$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: yblo/kY6d80C6Cr7pFi8lDOlvSq8PiVpLT/18Ot8sGo= Subject key identifier: B3:4F:AE:74:C0:70:C4:5E:C0:D4:CD:7F:C2:C1:C1:83:74:52:18:7E Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: D8 Signing time: Fri 05 Sep 2025 06:03:45 +0000 Manifest this update: Fri 05 Sep 2025 06:03:45 +0000 Manifest next update: Fri 12 Sep 2025 06:03:45 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: lvbTZnBZEd2CNG3i0PWygIm2r/QzkPzHavzMOip4LcA=) 2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:03:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Sep 5 06:03:45 2025 GMT Not After : Sep 12 06:03:45 2025 GMT Subject: CN=68ba7d41-10f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:43:3c:32:42:41:f8:ba:eb:bc:4b:0b:03:b6: 89:3a:27:15:dd:fb:c5:eb:37:86:1b:5e:82:36:b5: 5a:41:7c:0b:46:6f:15:65:da:10:e5:14:f5:b9:08: 0d:4a:e3:0d:7f:9c:70:6f:48:ee:87:f9:77:44:32: ea:f2:af:9c:b4:82:2a:41:c5:4f:64:38:8e:22:18: 01:2f:68:50:a7:07:29:e8:d9:be:d3:a0:04:89:3c: 36:16:59:a4:8f:4a:0a:4f:ee:ad:6d:3e:96:11:1e: 6e:1c:e3:4c:4d:a9:03:4b:ec:15:cd:04:81:82:93: 04:e5:c3:f7:ba:43:ad:6d:0f:1d:b7:aa:9f:18:d3: cc:5c:44:ae:4c:36:62:00:28:2a:1d:cc:77:7d:02: c0:d9:0a:1d:69:dd:b4:39:a5:12:08:c2:1a:02:e3: 52:cb:b5:e0:f8:6f:9f:09:10:fa:6f:0b:da:f7:95: 32:c1:c2:0b:f3:6a:d4:8b:c2:a2:6d:25:80:17:d8: 7d:49:cc:14:26:76:b3:02:76:11:14:b3:8c:cf:ed: aa:63:ff:3f:7f:6e:84:c4:15:8f:49:7d:e0:da:78: d2:9a:ea:c2:81:62:34:c8:1c:05:04:1f:90:e5:c6: d5:86:80:d1:ce:d1:f7:28:50:91:aa:d9:47:74:b8: 25:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:4F:AE:74:C0:70:C4:5E:C0:D4:CD:7F:C2:C1:C1:83:74:52:18:7E X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:52:56:12:5e:dd:a5:b5:c7:eb:ae:05:fe:c8:b5:d5:69:fe: 21:d7:f4:d2:9c:0c:7f:37:40:1f:60:c1:45:4c:f2:89:1c:42: 16:80:bf:d4:be:3a:c7:26:77:fb:e5:ae:ee:96:1a:dc:8d:1d: 68:6c:e6:13:f8:86:46:3a:ee:11:7a:df:a0:66:6f:3f:21:1b: b6:4d:2f:ef:4c:50:f9:f1:2a:12:5f:79:53:b3:23:7a:45:dd: 4b:31:17:10:03:b1:34:e9:97:4c:b7:4f:3f:d8:ea:06:b0:92: 71:64:0f:c4:df:d3:c5:41:4a:f4:b0:06:95:34:bc:35:12:b1: 32:49:f1:e0:7a:0d:5d:11:e5:19:10:9b:0b:b7:02:69:26:4d: 1b:84:12:35:fa:e1:73:dc:45:c3:64:ad:80:0f:60:61:11:ae: 61:ab:89:63:af:7e:5a:2a:28:21:ce:6f:da:88:f5:cf:3c:ac: e3:c4:b3:15:56:1d:16:fb:50:ac:54:79:b1:73:7a:34:3d:31: 15:4e:fb:c8:1e:05:52:47:5a:4c:de:5f:37:74:67:f2:8e:30: d5:e3:22:b3:5e:2b:aa:72:97:49:94:07:b3:64:ec:0e:de:7e: 63:0a:0c:83:8e:b3:43:9e:a2:4d:52:cc:fa:7c:c1:71:9a:aa: f3:1d:05:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUwOTA1MDYwMzQ1WhcNMjUwOTEyMDYwMzQ1WjAYMRYwFAYD VQQDEw02OGJhN2Q0MS0xMGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0M8MkJB+LrrvEsLA7aJOicV3fvF6zeGG16CNrVaQXwLRm8VZdoQ5RT1uQgN SuMNf5xwb0juh/l3RDLq8q+ctIIqQcVPZDiOIhgBL2hQpwcp6Nm+06AEiTw2Flmk j0oKT+6tbT6WER5uHONMTakDS+wVzQSBgpME5cP3ukOtbQ8dt6qfGNPMXESuTDZi ACgqHcx3fQLA2Qodad20OaUSCMIaAuNSy7Xg+G+fCRD6bwva95UywcIL82rUi8Ki bSWAF9h9ScwUJnazAnYRFLOMz+2qY/8/f26ExBWPSX3g2njSmurCgWI0yBwFBB+Q 5cbVhoDRztH3KFCRqtlHdLglRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLNPrnTA cMRewNTNf8LBwYN0Uhh+MB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCRUlYSXt2ltcfrrgX+yLXVaf4h1/TSnAx/N0AfYMFFTPKJHEIWgL/U vjrHJnf75a7ulhrcjR1obOYT+IZGOu4Ret+gZm8/IRu2TS/vTFD58SoSX3lTsyN6 Rd1LMRcQA7E06ZdMt08/2OoGsJJxZA/E39PFQUr0sAaVNLw1ErEySfHgeg1dEeUZ EJsLtwJpJk0bhBI1+uFz3EXDZK2AD2BhEa5hq4ljr35aKighzm/aiPXPPKzjxLMV Vh0W+1CsVHmxc3o0PTEVTvvIHgVSR1pM3l83dGfyjjDV4yKzXiuqcpdJlAezZOwO 3n5jCgyDjrNDnqJNUsz6fMFxmqrzHQWq -----END CERTIFICATE-----Generated at Sat Sep 6 12:08:11 2025 by rpki-client