$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: gxvvvIvLILGMu9YSTFdXTcLkM0F8F4D2du5hsttM54I= Subject key identifier: 73:44:44:E4:36:10:6A:7E:04:22:93:71:57:F6:79:05:E4:6E:5D:69 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: 8A Signing time: Sat 09 Aug 2025 07:01:30 +0000 Manifest this update: Sat 09 Aug 2025 07:01:29 +0000 Manifest next update: Sat 16 Aug 2025 07:01:29 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: Cz0G5konziezsosCIfavYUz7/OOchXtvjgvg/uFDFJU=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: ask+BZFU8F8z7xA+3YaObHPYrB9zSG3srAnnNSVnzDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: Aug 9 07:01:29 2025 GMT Not After : Aug 16 07:01:29 2025 GMT Subject: CN=6896f249-6f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:35:47:64:b1:92:10:2e:1e:61:8c:cc:90:9d: 64:97:fe:9f:20:d8:05:30:69:31:cb:c1:89:e4:31: 8c:91:e5:88:7d:f3:62:b7:b8:ed:12:8d:ef:21:61: be:f4:97:b0:a4:3f:65:8e:d3:e8:bf:3b:ba:25:85: b9:50:bc:3d:9f:c5:fd:b9:39:7b:71:5b:c0:91:89: a6:c4:4d:13:fa:10:f8:b0:3f:26:a1:70:16:03:cc: 3c:20:a6:b6:2e:46:31:f8:49:74:93:6e:06:f2:db: b0:ff:0a:ca:4c:d9:4a:c0:06:23:0e:ae:82:71:8d: de:a9:d8:8d:81:85:ee:0b:d9:66:0e:ff:d1:5d:25: 40:f3:f1:94:81:ad:a2:d2:4c:2c:98:55:27:5a:2f: 6a:8c:dc:91:3c:3e:fd:2f:f5:fe:7d:ce:84:0b:b0: a9:b4:98:03:54:14:0a:97:b6:66:4f:28:b1:a0:3a: 98:0c:3e:dc:c3:1e:15:4b:b9:bb:bd:f4:58:11:68: f2:2b:e2:95:8c:ae:3f:46:00:13:fc:34:4c:55:78: c1:b4:bc:4b:b4:5b:86:af:d8:7b:13:6f:c9:06:89: 9c:41:8a:ae:c5:60:f5:71:20:66:af:13:ca:67:05: 9a:bf:bb:24:f6:e6:fb:82:92:67:12:c4:e2:24:0d: cb:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:44:44:E4:36:10:6A:7E:04:22:93:71:57:F6:79:05:E4:6E:5D:69 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:05:fc:d4:a4:65:fd:fe:a4:1f:18:6c:d1:f5:1e:10:87:24: 02:7e:79:67:c6:03:1b:a2:65:8f:e6:8e:d5:d6:25:16:d2:e0: 6c:b2:44:6b:bd:94:b5:ce:09:7b:ed:f5:a6:6f:b5:99:e1:5c: ee:5a:90:40:d5:ae:3e:75:5d:48:0a:a7:ec:48:55:b7:d5:3c: a7:c7:c1:27:f3:8b:d6:f4:98:c3:2f:f6:31:13:44:05:47:5a: a2:b6:3e:24:11:6b:27:27:4c:23:bb:8e:8d:b7:25:f5:34:4b: 6e:02:e9:28:6f:13:cf:0c:bd:1c:6e:db:ca:fc:5a:54:2c:c3: f7:94:1e:ca:34:88:6f:64:91:9c:14:b3:ef:5d:70:ce:1a:53: 01:10:e7:67:68:51:b4:09:a4:a4:66:b3:e2:bb:67:b5:a8:2b: 0a:eb:2f:23:c9:80:e1:6c:6e:97:1c:c8:6b:9d:3a:d1:60:b8: 9c:c3:8b:5b:17:93:1e:d1:45:ea:40:9d:37:26:d4:8f:00:ba: 42:86:98:31:d2:35:68:d0:ac:d4:4b:4f:f3:48:2e:6f:6f:e5: 1c:cd:8e:f2:f5:81:25:49:c1:d9:e1:7a:5c:3d:2a:d3:fe:f5: 83:e2:6a:3d:21:69:64:51:c0:08:08:c5:76:d3:d6:8b:e4:2d: 17:95:f3:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDI5M0FDNjQwNTMwOURFOTQ5NTE2ODdGRTE3Mjk2QURE Q0Q5NTcyRkMwHhcNMjUwODA5MDcwMTI5WhcNMjUwODE2MDcwMTI5WjAYMRYwFAYD VQQDEw02ODk2ZjI0OS02ZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2zVHZLGSEC4eYYzMkJ1kl/6fINgFMGkxy8GJ5DGMkeWIffNit7jtEo3vIWG+ 9JewpD9ljtPovzu6JYW5ULw9n8X9uTl7cVvAkYmmxE0T+hD4sD8moXAWA8w8IKa2 LkYx+El0k24G8tuw/wrKTNlKwAYjDq6CcY3eqdiNgYXuC9lmDv/RXSVA8/GUga2i 0kwsmFUnWi9qjNyRPD79L/X+fc6EC7CptJgDVBQKl7ZmTyixoDqYDD7cwx4VS7m7 vfRYEWjyK+KVjK4/RgAT/DRMVXjBtLxLtFuGr9h7E2/JBomcQYquxWD1cSBmrxPK ZwWav7sk9ub7gpJnEsTiJA3LAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHNEROQ2 EGp+BCKTcVf2eQXkbl1pMB8GA1UdIwQYMBaAFCk6xkBTCd6UlRaH/hcpat3NlXL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9DN0ZBRDM2OEEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNwU1ZGb2YtRnlscTNjMlZj dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9DN0ZBRDM2OEEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNw U1ZGb2YtRnlscTNjMlZjdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCCBfzUpGX9/qQfGGzR9R4QhyQCfnlnxgMbomWP5o7V1iUW0uBsskRr vZS1zgl77fWmb7WZ4VzuWpBA1a4+dV1ICqfsSFW31Tynx8En84vW9JjDL/YxE0QF R1qitj4kEWsnJ0wju46NtyX1NEtuAukobxPPDL0cbtvK/FpULMP3lB7KNIhvZJGc FLPvXXDOGlMBEOdnaFG0CaSkZrPiu2e1qCsK6y8jyYDhbG6XHMhrnTrRYLicw4tb F5Me0UXqQJ03JtSPALpChpgx0jVo0KzUS0/zSC5vb+UczY7y9YElScHZ4XpcPSrT /vWD4mo9IWlkUcAICMV209aL5C0XlfNF -----END CERTIFICATE-----Generated at Sat Aug 9 14:32:32 2025 by rpki-client