$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: oWfQLbXQ4fjGvc8jYvlO1P6dskAk733e9qxUUvGhuHI= Subject key identifier: A2:3B:E0:34:EC:08:A4:7E:CE:63:93:19:0B:47:0C:9A:BF:62:F9:21 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 0196 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0192 Signing time: Sat 09 Aug 2025 03:49:44 +0000 Manifest this update: Sat 09 Aug 2025 03:49:43 +0000 Manifest next update: Sat 16 Aug 2025 03:49:43 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: K2R3KMc04Gh+fmTA71RerJZfvzVe/fUYeILPSsgDHbQ=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 406 (0x196) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Aug 9 03:49:43 2025 GMT Not After : Aug 16 03:49:43 2025 GMT Subject: CN=6896c558-daef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:1b:fd:4b:ac:b9:61:a9:70:2a:f8:0c:43:02: 88:20:71:c6:6e:be:b7:6a:98:d7:f3:6d:75:0a:17: 59:5e:d0:61:3c:99:4b:ba:7d:79:d7:fc:b3:3a:a6: b4:ff:3f:e0:4a:bc:d8:a9:a4:c3:aa:4e:52:90:0c: 0d:29:b2:37:79:49:38:bb:5b:86:08:f6:22:b1:51: ce:9d:de:ec:b0:ab:89:2c:cb:b7:12:71:06:b1:b9: b2:20:02:40:9f:55:56:a8:e2:a4:cb:16:93:86:2a: 10:d3:ad:28:ae:bd:b5:48:e2:ea:dd:00:88:04:2b: a8:ce:36:3b:d8:72:f2:5a:41:35:dd:b7:e6:96:96: 24:b0:86:8e:b1:c9:3f:7f:22:d3:89:16:aa:18:6b: 52:73:89:84:66:7a:c8:a7:17:1f:68:42:17:fa:05: 4f:0e:63:3c:13:ba:37:d7:23:59:67:f3:46:44:4b: d4:af:b2:51:00:81:9b:23:9a:b0:ee:3b:0d:aa:9f: 00:dc:df:ea:05:ad:80:17:f9:c9:9c:64:95:ee:3b: fb:58:bc:88:e6:4b:9e:7e:99:03:81:b3:bb:95:a4: eb:9f:0e:b1:40:3c:81:17:b7:af:71:0f:d5:89:d4: 0e:97:4a:3e:27:66:6f:2f:2d:db:cf:c0:6b:b0:65: 4b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3B:E0:34:EC:08:A4:7E:CE:63:93:19:0B:47:0C:9A:BF:62:F9:21 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:df:13:af:64:da:3a:68:2e:6f:e1:17:da:c8:71:54:f0:19: aa:2d:4f:1b:fe:9b:a0:3b:0b:30:45:91:76:cd:67:b2:00:f7: 31:1c:d7:2b:4f:65:61:14:4c:29:61:96:dd:6d:4b:bb:f3:2c: cb:cd:10:ac:5f:bd:d9:ea:43:55:01:5a:89:97:7a:9f:e2:24: a1:7e:85:3d:7c:6d:a3:e1:d7:f7:63:68:45:b9:02:30:dd:e8: e3:aa:9f:e6:3c:d3:b5:e2:69:cb:54:3b:44:a0:3c:ef:ee:5f: 9c:9c:df:82:a4:8b:d7:cc:f0:b0:19:ae:d7:58:4f:0c:d7:52: 72:f6:a4:1a:4e:86:bc:a5:aa:03:34:ce:ca:f2:dd:2a:2d:3d: b4:f2:5d:ea:00:25:7e:99:04:df:44:56:9e:58:5e:29:92:5b: e9:fc:9f:16:37:fb:39:8d:42:19:fc:b8:ac:91:6d:93:90:92: 24:f6:f1:b5:b7:2e:d1:cd:fe:fe:9c:40:0e:0a:ee:0e:84:4f: b4:59:64:1a:7c:84:6e:0b:b3:db:b3:b6:7f:16:78:18:0c:37: 19:fe:c4:1a:03:5e:21:72:d9:a0:d8:e0:ff:58:28:7f:2c:cd: 15:33:b3:a2:55:b4:e9:52:cb:95:92:55:d8:67:f6:f8:6e:02: da:c5:e2:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwODA5MDM0OTQzWhcNMjUwODE2MDM0OTQzWjAYMRYwFAYD VQQDEw02ODk2YzU1OC1kYWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhv9S6y5YalwKvgMQwKIIHHGbr63apjX8211ChdZXtBhPJlLun151/yzOqa0 /z/gSrzYqaTDqk5SkAwNKbI3eUk4u1uGCPYisVHOnd7ssKuJLMu3EnEGsbmyIAJA n1VWqOKkyxaThioQ060orr21SOLq3QCIBCuozjY72HLyWkE13bfmlpYksIaOsck/ fyLTiRaqGGtSc4mEZnrIpxcfaEIX+gVPDmM8E7o31yNZZ/NGREvUr7JRAIGbI5qw 7jsNqp8A3N/qBa2AF/nJnGSV7jv7WLyI5kuefpkDgbO7laTrnw6xQDyBF7evcQ/V idQOl0o+J2ZvLy3bz8BrsGVL1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKI74DTs CKR+zmOTGQtHDJq/YvkhMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi3xOvZNo6aC5v4RfayHFU8BmqLU8b/pugOwswRZF2zWeyAPcxHNcr T2VhFEwpYZbdbUu78yzLzRCsX73Z6kNVAVqJl3qf4iShfoU9fG2j4df3Y2hFuQIw 3ejjqp/mPNO14mnLVDtEoDzv7l+cnN+CpIvXzPCwGa7XWE8M11Jy9qQaToa8paoD NM7K8t0qLT208l3qACV+mQTfRFaeWF4pklvp/J8WN/s5jUIZ/LiskW2TkJIk9vG1 ty7Rzf7+nEAOCu4OhE+0WWQafIRuC7Pbs7Z/FngYDDcZ/sQaA14hctmg2OD/WCh/ LM0VM7OiVbTpUsuVklXYZ/b4bgLaxeI9 -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:34 2025 by rpki-client