$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: UPwOBL/pzfnxjl2iJ7nG/xmuV7LkonqRcZrOUCHYlSY= Subject key identifier: 66:37:36:AF:06:BA:9D:CE:E4:45:F8:A6:68:AD:92:FA:62:9E:E5:F4 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 069A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 0694 Signing time: Wed 06 Aug 2025 22:37:11 +0000 Manifest this update: Wed 06 Aug 2025 22:37:10 +0000 Manifest next update: Wed 13 Aug 2025 22:37:10 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: XrGGEYqFp9D3eq+B68goK5Zrm1o3lIcq8fjQTlkNEPQ=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 22:37:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Aug 6 22:37:10 2025 GMT Not After : Aug 13 22:37:10 2025 GMT Subject: CN=6893d917-b701 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:41:5d:2f:d2:f8:05:0f:63:80:c0:62:01:50: 13:5e:21:c6:66:2d:32:58:ae:68:07:38:69:78:53: 52:41:4c:67:94:c0:ef:15:ba:ff:7a:ee:14:fa:0b: 88:07:25:94:17:88:ad:11:34:78:f7:24:b9:5f:56: 0e:d9:41:d9:a8:bb:7c:f0:fd:26:de:a0:2c:53:9a: 92:f1:9b:ed:7f:e3:f6:b1:a3:e2:70:12:b6:9f:2a: 11:f7:72:26:50:a6:77:65:dc:4d:39:e9:56:49:6d: 78:64:40:09:46:50:4b:3d:0e:04:ac:46:b4:f7:9e: 60:37:d8:34:63:06:07:ac:85:4e:47:9f:60:1d:1e: 4e:89:c2:f8:e3:a2:5e:39:65:19:d7:1a:1a:91:fb: 46:50:3d:ae:97:38:3d:76:6a:9a:8a:8b:50:39:a8: a0:51:db:55:22:30:cb:46:c0:2a:92:a1:84:ad:0e: f7:9f:4e:fc:ba:8c:b0:23:40:43:1c:21:44:74:bc: 1b:5b:a4:b6:ee:bb:f8:9f:0f:a5:81:f7:74:14:7a: 33:c5:79:56:be:5a:58:a1:77:0d:e3:32:2a:c1:96: ca:99:af:12:8e:05:9d:c0:18:7e:c1:ea:10:1c:7d: 9d:b0:79:d7:ce:0f:64:e9:12:d2:cb:51:0c:21:92: 5f:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:37:36:AF:06:BA:9D:CE:E4:45:F8:A6:68:AD:92:FA:62:9E:E5:F4 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:54:f2:91:e5:77:7f:ed:c2:b0:70:53:35:fd:92:ed:39:af: 25:7a:6e:bd:04:72:87:71:21:59:58:22:7d:10:01:10:b9:93: e3:9c:45:52:86:20:4a:8e:7d:d0:49:94:18:fe:52:3c:20:09: cb:f4:08:5f:b5:01:37:f8:2c:c2:eb:14:29:77:b4:fb:0d:58: ae:fb:19:80:e5:61:9c:24:e8:61:c5:d5:84:18:60:05:42:c8: 94:6f:68:6a:a4:93:17:52:66:cd:ef:53:4f:27:d9:a4:19:c6: f8:46:60:a2:72:3a:dd:9e:26:c9:51:bd:76:af:86:eb:27:33: 10:e9:50:c3:fd:7f:1a:2d:7d:d2:ec:7c:0a:be:58:77:d4:13: 60:ec:5b:c5:91:ee:37:cc:31:06:16:17:7f:07:53:65:2a:52: ed:63:44:b4:60:07:23:06:29:11:41:fe:41:b2:48:64:fb:62: 60:9d:a3:7e:00:27:07:07:9f:fc:af:30:60:25:d8:33:fc:56: 2a:5d:04:3c:3f:87:3b:40:64:ca:b7:04:e4:8c:2d:67:76:d6: 7c:ab:32:0f:94:90:4e:f1:b8:f3:15:31:2e:7f:6e:4e:1d:66: 43:3f:dc:31:40:a4:b8:6f:f5:86:8b:db:c1:cb:50:75:a6:75: 34:f9:6b:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjUwODA2MjIzNzEwWhcNMjUwODEzMjIzNzEwWjAYMRYwFAYD VQQDEw02ODkzZDkxNy1iNzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkFdL9L4BQ9jgMBiAVATXiHGZi0yWK5oBzhpeFNSQUxnlMDvFbr/eu4U+guI ByWUF4itETR49yS5X1YO2UHZqLt88P0m3qAsU5qS8Zvtf+P2saPicBK2nyoR93Im UKZ3ZdxNOelWSW14ZEAJRlBLPQ4ErEa0955gN9g0YwYHrIVOR59gHR5OicL446Je OWUZ1xoakftGUD2ulzg9dmqaiotQOaigUdtVIjDLRsAqkqGErQ73n078uoywI0BD HCFEdLwbW6S27rv4nw+lgfd0FHozxXlWvlpYoXcN4zIqwZbKma8SjgWdwBh+weoQ HH2dsHnXzg9k6RLSy1EMIZJf7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGY3Nq8G up3O5EX4pmitkvpinuX0MB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA9VPKR5Xd/7cKwcFM1/ZLtOa8lem69BHKHcSFZWCJ9EAEQuZPjnEVS hiBKjn3QSZQY/lI8IAnL9AhftQE3+CzC6xQpd7T7DViu+xmA5WGcJOhhxdWEGGAF QsiUb2hqpJMXUmbN71NPJ9mkGcb4RmCicjrdnibJUb12r4brJzMQ6VDD/X8aLX3S 7HwKvlh31BNg7FvFke43zDEGFhd/B1NlKlLtY0S0YAcjBikRQf5Bskhk+2JgnaN+ ACcHB5/8rzBgJdgz/FYqXQQ8P4c7QGTKtwTkjC1ndtZ8qzIPlJBO8bjzFTEuf25O HWZDP9wxQKS4b/WGi9vBy1B1pnU0+WtM -----END CERTIFICATE-----Generated at Fri Aug 8 20:59:40 2025 by rpki-client