$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: AnMsYbTenwJExWNyG66V2gCLMXgoguml4l0enH4KKjY= Subject key identifier: A7:10:60:B8:5A:C9:DF:9F:4E:F5:E3:AD:75:EC:C0:81:71:A4:28:82 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 0137 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 0123 Signing time: Wed 17 Sep 2025 05:35:01 +0000 Manifest this update: Wed 17 Sep 2025 05:35:01 +0000 Manifest next update: Wed 24 Sep 2025 05:35:01 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: 2RHKAZLkZSoSRDzFQ6H/BY9GjoEjrl3OimYx9+RHNT8=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=) 3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 311 (0x137) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Sep 17 05:35:01 2025 GMT Not After : Sep 24 05:35:01 2025 GMT Subject: CN=68ca4885-514f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:21:b3:d5:8c:af:da:c1:ad:24:22:ce:e4:7c: a3:9a:c0:ad:6f:06:7d:57:8d:d1:44:81:e8:8d:fa: 38:bc:f1:15:65:48:86:0f:01:e8:0f:dd:4e:78:c0: 2a:c8:d9:ef:f1:cb:f9:be:c3:b6:92:e3:7e:8d:c6: 4f:95:8b:c5:43:af:13:87:6e:ca:9e:73:54:3d:43: 20:a1:8a:89:85:aa:97:77:91:4e:1c:9f:34:ce:45: 11:ca:29:c0:c9:5e:7a:77:46:09:18:9d:f1:25:6f: ee:c1:86:45:a9:a5:0c:0d:d2:cb:e7:cb:88:24:01: d3:68:6e:f5:76:0c:aa:b1:90:b4:96:64:ba:2c:94: 5b:0a:de:67:e0:ff:3f:fd:ed:3e:4e:70:95:16:1e: 12:45:19:93:d0:98:55:0d:1c:6b:ac:90:85:21:af: 3c:c0:68:ab:4c:f3:5e:7e:89:41:82:da:1c:72:29: 64:16:47:d8:f3:d2:5d:b0:0a:85:e7:2b:46:50:25: 30:b2:11:19:99:51:0d:1f:c5:62:9d:5e:4e:61:49: 2d:dd:72:67:28:51:26:3e:07:0c:ab:43:c5:e6:c8: 41:4f:f5:87:9c:83:2f:1b:e0:a1:d4:2b:6d:3b:b6: 5c:79:70:f1:c6:7b:ac:d1:c9:d2:b0:f6:08:12:ad: c7:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:10:60:B8:5A:C9:DF:9F:4E:F5:E3:AD:75:EC:C0:81:71:A4:28:82 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:58:42:88:04:79:99:d7:84:fa:1b:9a:b5:c7:e6:26:d5:5b: 40:12:bc:e6:24:3b:2e:07:96:43:a3:a9:82:f3:13:57:ff:b9: a5:05:22:07:28:92:d5:66:78:bb:a4:2d:73:0b:1b:f9:c9:77: c6:35:63:2e:58:43:3a:6a:38:75:3f:11:ab:28:ba:9e:c5:dc: 80:63:6d:f9:bd:2e:e6:cf:b3:45:a6:1f:77:6d:ba:ae:5c:4c: e9:74:2d:95:84:4b:ea:93:be:33:7c:0e:95:04:d3:65:9c:72: 65:80:5d:be:50:a5:56:17:82:55:7a:1d:f0:20:0a:72:e9:d5: 1e:36:c4:a2:a3:39:2d:65:de:0c:69:2e:26:eb:f6:c8:7f:79: e1:fb:a4:fc:6e:d6:52:33:7e:c9:5b:98:b8:31:50:b0:be:63: f9:de:e1:1a:3d:b0:da:f0:d5:01:28:84:f1:d5:11:0e:5a:df: b8:ae:9c:76:0f:bf:50:4b:28:05:5c:07:2c:a2:2d:ac:20:3f: 9e:33:bb:50:32:a6:8f:1e:d6:7c:66:8c:9a:e7:bf:a3:57:50: ce:36:2c:7b:95:e2:56:49:e5:c3:86:7a:a3:86:c1:e1:06:1d: 25:a4:2f:7e:3c:42:54:28:57:a3:79:fa:ed:f8:7e:81:ec:09: 96:5b:70:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUwOTE3MDUzNTAxWhcNMjUwOTI0MDUzNTAxWjAYMRYwFAYD VQQDEw02OGNhNDg4NS01MTRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAriGz1Yyv2sGtJCLO5HyjmsCtbwZ9V43RRIHojfo4vPEVZUiGDwHoD91OeMAq yNnv8cv5vsO2kuN+jcZPlYvFQ68Th27KnnNUPUMgoYqJhaqXd5FOHJ80zkURyinA yV56d0YJGJ3xJW/uwYZFqaUMDdLL58uIJAHTaG71dgyqsZC0lmS6LJRbCt5n4P8/ /e0+TnCVFh4SRRmT0JhVDRxrrJCFIa88wGirTPNefolBgtoccilkFkfY89JdsAqF 5ytGUCUwshEZmVENH8VinV5OYUkt3XJnKFEmPgcMq0PF5shBT/WHnIMvG+Ch1Ctt O7ZceXDxxnus0cnSsPYIEq3HFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcQYLha yd+fTvXjrXXswIFxpCiCMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXWEKIBHmZ14T6G5q1x+Ym1VtAErzmJDsuB5ZDo6mC8xNX/7mlBSIH KJLVZni7pC1zCxv5yXfGNWMuWEM6ajh1PxGrKLqexdyAY235vS7mz7NFph93bbqu XEzpdC2VhEvqk74zfA6VBNNlnHJlgF2+UKVWF4JVeh3wIApy6dUeNsSiozktZd4M aS4m6/bIf3nh+6T8btZSM37JW5i4MVCwvmP53uEaPbDa8NUBKITx1REOWt+4rpx2 D79QSygFXAcsoi2sID+eM7tQMqaPHtZ8Zoya57+jV1DONix7leJWSeXDhnqjhsHh Bh0lpC9+PEJUKFejefrt+H6B7AmWW3Ax -----END CERTIFICATE-----Generated at Fri Sep 19 02:24:42 2025 by rpki-client