$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft File: kKozD4l2v2xASeZzwoIf0pHUO8E.mft (raw, json) Hash identifier: Mrn5VhuUjUbKh/+CuH1/aodptxvKzKLfgIdrMkUw5PU= Subject key identifier: 18:C3:29:0A:21:62:5C:DE:86:B9:46:DE:4A:62:09:A0:A1:3B:13:FA Authority key identifier: 90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 Certificate issuer: /CN=A91AE85E/serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Certificate serial: 0588 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft Manifest number: 0588 Signing time: Sat 06 Sep 2025 14:18:16 +0000 Manifest this update: Sat 06 Sep 2025 14:18:15 +0000 Manifest next update: Sat 13 Sep 2025 14:18:15 +0000 Files and hashes: 1: kKozD4l2v2xASeZzwoIf0pHUO8E.crl (hash: sr1bJPjPf6o/mT408R9xkWH54JYrBz8Ve/P18dj5QLg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1416 (0x588) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE85E, serialNumber=90AA330F8976BF6C4049E673C2821FD291D43BC1 Validity Not Before: Sep 6 14:18:15 2025 GMT Not After : Sep 13 14:18:15 2025 GMT Subject: CN=68bc42a8-c481 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:23:89:90:6b:6b:24:5f:d3:8b:77:a6:f1:5a: 1d:d0:e6:9d:65:8b:35:40:6e:e9:05:15:10:e4:8d: 9c:ac:99:96:07:63:a3:43:f2:53:4b:36:6a:3c:33: b6:89:ad:e0:35:0a:64:0f:62:9e:77:c0:87:10:ed: 04:74:8c:29:48:69:af:6b:28:83:06:a1:31:a4:99: c0:3f:62:a1:a8:1b:98:77:2e:e7:b2:69:65:29:62: a2:29:21:47:08:eb:ca:ba:81:8c:eb:09:01:ae:94: 1a:d2:f9:38:ad:9a:97:ce:3d:1d:03:e0:0d:3a:4c: 02:cd:f2:6c:2a:9e:b2:3d:d1:60:3c:cb:12:43:cb: d5:e2:8a:27:e9:f5:0a:ce:b3:b5:02:b6:e1:ec:d7: ee:7b:19:19:fb:81:05:d0:21:99:5f:e1:8a:fd:f7: 5f:34:f5:91:55:2b:89:5f:a2:9a:7e:2a:a9:9d:f5: 48:c5:bb:0c:1a:f6:f9:dc:68:f8:b5:77:d6:c6:68: af:fa:1b:7f:17:a1:dd:e3:91:fe:8f:da:56:e1:55: f2:56:81:4d:2a:e9:76:92:81:e1:ba:19:a5:5f:1f: 79:df:da:14:3d:58:72:7f:6f:85:82:53:1e:45:67: a5:1f:d0:48:80:9f:e6:60:ce:d3:01:52:bd:63:30: b4:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:C3:29:0A:21:62:5C:DE:86:B9:46:DE:4A:62:09:A0:A1:3B:13:FA X509v3 Authority Key Identifier: keyid:90:AA:33:0F:89:76:BF:6C:40:49:E6:73:C2:82:1F:D2:91:D4:3B:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kKozD4l2v2xASeZzwoIf0pHUO8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE85E/1A16EB86F3EA11EBB258BA7BC4F9AE02/kKozD4l2v2xASeZzwoIf0pHUO8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ce:f3:e6:f6:13:ef:41:d7:06:ef:b3:48:8d:e6:10:85:81:37: ce:b7:e0:d3:b4:86:b4:62:1f:12:e9:5c:0e:29:e5:2f:3a:e3: b9:12:84:2d:76:09:6c:35:a7:38:82:dd:2e:a4:3f:30:b4:ad: 1b:5c:81:d9:0c:4c:b4:8a:99:66:08:51:32:d5:a9:d5:b1:e8: 1f:aa:a2:3e:6c:b4:d9:ae:a4:61:d4:b7:3d:80:02:87:6a:57: 52:21:9f:1b:72:4b:34:ef:ba:dd:fc:15:a5:1a:cf:b7:48:f3: 94:a6:4d:bd:e6:4e:a3:b1:c2:04:22:36:34:e8:46:57:67:2c: 4f:32:7c:9b:ea:b2:17:f7:40:2b:3c:bd:5e:18:9a:89:93:b3: 6a:25:3b:bc:6a:7e:31:e1:bf:a6:ee:45:25:b9:55:fb:26:ba: 18:21:56:ba:b7:2e:ff:3c:0e:8e:ba:26:5b:04:52:db:76:80: 48:e4:63:5a:59:63:77:5a:3a:e2:6d:b8:92:46:95:77:c4:ab: 17:34:cd:97:0f:c0:d2:56:86:43:95:91:1b:b1:72:6f:43:20: b1:b6:bb:9d:23:b1:b4:53:ad:92:8d:fb:9f:90:55:be:e1:78: 19:e8:6f:14:ad:97:fc:a9:a3:32:23:f5:51:70:3d:1a:ff:ed: e4:e3:2b:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUU4NUUxMTAvBgNVBAUTKDkwQUEzMzBGODk3NkJGNkM0MDQ5RTY3M0MyODIxRkQy OTFENDNCQzEwHhcNMjUwOTA2MTQxODE1WhcNMjUwOTEzMTQxODE1WjAYMRYwFAYD VQQDEw02OGJjNDJhOC1jNDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvSOJkGtrJF/Ti3em8Vod0OadZYs1QG7pBRUQ5I2crJmWB2OjQ/JTSzZqPDO2 ia3gNQpkD2Ked8CHEO0EdIwpSGmvayiDBqExpJnAP2KhqBuYdy7nsmllKWKiKSFH COvKuoGM6wkBrpQa0vk4rZqXzj0dA+ANOkwCzfJsKp6yPdFgPMsSQ8vV4oon6fUK zrO1Arbh7NfuexkZ+4EF0CGZX+GK/fdfNPWRVSuJX6KafiqpnfVIxbsMGvb53Gj4 tXfWxmiv+ht/F6Hd45H+j9pW4VXyVoFNKul2koHhuhmlXx9539oUPVhyf2+FglMe RWelH9BIgJ/mYM7TAVK9YzC0mwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBjDKQoh YlzehrlG3kpiCaChOxP6MB8GA1UdIwQYMBaAFJCqMw+Jdr9sQEnmc8KCH9KR1DvB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTg1RS8xQTE2RUI4NkYz RUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYyeEFTZVp6d29JZjBwSFVP OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tLb3pENGwydjJ4QVNlWnp3b0lmMHBIVU84RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTg1RS8xQTE2RUI4NkYzRUExMUVCQjI1OEJBN0JDNEY5QUUwMi9rS296RDRsMnYy eEFTZVp6d29JZjBwSFVPOEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDO8+b2E+9B1wbvs0iN5hCFgTfOt+DTtIa0Yh8S6VwOKeUvOuO5EoQt dglsNac4gt0upD8wtK0bXIHZDEy0iplmCFEy1anVsegfqqI+bLTZrqRh1Lc9gAKH aldSIZ8bcks077rd/BWlGs+3SPOUpk295k6jscIEIjY06EZXZyxPMnyb6rIX90Ar PL1eGJqJk7NqJTu8an4x4b+m7kUluVX7JroYIVa6ty7/PA6OuiZbBFLbdoBI5GNa WWN3WjribbiSRpV3xKsXNM2XD8DSVoZDlZEbsXJvQyCxtrudI7G0U62SjfufkFW+ 4XgZ6G8UrZf8qaMyI/VRcD0a/+3k4ytV -----END CERTIFICATE-----Generated at Sat Sep 6 21:39:41 2025 by rpki-client