$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: b0UITaybETgemQ96o8KbrjJ8Ooll6qo74h6SWQS/tlw= Subject key identifier: 3B:E2:42:D4:8E:6C:87:EF:E1:6D:A9:04:9A:46:D7:2E:03:FD:F6:F7 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0EDC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E8C Signing time: Thu 18 Sep 2025 17:56:31 +0000 Manifest this update: Thu 18 Sep 2025 17:56:30 +0000 Manifest next update: Thu 25 Sep 2025 17:56:30 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: GAZ39/BlSC4m9/3i3FQgchRWJF5s1pyeHoIIw99Zz3w=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: h1piDIbFbu2D+AHr+FNeuVa8V0LAf8dUKVxZfkw96aI=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: wbUo+m2N2pVjNOlqoJ9Ve/RDUUkR0+GFezmtrgOfh+0=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: DsQ8k2r18shy7gg+hUBL2SO8HUEFyNSKHtxB+WEbNG4=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: hPUFimj9BE3+BwwQ7RyTBe4Kb4UDlyO5v1n1M99BRDE=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: uul2CdaEoquPtSKMLPmrjkbQbRp1WUkF6rtkLx9zg64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:56:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3804 (0xedc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 18 17:56:30 2025 GMT Not After : Sep 25 17:56:30 2025 GMT Subject: CN=68cc47ce-0562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:f5:77:a7:27:a4:eb:8d:e1:b9:a8:9d:58:20: f4:54:78:c1:fa:12:e7:69:b3:a2:52:b3:75:55:c6: 08:36:65:aa:63:ce:64:a4:a3:dc:f7:e4:2b:29:8f: 7b:4b:9d:ef:90:64:28:f1:58:2e:8a:69:ba:8c:58: d4:78:32:80:0f:4a:2d:4c:55:5e:77:c3:10:1c:78: 2e:93:f2:ec:ea:ed:4a:ac:f6:7d:18:4b:30:96:34: 6d:7a:20:ed:f5:cb:85:1d:d0:82:33:36:fe:a3:a2: 5e:ab:e5:8e:00:4d:9b:0d:dd:03:90:cd:69:97:1a: 20:e6:09:45:b3:03:04:9a:ec:a2:51:16:f1:26:b4: 0a:15:fb:cf:dc:b2:66:2c:47:20:a0:bf:32:4c:79: b9:95:df:35:8d:7e:e6:8d:dc:f8:8c:08:e6:c7:a6: c5:f1:a8:10:a9:18:4e:18:4f:b9:51:f3:43:fa:a9: 97:9e:14:8d:04:81:b3:42:0a:41:7a:7b:25:3f:5c: 30:63:6d:3c:22:58:ec:ac:29:f8:ca:1b:e9:6e:25: ae:94:e8:4a:be:a0:02:32:c1:f8:e1:11:14:fb:f6: ac:34:3d:d9:1c:87:0a:da:44:1f:29:4a:38:9c:55: 58:a1:a9:83:20:81:5e:8b:be:de:8a:a2:80:10:02: 1c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:E2:42:D4:8E:6C:87:EF:E1:6D:A9:04:9A:46:D7:2E:03:FD:F6:F7 X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:57:e3:0f:68:9b:e1:f1:56:22:f5:d1:5f:16:73:b2:eb:00: 17:76:45:49:09:44:5f:ab:79:a8:53:e0:99:1b:7e:95:46:0e: f1:48:b8:4f:2f:ad:4a:cd:c6:9d:3d:93:b3:de:ec:1e:d2:3d: 22:a5:31:1c:e5:f6:8a:24:5a:b3:c6:ee:0b:25:20:02:9e:74: 2f:c3:d4:82:11:3d:23:42:85:27:3f:04:ab:fd:16:13:27:84: cc:2b:49:cb:d7:6c:d8:05:ad:4e:c9:4a:e4:6a:5d:9e:b9:27: 84:56:51:b5:43:76:63:48:39:31:d0:65:67:65:1a:08:00:03: ca:b9:ff:04:e4:e2:f5:93:5e:1f:c8:86:25:5d:07:39:7f:85: 68:08:17:19:5c:dd:0a:6f:87:e8:95:1b:6b:15:0a:db:eb:d3: e5:36:b3:07:0f:0a:cf:f8:65:4e:e1:c2:8d:8c:e7:91:3a:79: 2b:67:b9:93:79:72:e8:4c:85:d4:99:c0:e3:8b:0b:a0:47:10: b6:52:a7:db:95:18:e6:e9:d9:27:f3:d1:68:ad:8c:51:51:6d: 32:41:42:60:e5:dd:33:13:77:0f:96:8d:c5:f4:09:3c:49:ef: 23:59:96:60:ce:b5:9c:0d:08:4e:61:77:c4:c8:c5:30:39:a6: 8a:39:98:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUwOTE4MTc1NjMwWhcNMjUwOTI1MTc1NjMwWjAYMRYwFAYD VQQDEw02OGNjNDdjZS0wNTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyPV3pyek643huaidWCD0VHjB+hLnabOiUrN1VcYINmWqY85kpKPc9+QrKY97 S53vkGQo8Vguimm6jFjUeDKAD0otTFVed8MQHHguk/Ls6u1KrPZ9GEswljRteiDt 9cuFHdCCMzb+o6Jeq+WOAE2bDd0DkM1plxog5glFswMEmuyiURbxJrQKFfvP3LJm LEcgoL8yTHm5ld81jX7mjdz4jAjmx6bF8agQqRhOGE+5UfND+qmXnhSNBIGzQgpB enslP1wwY208IljsrCn4yhvpbiWulOhKvqACMsH44REU+/asND3ZHIcK2kQfKUo4 nFVYoamDIIFei77eiqKAEAIctwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDviQtSO bIfv4W2pBJpG1y4D/fb3MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0V+MPaJvh8VYi9dFfFnOy6wAXdkVJCURfq3moU+CZG36VRg7xSLhP L61KzcadPZOz3uwe0j0ipTEc5faKJFqzxu4LJSACnnQvw9SCET0jQoUnPwSr/RYT J4TMK0nL12zYBa1OyUrkal2euSeEVlG1Q3ZjSDkx0GVnZRoIAAPKuf8E5OL1k14f yIYlXQc5f4VoCBcZXN0Kb4folRtrFQrb69PlNrMHDwrP+GVO4cKNjOeROnkrZ7mT eXLoTIXUmcDjiwugRxC2UqfblRjm6dkn89ForYxRUW0yQUJg5d0zE3cPlo3F9Ak8 Se8jWZZgzrWcDQhOYXfEyMUwOaaKOZjV -----END CERTIFICATE-----Generated at Fri Sep 19 12:27:16 2025 by rpki-client