$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: pgqMe3kK3d4m7B99NxQ5+K2bsLvZSA50ipxNJQTVjxg= Subject key identifier: A7:08:DF:F7:D5:07:C2:AA:A2:40:9C:9F:1D:F9:42:4E:66:C6:15:53 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A32 Signing time: Fri 08 Aug 2025 20:03:14 +0000 Manifest this update: Fri 08 Aug 2025 20:03:13 +0000 Manifest next update: Fri 15 Aug 2025 20:03:13 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: nehMzRKO3fWlFeZSd1qthT9FZql1yxLVk8sPyRsphbE=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2617 (0xa39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Aug 8 20:03:13 2025 GMT Not After : Aug 15 20:03:13 2025 GMT Subject: CN=68965801-9570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9e:c1:44:33:ed:de:27:af:40:e4:8e:08:35: c8:ea:22:50:85:17:1c:a4:b2:3e:91:42:11:4d:dc: 17:e5:0d:87:b4:97:45:9b:2f:de:0a:79:ef:09:6c: c9:fc:70:c8:d7:a0:fb:c3:d7:91:04:99:c4:fb:7a: 76:f2:5c:9c:cc:e1:b0:9b:62:c5:af:35:0f:3f:45: b9:a9:08:88:df:9c:a8:00:28:a6:dc:ee:f8:fa:d0: 84:91:4c:9e:8e:ad:a4:b5:55:50:c2:f3:c1:fc:eb: 25:16:2c:3c:e0:57:f7:eb:a4:a0:90:b6:b5:e0:96: fc:92:3c:80:15:6f:3f:d7:e8:56:92:58:18:f1:f9: 7e:8c:5b:3c:f8:22:5f:70:89:d1:e7:c9:b3:ea:02: c1:27:db:18:db:98:f1:f7:22:e2:45:32:89:04:9c: 99:26:b7:2c:ce:80:3a:80:be:55:10:4f:85:20:51: ed:8d:b7:7d:2a:7a:14:25:bd:dc:3f:f6:38:91:4f: 8c:89:10:7e:45:3e:66:d8:58:34:0b:a1:1f:02:ed: c6:df:2a:84:53:98:ea:a1:aa:99:41:41:66:e3:de: 74:3a:3b:e6:69:a2:29:07:9d:5b:84:60:36:a4:a9: 1e:ac:51:dc:0c:89:75:0d:25:74:7f:26:31:d8:9f: 40:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:08:DF:F7:D5:07:C2:AA:A2:40:9C:9F:1D:F9:42:4E:66:C6:15:53 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:b1:30:47:39:be:32:67:13:f5:4c:5a:b2:e3:d9:39:44:48: 98:58:9d:06:c5:9f:75:a9:51:46:7b:50:9d:91:8e:ad:2e:98: f2:66:c4:86:19:59:16:fb:61:22:56:3e:5c:d0:ce:b0:e9:7a: 24:0e:38:87:f3:c2:88:ca:6f:7d:25:cf:f3:33:eb:25:39:a4: de:fb:3d:30:d1:ed:81:23:a9:b9:09:33:df:9e:88:54:e1:d6: 48:81:6f:d8:c6:87:e5:84:af:af:0e:8c:34:c8:54:02:9a:14: 44:ea:eb:33:39:1a:d8:37:7d:8c:6a:07:f9:53:b0:6e:bd:f3: 43:d2:f1:c2:f6:a6:87:64:e9:76:79:64:d1:d5:ab:50:26:f3: ac:a8:33:59:04:61:d8:41:f6:00:16:7d:c3:2f:50:88:84:b5: 2d:d0:2c:70:f5:f9:23:f2:a1:2f:8a:18:92:90:86:8d:3c:b8: 1a:3f:7d:1c:39:3e:8d:a6:6f:b7:ee:f8:73:d7:3b:ce:2e:ef: f7:53:20:73:b2:96:d6:fe:76:e6:f2:00:e7:46:a5:0d:5e:88: 0a:be:c4:19:16:a5:fd:07:a1:70:39:9c:e7:3d:4b:be:1e:b0: 02:7d:74:d6:0f:4a:30:89:1b:58:6f:92:a5:58:c3:71:c5:ee: eb:95:a6:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUwODA4MjAwMzEzWhcNMjUwODE1MjAwMzEzWjAYMRYwFAYD VQQDEw02ODk2NTgwMS05NTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw57BRDPt3ievQOSOCDXI6iJQhRccpLI+kUIRTdwX5Q2HtJdFmy/eCnnvCWzJ /HDI16D7w9eRBJnE+3p28lyczOGwm2LFrzUPP0W5qQiI35yoACim3O74+tCEkUye jq2ktVVQwvPB/OslFiw84Ff366SgkLa14Jb8kjyAFW8/1+hWklgY8fl+jFs8+CJf cInR58mz6gLBJ9sY25jx9yLiRTKJBJyZJrcszoA6gL5VEE+FIFHtjbd9KnoUJb3c P/Y4kU+MiRB+RT5m2Fg0C6EfAu3G3yqEU5jqoaqZQUFm4950OjvmaaIpB51bhGA2 pKkerFHcDIl1DSV0fyYx2J9A3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcI3/fV B8KqokCcnx35Qk5mxhVTMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDsTBHOb4yZxP1TFqy49k5REiYWJ0GxZ91qVFGe1CdkY6tLpjyZsSG GVkW+2EiVj5c0M6w6XokDjiH88KIym99Jc/zM+slOaTe+z0w0e2BI6m5CTPfnohU 4dZIgW/YxoflhK+vDow0yFQCmhRE6uszORrYN32Magf5U7BuvfND0vHC9qaHZOl2 eWTR1atQJvOsqDNZBGHYQfYAFn3DL1CIhLUt0Cxw9fkj8qEvihiSkIaNPLgaP30c OT6Npm+37vhz1zvOLu/3UyBzspbW/nbm8gDnRqUNXogKvsQZFqX9B6FwOZznPUu+ HrACfXTWD0owiRtYb5KlWMNxxe7rlaaE -----END CERTIFICATE-----Generated at Sat Aug 9 23:18:00 2025 by rpki-client