$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: WbiwNmEXP8nv+p1/fTPPxF+fOPh/s3ll1Xrx6ZmgDhQ= Subject key identifier: 9A:F5:E7:0F:90:39:57:CB:15:6B:5D:DC:2F:EB:3B:25:65:1A:0D:0F Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: CB Signing time: Sat 19 Jul 2025 05:53:58 +0000 Manifest this update: Sat 19 Jul 2025 05:53:58 +0000 Manifest next update: Sat 26 Jul 2025 05:53:58 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: RryDICsstM0ZxP9BF5ykxePGmZnP1+7Z+U0RvpIyJsc=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:53:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Jul 19 05:53:58 2025 GMT Not After : Jul 26 05:53:58 2025 GMT Subject: CN=687b32f6-073f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:eb:e9:aa:52:d1:ec:5c:ff:ba:97:05:c0:f2: 36:06:40:e0:8b:6d:48:6f:39:1d:15:8e:ab:0b:53: 11:d0:dc:51:ca:f9:00:b4:e8:29:41:24:66:b0:ef: c4:b6:96:d8:a3:64:49:db:38:97:98:fb:91:f8:c1: bd:e5:d8:3d:58:63:37:d2:44:fc:24:10:82:a8:68: 1f:8d:af:55:fa:7d:eb:cc:59:e5:5b:53:86:d8:03: 6c:20:60:a3:12:2a:9b:15:92:22:08:05:ba:0b:e2: 94:91:8a:6c:b4:9d:31:60:5f:20:e6:7d:7e:78:39: b4:7e:57:f5:88:0c:22:52:16:77:70:a3:ae:4d:ac: 70:ba:69:7c:e8:96:95:b6:db:62:40:9a:89:1b:ca: da:49:00:29:5e:52:b1:4d:b3:51:e4:97:7e:76:ec: 77:f2:99:2b:83:3c:66:44:c2:88:c9:00:c8:b2:67: d1:ce:e2:ce:3f:9b:49:11:5e:62:32:f5:f3:0d:cb: 7f:02:6d:51:1a:4f:79:c1:e3:5d:7a:ff:c3:c5:b2: 5a:68:d0:0f:69:0c:7f:69:c4:07:af:2c:2a:31:39: 66:97:08:4a:72:19:31:bc:45:0f:30:60:8c:33:09: fb:d9:d0:d3:a1:ae:38:3c:05:14:55:4c:87:de:f6: 40:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F5:E7:0F:90:39:57:CB:15:6B:5D:DC:2F:EB:3B:25:65:1A:0D:0F X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8f:9e:2f:b6:d4:fe:25:93:44:2a:ba:42:3e:68:00:ba:0b:7d: d6:fa:6e:fd:21:46:cb:69:94:65:ac:b6:32:8b:67:77:6e:f1: 82:9f:bd:7d:d6:a7:5b:da:d5:2a:0d:8c:a9:32:53:3a:7e:25: e7:cf:59:4a:08:eb:32:fc:42:5e:6d:bb:be:c7:6c:c8:12:c9: 0d:85:13:4b:1b:24:c9:a4:93:03:d7:11:c2:23:77:57:17:d1: 98:96:0b:08:b5:d2:ce:33:5e:b3:bb:51:48:a8:ce:a1:8d:61: 11:09:61:b0:15:ca:7c:1f:44:83:c8:16:3f:20:bf:aa:26:8e: 17:98:12:ba:e8:a7:b8:34:92:fb:34:bc:c2:6b:21:df:e9:ca: 1a:c0:85:2e:1f:44:a1:30:35:61:16:10:6b:c1:98:6c:56:7d: 88:d5:d2:2c:f4:94:56:11:09:16:aa:90:37:b9:2c:b3:06:37: bf:36:9e:f3:ab:5a:a9:d5:0c:f4:bd:89:d3:0c:36:df:91:ef: 35:16:7d:f6:60:70:26:79:57:a3:16:2b:20:52:f8:c5:ea:28: 2b:a9:53:4b:6b:13:63:aa:9c:0e:67:ed:01:47:73:e8:5b:6c: 09:ce:53:a9:03:de:0c:ac:1d:36:91:7a:50:65:55:bd:c0:49: 2c:63:83:df -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUwNzE5MDU1MzU4WhcNMjUwNzI2MDU1MzU4WjAYMRYwFAYD VQQDEw02ODdiMzJmNi0wNzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1evpqlLR7Fz/upcFwPI2BkDgi21IbzkdFY6rC1MR0NxRyvkAtOgpQSRmsO/E tpbYo2RJ2ziXmPuR+MG95dg9WGM30kT8JBCCqGgfja9V+n3rzFnlW1OG2ANsIGCj EiqbFZIiCAW6C+KUkYpstJ0xYF8g5n1+eDm0flf1iAwiUhZ3cKOuTaxwuml86JaV tttiQJqJG8raSQApXlKxTbNR5Jd+dux38pkrgzxmRMKIyQDIsmfRzuLOP5tJEV5i MvXzDct/Am1RGk95weNdev/DxbJaaNAPaQx/acQHrywqMTlmlwhKchkxvEUPMGCM Mwn72dDToa44PAUUVUyH3vZAjwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJr15w+Q OVfLFWtd3C/rOyVlGg0PMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCPni+21P4lk0QqukI+aAC6C33W+m79IUbLaZRlrLYyi2d3bvGCn719 1qdb2tUqDYypMlM6fiXnz1lKCOsy/EJebbu+x2zIEskNhRNLGyTJpJMD1xHCI3dX F9GYlgsItdLOM16zu1FIqM6hjWERCWGwFcp8H0SDyBY/IL+qJo4XmBK66Ke4NJL7 NLzCayHf6coawIUuH0ShMDVhFhBrwZhsVn2I1dIs9JRWEQkWqpA3uSyzBje/Np7z q1qp1Qz0vYnTDDbfke81Fn32YHAmeVejFisgUvjF6igrqVNLaxNjqpwOZ+0BR3Po W2wJzlOpA94MrB02kXpQZVW9wEksY4Pf -----END CERTIFICATE-----Generated at Sun Jul 20 19:20:46 2025 by rpki-client