$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: yhRT2fOe9Y2jkenQoMczE+Vz7shpULfWfTcgSql84eo= Subject key identifier: 46:0C:E6:F4:CD:9F:A0:8D:E1:E0:FD:F7:C3:DE:87:3E:FB:64:E4:1F Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C3F Signing time: Mon 08 Sep 2025 18:40:58 +0000 Manifest this update: Mon 08 Sep 2025 18:40:57 +0000 Manifest next update: Mon 15 Sep 2025 18:40:57 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: jPrIjn2cEJhSy7J1Q/OZy9BLGJeP+qSvsll4kiN1Wb4=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: 5ttWZpUai22oFSUg02AkUKazNYGpWMAvqC2hReQsDD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 18:40:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3153 (0xc51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Sep 8 18:40:57 2025 GMT Not After : Sep 15 18:40:57 2025 GMT Subject: CN=68bf233a-4f13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:df:5b:65:94:f3:4c:e0:46:82:44:38:ca:dc: 7d:27:d3:4a:5f:2d:e8:5b:6f:a1:9d:c0:21:28:bb: bf:aa:ec:16:ab:12:c9:90:31:62:54:e2:a7:d8:f6: 8f:a0:82:ee:39:24:b5:8d:85:15:5f:7f:30:f4:40: a5:e2:c0:6c:6e:d4:09:5d:e6:55:fd:79:c5:9a:8b: 7e:e4:d3:07:28:fc:de:d7:6a:63:d8:7b:7b:ae:54: 27:63:c2:e7:b6:2d:d4:86:70:bc:2c:cc:ce:32:72: 1d:7e:b6:8e:92:97:ca:53:b4:64:3c:6f:53:11:58: f5:53:b7:f1:25:fa:18:84:b4:57:0d:09:83:9b:c1: 7d:f9:9b:3f:11:f0:0f:2c:5b:aa:c8:db:d4:73:34: 47:b6:8d:b1:9a:84:8e:93:4c:b3:a8:11:52:44:8e: 7e:15:24:0e:3d:07:d7:3e:c1:65:f5:1e:3b:06:29: 35:1d:b9:91:28:02:87:04:2f:b1:16:b4:d8:19:50: 29:85:58:1c:1e:a7:ab:f5:7b:81:9b:29:ba:6a:18: 30:93:39:a5:e0:cf:c9:eb:09:00:21:64:dd:2b:e1: cc:fd:4d:21:9e:e5:a8:99:e9:1e:73:2c:7b:2b:7d: de:a8:62:d4:b2:6b:aa:a8:47:b0:53:b5:20:d6:e2: 5b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:0C:E6:F4:CD:9F:A0:8D:E1:E0:FD:F7:C3:DE:87:3E:FB:64:E4:1F X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:88:91:03:0a:88:6f:06:dd:d8:8f:d5:6c:90:4d:23:de:41: fc:b5:32:0b:44:c6:58:3e:ca:ab:d0:a7:73:05:17:17:5a:90: 19:54:1a:b1:26:80:6e:37:86:6f:45:eb:e1:81:68:97:be:3d: b6:ba:cb:53:13:72:7f:99:55:cd:72:10:2a:55:cf:7a:dd:e0: d2:5d:6c:3e:62:34:0b:3b:c8:03:59:42:d7:63:45:75:4f:55: 60:80:0d:e2:6e:d0:e4:be:a4:df:02:66:59:6b:b7:31:5e:6f: c5:cd:4a:19:33:96:00:61:1c:6d:d4:29:7c:98:1d:9e:22:49: c3:5a:ad:96:12:4f:c2:8b:46:8d:c6:7a:50:35:19:4e:96:ef: df:98:ac:4a:56:e4:72:1c:73:84:f9:0c:7f:49:f6:34:47:25: 26:a6:5d:90:43:3f:b3:df:63:f7:68:f4:b9:7c:f7:a1:6a:3f: a8:22:b6:73:23:a8:e8:24:b9:54:f3:fb:6f:1a:a4:ca:55:7f: 57:59:db:3f:9c:f7:5a:74:f9:57:4b:5f:87:eb:2e:a2:35:0d: 00:ee:0a:31:a4:75:76:7f:97:b9:61:74:34:df:b5:61:98:ef: 21:dc:17:60:54:75:c3:52:49:24:e7:88:f1:be:0c:b1:ba:8f: 5e:f3:65:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUwOTA4MTg0MDU3WhcNMjUwOTE1MTg0MDU3WjAYMRYwFAYD VQQDEw02OGJmMjMzYS00ZjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv99bZZTzTOBGgkQ4ytx9J9NKXy3oW2+hncAhKLu/quwWqxLJkDFiVOKn2PaP oILuOSS1jYUVX38w9ECl4sBsbtQJXeZV/XnFmot+5NMHKPze12pj2Ht7rlQnY8Ln ti3UhnC8LMzOMnIdfraOkpfKU7RkPG9TEVj1U7fxJfoYhLRXDQmDm8F9+Zs/EfAP LFuqyNvUczRHto2xmoSOk0yzqBFSRI5+FSQOPQfXPsFl9R47Bik1HbmRKAKHBC+x FrTYGVAphVgcHqer9XuBmym6ahgwkzml4M/J6wkAIWTdK+HM/U0hnuWomekecyx7 K33eqGLUsmuqqEewU7Ug1uJbYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEYM5vTN n6CN4eD998Pehz77ZOQfMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDiJEDCohvBt3Yj9VskE0j3kH8tTILRMZYPsqr0KdzBRcXWpAZVBqx JoBuN4ZvRevhgWiXvj22ustTE3J/mVXNchAqVc963eDSXWw+YjQLO8gDWULXY0V1 T1VggA3ibtDkvqTfAmZZa7cxXm/FzUoZM5YAYRxt1Cl8mB2eIknDWq2WEk/Ci0aN xnpQNRlOlu/fmKxKVuRyHHOE+Qx/SfY0RyUmpl2QQz+z32P3aPS5fPehaj+oIrZz I6joJLlU8/tvGqTKVX9XWds/nPdadPlXS1+H6y6iNQ0A7goxpHV2f5e5YXQ037Vh mO8h3BdgVHXDUkkk54jxvgyxuo9e82Uv -----END CERTIFICATE-----Generated at Wed Sep 10 13:35:11 2025 by rpki-client