$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft File: kg59CR8VVp8tg0DGWCuVlewGVoA.mft (raw, json) Hash identifier: FZbp4bdx1QDux29hT/N079h8X8pxUE7D7FXR96EQ3Ek= Subject key identifier: FA:AE:6A:9F:39:D2:BD:20:F9:0F:12:7A:30:54:66:01:78:A7:BF:CA Authority key identifier: 92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 Certificate issuer: /CN=A9112FE1/serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft Manifest number: 48 Signing time: Mon 11 Aug 2025 07:41:25 +0000 Manifest this update: Mon 11 Aug 2025 07:41:24 +0000 Manifest next update: Mon 18 Aug 2025 07:41:24 +0000 Files and hashes: 1: kg59CR8VVp8tg0DGWCuVlewGVoA.crl (hash: 1Y7MtyU7qfr7FijjN7fJz0JsJqROVkGf9Xz4sZpXHd8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Validity Not Before: Aug 11 07:41:24 2025 GMT Not After : Aug 18 07:41:24 2025 GMT Subject: CN=68999ea4-4460 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:26:59:24:06:ad:26:45:0d:47:7e:cb:d0:17: fa:86:b3:24:90:f8:32:8d:04:69:0d:b4:10:2c:9a: 52:5c:e9:9d:fc:b0:08:bb:32:90:e6:fb:89:ba:8a: 39:50:0b:fa:c6:eb:4a:b1:80:39:b5:c1:85:b8:4d: a7:84:38:c0:54:43:59:bd:a1:d0:73:37:0d:fa:5c: d6:9f:26:8f:b4:87:2d:90:20:46:bd:79:40:29:61: 1b:b2:ce:8c:d0:9f:d5:7f:a3:ed:7e:27:4a:80:51: 3b:30:04:ee:16:da:24:12:de:6c:85:e5:d5:76:70: 74:d5:1f:8a:7b:e0:00:6e:bc:db:c5:68:ab:7d:8c: 0f:23:85:d9:de:36:e7:f7:b7:ad:5d:c4:49:51:4a: e1:7e:28:e8:bf:22:d1:70:12:d8:a8:9f:20:9c:e6: a0:3d:cb:c6:b4:82:c8:d3:97:e3:83:bc:66:6d:69: 09:cb:59:6c:a3:2a:13:f4:ec:78:c2:be:b2:3c:07: 56:ab:bd:5c:de:c7:79:a1:07:33:4f:93:ee:ed:10: d8:47:4b:94:06:d5:6c:9b:c1:73:fe:c3:90:a0:2f: e4:00:1e:68:fe:af:23:b7:6c:04:c4:30:84:49:b4: 80:9e:fe:ad:14:26:01:e7:0d:6c:36:02:ef:de:ef: a9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:AE:6A:9F:39:D2:BD:20:F9:0F:12:7A:30:54:66:01:78:A7:BF:CA X509v3 Authority Key Identifier: keyid:92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:55:03:81:eb:10:9b:5d:1a:b5:b5:4b:70:c0:08:6b:b5:56: 77:75:35:01:c8:46:a6:74:6e:34:ef:10:cf:84:0a:1b:be:4c: 43:be:f2:25:ea:10:d7:a0:a2:f3:1c:ee:18:06:99:d7:aa:9a: f4:c6:5c:ae:39:0d:be:c3:49:8b:6c:27:51:61:49:12:8f:5c: 92:a0:16:06:4d:43:7e:91:ff:98:9b:8a:1e:09:f1:2b:3f:a3: 03:f3:94:01:53:5b:61:07:c8:9c:2f:79:77:ee:27:28:c3:4e: c1:fc:f8:2d:07:30:9f:19:dd:fd:cb:00:9d:84:39:8d:53:a7: c4:65:4d:41:1e:85:a1:d6:a7:75:ea:c5:54:ac:20:04:b9:d9: 22:ec:42:f2:23:a6:4a:52:ae:aa:17:7d:32:91:3b:63:84:7b: fb:85:72:d9:2a:e0:12:84:01:b8:47:d1:79:dc:91:31:1c:72: 01:64:0e:dc:b5:94:8d:2e:64:62:93:33:c1:00:3a:fd:e4:6c: 1e:2c:1e:d0:b5:93:e7:98:0c:67:ab:48:ae:2e:25:8f:a9:ce: 8b:3d:e8:46:a1:1a:89:b3:2d:53:58:81:09:ec:95:f8:30:ba: 8b:de:71:e8:91:d7:6b:ba:78:b2:06:61:1c:2d:c8:2f:bf:fa: 0a:ef:11:a9 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkZFMTExMC8GA1UEBRMoOTIwRTdEMDkxRjE1NTY5RjJEODM0MEM2NTgyQjk1OTVF QzA2NTY4MDAeFw0yNTA4MTEwNzQxMjRaFw0yNTA4MTgwNzQxMjRaMBgxFjAUBgNV BAMTDTY4OTk5ZWE0LTQ0NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTJlkkBq0mRQ1HfsvQF/qGsySQ+DKNBGkNtBAsmlJc6Z38sAi7MpDm+4m6ijlQ C/rG60qxgDm1wYW4TaeEOMBUQ1m9odBzNw36XNafJo+0hy2QIEa9eUApYRuyzozQ n9V/o+1+J0qAUTswBO4W2iQS3myF5dV2cHTVH4p74ABuvNvFaKt9jA8jhdneNuf3 t61dxElRSuF+KOi/ItFwEtionyCc5qA9y8a0gsjTl+ODvGZtaQnLWWyjKhP07HjC vrI8B1arvVzex3mhBzNPk+7tENhHS5QG1WybwXP+w5CgL+QAHmj+ryO3bATEMIRJ tICe/q0UJgHnDWw2Au/e76k/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+q5qnznS vSD5DxJ6MFRmAXinv8owHwYDVR0jBBgwFoAUkg59CR8VVp8tg0DGWCuVlewGVoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyRkUxL0YxQzc0NDdFMDlG MTExRjA4QjQ0QTMyNUM0RjlBRTAyL2tnNTlDUjhWVnA4dGcwREdXQ3VWbGV3R1Zv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2c1OUNSOFZWcDh0ZzBER1dDdVZsZXdHVm9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy RkUxL0YxQzc0NDdFMDlGMTExRjA4QjQ0QTMyNUM0RjlBRTAyL2tnNTlDUjhWVnA4 dGcwREdXQ3VWbGV3R1ZvQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADFVA4HrEJtdGrW1S3DACGu1Vnd1NQHIRqZ0bjTvEM+EChu+TEO+8iXq ENegovMc7hgGmdeqmvTGXK45Db7DSYtsJ1FhSRKPXJKgFgZNQ36R/5ibih4J8Ss/ owPzlAFTW2EHyJwveXfuJyjDTsH8+C0HMJ8Z3f3LAJ2EOY1Tp8RlTUEehaHWp3Xq xVSsIAS52SLsQvIjpkpSrqoXfTKRO2OEe/uFctkq4BKEAbhH0XnckTEccgFkDty1 lI0uZGKTM8EAOv3kbB4sHtC1k+eYDGerSK4uJY+pzos96EahGomzLVNYgQnslfgw uoveceiR12u6eLIGYRwtyC+/+grvEak= -----END CERTIFICATE-----Generated at Mon Aug 11 10:43:10 2025 by rpki-client