$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: XPcnO/koAQ6pFVNSeaO0qkoPPUYp2pDgVytPI4reFeY= Subject key identifier: 54:C3:91:79:EF:13:38:2E:57:68:3F:1C:AE:DE:BE:54:F6:33:EB:92 Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09C6 Signing time: Thu 31 Jul 2025 20:49:21 +0000 Manifest this update: Thu 31 Jul 2025 20:49:21 +0000 Manifest next update: Thu 07 Aug 2025 20:49:21 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: iQanAGrgekAEADYY0vp138REwe4i2Z0yyW0u6yhQZcg=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 Aug 2025 20:49:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2508 (0x9cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Jul 31 20:49:21 2025 GMT Not After : Aug 7 20:49:21 2025 GMT Subject: CN=688bd6d1-4792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:de:af:31:14:0f:73:b4:bb:0a:c7:1a:a3:75: 27:41:4b:69:28:7c:f3:4a:b0:eb:b4:bb:d2:a7:8d: a8:8c:c5:14:d1:9f:2b:d8:3f:7c:20:f4:7f:1c:a3: c9:02:79:0c:64:c3:c1:a5:7b:c9:b2:ca:20:e0:f6: 08:ad:df:73:20:0b:41:c2:ea:45:cc:7d:98:0f:3e: bc:2f:0c:e1:85:c6:b5:1b:02:46:4b:88:83:cd:29: f0:bf:c6:4d:08:85:85:f2:72:00:b1:a7:ad:a7:d5: 7a:a2:57:b6:69:39:e6:c1:56:d9:30:38:70:4f:25: 5b:c9:bd:3d:b0:63:37:1c:b4:0d:28:dc:9a:fd:6d: 9d:53:db:5f:8d:90:66:1d:5f:8e:0f:a7:0e:08:ae: 27:9e:fa:99:ef:48:c6:37:49:17:a2:1a:42:a2:27: 5a:90:cf:b4:9a:8a:5f:13:ad:eb:77:e8:8f:05:d8: d8:ca:47:29:7a:3a:e4:80:22:b9:06:7c:64:bd:ab: 13:56:fd:1c:6d:ce:fe:2c:ba:0d:e3:11:be:70:d9: b8:b6:af:c2:e1:e9:6e:9c:09:ee:10:fe:8e:ff:e6: 75:af:c6:e4:29:64:62:e2:3e:cc:76:7e:8e:27:2c: 42:8b:b3:7c:a9:a0:33:84:42:72:91:0e:f2:38:06: d3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:C3:91:79:EF:13:38:2E:57:68:3F:1C:AE:DE:BE:54:F6:33:EB:92 X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:a4:6a:f3:ba:68:6c:c3:d6:3a:6d:60:77:f0:ee:c8:63:48: c6:89:5a:88:c3:76:75:49:4e:de:89:f5:54:3d:e2:a6:30:ca: 9a:5f:6e:73:1c:9a:f6:e8:2c:77:43:8f:f0:18:86:52:f5:6f: b9:4b:be:7e:4b:26:a5:3b:8d:5f:4d:af:40:b3:21:15:e0:45: 25:26:14:09:d5:ff:00:a9:5d:9f:db:5f:93:cb:f1:4a:af:19: 14:e1:0d:84:c8:25:27:16:a4:a5:fe:66:6a:45:11:0a:11:75: ee:bb:16:53:96:c2:97:8b:65:c5:d5:4f:32:2d:18:7d:24:7c: a2:1a:0d:62:f9:80:c4:e5:56:d4:4a:e9:ca:32:04:33:c1:f4: 42:e1:10:75:76:6f:52:52:ca:87:fe:6c:7b:4c:f5:70:5e:03: 4e:dc:8a:0c:1b:c1:67:1d:17:14:92:39:f8:2d:df:4c:02:67: 2d:5e:9d:be:2f:1b:e7:45:a0:0c:20:e7:48:9c:de:9c:2b:0c: 51:66:eb:54:04:01:35:59:50:76:1a:77:2c:3d:f2:3b:ae:b6: 8b:53:9a:ac:fa:5d:14:f4:23:ad:b0:79:bd:75:95:29:f1:59: 4e:a7:fc:d6:af:69:74:66:57:6c:c9:06:55:20:59:e3:99:6d: 4a:c9:65:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUwNzMxMjA0OTIxWhcNMjUwODA3MjA0OTIxWjAYMRYwFAYD VQQDEw02ODhiZDZkMS00NzkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN6vMRQPc7S7Cscao3UnQUtpKHzzSrDrtLvSp42ojMUU0Z8r2D98IPR/HKPJ AnkMZMPBpXvJssog4PYIrd9zIAtBwupFzH2YDz68Lwzhhca1GwJGS4iDzSnwv8ZN CIWF8nIAsaetp9V6ole2aTnmwVbZMDhwTyVbyb09sGM3HLQNKNya/W2dU9tfjZBm HV+OD6cOCK4nnvqZ70jGN0kXohpCoidakM+0mopfE63rd+iPBdjYykcpejrkgCK5 BnxkvasTVv0cbc7+LLoN4xG+cNm4tq/C4elunAnuEP6O/+Z1r8bkKWRi4j7Mdn6O JyxCi7N8qaAzhEJykQ7yOAbT7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFTDkXnv EzguV2g/HK7evlT2M+uSMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBepGrzumhsw9Y6bWB38O7IY0jGiVqIw3Z1SU7eifVUPeKmMMqaX25z HJr26Cx3Q4/wGIZS9W+5S75+SyalO41fTa9AsyEV4EUlJhQJ1f8AqV2f21+Ty/FK rxkU4Q2EyCUnFqSl/mZqRREKEXXuuxZTlsKXi2XF1U8yLRh9JHyiGg1i+YDE5VbU SunKMgQzwfRC4RB1dm9SUsqH/mx7TPVwXgNO3IoMG8FnHRcUkjn4Ld9MAmctXp2+ LxvnRaAMIOdInN6cKwxRZutUBAE1WVB2GncsPfI7rraLU5qs+l0U9COtsHm9dZUp 8VlOp/zWr2l0ZldsyQZVIFnjmW1KyWWZ -----END CERTIFICATE-----Generated at Sat Aug 2 18:38:49 2025 by rpki-client