$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: Ht69TC7ENKtX9NExgg2LNocACccrtSp3A+XYwRu+o44= Subject key identifier: BF:8C:CF:BC:47:1E:5F:BC:48:88:98:E9:40:8A:AD:6B:CE:45:54:0E Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: 72 Signing time: Sat 09 Aug 2025 07:19:18 +0000 Manifest this update: Sat 09 Aug 2025 07:19:18 +0000 Manifest next update: Sat 16 Aug 2025 07:19:18 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: 0YBui9WXNiyBpkKqkmJzcGBbNq+Rn1KvH2AdIQIkJZc=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: McJ+hP8GUu/Ld5Rarq2qGp1xUtwodZVqiVkbBVRJzkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Aug 9 07:19:18 2025 GMT Not After : Aug 16 07:19:18 2025 GMT Subject: CN=6896f676-8366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9c:6e:0b:26:32:c5:d6:8e:24:2e:bf:93:ab: df:de:03:88:57:62:7e:b1:38:d4:2e:b7:8a:af:0f: 00:35:31:15:ac:c8:b5:78:3b:2a:08:6e:c5:a1:c5: e8:c5:9c:3e:25:98:36:6c:dc:2d:6b:23:98:af:70: 3c:d4:09:9c:0b:7b:dc:40:93:a3:ec:14:c7:a3:7c: 52:c4:07:1c:14:01:25:43:50:d8:7c:b4:8e:65:37: 99:b8:ed:98:b3:a4:a9:8c:1e:c8:2e:15:91:a8:f7: e4:22:d6:76:d8:98:5d:fd:a0:4f:7a:94:5f:67:8e: 95:c8:a5:d3:38:49:09:2b:1c:fc:02:5c:e2:7e:59: fd:1d:28:67:f7:05:19:af:2d:9f:92:64:bc:e4:94: 8c:78:4b:8d:ef:bd:77:3b:0b:b0:02:21:d7:d4:db: 39:87:94:21:e7:1c:d5:91:cd:2f:e8:6c:92:d1:8e: 0c:74:47:3b:39:73:4d:ad:19:03:d9:48:69:7b:a3: 25:08:51:0b:8d:08:0d:dc:92:e8:e8:e4:b4:b9:1f: bf:7f:0e:18:13:af:ce:19:d2:42:18:39:98:c7:e0: 6c:6d:53:f3:f0:2a:70:9f:1e:bf:af:21:7f:87:e8: 17:b4:d7:0c:d2:18:22:07:5a:77:1f:a9:45:d8:45: 14:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8C:CF:BC:47:1E:5F:BC:48:88:98:E9:40:8A:AD:6B:CE:45:54:0E X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:fd:55:f5:7f:9e:cc:49:05:91:3c:67:2e:47:3e:fc:16:4d: c0:3d:b4:02:d6:fb:92:cc:00:21:48:52:77:d8:22:5a:25:87: 65:94:d0:06:9b:e6:0d:07:f1:00:27:59:7c:73:cc:1e:79:56: 89:5f:d4:b5:54:91:c3:25:40:21:ad:40:47:d3:31:9f:4e:1b: 66:2a:f3:c1:b6:f9:da:c7:82:f9:bf:07:86:03:36:7d:a2:6c: 8b:b6:c1:76:41:a9:5c:d6:1e:2a:a3:a7:37:9e:22:3e:6d:c2: 5e:76:47:d7:24:7f:2c:d6:bb:c6:6f:93:60:ff:74:e4:84:9f: ab:27:6a:99:25:5e:32:b8:82:c9:57:12:bd:bb:9e:89:39:a1: fb:10:cb:12:f5:10:0d:9d:34:38:ab:93:8c:a2:21:a1:bc:27: 00:69:1e:bb:d8:f6:b8:48:fc:32:89:73:8c:c9:a7:e0:1c:f9: 95:7a:aa:6f:4e:b8:50:f7:f0:a7:15:4c:02:ea:4a:e4:7c:ce: 95:dc:d2:3a:a3:13:b5:a0:0a:f0:7a:b3:c0:50:1e:82:8b:2e: 3e:94:fc:4b:44:71:01:9f:6a:2a:24:c0:e2:6d:38:b5:79:dc: 16:4d:b9:ef:63:8a:bb:f4:6b:e6:df:d8:c5:af:e6:04:be:f9: fe:b3:db:d5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RjUzNjExMC8GA1UEBRMoMkFFOTg1ODE1QTEwREQ2RDA0NTIzRkM4MUQ4REFGRDcy NkJFNzgxNjAeFw0yNTA4MDkwNzE5MThaFw0yNTA4MTYwNzE5MThaMBgxFjAUBgNV BAMTDTY4OTZmNjc2LTgzNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCynG4LJjLF1o4kLr+Tq9/eA4hXYn6xONQut4qvDwA1MRWsyLV4OyoIbsWhxejF nD4lmDZs3C1rI5ivcDzUCZwLe9xAk6PsFMejfFLEBxwUASVDUNh8tI5lN5m47Ziz pKmMHsguFZGo9+Qi1nbYmF39oE96lF9njpXIpdM4SQkrHPwCXOJ+Wf0dKGf3BRmv LZ+SZLzklIx4S43vvXc7C7ACIdfU2zmHlCHnHNWRzS/obJLRjgx0Rzs5c02tGQPZ SGl7oyUIUQuNCA3ckujo5LS5H79/DhgTr84Z0kIYOZjH4GxtU/PwKnCfHr+vIX+H 6Be01wzSGCIHWncfqUXYRRQRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv4zPvEce X7xIiJjpQIqta85FVA4wHwYDVR0jBBgwFoAUKumFgVoQ3W0EUj/IHY2v1ya+eBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFGNTM2LzlBODZEQkQwQzk5 QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3VtRmdWb1EzVzBFVWpfSUhZMnYxeWEtZUJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFG NTM2LzlBODZEQkQwQzk5QTExRUZCNENFRUYxRUM0RjlBRTAyL0t1bUZnVm9RM1cw RVVqX0lIWTJ2MXlhLWVCWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJf9VfV/nsxJBZE8Zy5HPvwWTcA9tALW+5LMACFIUnfYIlolh2WU0Aab 5g0H8QAnWXxzzB55Volf1LVUkcMlQCGtQEfTMZ9OG2Yq88G2+drHgvm/B4YDNn2i bIu2wXZBqVzWHiqjpzeeIj5twl52R9ckfyzWu8Zvk2D/dOSEn6snapklXjK4gslX Er27nok5ofsQyxL1EA2dNDirk4yiIaG8JwBpHrvY9rhI/DKJc4zJp+Ac+ZV6qm9O uFD38KcVTALqSuR8zpXc0jqjE7WgCvB6s8BQHoKLLj6U/EtEcQGfaiokwOJtOLV5 3BZNue9jirv0a+bf2MWv5gS++f6z29U= -----END CERTIFICATE-----Generated at Sat Aug 9 14:33:15 2025 by rpki-client