$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: Pe2lwfLYOpCKAoV5JBz/APTCId2YADV/9zilqUJRQik= Subject key identifier: E7:4E:F1:7C:14:D6:2C:50:CC:6E:C6:91:54:04:3A:8D:B9:15:2C:A6 Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0361 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 035D Signing time: Fri 05 Sep 2025 00:58:40 +0000 Manifest this update: Fri 05 Sep 2025 00:58:39 +0000 Manifest next update: Fri 12 Sep 2025 00:58:39 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: CYfnJpOoqrhdfTfh2vmatx3Ofd7p/q23iCP5Uk47fDA=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 865 (0x361) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Sep 5 00:58:39 2025 GMT Not After : Sep 12 00:58:39 2025 GMT Subject: CN=68ba35bf-e319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0a:ce:c7:92:fb:79:8a:f9:50:f3:6a:80:4a: 69:cc:3a:9c:87:68:90:55:3f:ca:03:4d:57:e1:62: 4e:10:4f:f2:2b:3d:f0:18:f9:b9:c0:51:0c:db:a6: 3f:a8:17:f2:50:1f:7b:c1:36:45:b3:1a:bd:2d:45: 87:fe:61:c4:3b:2c:de:82:c8:3b:07:cf:67:36:dc: d2:88:9b:94:5e:b6:b8:43:6b:7e:cb:6e:c1:79:6a: 30:f3:86:dd:ac:23:b5:31:2f:ef:c8:4c:50:15:ff: 2a:76:b0:6a:06:bc:3c:c3:6f:bb:e5:b0:d8:e7:a8: 90:d8:b7:bd:d3:d0:38:70:bb:23:8c:6a:2b:61:52: 0d:17:2b:38:61:40:b0:ec:f8:df:3b:65:d5:38:22: c9:d2:1d:f9:bb:e0:90:cc:5c:da:5a:e8:9b:cb:8a: 76:65:21:cb:36:6f:17:4b:f8:73:32:0d:03:e9:3c: fd:2c:52:08:11:d3:fe:b1:db:5e:87:7d:b3:ae:8b: 04:e3:68:d2:65:d4:4a:30:93:42:2e:6f:e4:43:48: 24:98:c2:2c:8d:7c:37:49:fd:06:62:ce:92:72:7d: e2:97:91:23:78:74:6e:d4:dd:d9:23:37:ac:69:9a: fc:17:a1:0d:8e:e0:62:f3:d5:dd:31:13:a0:9d:25: 05:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4E:F1:7C:14:D6:2C:50:CC:6E:C6:91:54:04:3A:8D:B9:15:2C:A6 X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:1d:30:67:9e:d8:5d:54:90:6d:36:81:f0:fc:36:c5:b1:73: 58:c0:c0:e8:00:46:55:9c:8c:36:6c:76:5e:ee:f9:5c:6d:02: 7c:95:80:3e:46:63:4c:41:3f:4f:0a:d1:a3:e2:15:cc:87:32: eb:e7:7d:25:6d:08:9e:35:e3:00:a3:d3:bf:55:b8:84:a1:56: cf:13:79:1f:71:50:27:9c:49:4b:e4:08:3f:16:2c:a1:4e:58: f5:f2:2c:ea:68:75:a9:64:77:1e:a6:b8:20:79:e0:b2:dc:27: 24:c1:90:82:bf:b5:56:af:80:e4:8a:5c:2d:48:00:e2:d2:77: 3f:f4:ad:a0:0c:0e:17:bb:ab:78:af:2c:39:d1:b4:e2:a5:f9: 10:77:d7:f9:c2:58:5f:52:0f:4f:48:2b:b9:ba:b9:c6:d6:bf: 3c:64:c9:5c:1d:fd:79:47:9e:8e:45:f9:86:d7:24:17:7c:d0: 8f:00:ea:82:82:57:56:06:e6:3f:61:4d:0b:55:f1:f9:a1:d6: ae:3c:d5:17:36:16:17:1f:74:8e:7d:82:ac:7d:84:cd:38:ec: 14:82:f7:7f:db:20:ab:73:28:d7:0a:ff:5c:90:bc:60:ca:24: 8c:2e:40:7e:97:1d:68:c0:8b:49:45:7c:39:8b:e5:c7:d8:9a: d3:a6:b1:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUwOTA1MDA1ODM5WhcNMjUwOTEyMDA1ODM5WjAYMRYwFAYD VQQDEw02OGJhMzViZi1lMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwrOx5L7eYr5UPNqgEppzDqch2iQVT/KA01X4WJOEE/yKz3wGPm5wFEM26Y/ qBfyUB97wTZFsxq9LUWH/mHEOyzegsg7B89nNtzSiJuUXra4Q2t+y27BeWow84bd rCO1MS/vyExQFf8qdrBqBrw8w2+75bDY56iQ2Le909A4cLsjjGorYVINFys4YUCw 7PjfO2XVOCLJ0h35u+CQzFzaWuiby4p2ZSHLNm8XS/hzMg0D6Tz9LFIIEdP+sdte h32zrosE42jSZdRKMJNCLm/kQ0gkmMIsjXw3Sf0GYs6Scn3il5EjeHRu1N3ZIzes aZr8F6ENjuBi89XdMROgnSUFiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOdO8XwU 1ixQzG7GkVQEOo25FSymMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUHTBnnthdVJBtNoHw/DbFsXNYwMDoAEZVnIw2bHZe7vlcbQJ8lYA+ RmNMQT9PCtGj4hXMhzLr530lbQieNeMAo9O/VbiEoVbPE3kfcVAnnElL5Ag/Fiyh Tlj18izqaHWpZHceprggeeCy3CckwZCCv7VWr4DkilwtSADi0nc/9K2gDA4Xu6t4 ryw50bTipfkQd9f5wlhfUg9PSCu5urnG1r88ZMlcHf15R56ORfmG1yQXfNCPAOqC gldWBuY/YU0LVfH5odauPNUXNhYXH3SOfYKsfYTNOOwUgvd/2yCrcyjXCv9ckLxg yiSMLkB+lx1owItJRXw5i+XH2JrTprHb -----END CERTIFICATE-----Generated at Sat Sep 6 21:13:22 2025 by rpki-client