$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: Ed5FUqgkYTJ+HoNA45m9GtkLqJHtsyN5vlNEZTzO9Tc= Subject key identifier: 22:6B:DF:8D:E6:CD:6B:D7:35:9E:6C:A8:04:DA:C5:20:BC:BB:07:7E Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: E4 Signing time: Fri 05 Sep 2025 05:48:18 +0000 Manifest this update: Fri 05 Sep 2025 05:48:18 +0000 Manifest next update: Fri 12 Sep 2025 05:48:18 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: piD6AGQQlGw/co5OKoyzyA+bvTvkK3aI4UlvEFUs+jQ=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 05:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Sep 5 05:48:18 2025 GMT Not After : Sep 12 05:48:18 2025 GMT Subject: CN=68ba79a2-d492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:39:b5:ce:77:2b:9d:69:b5:c0:55:3f:4c:08: 7d:f0:05:78:7a:1e:1f:8d:e7:77:93:85:8b:b8:df: c5:0c:eb:3f:47:da:74:8f:45:6b:fa:be:e8:8a:d0: 40:03:96:09:02:f2:58:1f:de:92:54:70:9c:5d:7a: f6:36:dd:ae:b6:b0:41:e3:7c:15:0f:87:e8:d2:12: 2e:e7:ad:f1:a8:39:1b:af:11:2e:16:68:17:76:ce: 97:7c:de:86:53:fb:04:c0:87:67:d5:79:a5:ee:32: ae:61:b0:08:4f:19:58:2e:b0:37:b9:3a:31:2e:3a: c4:96:8f:85:08:ba:1d:5a:dc:79:f9:b1:3f:7e:1d: a3:57:9c:de:8a:41:20:5e:37:e8:e0:ee:c9:9e:98: e4:ec:1c:ba:e4:c0:27:23:08:1a:96:cd:9b:55:73: ed:94:3e:2e:84:7f:40:11:31:71:6a:6e:dc:a2:f2: 4f:8f:c7:0e:b5:4a:ca:81:45:3a:5f:32:c9:ff:3c: ed:28:81:c8:49:e4:63:29:58:fe:7c:e4:6c:eb:8b: 44:a2:81:0b:5a:72:08:c6:1e:ae:58:a9:58:7b:3d: 7c:5a:fd:7c:4a:54:de:98:dc:58:72:ea:28:cd:2a: d2:23:1c:52:33:30:a8:6c:35:a5:92:56:2f:92:72: a6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:6B:DF:8D:E6:CD:6B:D7:35:9E:6C:A8:04:DA:C5:20:BC:BB:07:7E X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:c2:9d:69:dd:9f:5c:39:34:ba:6d:d0:52:55:9c:72:40:cb: e8:21:15:e1:71:17:67:d8:ef:af:aa:d4:c1:b7:a3:2e:8a:79: 23:73:1f:b3:d8:77:d8:28:12:ae:e7:0f:df:e6:82:6f:3a:80: cc:5f:41:cd:f9:ab:6d:e2:5f:64:b7:e6:18:23:80:57:31:54: 85:61:c3:86:0c:50:e0:3d:f6:83:e8:bf:43:1e:92:20:e0:45: 30:82:16:75:78:1d:c2:23:fd:44:4c:cc:6a:c5:e9:3b:8b:ca: eb:d6:f2:3c:54:c7:d3:46:6d:c1:10:e2:f0:74:bf:85:09:a0: 04:12:75:67:1e:c5:1f:30:5a:96:fb:54:0a:28:84:b2:57:a1: b6:aa:9d:8c:c5:72:1d:ea:3b:d0:74:16:1b:bb:07:21:6e:0e: 29:2f:10:5f:e9:5e:48:3a:5d:fa:e7:b3:16:de:0b:46:06:57: 27:02:f0:53:25:65:11:64:28:b1:83:f3:25:51:52:05:b0:89: 16:a2:8f:5e:8c:c5:a1:c8:bf:e2:09:25:6f:b9:9e:5f:32:7a: 3e:3d:c7:af:27:a3:ae:9a:76:65:74:68:15:05:76:85:67:33: cc:c1:c7:33:30:d7:f2:7b:a0:30:f1:c3:e2:05:24:c9:53:f6: 58:03:ca:06 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwOTA1MDU0ODE4WhcNMjUwOTEyMDU0ODE4WjAYMRYwFAYD VQQDEw02OGJhNzlhMi1kNDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zm1zncrnWm1wFU/TAh98AV4eh4fjed3k4WLuN/FDOs/R9p0j0Vr+r7oitBA A5YJAvJYH96SVHCcXXr2Nt2utrBB43wVD4fo0hIu563xqDkbrxEuFmgXds6XfN6G U/sEwIdn1Xml7jKuYbAITxlYLrA3uToxLjrElo+FCLodWtx5+bE/fh2jV5zeikEg Xjfo4O7Jnpjk7By65MAnIwgals2bVXPtlD4uhH9AETFxam7covJPj8cOtUrKgUU6 XzLJ/zztKIHISeRjKVj+fORs64tEooELWnIIxh6uWKlYez18Wv18SlTemNxYcuoo zSrSIxxSMzCobDWlklYvknKm/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCJr343m zWvXNZ5sqATaxSC8uwd+MB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDwp1p3Z9cOTS6bdBSVZxyQMvoIRXhcRdn2O+vqtTBt6Muinkjcx+z 2HfYKBKu5w/f5oJvOoDMX0HN+att4l9kt+YYI4BXMVSFYcOGDFDgPfaD6L9DHpIg 4EUwghZ1eB3CI/1ETMxqxek7i8rr1vI8VMfTRm3BEOLwdL+FCaAEEnVnHsUfMFqW +1QKKISyV6G2qp2MxXId6jvQdBYbuwchbg4pLxBf6V5IOl3657MW3gtGBlcnAvBT JWURZCixg/MlUVIFsIkWoo9ejMWhyL/iCSVvuZ5fMno+PcevJ6OumnZldGgVBXaF ZzPMwcczMNfye6Aw8cPiBSTJU/ZYA8oG -----END CERTIFICATE-----Generated at Sat Sep 6 21:07:28 2025 by rpki-client