$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: NnFiEfmmMc377ofF9OX4v0SLoQLOI4vLnZqe84YVwFw= Subject key identifier: FF:57:29:92:B0:FF:0E:EF:09:71:81:0C:35:8A:9C:2E:D9:D3:07:64 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1FAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1F9D Signing time: Sun 24 Aug 2025 15:57:52 +0000 Manifest this update: Sun 24 Aug 2025 15:57:52 +0000 Manifest next update: Sun 31 Aug 2025 15:57:52 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: oEH0ffaD3+0mln86Rqzv5MbcOJ08Ks0YqlLSYwvJoJE=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: bpwG3qWkZqt3c9e2parZM85DcFLWLncfBgOv3ugwly0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:57:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8107 (0x1fab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Aug 24 15:57:52 2025 GMT Not After : Aug 31 15:57:52 2025 GMT Subject: CN=68ab3680-8280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:39:93:b3:50:6a:1d:f9:7d:68:40:a7:af:25: 48:c4:16:e0:a8:67:f7:3b:48:dc:8f:f7:0b:f2:d6: 58:cc:ba:6f:54:09:b7:c1:12:ac:38:da:a7:a8:58: 4b:7c:42:37:3a:98:47:23:55:88:d6:24:94:9b:6a: 2b:11:33:f6:7a:2d:1f:7c:11:49:92:d9:c5:85:02: c5:28:12:d7:c0:de:9b:e8:0b:fa:65:8a:12:5a:39: 4f:1b:25:a1:09:53:5f:b0:23:ed:85:a5:45:ae:7c: 49:de:9f:5b:28:fb:31:d9:98:3c:bc:08:61:ad:94: 45:0c:ac:1d:cd:b9:50:90:de:30:82:5d:3e:b8:78: 19:60:95:25:f4:41:76:40:ca:13:1a:84:33:0a:ea: 61:c8:df:fb:62:3f:1f:5d:55:44:c0:19:41:d5:8b: b4:86:0c:09:d6:76:72:79:45:07:06:f6:a8:63:b6: 98:23:4f:a6:10:05:8e:5a:4f:e8:e8:fc:9b:e5:5f: 68:57:08:30:15:53:80:8f:c0:93:5f:23:a2:c2:ba: a7:5c:c1:7d:fb:5a:12:f6:8e:c5:5b:49:ee:fd:6c: cb:41:89:be:a5:d5:c3:d1:74:8d:42:99:7f:6c:45: 16:12:95:c5:0d:08:a1:eb:89:b6:c4:68:f8:96:97: 56:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:57:29:92:B0:FF:0E:EF:09:71:81:0C:35:8A:9C:2E:D9:D3:07:64 X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:53:ed:81:94:6c:b6:ce:c6:0a:4e:85:ca:ba:91:c1:33:09: 8a:33:21:75:be:16:fd:1e:22:e3:73:13:de:17:92:a0:f6:b0: 1e:cd:28:5b:32:4d:df:79:22:1c:fe:b9:6c:37:ba:5c:6f:5a: 7f:ca:0d:e9:f0:ed:d4:32:02:11:6d:48:dc:72:6e:71:94:6d: 14:ba:91:99:eb:b0:81:b8:b6:3d:ac:ba:82:59:ea:7a:1d:40: ad:ed:5a:a2:49:f8:a0:5a:cb:0e:71:b4:f5:e7:f4:b6:ec:58: 7d:cd:6e:cd:a4:20:dc:f5:b1:43:9d:7c:25:4d:c1:71:21:70: a5:2b:08:db:0e:26:4d:54:1c:cb:39:c4:da:a2:95:3c:8b:cb: f2:df:0b:f6:d9:ee:9c:f1:95:07:1d:4b:30:17:50:df:f9:87: d8:2e:2b:12:f6:f6:8c:f2:a2:42:74:4c:d2:78:3b:1f:24:48: 65:bb:08:07:64:40:25:64:9d:74:64:02:28:9e:b0:61:80:eb: d3:b9:93:b1:b2:0e:ec:9f:d8:35:70:f7:f8:0f:a2:cb:a2:08: f5:ca:6a:c3:68:44:d7:57:c5:00:40:1b:90:3c:0d:34:d1:b6: 22:72:75:62:9a:b5:79:aa:0d:e3:80:9b:3f:42:93:3f:4b:03: f4:77:bf:53 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH6swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUwODI0MTU1NzUyWhcNMjUwODMxMTU1NzUyWjAYMRYwFAYD VQQDEw02OGFiMzY4MC04MjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzmTs1BqHfl9aECnryVIxBbgqGf3O0jcj/cL8tZYzLpvVAm3wRKsONqnqFhL fEI3OphHI1WI1iSUm2orETP2ei0ffBFJktnFhQLFKBLXwN6b6Av6ZYoSWjlPGyWh CVNfsCPthaVFrnxJ3p9bKPsx2Zg8vAhhrZRFDKwdzblQkN4wgl0+uHgZYJUl9EF2 QMoTGoQzCuphyN/7Yj8fXVVEwBlB1Yu0hgwJ1nZyeUUHBvaoY7aYI0+mEAWOWk/o 6Pyb5V9oVwgwFVOAj8CTXyOiwrqnXMF9+1oS9o7FW0nu/WzLQYm+pdXD0XSNQpl/ bEUWEpXFDQih64m2xGj4lpdW7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9XKZKw /w7vCXGBDDWKnC7Z0wdkMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKU+2BlGy2zsYKToXKupHBMwmKMyF1vhb9HiLjcxPeF5Kg9rAezShb Mk3feSIc/rlsN7pcb1p/yg3p8O3UMgIRbUjccm5xlG0UupGZ67CBuLY9rLqCWep6 HUCt7VqiSfigWssOcbT15/S27Fh9zW7NpCDc9bFDnXwlTcFxIXClKwjbDiZNVBzL OcTaopU8i8vy3wv22e6c8ZUHHUswF1Df+YfYLisS9vaM8qJCdEzSeDsfJEhluwgH ZEAlZJ10ZAIonrBhgOvTuZOxsg7sn9g1cPf4D6LLogj1ymrDaETXV8UAQBuQPA00 0bYicnVimrV5qg3jgJs/QpM/SwP0d79T -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:51 2025 by rpki-client