$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft File: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft (raw, json) Hash identifier: haj45cdwE9XczI0yTSnkbdNkqHdlGSkDotRXPXXTO9c= Subject key identifier: 55:EA:6E:BA:5A:87:57:34:51:9E:D8:3E:1B:9A:4B:35:7F:6F:92:5E Authority key identifier: 91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 Certificate issuer: /CN=A91BC1CE/serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Certificate serial: 1084 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft Manifest number: 107D Signing time: Sun 24 Aug 2025 17:19:34 +0000 Manifest this update: Sun 24 Aug 2025 17:19:34 +0000 Manifest next update: Sun 31 Aug 2025 17:19:34 +0000 Files and hashes: 1: kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl (hash: ziIJDEHgXQz72VSYanZpwhPi3N7Z0dmpUxTDi388dM8=) 2: 4178B83237ED11E99B3C9C4AC4F9AE02.roa (hash: Zx1NZFaobsMkPgZlMNZ8S9A1zmjC7C3D22JCgStrQxA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:19:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4228 (0x1084) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC1CE, serialNumber=91F2DE67C8E65BB533ED8F3C64F32DF9C695C057 Validity Not Before: Aug 24 17:19:34 2025 GMT Not After : Aug 31 17:19:34 2025 GMT Subject: CN=68ab49a6-cb73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d4:91:3d:ed:92:3c:bf:c9:b3:bc:b9:7b:34: e0:b0:f7:33:a0:b3:f3:67:44:ab:99:cb:73:b4:4b: ca:99:93:0c:3e:c8:e4:63:05:0e:5f:5a:2d:d5:35: 95:9c:64:da:65:12:8b:7c:3d:d9:ce:81:dc:af:0b: b9:7b:0f:e7:7a:40:2c:7c:2c:ea:fc:49:5e:8a:f4: 07:43:d9:86:bd:f3:66:af:f4:18:fd:59:f4:20:9d: 6f:9a:1c:de:db:96:1b:20:ed:49:8d:af:a4:16:0a: dc:08:ae:33:ad:b8:2c:1b:4a:aa:b4:bd:d2:75:db: d0:c7:be:51:66:ce:5a:ec:7e:7e:04:a3:e5:10:90: 3c:36:48:a8:c8:f2:d6:98:ca:11:4b:34:7f:29:5f: 8d:db:f4:d2:b2:e7:c0:f5:82:12:42:ed:c2:39:ae: 00:bf:f6:32:64:aa:c1:02:e0:a5:6f:98:96:3e:4c: 96:d7:28:f7:9d:a1:21:cf:d1:99:4c:07:5e:0d:77: 13:f1:50:85:d9:f4:d3:97:77:f0:2c:7c:fa:2b:58: f4:af:29:9b:b7:11:c7:43:f7:f3:5d:89:94:c3:c8: f8:71:9b:60:60:11:5e:c7:63:ff:0a:4f:5a:7b:19: 61:dd:41:58:eb:ca:bb:d7:1a:59:a4:c2:02:5d:2e: fc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:EA:6E:BA:5A:87:57:34:51:9E:D8:3E:1B:9A:4B:35:7F:6F:92:5E X509v3 Authority Key Identifier: keyid:91:F2:DE:67:C8:E6:5B:B5:33:ED:8F:3C:64:F3:2D:F9:C6:95:C0:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC1CE/24FA60E437EC11E9A875E848C4F9AE02/kfLeZ8jmW7Uz7Y88ZPMt-caVwFc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:e2:55:fb:b9:de:1d:8a:32:dc:f0:0f:e8:c3:7e:fb:73:a5: c9:cf:48:a2:ae:40:af:f2:37:ee:5a:5e:83:99:68:62:3e:11: 8c:fd:36:3b:43:27:41:6b:4e:02:b7:bf:e8:43:d7:10:06:55: a4:24:64:8a:d1:12:98:51:ed:33:3f:69:3e:b6:fa:de:04:82: 34:b1:b9:bb:33:88:d1:34:b3:57:d5:01:0d:7c:92:89:c1:43: 40:de:d2:18:f1:f2:45:e7:3c:91:06:f3:2a:f6:12:41:bb:12: b2:9e:da:7b:8d:75:28:2c:b3:54:cd:d0:a2:96:b1:a0:5e:87: 9a:45:2e:4f:c7:07:9e:a7:10:65:a1:a0:5b:97:5d:f2:28:dd: 9d:84:e8:b5:c5:e2:e0:89:6e:f9:69:0c:46:76:3e:f2:2c:94: cb:fc:aa:02:29:56:94:e8:76:af:23:a0:1e:8e:50:7d:04:12: 20:5b:68:5e:4e:9d:37:77:37:b3:a3:83:43:c5:fb:33:d4:e7: 63:58:ff:aa:12:f4:59:77:94:96:b0:fa:b1:67:df:18:27:70: 8c:25:89:a7:5e:7f:4b:bd:7c:bb:b1:65:e5:08:fd:e5:b5:24: 7f:5d:ba:25:8a:89:ff:2e:1b:14:91:14:1a:eb:f8:ae:c8:25: 04:64:5f:55 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMxQ0UxMTAvBgNVBAUTKDkxRjJERTY3QzhFNjVCQjUzM0VEOEYzQzY0RjMyREY5 QzY5NUMwNTcwHhcNMjUwODI0MTcxOTM0WhcNMjUwODMxMTcxOTM0WjAYMRYwFAYD VQQDEw02OGFiNDlhNi1jYjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdSRPe2SPL/Js7y5ezTgsPczoLPzZ0SrmctztEvKmZMMPsjkYwUOX1ot1TWV nGTaZRKLfD3ZzoHcrwu5ew/nekAsfCzq/EleivQHQ9mGvfNmr/QY/Vn0IJ1vmhze 25YbIO1Jja+kFgrcCK4zrbgsG0qqtL3SddvQx75RZs5a7H5+BKPlEJA8NkioyPLW mMoRSzR/KV+N2/TSsufA9YISQu3COa4Av/YyZKrBAuClb5iWPkyW1yj3naEhz9GZ TAdeDXcT8VCF2fTTl3fwLHz6K1j0rymbtxHHQ/fzXYmUw8j4cZtgYBFex2P/Ck9a exlh3UFY68q71xpZpMICXS789wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXqbrpa h1c0UZ7YPhuaSzV/b5JeMB8GA1UdIwQYMBaAFJHy3mfI5lu1M+2PPGTzLfnGlcBX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzFDRS8yNEZBNjBFNDM3 RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3VXo3WTg4WlBNdC1jYVZ3 RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmTGVaOGptVzdVejdZODhaUE10LWNhVndGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzFDRS8yNEZBNjBFNDM3RUMxMUU5QTg3NUU4NDhDNEY5QUUwMi9rZkxlWjhqbVc3 VXo3WTg4WlBNdC1jYVZ3RmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBf4lX7ud4dijLc8A/ow377c6XJz0iirkCv8jfuWl6DmWhiPhGM/TY7 QydBa04Ct7/oQ9cQBlWkJGSK0RKYUe0zP2k+tvreBII0sbm7M4jRNLNX1QENfJKJ wUNA3tIY8fJF5zyRBvMq9hJBuxKyntp7jXUoLLNUzdCilrGgXoeaRS5PxweepxBl oaBbl13yKN2dhOi1xeLgiW75aQxGdj7yLJTL/KoCKVaU6HavI6AejlB9BBIgW2he Tp03dzezo4NDxfsz1OdjWP+qEvRZd5SWsPqxZ98YJ3CMJYmnXn9LvXy7sWXlCP3l tSR/Xbolion/LhsUkRQa6/iuyCUEZF9V -----END CERTIFICATE-----Generated at Sun Aug 24 21:42:39 2025 by rpki-client