$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: W8ScT5jD6X7egaki0DvXM1eMVTHDWPKfnNk+yGDmmDk= Subject key identifier: F3:7F:33:03:84:10:AF:D4:23:ED:82:FE:5B:87:77:03:AC:07:15:05 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 0337 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 0331 Signing time: Wed 17 Sep 2025 01:34:07 +0000 Manifest this update: Wed 17 Sep 2025 01:34:07 +0000 Manifest next update: Wed 24 Sep 2025 01:34:07 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: EWxPIfmRSz/RuZqwh/SaiFwtkeULXQdDSgy0JDuwIjo=) 2: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: Crj6EQEsFsVZ7Rl37tD7+KlB9qlhMrOAHvL0KyIGgkI=) 3: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: 16TIMxSDuDuwbvd9GQ+m4o06d2DMg8lDV7WSYdSxPbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:34:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 823 (0x337) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2, serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: Sep 17 01:34:07 2025 GMT Not After : Sep 24 01:34:07 2025 GMT Subject: CN=68ca100f-7be3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a0:7a:9f:02:13:94:18:72:f1:8c:aa:42:2f: 85:67:0f:10:21:59:e6:dd:13:0b:df:a1:b1:0e:d2: 09:0e:84:df:6b:3f:9e:e4:c6:54:05:c5:ba:cd:d0: 0d:82:28:81:27:44:ee:e2:3d:cd:60:55:45:54:b7: bf:37:6d:80:8e:86:d2:90:9a:00:d9:e7:72:b3:65: 64:f8:49:41:c7:66:7c:48:20:67:d7:41:e7:39:c1: 13:46:79:b6:fd:cf:12:60:d4:c7:86:30:d1:81:2e: f3:75:ff:d8:29:f0:0d:0b:8e:cd:20:64:c5:dc:1e: 4c:ee:21:91:c5:99:dd:e4:e6:18:c6:4f:19:94:ca: 39:a2:f2:3c:51:7b:b8:ea:d9:a9:94:44:9d:43:6f: 3a:f6:03:88:82:45:bc:22:dd:04:87:a4:95:6e:47: cb:b8:b5:6c:c1:03:7d:1f:b2:04:2e:5a:8c:d8:83: d9:23:bf:b6:e5:2a:cf:ec:99:ca:ca:16:56:ae:f9: 18:48:cd:63:80:c0:31:24:32:8f:8d:62:1a:35:02: 50:0d:c5:f7:93:e7:b4:ed:a8:cf:c7:d6:e8:d7:f0: 78:85:5f:7a:eb:14:6e:b9:7a:ea:98:96:24:54:53: a5:3c:5e:9b:40:f4:c8:99:98:f7:6b:48:d9:c5:c1: f0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7F:33:03:84:10:AF:D4:23:ED:82:FE:5B:87:77:03:AC:07:15:05 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:06:64:f6:6f:79:c6:89:c0:ac:03:75:79:d6:e7:b8:a9:67: 16:04:8e:af:c3:d3:e4:10:66:c2:1c:f7:e4:e3:7c:89:66:fe: 12:fa:70:20:7c:83:41:0c:d5:06:b9:07:95:d5:a7:4b:9c:92: 65:42:47:44:31:8e:24:d2:12:d5:c6:89:a1:4c:91:71:81:74: 13:89:8f:01:c5:e5:71:32:d7:46:71:23:d7:db:73:63:22:7f: 3e:f3:76:80:0b:8c:3a:60:94:c2:43:4f:8b:80:82:4f:b2:3d: 54:c2:ef:9b:10:e8:29:a1:e6:93:e3:58:39:b9:a6:d1:51:99: 91:74:9b:6d:7a:c8:84:a9:00:9f:8e:ef:33:d0:1f:0b:8c:f2: 12:a5:83:7f:46:ab:2f:78:6a:5f:72:ce:f3:5f:39:87:08:30: c3:1c:f7:6e:f0:45:3a:aa:7d:60:fb:55:cc:b2:e1:00:10:aa: 3f:00:d6:07:1c:3e:01:d5:c4:dc:7f:63:cf:50:84:2a:63:12: ac:2c:a5:18:8e:7e:46:bb:c7:cd:7f:e0:e7:69:d6:8f:d6:da: 95:dd:30:54:39:5b:9d:83:e7:7e:a2:60:df:1c:26:b6:c1:6b: 8b:e0:8b:fd:48:8d:26:16:40:0b:4b:b1:e8:a1:d5:30:fd:da: 2c:13:5d:1c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjUwOTE3MDEzNDA3WhcNMjUwOTI0MDEzNDA3WjAYMRYwFAYD VQQDEw02OGNhMTAwZi03YmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36B6nwITlBhy8YyqQi+FZw8QIVnm3RML36GxDtIJDoTfaz+e5MZUBcW6zdAN giiBJ0Tu4j3NYFVFVLe/N22AjobSkJoA2edys2Vk+ElBx2Z8SCBn10HnOcETRnm2 /c8SYNTHhjDRgS7zdf/YKfANC47NIGTF3B5M7iGRxZnd5OYYxk8ZlMo5ovI8UXu4 6tmplESdQ2869gOIgkW8It0Eh6SVbkfLuLVswQN9H7IELlqM2IPZI7+25SrP7JnK yhZWrvkYSM1jgMAxJDKPjWIaNQJQDcX3k+e07ajPx9bo1/B4hV966xRuuXrqmJYk VFOlPF6bQPTImZj3a0jZxcHwkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN/MwOE EK/UI+2C/luHdwOsBxUFMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCUBmT2b3nGicCsA3V51ue4qWcWBI6vw9PkEGbCHPfk43yJZv4S+nAg fINBDNUGuQeV1adLnJJlQkdEMY4k0hLVxomhTJFxgXQTiY8BxeVxMtdGcSPX23Nj In8+83aAC4w6YJTCQ0+LgIJPsj1Uwu+bEOgpoeaT41g5uabRUZmRdJttesiEqQCf ju8z0B8LjPISpYN/RqsveGpfcs7zXzmHCDDDHPdu8EU6qn1g+1XMsuEAEKo/ANYH HD4B1cTcf2PPUIQqYxKsLKUYjn5Gu8fNf+DnadaP1tqV3TBUOVudg+d+omDfHCa2 wWuL4Iv9SI0mFkALS7HoodUw/dosE10c -----END CERTIFICATE-----Generated at Thu Sep 18 09:50:19 2025 by rpki-client