$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: e4os4rUDwlyQ6yRyj7csDKIq29hGOm9jUpxFbP5aEzA= Subject key identifier: 4B:88:9C:5C:43:2D:FB:B3:6D:7C:50:EF:84:1C:67:EE:79:C0:F6:A9 Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 084E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 0848 Signing time: Thu 04 Sep 2025 20:56:15 +0000 Manifest this update: Thu 04 Sep 2025 20:56:15 +0000 Manifest next update: Thu 11 Sep 2025 20:56:15 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: 6U95njBeY5E3ksN/niEurQJV5EFR0X5uR3nBgF7FcFI=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: o8uKSFAZOoKiAV/aw+gEXp611EqrXFJMlAGF3VnwD9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 20:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2126 (0x84e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1, serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: Sep 4 20:56:15 2025 GMT Not After : Sep 11 20:56:15 2025 GMT Subject: CN=68b9fcef-345a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:2a:7c:b6:8a:62:3e:51:0a:f0:8a:12:b2:9a: 20:6a:b2:5e:15:4c:a8:77:b8:b1:0d:dd:0b:c2:90: 4c:d2:85:44:a6:1b:be:82:f4:7b:fb:14:41:34:ac: 14:d9:99:31:03:16:5e:a1:7a:2e:1f:03:c0:82:80: c5:39:cb:bb:a4:e7:02:ad:09:3e:a5:e0:1b:d8:f8: e6:e2:e3:38:e1:e0:a9:ad:29:71:c5:d7:32:af:b6: f1:11:b5:38:1d:f4:13:b7:95:6e:e9:83:70:3c:d6: 11:12:f9:9d:9d:2d:15:30:ce:30:e1:24:b5:62:43: e8:45:42:22:9f:a4:2c:ee:4b:dc:3a:2d:92:44:6f: b0:0e:3b:25:5f:2b:6c:44:7e:b3:41:a7:5c:3c:db: de:50:3f:75:3c:98:79:33:4e:9e:f2:53:92:df:df: f6:d1:4d:0a:45:a6:7b:12:3d:5d:af:1a:a5:d0:5c: d1:f1:3d:fc:8e:77:ec:c4:84:39:d3:6a:f7:4c:11: 9d:4e:00:3a:ad:59:9a:bf:fb:7b:9b:a4:04:92:45: ab:0a:50:8c:48:57:05:30:b8:6a:2e:98:54:c4:fa: cc:63:91:95:ad:67:8c:c3:47:2f:16:56:23:f8:b5: 5c:47:3b:86:04:f1:8e:93:df:01:e9:98:c8:26:7b: 8e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:88:9C:5C:43:2D:FB:B3:6D:7C:50:EF:84:1C:67:EE:79:C0:F6:A9 X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:7c:03:54:1b:40:92:24:17:3e:44:eb:56:e4:00:18:36:eb: 7e:7d:e5:5e:63:67:65:e3:fb:52:97:f2:2b:1e:c7:25:16:6e: af:f9:4e:dc:84:c5:e7:69:71:3d:8a:3e:12:c0:ad:96:ee:f8: a8:9d:07:11:70:09:e0:ee:a8:8c:17:7d:b6:27:61:79:e2:b0: 82:50:5a:25:f0:8c:54:3f:78:21:1b:72:2b:da:50:73:63:61: 18:ce:5f:56:20:9b:52:fd:48:61:e8:da:a5:f6:08:f7:e2:5d: 05:10:93:52:d7:11:47:d1:6c:e4:b3:4d:9f:d1:c7:18:52:36: 4e:0b:af:d2:20:c5:77:8f:d7:69:b6:37:33:c9:7e:22:7c:78: 30:ec:40:2f:70:42:4a:9d:1d:95:33:07:17:70:88:bd:e6:0e: 9e:cf:d8:d9:69:65:a3:d3:08:69:97:63:89:1e:f2:73:81:ee: e9:6f:d5:98:45:78:b0:2d:88:4d:3f:96:36:26:49:0b:16:30: 6c:bf:e5:86:f5:f7:b5:c1:de:10:ff:c2:bb:51:dc:4a:d8:7f: e7:15:5d:b4:48:0c:d3:24:f6:cc:00:2c:8a:df:b3:cb:5f:58: b0:e0:16:49:de:49:88:f3:7d:8e:8f:28:fb:93:77:12:c5:36: 4c:e8:3a:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCE4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjUwOTA0MjA1NjE1WhcNMjUwOTExMjA1NjE1WjAYMRYwFAYD VQQDEw02OGI5ZmNlZi0zNDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Sp8topiPlEK8IoSspogarJeFUyod7ixDd0LwpBM0oVEphu+gvR7+xRBNKwU 2ZkxAxZeoXouHwPAgoDFOcu7pOcCrQk+peAb2Pjm4uM44eCprSlxxdcyr7bxEbU4 HfQTt5Vu6YNwPNYREvmdnS0VMM4w4SS1YkPoRUIin6Qs7kvcOi2SRG+wDjslXyts RH6zQadcPNveUD91PJh5M06e8lOS39/20U0KRaZ7Ej1drxql0FzR8T38jnfsxIQ5 02r3TBGdTgA6rVmav/t7m6QEkkWrClCMSFcFMLhqLphUxPrMY5GVrWeMw0cvFlYj +LVcRzuGBPGOk98B6ZjIJnuO2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuInFxD LfuzbXxQ74QcZ+55wPapMB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnfANUG0CSJBc+ROtW5AAYNut+feVeY2dl4/tSl/IrHsclFm6v+U7c hMXnaXE9ij4SwK2W7vionQcRcAng7qiMF322J2F54rCCUFol8IxUP3ghG3Ir2lBz Y2EYzl9WIJtS/Uhh6Nql9gj34l0FEJNS1xFH0Wzks02f0ccYUjZOC6/SIMV3j9dp tjczyX4ifHgw7EAvcEJKnR2VMwcXcIi95g6ez9jZaWWj0whpl2OJHvJzge7pb9WY RXiwLYhNP5Y2JkkLFjBsv+WG9fe1wd4Q/8K7UdxK2H/nFV20SAzTJPbMACyK37PL X1iw4BZJ3kmI832Ojyj7k3cSxTZM6Dp3 -----END CERTIFICATE-----Generated at Sat Sep 6 11:52:59 2025 by rpki-client