$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: MaTq8GgFn51cLiytVe8wF1G8CPZY76NfkIRqEsjgyNE= Subject key identifier: 9B:6D:F5:7B:90:50:7C:AA:C5:6D:34:31:13:EA:78:73:CD:F8:1C:83 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 040C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 0408 Signing time: Mon 11 Aug 2025 00:35:39 +0000 Manifest this update: Mon 11 Aug 2025 00:35:37 +0000 Manifest next update: Mon 18 Aug 2025 00:35:37 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: AEbicPKJ850XdnAAFdf4AS4OBL+hIWfpCygFG3j0xfE=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1036 (0x40c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Aug 11 00:35:37 2025 GMT Not After : Aug 18 00:35:37 2025 GMT Subject: CN=68993ada-3d53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8a:9f:0d:e4:00:6d:d0:b9:82:dd:bc:b9:c0: 5e:56:ba:41:22:79:d8:10:2a:38:75:91:49:2d:66: 6e:96:c5:b5:4b:5d:08:00:af:89:6c:e5:a6:66:9e: f3:62:ac:a8:ee:5f:ce:b4:cc:71:c6:16:c0:86:44: b0:4b:2b:a5:8b:7a:f7:f4:4f:83:be:96:5f:c6:7c: d1:f3:9e:2f:d8:ae:bf:c1:af:c7:63:3d:78:9e:f3: 4f:84:4d:07:d4:5f:b2:64:40:3f:5b:ee:15:ac:2a: e3:27:57:b9:fb:a5:23:e6:e5:e6:05:80:50:d6:0b: 7f:2b:fc:6a:b4:17:80:ac:7e:4a:2a:15:08:83:d8: ad:83:b7:ca:4e:6e:dc:f5:8d:c8:1f:66:9d:69:b9: 0e:f5:b1:0e:e0:a2:79:d9:f8:cb:9f:f9:f2:3d:f4: ca:f6:75:54:1c:54:5e:ab:f9:6d:20:51:c3:d7:95: 5e:a5:de:16:78:03:03:90:7d:4f:54:b9:ac:41:4a: 8c:f8:2a:6c:86:06:7a:5c:50:53:71:2c:26:7e:a6: e6:35:26:b1:32:6e:73:fa:98:ba:45:34:ef:a2:71: 50:3d:a6:5c:14:8d:dd:73:ae:a4:ad:ba:00:64:96: b7:0f:6f:2b:36:56:15:dd:e6:6a:7b:93:47:81:45: 9a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6D:F5:7B:90:50:7C:AA:C5:6D:34:31:13:EA:78:73:CD:F8:1C:83 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:ad:44:31:8b:a8:31:cf:35:3c:7d:36:95:1c:a0:17:5e:fd: 24:20:c1:25:cb:ec:e4:14:2b:4b:e8:10:39:99:49:ba:c3:0e: 5f:96:9c:06:fe:c3:64:8e:f9:7a:b2:16:28:db:5d:39:7a:e4: 5b:7f:c4:92:d6:89:55:6a:6b:59:51:b8:7f:54:e2:5c:b7:a7: f6:48:eb:74:e1:97:a2:99:42:be:d7:3b:8a:4c:15:fb:a1:ee: 50:a6:5c:94:04:63:a2:9a:9d:3d:75:67:8a:58:8a:3e:19:c5: 86:90:bb:ec:8b:35:39:5c:bf:81:35:7f:29:2d:63:21:17:51: 1a:13:2f:fe:d7:4a:8d:29:f1:56:d1:65:a6:8b:2a:29:19:dd: a5:27:1f:2b:ac:18:5c:2c:ae:ce:ae:3d:4a:91:7f:14:29:8a: de:c1:c8:77:a4:8f:68:22:5b:66:3a:ed:4a:17:25:f1:c3:4a: c7:bf:67:0d:e6:76:0b:3c:6c:cb:85:c2:71:46:e6:5a:3c:3f: 42:65:b3:a3:01:95:2b:85:0a:7b:49:9d:cb:d5:62:fd:fd:94: 4a:e1:c9:73:c8:fb:d9:aa:c4:ca:89:68:66:ab:27:23:49:56: 71:4b:cb:ed:24:3c:92:b8:43:b1:3f:ad:2f:86:8a:7c:37:5b: 8c:33:b2:77 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwODExMDAzNTM3WhcNMjUwODE4MDAzNTM3WjAYMRYwFAYD VQQDEw02ODk5M2FkYS0zZDUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYqfDeQAbdC5gt28ucBeVrpBInnYECo4dZFJLWZulsW1S10IAK+JbOWmZp7z Yqyo7l/OtMxxxhbAhkSwSyuli3r39E+DvpZfxnzR854v2K6/wa/HYz14nvNPhE0H 1F+yZEA/W+4VrCrjJ1e5+6Uj5uXmBYBQ1gt/K/xqtBeArH5KKhUIg9itg7fKTm7c 9Y3IH2adabkO9bEO4KJ52fjLn/nyPfTK9nVUHFReq/ltIFHD15Vepd4WeAMDkH1P VLmsQUqM+CpshgZ6XFBTcSwmfqbmNSaxMm5z+pi6RTTvonFQPaZcFI3dc66krboA ZJa3D28rNlYV3eZqe5NHgUWacwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtt9XuQ UHyqxW00MRPqeHPN+ByDMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+rUQxi6gxzzU8fTaVHKAXXv0kIMEly+zkFCtL6BA5mUm6ww5flpwG /sNkjvl6shYo2105euRbf8SS1olVamtZUbh/VOJct6f2SOt04ZeimUK+1zuKTBX7 oe5QplyUBGOimp09dWeKWIo+GcWGkLvsizU5XL+BNX8pLWMhF1EaEy/+10qNKfFW 0WWmiyopGd2lJx8rrBhcLK7Orj1KkX8UKYrewch3pI9oIltmOu1KFyXxw0rHv2cN 5nYLPGzLhcJxRuZaPD9CZbOjAZUrhQp7SZ3L1WL9/ZRK4clzyPvZqsTKiWhmqycj SVZxS8vtJDySuEOxP60vhop8N1uMM7J3 -----END CERTIFICATE-----Generated at Mon Aug 11 10:35:55 2025 by rpki-client