$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: dnmJK547UKayALfP+1VdiVH+pZEiqLb/UMn+ngdQFOY= Subject key identifier: 2B:EB:10:99:1C:85:D9:54:8C:56:BB:82:BD:69:63:63:7D:81:DA:BF Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 0576 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 056B Signing time: Sun 10 Aug 2025 23:25:35 +0000 Manifest this update: Sun 10 Aug 2025 23:25:35 +0000 Manifest next update: Sun 17 Aug 2025 23:25:35 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: XhISv45it4+BgGddKEFiFxv92Ka9+xMrrsSLgMCWAFo=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: li3UtGYjrBf3C8NwlkMmtocNy8KFUcDjCj/BKLVAeWQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Aug 10 23:25:35 2025 GMT Not After : Aug 17 23:25:35 2025 GMT Subject: CN=68992a6f-6d6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:6c:0a:be:d8:f8:df:f5:6c:15:5a:e6:d5:ee: 80:0c:34:2b:e9:01:63:46:e7:ae:1c:e8:21:fa:22: da:46:5d:26:39:47:b3:91:39:62:49:55:4a:bc:02: 28:77:75:77:e2:dd:df:33:c5:77:b8:f2:27:16:57: e4:bb:63:e0:bf:6d:88:0d:d1:15:eb:c1:1e:99:01: 45:ab:e2:98:3b:a5:7c:f8:56:04:78:96:68:1b:e6: a1:4f:00:2f:3e:01:90:60:8e:8a:e3:2b:bb:ee:14: 9b:2b:e9:7e:92:ff:c7:11:3a:d8:87:48:18:02:6d: 6a:68:9a:d2:25:2a:af:be:d7:06:58:3b:86:7f:1e: 2f:21:b6:73:3c:70:12:66:d4:b3:6d:52:46:41:70: 6e:a8:86:af:7d:67:6e:47:af:dd:59:84:d2:84:a5: f8:0f:27:2c:a5:9c:d0:7a:96:d6:1d:e5:3a:56:86: 1e:95:64:f5:bd:9d:1e:05:bc:ea:16:35:24:6f:a8: 04:91:b9:23:54:cc:68:98:f4:9e:ff:e7:9b:91:6a: db:b6:5a:bc:22:5f:aa:4a:7e:26:ed:f8:a3:a6:b6: 2c:07:3c:17:4b:40:98:6e:be:e0:fe:84:b9:ca:f8: d8:38:da:04:54:6d:3b:0e:d6:c0:10:43:a8:db:30: fe:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EB:10:99:1C:85:D9:54:8C:56:BB:82:BD:69:63:63:7D:81:DA:BF X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:31:dd:bd:11:a4:6f:82:80:8a:a5:fe:7c:5a:94:2b:33:30: 60:d7:cb:85:58:0d:b2:ea:f7:c8:74:4d:f0:14:d9:d0:9e:7c: 34:8b:06:9d:71:f4:96:c6:1b:7a:28:13:21:6d:4b:99:9b:ba: 37:e1:04:eb:d6:3e:94:96:59:81:c2:a0:6a:d5:d5:94:f6:94: 52:78:fb:b9:40:0c:34:fe:17:40:f1:c8:58:4f:df:a8:9f:8c: d6:5b:fb:b7:35:66:66:93:e3:96:2b:d3:06:42:aa:a4:df:13: e3:ce:bc:54:a6:cd:51:cb:f6:f7:15:b7:f2:dd:29:f1:86:52: 41:45:be:9c:13:d1:2a:74:32:af:a3:c8:cf:03:7c:ae:2a:e7: 11:2f:39:b3:37:17:a4:23:0b:62:27:ca:fe:3a:f4:b7:fa:e6: 7c:a6:ab:3c:25:ba:e2:19:cb:60:c7:3e:ef:0e:25:b0:6d:a4: 12:29:b8:b1:fd:f4:d4:fb:e2:d7:5b:4a:63:80:50:11:e3:78: 53:fe:fa:3e:f9:d5:2b:c3:04:07:bb:35:3f:75:d5:51:d6:d6: 90:11:1c:d3:3b:8c:55:d9:ad:75:ad:c5:fc:92:1b:4b:66:8a: e8:ba:6b:4a:b6:65:a2:81:55:2c:ff:f4:fd:ba:55:3b:20:82: cc:0b:50:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUwODEwMjMyNTM1WhcNMjUwODE3MjMyNTM1WjAYMRYwFAYD VQQDEw02ODk5MmE2Zi02ZDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3WwKvtj43/VsFVrm1e6ADDQr6QFjRueuHOgh+iLaRl0mOUezkTliSVVKvAIo d3V34t3fM8V3uPInFlfku2Pgv22IDdEV68EemQFFq+KYO6V8+FYEeJZoG+ahTwAv PgGQYI6K4yu77hSbK+l+kv/HETrYh0gYAm1qaJrSJSqvvtcGWDuGfx4vIbZzPHAS ZtSzbVJGQXBuqIavfWduR6/dWYTShKX4DycspZzQepbWHeU6VoYelWT1vZ0eBbzq FjUkb6gEkbkjVMxomPSe/+ebkWrbtlq8Il+qSn4m7fijprYsBzwXS0CYbr7g/oS5 yvjYONoEVG07DtbAEEOo2zD+QwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCvrEJkc hdlUjFa7gr1pY2N9gdq/MB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSMd29EaRvgoCKpf58WpQrMzBg18uFWA2y6vfIdE3wFNnQnnw0iwad cfSWxht6KBMhbUuZm7o34QTr1j6UllmBwqBq1dWU9pRSePu5QAw0/hdA8chYT9+o n4zWW/u3NWZmk+OWK9MGQqqk3xPjzrxUps1Ry/b3Fbfy3SnxhlJBRb6cE9EqdDKv o8jPA3yuKucRLzmzNxekIwtiJ8r+OvS3+uZ8pqs8JbriGctgxz7vDiWwbaQSKbix /fTU++LXW0pjgFAR43hT/vo++dUrwwQHuzU/ddVR1taQERzTO4xV2a11rcX8khtL ZoroumtKtmWigVUs//T9ulU7IILMC1Bv -----END CERTIFICATE-----Generated at Mon Aug 11 04:08:50 2025 by rpki-client