$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft File: KxUe1JZstlaQzZqoJiuKau0G5EM.mft (raw, json) Hash identifier: t6BuPpQdVHLCdw+6xISRbFDl/5vMFiCanLo0l1zJA4s= Subject key identifier: A4:A9:29:34:DE:88:57:48:9D:8E:D7:20:9D:6D:89:67:E7:9F:67:90 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0798 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft Manifest number: 0788 Signing time: Fri 08 Aug 2025 21:52:41 +0000 Manifest this update: Fri 08 Aug 2025 21:52:40 +0000 Manifest next update: Fri 15 Aug 2025 21:52:40 +0000 Files and hashes: 1: KxUe1JZstlaQzZqoJiuKau0G5EM.crl (hash: r3l1/58q6M2uDn6xp2IgB86VLs6HoyRLH+K14w/5q9s=) 2: 440FC47687C211EEA6A0667BC4F9AE02.roa (hash: bPVen4Q79bQMysYZB+1SSkGirdnYsj/wax4oaPllL9M=) 3: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (hash: U4O6uXSOF+3gB8WDqXNclHvwBePMcUEtPgGRnogD3Pk=) 4: 8A01BCDC1DA811EBAFA5B44FC4F9AE02.roa (hash: EPNFm1X8MnpnhMfq1ASr/F02aUDuHCY7XYN9aoUZxhY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1944 (0x798) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871, serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Aug 8 21:52:40 2025 GMT Not After : Aug 15 21:52:40 2025 GMT Subject: CN=689671a8-f4be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:4f:9d:2d:99:fd:64:e2:45:e3:10:19:81:ff: 2d:73:2d:c2:bc:d8:47:39:49:22:7e:01:2e:ee:19: 24:e9:6a:c0:34:66:64:01:ee:82:a1:2f:57:77:a8: 5d:d5:91:60:82:bd:f5:f7:60:3d:e8:a9:66:73:13: 31:27:73:3b:b3:0f:26:18:61:12:25:0d:0a:ae:fc: 85:4f:ed:e0:b5:26:04:cb:48:8d:e3:38:ed:c4:a6: b7:4c:fb:89:86:dd:c5:11:7b:04:14:b4:70:33:9c: 05:ce:cd:87:e5:8d:79:23:64:fb:b5:9f:2f:ce:30: 2a:67:a9:d1:27:ed:c8:2b:0c:1b:6f:03:cd:8b:33: 18:a8:4e:c8:3a:4e:80:ab:9d:9b:9f:be:af:d5:75: db:62:83:19:c7:e6:19:da:5f:c3:9e:f4:5f:1f:5b: 8a:02:f6:2c:45:06:51:da:5e:77:fa:18:91:78:d3: 44:18:71:09:45:09:7b:f8:f1:dc:82:e9:29:75:bf: 61:8b:f3:f1:59:e5:d1:13:cb:f0:df:fe:cc:89:b7: 7b:21:4d:96:b4:27:9f:09:26:fa:f0:53:15:a4:32: 13:3c:2b:06:3e:7d:ed:f0:ab:03:8f:00:b8:61:b5: ef:91:a2:d4:27:b6:06:e6:2d:9b:bb:bc:ed:cb:78: 86:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:A9:29:34:DE:88:57:48:9D:8E:D7:20:9D:6D:89:67:E7:9F:67:90 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a7:12:83:06:b7:20:14:3c:d9:32:e3:db:5a:2d:db:47:01:40: ca:dd:88:97:9d:2c:c5:0e:e2:13:67:15:c4:d6:e5:d2:0e:c8: 64:90:eb:a6:23:e8:aa:c3:7b:77:f0:87:f7:e6:99:6a:49:87: 9b:7a:2b:bc:73:09:93:0e:1d:3f:4d:45:25:a8:6a:3a:48:62: 11:a2:48:4f:3a:62:f5:31:58:61:b2:20:e3:28:c1:2e:37:e5: a4:9b:d5:aa:18:e2:ce:39:86:79:20:fc:fd:d4:d1:59:46:8a: df:ec:b4:8d:87:bc:05:71:79:50:67:d0:2f:d6:42:39:3c:3b: 50:61:d7:ee:ac:3e:08:57:db:6f:65:a9:ad:31:e4:06:da:3e: 5e:4e:f4:e1:82:ac:b4:ac:29:ef:c6:2b:31:69:9b:e5:35:00: f5:84:d3:1c:26:2d:77:ac:ff:1a:25:24:4c:35:e4:87:48:bc: b0:c6:b2:bb:97:5f:23:a5:77:db:fc:af:58:59:8c:e5:50:15: 7d:61:a6:8f:e2:72:53:49:dd:05:55:c7:84:06:c4:db:41:15: 49:09:7d:38:ad:ac:59:e8:8d:63:5f:98:d9:35:cb:10:c3:c3: 1f:b0:89:c6:ce:f0:3d:e5:9d:42:25:40:39:96:ea:bd:68:ee: b2:bb:37:e7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB5gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjUwODA4MjE1MjQwWhcNMjUwODE1MjE1MjQwWjAYMRYwFAYD VQQDEw02ODk2NzFhOC1mNGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArE+dLZn9ZOJF4xAZgf8tcy3CvNhHOUkifgEu7hkk6WrANGZkAe6CoS9Xd6hd 1ZFggr3192A96KlmcxMxJ3M7sw8mGGESJQ0KrvyFT+3gtSYEy0iN4zjtxKa3TPuJ ht3FEXsEFLRwM5wFzs2H5Y15I2T7tZ8vzjAqZ6nRJ+3IKwwbbwPNizMYqE7IOk6A q52bn76v1XXbYoMZx+YZ2l/DnvRfH1uKAvYsRQZR2l53+hiReNNEGHEJRQl7+PHc gukpdb9hi/PxWeXRE8vw3/7Mibd7IU2WtCefCSb68FMVpDITPCsGPn3t8KsDjwC4 YbXvkaLUJ7YG5i2bu7zty3iG9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKSpKTTe iFdInY7XIJ1tiWfnn2eQMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx Qjg3MS84QTJEQUJFMDFEQTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3Rs YVF6WnFvSml1S2F1MEc1RU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCnEoMGtyAUPNky49taLdtHAUDK3YiXnSzFDuITZxXE1uXSDshkkOum I+iqw3t38If35plqSYebeiu8cwmTDh0/TUUlqGo6SGIRokhPOmL1MVhhsiDjKMEu N+Wkm9WqGOLOOYZ5IPz91NFZRorf7LSNh7wFcXlQZ9Av1kI5PDtQYdfurD4IV9tv ZamtMeQG2j5eTvThgqy0rCnvxisxaZvlNQD1hNMcJi13rP8aJSRMNeSHSLywxrK7 l18jpXfb/K9YWYzlUBV9YaaP4nJTSd0FVceEBsTbQRVJCX04raxZ6I1jX5jZNcsQ w8MfsInGzvA95Z1CJUA5luq9aO6yuzfn -----END CERTIFICATE-----Generated at Sun Aug 10 21:16:45 2025 by rpki-client