$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: L/1UXIhiseX/yWUdxAvPOhtZQWtGfJZh7qJJ4NG5sp4= Subject key identifier: BE:3C:EA:AA:C6:25:37:33:9A:3A:3F:22:7E:8F:D3:D4:0A:64:A3:80 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: 9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: 9C Signing time: Thu 19 Jun 2025 05:41:44 +0000 Manifest this update: Thu 19 Jun 2025 05:41:43 +0000 Manifest next update: Thu 26 Jun 2025 05:41:43 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: /sQpbN3tLMZEj9+6dwgQbDSjeBO/LopulaJDLDdt/04=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: HQpJTfgqUX8sx/Vj8e61bP6mPFBvq/NcDI8+HFxFJJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 05:41:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 159 (0x9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Jun 19 05:41:43 2025 GMT Not After : Jun 26 05:41:43 2025 GMT Subject: CN=6853a317-eb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f3:f6:98:98:e8:7d:b9:f0:62:73:4f:65:5b: b9:41:4b:29:b5:98:4f:d8:56:93:06:e9:55:50:3b: bd:c1:50:5e:f8:08:ce:fb:0f:bb:61:37:c1:c0:54: c6:ab:6f:39:98:ce:42:05:d2:6e:cd:c7:38:ff:c8: db:c9:c3:64:16:a8:c9:f2:45:87:be:28:ee:10:ea: 4e:c0:41:7d:7b:8e:d7:3e:ed:06:d4:14:5a:23:21: 93:01:71:7b:7b:a5:87:1c:b3:f6:27:0a:c1:2e:19: 4b:9e:6f:85:cd:a7:e1:96:fa:12:ac:3f:b1:a5:67: f6:53:0d:02:7f:bd:55:52:05:33:1f:89:b4:6d:0f: 88:e3:27:18:3b:b9:dc:40:7c:69:e3:79:01:21:8f: 42:df:22:c3:28:85:cb:3b:3d:09:25:8b:1a:2c:10: 68:20:82:73:15:80:f0:55:a4:8a:d9:10:02:82:3c: 27:9f:c3:ff:ca:9d:0d:e6:b5:9d:2b:d5:2c:58:ef: e5:6b:14:31:a7:83:53:a1:d1:33:aa:a9:07:56:f7: 9f:da:59:e8:db:88:21:29:f7:dc:00:04:b1:c0:56: 88:d8:f4:03:8e:61:ae:65:40:e1:a2:5a:30:ec:ef: ef:05:55:62:9e:2f:07:07:3e:43:04:d4:68:3c:3d: ae:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:3C:EA:AA:C6:25:37:33:9A:3A:3F:22:7E:8F:D3:D4:0A:64:A3:80 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d4:cb:c9:26:d4:74:0c:66:35:bc:fc:ab:2c:b4:c5:9b:a7:93: cc:e6:57:ee:2b:92:3f:6c:b4:b1:0c:d3:a8:e0:42:a1:6b:97: fa:aa:00:3d:6c:35:49:c4:54:e8:2c:9c:9b:22:7f:96:db:dd: a5:f9:c2:89:e0:48:c8:86:0f:d0:4a:27:be:90:36:fa:38:f2: 4d:aa:00:b4:f3:6c:d7:67:d9:00:45:7e:ac:99:a9:62:4b:92: 8a:65:69:ff:0b:8e:a6:13:99:d9:e6:25:2c:c9:18:98:e0:bd: d4:ba:24:2b:de:c6:b7:a5:e2:f3:9e:9a:33:d2:ff:0f:e4:54: e5:06:fa:88:92:1b:c1:5d:a2:3e:9e:66:78:45:af:99:c7:ae: 04:2d:8a:39:10:25:1c:0c:e3:2c:8d:31:8e:94:58:5e:dc:2c: c2:b0:6c:6d:bc:23:73:aa:38:6d:ad:52:6c:47:4f:88:5f:07: 05:2f:20:40:c5:36:89:aa:f6:db:bc:dd:5a:c2:dc:2d:1f:f4: 36:e6:ac:ae:7d:ff:1b:b2:61:f0:45:10:ec:6c:7c:9a:f3:fe: 76:cb:44:fe:96:8e:8e:c9:e6:b0:bb:88:ab:28:7b:f4:32:34: 79:cf:1f:af:23:3a:fa:46:e0:83:4b:ef:21:90:a5:42:bc:0b: 84:68:1f:de -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwNjE5MDU0MTQzWhcNMjUwNjI2MDU0MTQzWjAYMRYwFAYD VQQDEw02ODUzYTMxNy1lYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqvP2mJjofbnwYnNPZVu5QUsptZhP2FaTBulVUDu9wVBe+AjO+w+7YTfBwFTG q285mM5CBdJuzcc4/8jbycNkFqjJ8kWHvijuEOpOwEF9e47XPu0G1BRaIyGTAXF7 e6WHHLP2JwrBLhlLnm+FzafhlvoSrD+xpWf2Uw0Cf71VUgUzH4m0bQ+I4ycYO7nc QHxp43kBIY9C3yLDKIXLOz0JJYsaLBBoIIJzFYDwVaSK2RACgjwnn8P/yp0N5rWd K9UsWO/laxQxp4NTodEzqqkHVvef2lno24ghKffcAASxwFaI2PQDjmGuZUDholow 7O/vBVVini8HBz5DBNRoPD2uDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL486qrG JTczmjo/In6P09QKZKOAMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDUy8km1HQMZjW8/KsstMWbp5PM5lfuK5I/bLSxDNOo4EKha5f6qgA9 bDVJxFToLJybIn+W292l+cKJ4EjIhg/QSie+kDb6OPJNqgC082zXZ9kARX6smali S5KKZWn/C46mE5nZ5iUsyRiY4L3UuiQr3sa3peLznpoz0v8P5FTlBvqIkhvBXaI+ nmZ4Ra+Zx64ELYo5ECUcDOMsjTGOlFhe3CzCsGxtvCNzqjhtrVJsR0+IXwcFLyBA xTaJqvbbvN1awtwtH/Q25qyuff8bsmHwRRDsbHya8/52y0T+lo6Oyeawu4irKHv0 MjR5zx+vIzr6RuCDS+8hkKVCvAuEaB/e -----END CERTIFICATE-----Generated at Fri Jun 20 19:05:25 2025 by rpki-client