$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: Wi87DtHXknDYbQ3HgiyKEZYF88bEjsfhiKfLHvUnoec= Subject key identifier: 30:4E:D4:C1:9E:6B:52:24:50:1E:5C:DD:E2:AB:D2:F2:83:89:98:39 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 56 Signing time: Sat 09 Aug 2025 07:50:24 +0000 Manifest this update: Sat 09 Aug 2025 07:50:24 +0000 Manifest next update: Sat 16 Aug 2025 07:50:24 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: xW071xAY6vHcMMBTXssuKNHDLgvqAznmBQuKkPOUG+k=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Aug 9 07:50:24 2025 GMT Not After : Aug 16 07:50:24 2025 GMT Subject: CN=6896fdc0-9dd1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ed:00:f8:6b:a3:d2:96:5d:64:16:fa:1e:f8: 56:e0:d5:7b:71:0f:7d:e7:79:b2:80:a2:03:40:18: a8:06:35:36:c2:99:3a:55:f4:bb:fd:87:80:14:81: a9:67:1d:cc:05:4d:be:85:89:bb:ad:42:dd:f9:f6: cc:e3:77:12:3b:95:4f:af:c5:c8:2d:18:d6:29:30: 64:f1:0c:2a:62:4e:02:d1:34:f6:5a:d4:c9:05:94: 53:67:ff:d5:0e:84:3d:17:6d:c7:28:06:df:b0:4d: 6a:b2:87:46:c3:3e:1e:d9:09:82:87:7d:21:aa:a8: dc:b6:1a:ef:f8:3c:51:8e:c5:c5:05:20:73:4a:8e: 1b:ec:fe:98:71:c1:eb:54:f5:de:fa:bb:79:1a:2a: 31:3b:c9:c1:ea:e8:b3:d2:b3:01:c6:52:fa:71:cd: c7:0c:93:fa:21:5d:c3:82:87:b3:d0:7b:94:ae:26: 2b:cb:77:5b:ab:31:1d:6c:70:bd:6e:a4:ec:8a:9b: 0d:1d:65:a7:a6:f6:44:6f:7a:46:88:50:ec:66:77: df:c7:45:c1:5b:6b:e3:91:05:3b:f3:4c:8f:52:6d: b0:d5:27:fd:33:0f:49:57:f6:13:33:4f:db:4e:d5: e4:d2:32:d5:54:00:84:a7:16:50:af:19:d6:f3:cb: 8c:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:4E:D4:C1:9E:6B:52:24:50:1E:5C:DD:E2:AB:D2:F2:83:89:98:39 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:ee:8d:a4:5f:e8:40:72:92:ca:2d:aa:99:4f:16:2c:04:b1: fc:2c:4c:46:bd:80:6a:48:d8:b3:9b:f4:51:49:d4:a4:54:b0: 27:f1:a8:48:b2:67:36:4f:0f:90:91:54:dc:eb:22:66:94:00: 6b:fc:4f:ea:6a:d2:e3:c8:cb:68:2c:72:96:ab:8e:15:40:85: 89:fb:a5:59:5b:79:4f:89:9a:24:fd:6c:be:1b:42:89:c9:fb: e1:66:50:91:f6:fd:b5:8f:87:95:a3:75:bb:6d:de:e3:2b:4d: a6:6f:93:46:0c:c2:b4:b8:ed:64:5a:96:f5:6b:a3:dc:53:79: 8d:09:f4:13:5b:b5:0e:ff:0e:33:85:d3:1d:cb:99:47:5c:84: c1:86:a5:4e:80:c9:31:a6:6e:19:3e:d6:30:ce:b1:ce:10:3a: c0:a8:45:30:b1:e1:06:16:61:10:57:d6:45:f2:ed:6d:69:fc: a0:9f:34:b6:5c:ed:1a:a5:66:09:0b:80:0a:80:b2:a0:9d:7a: a4:e7:96:f2:81:5e:c5:0a:aa:cb:ed:d0:3b:2a:d5:9e:74:22: 93:d5:95:a1:93:e4:62:d0:a0:1e:e5:e4:9e:f4:3c:9a:aa:ac: 5b:79:0c:46:c8:53:f7:e3:a4:67:58:9c:b9:01:d9:f8:b8:ac: d9:7d:93:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA4MDkwNzUwMjRaFw0yNTA4MTYwNzUwMjRaMBgxFjAUBgNV BAMTDTY4OTZmZGMwLTlkZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDI7QD4a6PSll1kFvoe+Fbg1XtxD33nebKAogNAGKgGNTbCmTpV9Lv9h4AUgaln HcwFTb6FibutQt359szjdxI7lU+vxcgtGNYpMGTxDCpiTgLRNPZa1MkFlFNn/9UO hD0XbccoBt+wTWqyh0bDPh7ZCYKHfSGqqNy2Gu/4PFGOxcUFIHNKjhvs/phxwetU 9d76u3kaKjE7ycHq6LPSswHGUvpxzccMk/ohXcOCh7PQe5SuJivLd1urMR1scL1u pOyKmw0dZaem9kRvekaIUOxmd9/HRcFba+ORBTvzTI9SbbDVJ/0zD0lX9hMzT9tO 1eTSMtVUAISnFlCvGdbzy4xhAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUME7UwZ5r UiRQHlzd4qvS8oOJmDkwHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJPujaRf6EByksotqplPFiwEsfwsTEa9gGpI2LOb9FFJ1KRUsCfxqEiy ZzZPD5CRVNzrImaUAGv8T+pq0uPIy2gscparjhVAhYn7pVlbeU+JmiT9bL4bQonJ ++FmUJH2/bWPh5Wjdbtt3uMrTaZvk0YMwrS47WRalvVro9xTeY0J9BNbtQ7/DjOF 0x3LmUdchMGGpU6AyTGmbhk+1jDOsc4QOsCoRTCx4QYWYRBX1kXy7W1p/KCfNLZc 7RqlZgkLgAqAsqCdeqTnlvKBXsUKqsvt0Dsq1Z50IpPVlaGT5GLQoB7l5J70PJqq rFt5DEbIU/fjpGdYnLkB2fi4rNl9k+g= -----END CERTIFICATE-----Generated at Sun Aug 10 19:02:17 2025 by rpki-client