$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: iaLLkmdk/+Vj4mQgRCSId++X84XhyNyFHr2vbzMRSI4= Subject key identifier: D5:4A:D7:B4:25:7E:95:20:BB:5B:AE:95:6A:E2:10:FA:09:4A:54:C8 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 0425 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03B6 Signing time: Sun 03 Aug 2025 01:31:54 +0000 Manifest this update: Sun 03 Aug 2025 01:31:53 +0000 Manifest next update: Sun 10 Aug 2025 01:31:53 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: 9ZAW5DlBDuxUZIQCIP5VSHPpUl+pNj2eapUdVDvwek8=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 01:31:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1061 (0x425) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Aug 3 01:31:53 2025 GMT Not After : Aug 10 01:31:53 2025 GMT Subject: CN=688ebc09-6619 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c5:56:72:bc:47:fd:17:f1:eb:7d:8c:a4:d9: 1e:8e:80:d5:c5:94:76:f7:ef:b8:99:25:89:1f:2a: b5:cc:56:bf:8f:8a:b1:4b:8f:db:ec:ac:75:2b:24: 9c:c7:97:99:13:c5:2d:be:97:60:f9:19:b9:3d:bc: 0e:ea:9b:cb:7f:55:7f:4e:e6:e6:c1:28:4d:0d:90: be:f4:70:5f:d0:9e:80:12:3e:90:49:fc:5f:75:3d: c0:52:b2:8d:76:8b:21:7a:ae:3f:0e:c2:8f:0b:1f: 01:23:50:d9:0a:90:76:b2:d5:98:17:d3:b2:55:05: f2:93:cc:7c:fa:14:7d:e1:c9:d5:cf:07:88:1d:80: 34:87:ae:9f:0b:60:d7:ea:5e:09:e9:d8:07:9f:69: c9:d2:eb:a7:b5:b7:17:42:83:a4:d8:87:0c:2d:81: 75:7f:2f:24:8a:3a:88:b9:d6:3b:65:24:f5:51:b2: a5:d3:6d:d3:b4:fa:d6:69:54:b3:5e:06:61:13:73: 2e:9c:7b:17:f1:26:ed:90:72:50:f2:ae:77:3d:fa: a9:db:da:35:9e:96:c0:48:1e:d5:55:c8:48:0d:73: a2:55:5d:bb:e4:66:af:e6:91:5d:31:6f:04:7d:7e: ef:ce:76:2c:36:1d:ea:04:b0:e6:c1:e5:5e:38:ca: c4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:4A:D7:B4:25:7E:95:20:BB:5B:AE:95:6A:E2:10:FA:09:4A:54:C8 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:07:1c:c7:c0:c4:85:4b:27:d2:63:02:10:d4:cf:be:a8:ec: e7:25:bb:55:7b:c4:8f:4a:47:d5:60:b8:c8:ef:df:ed:ee:c1: 9a:35:63:f2:97:10:af:8f:b7:81:61:34:07:b0:f1:2e:1e:67: 41:dd:ca:bc:75:a2:48:40:5a:f0:6e:f0:d7:65:ae:97:e5:d4: b6:25:04:59:ca:0b:13:39:e3:9b:b1:ac:0c:e0:df:b4:8d:60: 00:2b:9a:c1:4e:99:9c:9a:13:a5:1a:6a:f7:06:96:4a:9a:07: 8f:a2:b1:2a:a3:c3:3b:7a:cd:f6:1d:a8:08:fd:44:f1:47:b5: 8f:4c:92:af:49:f5:af:75:82:2c:af:bd:1c:d1:a9:e6:99:1e: 01:5e:be:c0:75:3a:19:ae:60:b9:e1:68:0d:08:00:ce:17:26: 06:e7:07:c8:18:ae:7b:50:e2:9a:50:22:c0:9b:65:48:dc:09: 47:e7:09:aa:55:f0:bc:97:3a:e4:9e:58:40:90:a0:e8:ba:7b: a5:25:9e:8c:c8:e3:cb:f8:5f:75:26:0d:09:e4:b0:7c:32:d2: 82:70:c9:5b:ac:fe:d3:0e:5c:89:a6:6e:d0:bb:0b:db:fa:8b: 23:7e:ec:80:84:1a:70:0f:65:8b:99:6d:0a:55:61:92:ad:65: cf:5b:dc:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBCUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwODAzMDEzMTUzWhcNMjUwODEwMDEzMTUzWjAYMRYwFAYD VQQDEw02ODhlYmMwOS02NjE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cVWcrxH/Rfx632MpNkejoDVxZR29++4mSWJHyq1zFa/j4qxS4/b7Kx1KySc x5eZE8Utvpdg+Rm5PbwO6pvLf1V/TubmwShNDZC+9HBf0J6AEj6QSfxfdT3AUrKN dosheq4/DsKPCx8BI1DZCpB2stWYF9OyVQXyk8x8+hR94cnVzweIHYA0h66fC2DX 6l4J6dgHn2nJ0uuntbcXQoOk2IcMLYF1fy8kijqIudY7ZST1UbKl023TtPrWaVSz XgZhE3MunHsX8SbtkHJQ8q53Pfqp29o1npbASB7VVchIDXOiVV275Gav5pFdMW8E fX7vznYsNh3qBLDmweVeOMrEkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVK17Ql fpUgu1uulWriEPoJSlTIMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7BxzHwMSFSyfSYwIQ1M++qOznJbtVe8SPSkfVYLjI79/t7sGaNWPy lxCvj7eBYTQHsPEuHmdB3cq8daJIQFrwbvDXZa6X5dS2JQRZygsTOeObsawM4N+0 jWAAK5rBTpmcmhOlGmr3BpZKmgePorEqo8M7es32HagI/UTxR7WPTJKvSfWvdYIs r70c0anmmR4BXr7AdToZrmC54WgNCADOFyYG5wfIGK57UOKaUCLAm2VI3AlH5wmq VfC8lzrknlhAkKDounulJZ6MyOPL+F91Jg0J5LB8MtKCcMlbrP7TDlyJpm7Quwvb +osjfuyAhBpwD2WLmW0KVWGSrWXPW9yp -----END CERTIFICATE-----Generated at Mon Aug 4 04:03:49 2025 by rpki-client