QILVgTkhmN4Wz7A/1N4Kh5VFQB R92ySaygJrPYKxTxKUADutyUnlxOB7uB+XEzdUYdOVeIbVbCu4SwyhJlBX0o5fB/ tzX5VtZ5E1V9ARhRTkXVNUsTumEojvSylc5CSNPJ7oFuu/iYJyvGKDdtmEBhed7/ VkrPG9+wpqPViHQMZqUP01oYtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHblUZbT WbB+BZ8U+D5l14MMWfX/MB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBjM5UawElzWxVwYOdlTToHs9bR9Aeoz7A5meHUInjZJtyKvcI8VyAB /zsJLd9faX3AmQsZ5M38CVkqo1LQ1eB9wBseCE95vZz+H/TqBfCn8sbGVBB4aKEN gc/efFgs/c9nd0hVlyWI799pJsUubEBEE2MjU2mKW/5tjhe+7RdMld1YlgviKiKJ gf8vuRcjJg7rBtgwq35G4oHaCC48mrbNnmqhZ/jraxltX4iYYR0/Bny7DxTmgtPO cdP/LW6bpZh/+7+PBgJY+sMGSn3ZRVMukHyPZ1DE0wFPaW6RwyKQ2zMPk0M23qJo JElIJ78mYbPKyX6pi8lnEnPlDa/rAVbp -----END CERTIFICATE-----Generated at Tue Sep 9 09:52:28 2025 by rpki-client