$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: M3yjBofrmU2o84ScfOxxDe7ngOe3S106VWdxz2NFQow= Subject key identifier: D5:2F:B2:19:61:5D:0B:6D:3C:D8:7F:82:80:F8:BD:49:20:46:4F:64 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07AC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07A6 Signing time: Wed 20 Aug 2025 21:23:40 +0000 Manifest this update: Wed 20 Aug 2025 21:23:40 +0000 Manifest next update: Wed 27 Aug 2025 21:23:40 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: Bk0vTeew24E8SkeARpLNM3hcbYLE32ZvGjc/p4KYNyU=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: +nVGHDmFpNMeCZK4D+EYT1WCdxSsITi4ixDFG3tX1xc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 21:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1964 (0x7ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Aug 20 21:23:40 2025 GMT Not After : Aug 27 21:23:40 2025 GMT Subject: CN=68a63cdc-84df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e2:da:10:1e:03:8f:c0:6a:24:1f:52:7e:a1: e1:85:b7:b8:db:a2:d2:47:35:d4:83:39:db:1d:a8: 3c:5b:e7:fc:41:ed:e8:6c:d8:2b:f8:b7:ad:88:a9: f7:5f:c1:72:d7:ce:68:a6:22:25:dc:53:f1:a8:a9: ee:80:45:7c:3e:5c:2e:29:5d:b8:4a:7c:64:bc:4b: 15:30:f6:93:90:c5:b6:0b:54:a2:f2:b9:e6:11:4e: 49:cc:68:48:7c:10:7a:b7:fb:cd:b6:8a:0e:07:3e: 1b:84:af:95:8b:79:42:2e:a8:3b:99:de:6c:a3:80: f0:7d:6b:fe:9d:dc:5e:e4:ae:b4:e9:c5:75:6d:f5: 92:fd:08:e6:a8:06:40:c8:0e:52:29:9f:b5:03:9e: 3b:f0:67:e0:b7:18:a5:77:9a:5c:07:99:9f:6d:d9: 5b:eb:66:11:ed:8b:3f:63:45:83:7f:a7:7e:14:de: 43:e4:61:a5:13:8f:7f:ed:99:3e:7d:49:ad:5b:03: 3d:c7:2f:87:ff:ff:5f:a9:37:d8:7c:88:da:33:7a: 70:f1:23:d5:c0:25:4d:d4:89:5c:5a:d7:11:87:f8: 86:ed:1a:15:fc:21:26:62:1a:96:3a:e7:64:05:0e: 3f:a7:91:03:7c:48:86:72:66:3e:db:11:8e:43:c9: 98:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:2F:B2:19:61:5D:0B:6D:3C:D8:7F:82:80:F8:BD:49:20:46:4F:64 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c2:b9:10:a1:fd:20:90:6b:04:b6:e6:a9:f9:e5:d1:9e:b6:93: e0:21:5b:28:ce:3d:a9:ac:0a:7f:bf:a1:32:85:12:dc:92:10: e3:c6:f7:a6:6e:62:ae:3e:6e:ab:21:5d:24:f5:c4:31:38:54: 19:12:98:53:71:0c:56:6b:de:23:75:14:2f:e1:ac:55:64:04: 4c:77:c4:f8:b5:00:24:28:9f:fa:fe:1c:8e:83:0c:15:0f:07: eb:78:4a:ae:e6:22:ca:a7:d5:28:73:0c:41:f9:b0:f7:af:6c: 1d:37:cc:15:6c:76:61:5b:6b:64:ce:4f:9b:29:af:c0:73:02: 76:59:d1:f4:3e:85:85:e7:43:9a:53:f8:f5:43:6c:63:8b:25: 34:82:ef:43:9a:5c:74:a5:6c:5f:31:f3:8c:f7:39:be:7a:dd: c9:76:05:31:34:da:54:b4:a8:c7:f0:ce:69:79:5d:13:b2:ee: f7:c7:d4:24:1a:97:8f:38:ca:fd:8d:81:f6:01:49:83:a2:d7: e3:7a:fb:c8:9e:7d:11:e5:be:d9:d5:b1:4e:96:e4:01:60:d8: 2f:d5:1e:a2:02:c2:8e:6c:35:7a:64:59:ac:94:7b:5d:86:26: 3c:8b:0f:85:18:6c:c7:83:20:7b:82:1d:83:1b:0b:c3:0b:c2: 0b:55:27:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB6wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUwODIwMjEyMzQwWhcNMjUwODI3MjEyMzQwWjAYMRYwFAYD VQQDEw02OGE2M2NkYy04NGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uLaEB4Dj8BqJB9SfqHhhbe426LSRzXUgznbHag8W+f8Qe3obNgr+LetiKn3 X8Fy185opiIl3FPxqKnugEV8PlwuKV24SnxkvEsVMPaTkMW2C1Si8rnmEU5JzGhI fBB6t/vNtooOBz4bhK+Vi3lCLqg7md5so4DwfWv+ndxe5K606cV1bfWS/QjmqAZA yA5SKZ+1A5478Gfgtxild5pcB5mfbdlb62YR7Ys/Y0WDf6d+FN5D5GGlE49/7Zk+ fUmtWwM9xy+H//9fqTfYfIjaM3pw8SPVwCVN1IlcWtcRh/iG7RoV/CEmYhqWOudk BQ4/p5EDfEiGcmY+2xGOQ8mYawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNUvshlh XQttPNh/goD4vUkgRk9kMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDCuRCh/SCQawS25qn55dGetpPgIVsozj2prAp/v6EyhRLckhDjxvem bmKuPm6rIV0k9cQxOFQZEphTcQxWa94jdRQv4axVZARMd8T4tQAkKJ/6/hyOgwwV DwfreEqu5iLKp9UocwxB+bD3r2wdN8wVbHZhW2tkzk+bKa/AcwJ2WdH0PoWF50Oa U/j1Q2xjiyU0gu9Dmlx0pWxfMfOM9zm+et3JdgUxNNpUtKjH8M5peV0Tsu73x9Qk GpePOMr9jYH2AUmDotfjevvInn0R5b7Z1bFOluQBYNgv1R6iAsKObDV6ZFmslHtd hiY8iw+FGGzHgyB7gh2DGwvDC8ILVSeH -----END CERTIFICATE-----Generated at Fri Aug 22 16:33:12 2025 by rpki-client