$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft File: KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft (raw, json) Hash identifier: CyQTkRa/A/nmkzY74/NhWnc1HwSTEsv46PYtJH5vny4= Subject key identifier: E1:A5:98:E7:AA:E7:A0:64:18:A3:0D:68:79:0F:E0:D2:EC:F5:7C:9F Authority key identifier: 28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 Certificate issuer: /CN=A915FE9F/serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Certificate serial: 1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft Manifest number: 1C Signing time: Mon 11 Aug 2025 08:13:08 +0000 Manifest this update: Mon 11 Aug 2025 08:13:07 +0000 Manifest next update: Mon 18 Aug 2025 08:13:07 +0000 Files and hashes: 1: KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl (hash: PpeEzSDNDjq6kC9Lll/79f+N4JCDm7+1MQ3ncb6oNUg=) 2: 10676C34517211F0AB672330C4F9AE02.roa (hash: iNwtEE4vpbgtamGh9Rt3zwBDGCds5c6NdLwqNO9h0fg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:13:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE9F, serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Validity Not Before: Aug 11 08:13:07 2025 GMT Not After : Aug 18 08:13:07 2025 GMT Subject: CN=6899a614-abad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a4:f4:0d:c5:fe:a3:9a:be:37:81:87:cf:b4: 39:12:b1:18:9a:6c:c3:2c:5c:de:3b:b3:03:78:75: 76:8b:8b:c6:d9:c3:f9:7b:8a:74:d2:6e:17:08:3c: 8b:e7:05:47:bd:fe:7c:66:61:92:0b:0f:2e:cd:2b: c4:49:c8:00:2a:c4:49:9f:68:58:09:b9:9c:c0:b4: 71:39:6c:00:5e:09:e8:b1:83:5d:80:32:1c:19:51: 5f:1a:5e:9b:c5:ea:68:7f:d3:29:ae:df:06:ef:18: f2:d2:40:28:08:ec:fd:a0:f9:91:83:11:b5:85:ff: 57:50:a8:f8:d5:aa:bd:a2:53:e5:7c:05:05:42:ec: 86:47:75:22:7e:9d:7f:02:c5:a8:69:40:fe:ef:8b: 54:12:dd:b6:51:92:c3:49:3f:49:4f:4a:11:60:7b: 76:88:41:28:8c:da:65:b2:36:9d:b9:cb:06:77:04: ef:a8:e3:bd:0e:a1:ba:c7:50:cc:b4:de:e8:d9:38: 57:ac:18:b6:57:e1:18:cd:bb:a0:2a:0a:84:a2:59: a1:36:e1:16:e0:ae:af:3f:35:5d:55:33:61:e4:54: 9e:f8:e6:fb:bc:b3:8c:3f:a3:42:a0:7a:4e:38:4f: 90:34:cb:af:4b:de:aa:b5:f4:74:0d:a9:2b:bb:6a: e7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A5:98:E7:AA:E7:A0:64:18:A3:0D:68:79:0F:E0:D2:EC:F5:7C:9F X509v3 Authority Key Identifier: keyid:28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b4:8b:45:71:1c:ce:c4:ba:09:56:4e:31:30:fd:be:b3:4f: 61:c2:41:0e:75:c3:19:fc:be:a1:82:26:ab:31:a6:31:00:ae: 43:12:87:8e:13:df:1e:aa:db:7d:5f:ad:20:5c:b0:d2:98:76: c4:1f:d9:e0:19:cd:6a:ad:2b:7f:fc:02:2f:3e:03:dd:b1:09: b8:f1:49:df:1a:0b:a9:78:6c:c1:a5:6e:0b:3a:61:87:bb:12: 8d:5c:5c:f3:0b:f8:1e:4f:9d:43:c3:62:75:98:da:00:af:04: 01:c1:6d:9c:19:ee:20:77:ec:15:41:02:fe:d4:92:71:a3:69: 4c:31:b7:e1:2b:c7:38:1e:cb:c4:27:a7:59:26:55:81:08:8c: 37:1d:1d:19:2e:c1:c8:16:d5:ed:d0:ff:e2:12:a6:32:6d:1a: 41:06:0c:70:82:fd:70:35:ce:08:e3:62:15:e3:67:47:b2:90: 04:9c:77:87:13:dd:dd:3a:93:3a:02:cf:9e:1a:ea:b0:b9:c4: aa:8c:c5:c1:74:0b:34:2d:b8:ec:10:df:e5:f8:45:b7:de:df: 73:a6:f8:c8:d6:f9:8c:bb:df:f5:6f:8f:88:a7:58:ff:3b:6e: a7:32:4c:df:cb:c2:c2:b5:e8:b2:e7:45:99:da:53:8e:79:57: 03:d8:b9:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkU5RjExMC8GA1UEBRMoMjhEQUQ4RDRDQzZGNzQwRkEwMDBENDM2ODY5QUUwRjE3 NkVBRTkzMzAeFw0yNTA4MTEwODEzMDdaFw0yNTA4MTgwODEzMDdaMBgxFjAUBgNV BAMTDTY4OTlhNjE0LWFiYWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZpPQNxf6jmr43gYfPtDkSsRiabMMsXN47swN4dXaLi8bZw/l7inTSbhcIPIvn BUe9/nxmYZILDy7NK8RJyAAqxEmfaFgJuZzAtHE5bABeCeixg12AMhwZUV8aXpvF 6mh/0ymu3wbvGPLSQCgI7P2g+ZGDEbWF/1dQqPjVqr2iU+V8BQVC7IZHdSJ+nX8C xahpQP7vi1QS3bZRksNJP0lPShFge3aIQSiM2mWyNp25ywZ3BO+o470OobrHUMy0 3ujZOFesGLZX4RjNu6AqCoSiWaE24Rbgrq8/NV1VM2HkVJ745vu8s4w/o0Kgek44 T5A0y69L3qq19HQNqSu7audpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU4aWY56rn oGQYow1oeQ/g0uz1fJ8wHwYDVR0jBBgwFoAUKNrY1MxvdA+gANQ2hprg8Xbq6TMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGRTlGLzIzMDI3MTI0NTE3 MDExRjBCOURCQ0I4N0M0RjlBRTAyL0tOclkxTXh2ZEEtZ0FOUTJocHJnOFhicTZU TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS05yWTFNeHZkQS1nQU5RMmhwcmc4WGJxNlRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG RTlGLzIzMDI3MTI0NTE3MDExRjBCOURCQ0I4N0M0RjlBRTAyL0tOclkxTXh2ZEEt Z0FOUTJocHJnOFhicTZUTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFq0i0VxHM7EuglWTjEw/b6zT2HCQQ51wxn8vqGCJqsxpjEArkMSh44T 3x6q231frSBcsNKYdsQf2eAZzWqtK3/8Ai8+A92xCbjxSd8aC6l4bMGlbgs6YYe7 Eo1cXPML+B5PnUPDYnWY2gCvBAHBbZwZ7iB37BVBAv7UknGjaUwxt+Erxzgey8Qn p1kmVYEIjDcdHRkuwcgW1e3Q/+ISpjJtGkEGDHCC/XA1zgjjYhXjZ0eykAScd4cT 3d06kzoCz54a6rC5xKqMxcF0CzQtuOwQ3+X4Rbfe33Om+MjW+Yy73/Vvj4inWP87 bqcyTN/LwsK16LLnRZnaU455VwPYuR8= -----END CERTIFICATE-----Generated at Tue Aug 12 22:53:39 2025 by rpki-client