$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft File: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft (raw, json) Hash identifier: nMyypQzATfikbmw3h33rFzvMZISChN1GYsstRGt4MZM= Subject key identifier: CE:EB:43:04:27:FA:F9:A0:78:65:4E:84:66:B7:AE:5C:ED:38:8F:0B Authority key identifier: 91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A Certificate issuer: /CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft Manifest number: 0115 Signing time: Tue 09 Sep 2025 04:56:05 +0000 Manifest this update: Tue 09 Sep 2025 04:56:05 +0000 Manifest next update: Tue 16 Sep 2025 04:56:05 +0000 Files and hashes: 1: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl (hash: oMjoGOZ1tAdZj3uUN5Gz5QOq+Ibtyi472Fp6YRFsQDw=) 2: 1BC8D5FCE2B211EE946C6541C4F9AE02.roa (hash: iCp30dussETMXyoeph6Ol3mQ5L5KpmSd4EZLSV4J5eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 04:56:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Validity Not Before: Sep 9 04:56:05 2025 GMT Not After : Sep 16 04:56:05 2025 GMT Subject: CN=68bfb365-0441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1b:d2:c2:b3:92:1c:24:31:e6:ca:75:cc:47: 33:0f:e5:4a:9b:4e:71:ff:bb:ed:e7:1c:e3:91:f5: 8e:90:69:66:9d:60:74:0c:f5:bd:6a:36:13:b3:ab: 4e:bf:c7:de:81:53:3f:31:97:f8:69:84:ab:b8:8a: 9b:81:28:7f:b7:7c:4e:9b:88:1e:18:25:00:3f:aa: 7d:23:ef:be:f1:e2:90:ad:79:9e:e0:39:6f:4b:57: 44:f5:1a:fc:ce:6f:ab:a3:16:73:69:31:17:df:0c: ea:ea:3b:64:4b:db:c0:48:73:2e:2b:ef:78:65:d7: e7:40:ad:e7:46:43:63:e9:4f:34:6a:e2:1a:f1:84: ef:9a:8f:2c:aa:44:d4:c4:8a:68:e2:a8:af:72:9f: 15:98:04:85:cd:43:8c:3d:e3:8c:91:37:d2:78:44: 0a:3b:10:56:4b:08:e6:5c:7f:af:3c:c0:1b:bd:f7: 14:02:55:3f:36:84:49:d5:eb:94:fa:40:de:f6:9c: 37:7c:a4:ff:c0:b6:1b:e3:b7:7a:19:84:60:1e:7d: 02:be:95:02:8c:36:fb:a4:eb:05:0b:29:56:5d:d4: 3c:ea:ea:8a:4d:43:0c:0f:01:e6:1e:1c:07:90:bf: ef:d5:1e:0b:83:db:1c:78:e6:ba:6f:bf:94:e0:a0: dc:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:EB:43:04:27:FA:F9:A0:78:65:4E:84:66:B7:AE:5C:ED:38:8F:0B X509v3 Authority Key Identifier: keyid:91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bc:5f:69:8f:60:5e:c2:87:5c:db:46:fa:a8:a2:f9:1d:43:0b: 3f:a1:43:ad:43:fb:5e:be:23:8e:bf:c1:85:2b:86:cf:f3:40: 8a:f0:7e:2c:96:23:45:f4:0a:f7:1e:6b:7c:db:ab:db:54:95: 2c:ab:96:1d:d0:79:29:8a:6d:0e:9a:f7:79:92:3a:4a:42:2a: 9b:f8:b7:71:ab:86:8e:7d:ad:b4:68:23:68:8d:ea:a1:85:4e: 34:67:ba:6b:34:ad:dd:22:4d:c0:e0:2d:58:39:f7:a4:ed:b5: 7b:50:cf:82:85:e7:99:87:9c:b1:9c:be:94:99:ba:fd:ea:e1: 27:79:24:84:81:d8:8c:fa:b4:0c:f3:12:25:dc:e5:15:eb:71: 22:36:35:48:8b:b2:fe:65:b4:d9:6a:44:d9:79:68:0c:02:03: 66:9a:1c:bf:32:54:9a:b3:f5:5f:e7:01:f4:4c:25:34:0c:de: 44:b9:47:63:8b:7f:71:8e:af:af:12:23:ab:7f:ad:84:0e:30: 1c:a5:c2:9e:04:82:30:d2:1d:0a:00:1c:93:d4:d2:8b:f9:6f: 6b:45:e2:07:ec:ae:15:ad:01:72:e1:ef:6e:3c:ec:6c:c4:16: 11:ae:32:da:f8:52:49:8e:ca:8a:37:74:7c:92:3f:8b:31:67: 61:9e:ae:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDkxMkZCNUY3MzUxQ0Y5OEZCOTY3NDUxRkVFREFGNDlG MTQ4RTFBM0EwHhcNMjUwOTA5MDQ1NjA1WhcNMjUwOTE2MDQ1NjA1WjAYMRYwFAYD VQQDEw02OGJmYjM2NS0wNDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hvSwrOSHCQx5sp1zEczD+VKm05x/7vt5xzjkfWOkGlmnWB0DPW9ajYTs6tO v8fegVM/MZf4aYSruIqbgSh/t3xOm4geGCUAP6p9I+++8eKQrXme4DlvS1dE9Rr8 zm+roxZzaTEX3wzq6jtkS9vASHMuK+94ZdfnQK3nRkNj6U80auIa8YTvmo8sqkTU xIpo4qivcp8VmASFzUOMPeOMkTfSeEQKOxBWSwjmXH+vPMAbvfcUAlU/NoRJ1euU +kDe9pw3fKT/wLYb47d6GYRgHn0CvpUCjDb7pOsFCylWXdQ86uqKTUMMDwHmHhwH kL/v1R4Lg9sceOa6b7+U4KDcaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7rQwQn +vmgeGVOhGa3rlztOI8LMB8GA1UdIwQYMBaAFJEvtfc1HPmPuWdFH+7a9J8Ujho6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80RkQ1OTQyNEUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1ZLTVaMFVmN3RyMG54U09H am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTLTE5elVjLVktNVowVWY3dHIwbnhTT0dqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80RkQ1OTQyNEUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1Z LTVaMFVmN3RyMG54U09Ham8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC8X2mPYF7Ch1zbRvqoovkdQws/oUOtQ/teviOOv8GFK4bP80CK8H4s liNF9Ar3Hmt826vbVJUsq5Yd0Hkpim0Omvd5kjpKQiqb+Ldxq4aOfa20aCNojeqh hU40Z7prNK3dIk3A4C1YOfek7bV7UM+CheeZh5yxnL6Umbr96uEneSSEgdiM+rQM 8xIl3OUV63EiNjVIi7L+ZbTZakTZeWgMAgNmmhy/MlSas/Vf5wH0TCU0DN5EuUdj i39xjq+vEiOrf62EDjAcpcKeBIIw0h0KAByT1NKL+W9rReIH7K4VrQFy4e9uPOxs xBYRrjLa+FJJjsqKN3R8kj+LMWdhnq7K -----END CERTIFICATE-----Generated at Tue Sep 9 16:16:22 2025 by rpki-client