$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: h9IAYkpMsQ8pKQfv/gCDl4Z+UDGzxS205Wg1Jxebnbk= Subject key identifier: 61:10:7D:17:E7:33:98:21:FF:53:08:61:3C:BC:7C:3E:48:41:FB:DE Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: B6 Signing time: Sat 09 Aug 2025 06:28:06 +0000 Manifest this update: Sat 09 Aug 2025 06:28:06 +0000 Manifest next update: Sat 16 Aug 2025 06:28:06 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: +/8/rLQ6J1JgBCh0XVWUQGo+KCjRQV5miM8uZ8lEFho=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: HQpJTfgqUX8sx/Vj8e61bP6mPFBvq/NcDI8+HFxFJJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Aug 9 06:28:06 2025 GMT Not After : Aug 16 06:28:06 2025 GMT Subject: CN=6896ea76-bd11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:f9:94:04:06:dd:d7:9c:a2:e8:90:c8:48:c1: 33:21:76:0d:06:9d:fb:a9:e3:75:ea:d4:53:10:af: 37:b7:c2:53:e7:41:10:5e:51:20:02:be:43:72:6d: 92:02:28:1a:be:6a:4a:26:df:c7:8b:bc:56:f1:9a: 65:67:68:8f:c1:76:08:77:f7:a2:e8:d3:69:b2:06: 67:ad:a4:d4:26:b7:4b:f5:26:fa:38:83:1e:fa:2f: 3e:46:50:2c:3c:4a:a9:f3:18:f3:d0:c3:94:a0:10: 29:a4:dd:b1:cc:cb:27:37:c2:ad:1d:61:61:ef:5d: ab:39:34:e1:84:54:fc:de:04:07:0e:02:3a:00:b9: 48:28:8e:50:ae:2f:69:71:5a:af:c8:89:eb:0e:bc: 84:94:59:f7:51:1d:fd:89:19:fc:1b:bf:ea:61:f4: 43:b4:03:2f:3d:4b:81:fd:9b:9e:97:0f:8a:a3:95: 0c:17:25:c8:11:bf:6b:28:10:d8:70:33:28:3d:fa: 9e:09:ee:62:2d:54:43:61:49:69:21:d3:87:9c:cc: be:f7:f9:85:ea:ce:ae:29:c8:21:94:2e:62:24:f6: a5:b5:34:9f:eb:d7:a4:1c:0f:6f:f3:e9:c7:25:1f: 0b:1d:bd:67:e4:34:89:01:e3:27:df:f1:23:81:51: ee:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:10:7D:17:E7:33:98:21:FF:53:08:61:3C:BC:7C:3E:48:41:FB:DE X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:ca:30:09:5f:5f:4e:0e:db:c7:29:d4:8b:07:c9:be:04:6a: 2c:66:d2:91:69:6e:23:35:3c:aa:ca:93:01:8a:f2:ca:a2:24: 5c:39:a0:a3:dd:ca:e1:ca:0c:37:30:14:7a:c0:12:a5:e7:7d: b2:b6:b8:a4:ac:c9:18:09:c3:66:d4:b1:de:e9:ef:da:7d:6a: c4:b9:a3:3c:e0:f5:f9:c0:0e:b9:07:b9:a7:4b:20:07:a8:e6: 31:21:9c:81:fc:09:a8:b2:bb:e5:dc:20:c0:b4:46:f6:18:30: 75:82:5a:51:6b:51:6a:73:6a:8a:d7:7d:05:ac:23:3d:0f:15: 9f:0f:ff:9a:69:7b:0f:60:1c:59:d6:c2:64:30:42:52:2a:ce: 11:0e:8f:cb:43:86:f4:8c:c8:a4:c4:df:5a:26:c3:e2:d6:79: 78:c4:55:fc:54:03:d4:2f:28:d1:96:48:ea:7c:70:2f:7d:98: b8:66:0b:8c:3d:11:c5:b7:05:d2:80:02:e5:c7:e4:27:97:8b: c4:d3:05:ab:06:13:7a:76:e5:ab:a0:ff:a1:56:05:30:67:a2: e0:a3:df:46:35:85:c6:a7:65:fb:35:ec:14:6f:81:45:2d:0d: a1:e8:b8:6a:8b:fb:1b:99:aa:c3:84:3e:77:ac:0f:99:5d:14: b0:7e:7c:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwODA5MDYyODA2WhcNMjUwODE2MDYyODA2WjAYMRYwFAYD VQQDEw02ODk2ZWE3Ni1iZDExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq/mUBAbd15yi6JDISMEzIXYNBp37qeN16tRTEK83t8JT50EQXlEgAr5Dcm2S AigavmpKJt/Hi7xW8ZplZ2iPwXYId/ei6NNpsgZnraTUJrdL9Sb6OIMe+i8+RlAs PEqp8xjz0MOUoBAppN2xzMsnN8KtHWFh712rOTThhFT83gQHDgI6ALlIKI5Qri9p cVqvyInrDryElFn3UR39iRn8G7/qYfRDtAMvPUuB/Zuelw+Ko5UMFyXIEb9rKBDY cDMoPfqeCe5iLVRDYUlpIdOHnMy+9/mF6s6uKcghlC5iJPaltTSf69ekHA9v8+nH JR8LHb1n5DSJAeMn3/EjgVHuXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGEQfRfn M5gh/1MIYTy8fD5IQfveMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCryjAJX19ODtvHKdSLB8m+BGosZtKRaW4jNTyqypMBivLKoiRcOaCj 3crhygw3MBR6wBKl532ytrikrMkYCcNm1LHe6e/afWrEuaM84PX5wA65B7mnSyAH qOYxIZyB/Amosrvl3CDAtEb2GDB1glpRa1Fqc2qK130FrCM9DxWfD/+aaXsPYBxZ 1sJkMEJSKs4RDo/LQ4b0jMikxN9aJsPi1nl4xFX8VAPULyjRlkjqfHAvfZi4ZguM PRHFtwXSgALlx+Qnl4vE0wWrBhN6duWroP+hVgUwZ6Lgo99GNYXGp2X7NewUb4FF LQ2h6Lhqi/sbmarDhD53rA+ZXRSwfnwb -----END CERTIFICATE-----Generated at Sun Aug 10 21:15:41 2025 by rpki-client