$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft File: KdzyaXujSl1MV_LtlnGNAxu8VjA.mft (raw, json) Hash identifier: Ydd3qyNpmSjlEN3Z/UkEL1uQZOCd/ouyqXAf6/OkzfU= Subject key identifier: 3B:B8:AA:F0:55:76:6A:0B:3D:DB:19:52:8C:87:3E:FA:FF:42:DB:62 Authority key identifier: 29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 Certificate issuer: /CN=A91A1103/serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Certificate serial: 163E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft Manifest number: 1634 Signing time: Thu 04 Sep 2025 16:52:15 +0000 Manifest this update: Thu 04 Sep 2025 16:52:14 +0000 Manifest next update: Thu 11 Sep 2025 16:52:14 +0000 Files and hashes: 1: KdzyaXujSl1MV_LtlnGNAxu8VjA.crl (hash: 5eGwougVW4qaLg2P0gP96bx0cNGG+5/XkU2pvsWt4pw=) 2: 1C85059C1EB911E88533FA4EC4F9AE02.roa (hash: RqHN2PwZe21iOjQw65O1dXW58VJkxhmOGxQkFQUXslk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 16:52:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5694 (0x163e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1103, serialNumber=29DCF2697BA34A5D4C57F2ED96718D031BBC5630 Validity Not Before: Sep 4 16:52:14 2025 GMT Not After : Sep 11 16:52:14 2025 GMT Subject: CN=68b9c3be-4ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cb:a5:0e:25:3f:11:db:5b:25:95:5c:59:fa: 5a:3b:a5:27:13:32:58:53:9c:fa:72:6e:ce:59:74: db:29:b9:c9:1a:d8:7d:a3:89:da:56:bb:fd:08:b8: b4:d8:ce:e7:4e:dc:e5:b5:2e:68:d8:6d:55:ca:86: 5d:9a:0f:c6:7c:6b:a5:ce:c4:e4:ad:ef:d9:4e:86: a5:6f:f6:d3:6e:1d:11:46:7f:6d:34:2d:e4:b3:54: b8:90:e5:ff:40:22:55:a2:54:4a:3c:e5:4d:f4:7d: 41:32:02:09:df:9c:ab:cb:3d:1e:37:a3:d9:44:89: b9:17:3b:5d:fc:0d:6b:60:10:6c:7d:e2:cd:39:d2: 8d:3c:a2:5c:2a:ad:88:43:7b:8b:43:12:46:90:7b: e9:94:f9:44:75:43:b3:af:97:60:46:d6:a6:4c:f1: 81:25:95:96:47:76:8a:64:4a:36:ee:41:6a:26:0b: 2c:c0:9c:df:8c:ff:5f:18:ed:7c:3c:8a:43:5b:00: 80:59:9e:e6:52:d4:29:eb:b0:ff:21:f3:b7:38:88: 66:26:4f:a5:97:5a:b4:13:a2:a0:f8:4e:d0:0c:1d: b6:91:b3:0c:78:3d:59:92:6c:34:ae:80:5e:4f:4b: 85:d1:be:6a:65:64:02:f5:cf:89:88:07:87:6f:6a: 99:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:B8:AA:F0:55:76:6A:0B:3D:DB:19:52:8C:87:3E:FA:FF:42:DB:62 X509v3 Authority Key Identifier: keyid:29:DC:F2:69:7B:A3:4A:5D:4C:57:F2:ED:96:71:8D:03:1B:BC:56:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdzyaXujSl1MV_LtlnGNAxu8VjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1103/2095AA621A0711E8BE24A558C4F9AE02/KdzyaXujSl1MV_LtlnGNAxu8VjA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:b4:47:56:4d:49:64:29:a0:ed:79:67:a4:b9:9c:75:db:4d: 08:b0:21:2e:6a:6f:0f:ce:ec:b9:d9:6e:95:90:01:2d:c2:f7: 5d:ce:ff:a6:fb:92:4d:9b:3e:fe:e3:c7:0a:ea:0f:4c:73:a5: 04:55:d4:da:06:fc:fa:38:e6:0c:3a:6d:17:de:2b:05:7f:22: 89:00:da:5f:e8:39:b4:56:0a:e2:07:bc:35:a0:89:b9:31:9a: 90:3f:fa:df:5e:e8:5d:2a:16:1a:af:19:a5:e4:48:9d:3e:45: a6:d8:7b:4a:e1:8d:bb:20:41:f0:30:6e:d5:f2:8a:46:11:80: 09:40:02:47:61:92:a6:00:2b:76:5f:23:26:84:e6:0e:cc:d7: 56:61:74:0f:18:6a:ad:78:db:4d:c8:29:59:fb:7b:9e:1d:e2: bf:d0:f4:fc:be:88:30:88:4a:ba:c9:ab:6a:39:d3:a9:62:e0: 62:98:5c:62:7b:ac:14:01:9a:78:1a:7b:80:96:45:52:69:c4: 37:e7:e1:f0:2b:9a:49:a9:a1:7d:fc:d6:6e:a6:72:6c:5b:d5: e7:d9:3d:42:70:dc:cd:96:a6:4c:f1:0a:41:b8:9e:30:7a:20: b4:61:84:51:ee:32:d6:79:fb:51:10:03:75:33:88:cf:0a:42: 8c:01:af:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICFj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTExMDMxMTAvBgNVBAUTKDI5RENGMjY5N0JBMzRBNUQ0QzU3RjJFRDk2NzE4RDAz MUJCQzU2MzAwHhcNMjUwOTA0MTY1MjE0WhcNMjUwOTExMTY1MjE0WjAYMRYwFAYD VQQDEw02OGI5YzNiZS00Y2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzsulDiU/EdtbJZVcWfpaO6UnEzJYU5z6cm7OWXTbKbnJGth9o4naVrv9CLi0 2M7nTtzltS5o2G1VyoZdmg/GfGulzsTkre/ZToalb/bTbh0RRn9tNC3ks1S4kOX/ QCJVolRKPOVN9H1BMgIJ35yryz0eN6PZRIm5Fztd/A1rYBBsfeLNOdKNPKJcKq2I Q3uLQxJGkHvplPlEdUOzr5dgRtamTPGBJZWWR3aKZEo27kFqJgsswJzfjP9fGO18 PIpDWwCAWZ7mUtQp67D/IfO3OIhmJk+ll1q0E6Kg+E7QDB22kbMMeD1Zkmw0roBe T0uF0b5qZWQC9c+JiAeHb2qZiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDu4qvBV dmoLPdsZUoyHPvr/QttiMB8GA1UdIwQYMBaAFCnc8ml7o0pdTFfy7ZZxjQMbvFYw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTEwMy8yMDk1QUE2MjFB MDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNsMU1WX0x0bG5HTkF4dThW akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkenlhWHVqU2wxTVZfTHRsbkdOQXh1OFZqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTEwMy8yMDk1QUE2MjFBMDcxMUU4QkUyNEE1NThDNEY5QUUwMi9LZHp5YVh1alNs MU1WX0x0bG5HTkF4dThWakEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQARtEdWTUlkKaDteWekuZx1200IsCEuam8Pzuy52W6VkAEtwvddzv+m +5JNmz7+48cK6g9Mc6UEVdTaBvz6OOYMOm0X3isFfyKJANpf6Dm0VgriB7w1oIm5 MZqQP/rfXuhdKhYarxml5EidPkWm2HtK4Y27IEHwMG7V8opGEYAJQAJHYZKmACt2 XyMmhOYOzNdWYXQPGGqteNtNyClZ+3ueHeK/0PT8vogwiEq6yatqOdOpYuBimFxi e6wUAZp4GnuAlkVSacQ35+HwK5pJqaF9/NZupnJsW9Xn2T1CcNzNlqZM8QpBuJ4w eiC0YYRR7jLWeftREAN1M4jPCkKMAa/w -----END CERTIFICATE-----Generated at Sat Sep 6 13:14:55 2025 by rpki-client