$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft File: kKozD4l2v2xASeZzwoIf0pHUO8E.mft (raw, json) Hash identifier: pNKIso7OtUDKAestxoYSUFCy8vUQDWcmpGEfYJJ+mto= Subject key identifier: 14:8D:BB:20:DA:36:B1:E3:E1:81:DA:10:00:78:B9:CA:A3:D7:DA:73 Authority key identifier: 90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 Certificate issuer: /CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Certificate serial: 056F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft Manifest number: 056F Signing time: Sun 20 Jul 2025 14:18:16 +0000 Manifest this update: Sun 20 Jul 2025 14:18:15 +0000 Manifest next update: Sun 27 Jul 2025 14:18:15 +0000 Files and hashes: 1: kKozD4l2v2xASeZzwoIf0pHUO8E.crl (hash: h3Tccr8gEkyAJguNO11aSTb1zLxwPFFQBLbM8HlSbkQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 14:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Validity Not Before: Jul 20 14:18:15 2025 GMT Not After : Jul 27 14:18:15 2025 GMT Subject: CN=687cfaa8-9848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:9a:0f:22:59:d9:b2:1d:e3:ac:bd:44:cc:df: c7:28:3c:2e:b2:ec:9c:0e:e4:73:20:dc:c6:64:05: 3f:2d:5d:75:70:59:c3:95:a7:fc:c4:39:32:3c:f7: 61:8d:32:eb:91:84:57:10:cc:6c:39:c0:bc:1d:be: 4d:bb:72:d6:88:59:09:05:d0:88:4d:4e:32:fe:be: ce:97:56:14:ae:16:47:ef:1e:49:b9:8a:dc:e4:4c: 9f:0a:74:8b:4b:c5:30:33:92:de:34:b3:74:34:19: 2d:9c:f8:f9:37:3c:89:0c:e9:0b:7a:23:c9:96:1d: aa:01:ca:30:5d:39:96:4d:eb:78:ef:34:ff:a0:6c: b3:e9:eb:2f:55:81:8b:c9:96:04:89:3d:cc:0e:82: 8e:9b:26:7c:c5:fb:a8:71:80:a9:9d:c8:04:b6:42: 81:24:a4:1e:cd:c2:24:81:03:53:53:31:ed:3e:b0: b4:e1:08:dd:24:f1:80:d3:38:75:39:90:8c:71:e0: 6a:5c:34:b0:c2:ca:e6:a9:c7:fb:06:c2:62:86:e7: b3:bd:cf:eb:be:84:57:eb:d5:f2:aa:f0:5c:84:9d: c3:21:4c:11:93:1a:82:69:16:5f:f0:27:6f:c9:3d: 77:c8:d8:26:4a:03:04:9f:37:c6:ff:71:ad:78:70: d8:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:8D:BB:20:DA:36:B1:E3:E1:81:DA:10:00:78:B9:CA:A3:D7:DA:73 X509v3 Authority Key Identifier: keyid:90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:34:42:af:59:f2:89:3f:da:fb:cf:36:b0:00:30:f2:c1:39: 01:cb:d3:fd:2f:f4:92:88:19:14:dd:28:9a:1a:49:b6:29:75: 22:74:fc:09:f9:55:fd:39:f8:d6:11:0d:85:04:69:eb:4b:98: 62:7e:48:91:9b:e7:ba:86:e8:ac:59:ea:32:4c:8f:ef:14:aa: cd:47:5a:41:05:22:8b:3b:3d:a6:7d:30:48:b0:d1:8a:22:ff: 2e:4f:2b:8a:33:6e:3e:68:c1:55:f9:2f:d4:b7:f1:d1:95:9d: fb:5b:58:02:b3:58:ae:31:8a:93:6a:5c:30:4d:41:09:82:a3: 5f:cf:a9:c6:45:9c:48:22:80:9d:c9:be:3e:0e:61:a1:33:d0: 5c:ee:79:3f:b9:4b:71:fd:44:13:9f:27:31:2c:f1:fe:96:08: 3d:96:66:fe:1d:3c:0a:38:ad:3b:7e:19:1f:ed:5c:95:66:62: e6:d6:1d:de:b4:ff:53:25:46:3d:8a:5a:8d:d8:85:33:5c:02: f5:30:94:7f:97:ee:56:6f:06:4b:7d:5a:39:ce:cc:8a:cc:81: ef:61:40:cc:cb:de:fc:c8:09:0a:b5:c8:07:09:08:14:53:a2: 56:e4:c0:34:b0:ca:ce:ae:a6:7a:38:b7:a0:08:c1:ca:4f:b8: 6e:1a:22:b4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDkwQUEzMzBGODk3NkJGNkM0MDQ5RTY3M0MyODIxRkQy OTFENDNCQzEwHhcNMjUwNzIwMTQxODE1WhcNMjUwNzI3MTQxODE1WjAYMRYwFAYD VQQDEw02ODdjZmFhOC05ODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ZoPIlnZsh3jrL1EzN/HKDwusuycDuRzINzGZAU/LV11cFnDlaf8xDkyPPdh jTLrkYRXEMxsOcC8Hb5Nu3LWiFkJBdCITU4y/r7Ol1YUrhZH7x5JuYrc5EyfCnSL S8UwM5LeNLN0NBktnPj5NzyJDOkLeiPJlh2qAcowXTmWTet47zT/oGyz6esvVYGL yZYEiT3MDoKOmyZ8xfuocYCpncgEtkKBJKQezcIkgQNTUzHtPrC04QjdJPGA0zh1 OZCMceBqXDSwwsrmqcf7BsJihuezvc/rvoRX69XyqvBchJ3DIUwRkxqCaRZf8Cdv yT13yNgmSgMEnzfG/3GteHDYtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBSNuyDa NrHj4YHaEAB4ucqj19pzMB8GA1UdIwQYMBaAFJCqMw+Jdr9sQEnmc8KCH9KR1DvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8xQTE2RUI4NkYz RUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYyeEFTZVp6d29JZjBwSFVP OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tLb3pENGwydjJ4QVNlWnp3b0lmMHBIVU84RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8xQTE2RUI4NkYzRUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYy eEFTZVp6d29JZjBwSFVPOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBGNEKvWfKJP9r7zzawADDywTkBy9P9L/SSiBkU3SiaGkm2KXUidPwJ +VX9OfjWEQ2FBGnrS5hifkiRm+e6huisWeoyTI/vFKrNR1pBBSKLOz2mfTBIsNGK Iv8uTyuKM24+aMFV+S/Ut/HRlZ37W1gCs1iuMYqTalwwTUEJgqNfz6nGRZxIIoCd yb4+DmGhM9Bc7nk/uUtx/UQTnycxLPH+lgg9lmb+HTwKOK07fhkf7VyVZmLm1h3e tP9TJUY9ilqN2IUzXAL1MJR/l+5WbwZLfVo5zsyKzIHvYUDMy978yAkKtcgHCQgU U6JW5MA0sMrOrqZ6OLegCMHKT7huGiK0 -----END CERTIFICATE-----Generated at Mon Jul 21 12:39:15 2025 by rpki-client