$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft File: KBiMFu7JB0JxcnjCic-C9QTyWqk.mft (raw, json) Hash identifier: J/grBrcO/XdJALPyqwCCKe2a379fjRJ/NXQ21HwBdeA= Subject key identifier: AE:3F:A2:D2:4D:3D:3D:92:79:17:E8:36:B8:37:A3:7C:C8:A8:C4:2C Authority key identifier: 28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 Certificate issuer: /CN=A912F387/serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Certificate serial: 012E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft Manifest number: 0128 Signing time: Tue 05 Aug 2025 04:46:51 +0000 Manifest this update: Tue 05 Aug 2025 04:46:50 +0000 Manifest next update: Tue 12 Aug 2025 04:46:50 +0000 Files and hashes: 1: KBiMFu7JB0JxcnjCic-C9QTyWqk.crl (hash: IMTGwiTrdeWcYU94s3cSNVNSW5D4JLjoBBVt3z9j3CY=) 2: FCA046066C8611EFBF35D221C4F9AE02.roa (hash: LLGlR1swQUGpHRHzrbzk96I6Zx3kb8thD/xfxQf3uHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 04:46:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387, serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Validity Not Before: Aug 5 04:46:50 2025 GMT Not After : Aug 12 04:46:50 2025 GMT Subject: CN=68918cba-83f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:e4:06:63:66:a2:71:e3:08:96:81:d2:26:1d: 5e:3c:af:f6:bd:7e:c1:7f:74:85:7f:14:cb:c5:4a: b2:5d:37:5a:94:e3:bc:01:d0:b7:5b:81:f2:91:d0: fc:69:9a:49:b0:ea:66:26:eb:cf:ea:d8:df:51:5e: 8f:3e:68:60:7e:ae:bf:d6:14:b1:42:1b:eb:33:a8: 20:6b:76:57:83:81:c2:46:cc:69:85:bb:57:dd:d4: ca:32:7a:01:48:9b:df:02:c8:11:d1:8f:42:ce:88: 83:e2:67:ea:44:f2:7a:dd:13:68:e1:b0:ef:18:3d: 5f:a5:eb:84:2f:36:19:c2:7c:6f:d9:8c:e3:ea:df: 9a:8a:48:39:16:e3:e4:39:1a:52:b9:73:7b:b4:8d: 19:a2:aa:bf:6d:00:f5:92:2d:04:0c:36:ea:bd:29: fb:7e:28:68:26:37:b7:0d:cf:0f:41:63:e0:00:57: 51:3a:c4:e0:a6:b0:8f:e3:47:ec:6c:2b:a8:e3:a5: 5f:d6:e7:95:65:73:5b:34:37:6c:06:f4:55:63:e5: 2e:6a:ef:65:b5:e0:c6:a1:2d:8c:9e:ca:2d:7f:7d: 66:c7:64:10:7b:61:84:a1:59:f7:c1:a2:48:3b:17: cd:f6:65:ec:6c:38:80:8e:09:9e:b3:cb:83:4b:30: 79:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3F:A2:D2:4D:3D:3D:92:79:17:E8:36:B8:37:A3:7C:C8:A8:C4:2C X509v3 Authority Key Identifier: keyid:28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:1e:47:f6:42:88:4d:6d:2e:a2:49:6b:96:d6:8d:2b:b7:a3: 7b:58:12:3a:de:80:95:04:08:6a:60:b0:76:45:fe:ed:b8:65: a1:14:1c:1a:06:0b:8c:05:95:a5:de:82:ca:90:b7:10:22:17: f2:30:ff:29:86:50:ba:09:00:b0:03:a7:48:0f:48:db:07:b1: b3:4f:e7:0b:5e:1d:1b:df:75:fd:7a:43:5a:11:e4:eb:e9:38: 73:00:6b:60:e9:53:19:ac:e5:ca:57:b7:f5:df:28:2e:28:0b: 92:84:83:73:33:1e:1e:7f:20:98:1d:42:4a:23:a0:53:70:8d: df:d5:e3:1b:a1:2e:d0:eb:b8:ff:69:55:5e:6f:74:75:1a:55: 46:93:84:76:f6:40:9c:c6:35:29:b0:1b:00:97:d2:8c:70:85: f2:3b:cd:94:a5:9d:b1:24:8b:e3:20:27:1e:6b:21:ba:e6:16: ff:7f:0d:95:03:cc:cb:ac:94:f2:d9:7f:b2:a2:cb:68:d5:b8: 96:7e:d8:9b:cf:49:21:9f:69:9d:60:f2:83:64:c4:a5:4a:a5: 17:e9:99:27:fb:d8:da:04:7b:e8:af:14:be:ab:ea:dc:8a:b7: c4:ac:f9:32:3f:a0:7c:42:a8:6e:d9:d0:3d:ba:58:c1:27:4c: 66:47:9c:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDI4MTg4QzE2RUVDOTA3NDI3MTcyNzhDMjg5Q0Y4MkY1 MDRGMjVBQTkwHhcNMjUwODA1MDQ0NjUwWhcNMjUwODEyMDQ0NjUwWjAYMRYwFAYD VQQDEw02ODkxOGNiYS04M2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn+QGY2aiceMIloHSJh1ePK/2vX7Bf3SFfxTLxUqyXTdalOO8AdC3W4HykdD8 aZpJsOpmJuvP6tjfUV6PPmhgfq6/1hSxQhvrM6gga3ZXg4HCRsxphbtX3dTKMnoB SJvfAsgR0Y9CzoiD4mfqRPJ63RNo4bDvGD1fpeuELzYZwnxv2Yzj6t+aikg5FuPk ORpSuXN7tI0Zoqq/bQD1ki0EDDbqvSn7fihoJje3Dc8PQWPgAFdROsTgprCP40fs bCuo46Vf1ueVZXNbNDdsBvRVY+Uuau9lteDGoS2Mnsotf31mx2QQe2GEoVn3waJI OxfN9mXsbDiAjgmes8uDSzB59QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFK4/otJN PT2SeRfoNrg3o3zIqMQsMB8GA1UdIwQYMBaAFCgYjBbuyQdCcXJ4wonPgvUE8lqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny9GRTRENzhFMkI1 QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIwSnhjbmpDaWMtQzlRVHlX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tCaU1GdTdKQjBKeGNuakNpYy1DOVFUeVdxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjM4Ny9GRTRENzhFMkI1QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIw SnhjbmpDaWMtQzlRVHlXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEHkf2QohNbS6iSWuW1o0rt6N7WBI63oCVBAhqYLB2Rf7tuGWhFBwa BguMBZWl3oLKkLcQIhfyMP8phlC6CQCwA6dID0jbB7GzT+cLXh0b33X9ekNaEeTr 6ThzAGtg6VMZrOXKV7f13yguKAuShINzMx4efyCYHUJKI6BTcI3f1eMboS7Q67j/ aVVeb3R1GlVGk4R29kCcxjUpsBsAl9KMcIXyO82UpZ2xJIvjICceayG65hb/fw2V A8zLrJTy2X+yosto1biWftibz0khn2mdYPKDZMSlSqUX6Zkn+9jaBHvorxS+q+rc irfErPkyP6B8Qqhu2dA9uljBJ0xmR5xk -----END CERTIFICATE-----Generated at Wed Aug 6 09:25:14 2025 by rpki-client