$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: X5aYWC2hjvjNgnFtfopY5MT+pY8MWT0WBcZjDHs0oso= Subject key identifier: 0E:CB:7F:D2:70:CC:CC:FB:1D:C0:BB:A9:39:18:3D:F1:E0:77:EC:A3 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 0122 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 0120 Signing time: Sat 09 Aug 2025 05:08:43 +0000 Manifest this update: Sat 09 Aug 2025 05:08:42 +0000 Manifest next update: Sat 16 Aug 2025 05:08:42 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: oYf/nwaQW8hzDlLWIfMSVP8fIlFKf6V9nHek2+gezYo=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 290 (0x122) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Aug 9 05:08:42 2025 GMT Not After : Aug 16 05:08:42 2025 GMT Subject: CN=6896d7da-a0f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:fd:b4:44:8f:94:38:b7:83:04:d7:d6:89:07: 9e:ba:f7:80:39:8a:6b:a3:cd:63:f0:be:03:36:43: 06:6f:01:15:83:ad:6e:83:d0:04:87:ce:ba:2b:6f: 64:f3:f8:25:6b:b4:ee:e6:76:df:c8:c2:fb:52:48: 2f:f5:4a:51:2d:1a:3b:2d:25:64:7e:f1:53:8e:b8: 1b:9c:b0:2e:9d:00:78:69:ed:b2:52:ae:6b:83:8e: 91:14:dd:06:15:e1:a0:f8:85:8d:eb:14:27:58:0e: 77:5e:bf:38:d0:da:4f:29:fd:dd:22:23:99:ba:47: 5a:57:e3:f1:c4:ac:fe:e9:1f:c1:e7:02:7a:e2:67: 19:30:1d:e3:90:3e:9f:e9:4c:40:c3:d4:9c:8c:70: a5:08:d1:58:a9:3a:cb:e7:29:e4:14:a4:02:27:2d: 7c:ec:0c:5f:e2:c5:85:97:2a:d4:6b:85:63:6b:f6: bb:a8:d5:c2:f7:23:b7:43:09:79:be:15:d8:05:07: 3a:10:d9:54:ac:91:4a:c5:cc:61:66:c6:46:e2:38: 79:c0:88:cd:cc:cb:ee:ae:a2:bb:04:f6:a0:ef:a6: 71:96:10:d6:bc:1e:e0:ce:08:0a:66:d6:d8:e6:cc: a0:9e:54:f7:77:df:56:31:09:16:24:ec:c6:5b:f8: e2:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CB:7F:D2:70:CC:CC:FB:1D:C0:BB:A9:39:18:3D:F1:E0:77:EC:A3 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:1b:ca:63:07:17:04:d4:de:26:4c:77:dc:e6:7b:f7:9a:cb: 4f:ed:3d:a6:2a:0f:41:41:f0:c6:d6:ff:a1:b3:64:30:c3:69: 21:96:f1:af:b5:44:29:33:59:42:fb:79:3c:55:97:3a:bb:b8: d9:cd:68:f3:10:04:27:ac:f2:a1:e4:9b:eb:81:79:25:95:90: e7:11:d6:53:b4:2e:7a:b6:92:02:87:81:f0:78:68:b2:1d:78: de:46:0d:e8:c2:ea:7d:ee:84:f6:de:6d:70:61:c7:ce:79:d4: d3:56:24:8f:71:da:20:3f:b6:74:4e:93:86:f5:c6:ae:be:34: 30:86:3a:ca:a0:67:b3:fb:5c:e3:87:4b:df:67:40:bd:bd:70: 9c:0c:eb:e9:d2:38:35:14:65:c2:66:a5:fc:12:f8:8d:1c:06: c4:d9:35:42:66:32:0c:8c:ea:32:3a:4c:39:ed:5a:e3:78:15: ed:9f:4d:4e:0b:d7:19:cd:50:01:6d:13:2c:e2:ae:2e:13:04: 5c:b4:84:d2:79:63:95:e7:d9:24:40:d9:a4:0b:87:62:26:37: 6b:94:66:b6:a6:9e:02:d5:93:38:82:a5:5c:d6:f6:38:41:a3: e6:83:eb:0b:3f:c5:fa:7c:e3:ad:36:f3:0c:27:73:04:ec:ac: d4:3f:9d:89 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwODA5MDUwODQyWhcNMjUwODE2MDUwODQyWjAYMRYwFAYD VQQDEw02ODk2ZDdkYS1hMGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3P20RI+UOLeDBNfWiQeeuveAOYpro81j8L4DNkMGbwEVg61ug9AEh866K29k 8/gla7Tu5nbfyML7Ukgv9UpRLRo7LSVkfvFTjrgbnLAunQB4ae2yUq5rg46RFN0G FeGg+IWN6xQnWA53Xr840NpPKf3dIiOZukdaV+PxxKz+6R/B5wJ64mcZMB3jkD6f 6UxAw9ScjHClCNFYqTrL5ynkFKQCJy187Axf4sWFlyrUa4Vja/a7qNXC9yO3Qwl5 vhXYBQc6ENlUrJFKxcxhZsZG4jh5wIjNzMvurqK7BPag76ZxlhDWvB7gzggKZtbY 5sygnlT3d99WMQkWJOzGW/jioQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA7Lf9Jw zMz7HcC7qTkYPfHgd+yjMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJG8pjBxcE1N4mTHfc5nv3mstP7T2mKg9BQfDG1v+hs2Qww2khlvGv tUQpM1lC+3k8VZc6u7jZzWjzEAQnrPKh5JvrgXkllZDnEdZTtC56tpICh4HweGiy HXjeRg3owup97oT23m1wYcfOedTTViSPcdogP7Z0TpOG9cauvjQwhjrKoGez+1zj h0vfZ0C9vXCcDOvp0jg1FGXCZqX8EviNHAbE2TVCZjIMjOoyOkw57VrjeBXtn01O C9cZzVABbRMs4q4uEwRctITSeWOV59kkQNmkC4diJjdrlGa2pp4C1ZM4gqVc1vY4 QaPmg+sLP8X6fOOtNvMMJ3ME7KzUP52J -----END CERTIFICATE-----Generated at Sun Aug 10 04:27:14 2025 by rpki-client