$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: n7hUwCO+a8XztGNN3p3DQsK9YwHkOPpoRmLdh2HWnOw= Subject key identifier: 05:0D:E3:2E:49:33:4C:89:52:F5:54:A6:17:20:10:2D:9C:B3:8C:57 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 34D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 34C2 Signing time: Fri 08 Aug 2025 14:23:49 +0000 Manifest this update: Fri 08 Aug 2025 14:23:49 +0000 Manifest next update: Fri 15 Aug 2025 14:23:49 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: ju/JFJCtw7Q1v/+YEKLqtblUQjp6hKrdNhrFAYojWmk=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: nOTO05trzCD6uEEv4FInP/xVHgXMSyk7YCzU2yFeaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13523 (0x34d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Aug 8 14:23:49 2025 GMT Not After : Aug 15 14:23:49 2025 GMT Subject: CN=68960875-d7d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:af:ab:96:2b:0b:1e:ef:2b:b6:27:0f:36:3e: 07:16:91:3f:72:c2:72:c5:3c:09:cf:92:07:6e:ab: 77:5e:e7:77:75:23:23:6c:e1:3a:22:59:08:d0:90: a8:35:91:7a:7d:d3:ca:f3:fc:ef:d7:b2:89:9c:48: bc:55:05:e8:2f:24:66:35:ec:76:e3:2c:e5:a9:a6: 6e:80:ef:f3:f8:61:30:cc:e3:c6:5c:df:de:42:51: ed:08:f8:e2:49:0d:38:7d:32:a9:80:4e:e5:bf:f7: 9f:6a:85:30:09:c4:87:93:fc:a7:c2:c1:5a:89:43: 2e:bf:de:58:f7:c5:15:cc:fe:cc:aa:e4:e3:90:07: cb:6d:76:96:78:77:e4:0b:1e:d9:d9:38:3b:fe:be: 84:ae:2e:09:76:3c:74:aa:4d:22:38:4b:7e:83:c8: 52:79:7d:8d:08:3c:08:16:7b:45:ab:2e:bb:7b:fc: 1e:7b:38:e1:bd:e2:aa:18:57:06:69:cd:d8:1b:9d: 02:10:c6:15:c2:3b:7b:ec:68:a5:64:61:d3:6d:8e: bd:cf:9d:eb:56:ba:42:e5:95:0b:09:37:53:e1:bc: 6a:e3:0f:9f:2f:60:f7:15:52:cc:61:8e:d0:db:b9: 1b:73:84:dc:dd:54:c1:aa:27:30:31:0f:63:a9:82: 5c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0D:E3:2E:49:33:4C:89:52:F5:54:A6:17:20:10:2D:9C:B3:8C:57 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:79:93:cc:f1:d3:c6:d2:09:66:38:de:32:08:d9:d8:ae:de: 3f:f8:3b:c4:cf:d8:b8:01:00:46:65:aa:99:13:79:b8:c5:d1: 33:6a:ff:af:66:c2:ad:81:69:f2:36:a2:d8:95:26:9c:30:1d: 02:c2:2a:17:b9:c0:60:f7:82:d4:c5:ef:ee:7f:1e:d3:9b:a4: 9c:39:83:e8:01:c0:5b:27:c1:db:41:e5:da:c6:4d:34:54:ac: 7f:3a:75:23:95:f9:fd:3c:94:22:74:08:07:1c:73:3c:16:42: 0c:65:4f:64:30:f9:b6:ea:65:55:69:d1:1e:3a:8b:b7:a7:ef: c3:eb:c6:d8:86:bd:83:52:71:64:b1:69:35:f0:7a:82:2f:0f: 87:d3:6e:45:23:0c:60:19:0c:13:55:1a:84:56:28:00:40:c9: 56:82:07:f6:e2:68:8a:dc:82:ad:48:d5:4b:36:f9:00:b0:c5: f3:5f:2a:60:a1:57:d6:11:b3:64:96:08:7a:17:cb:f2:7c:7c: 45:7d:2e:4a:1d:9e:d4:55:2b:ef:5f:c1:ee:da:48:7e:ae:d5: 53:57:43:9d:6c:0c:dc:96:d9:e3:06:46:27:03:b3:d7:52:7d: 19:5f:58:35:23:cf:df:e2:a7:90:dd:02:8b:24:f1:80:47:86: 63:b6:35:7d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUwODA4MTQyMzQ5WhcNMjUwODE1MTQyMzQ5WjAYMRYwFAYD VQQDEw02ODk2MDg3NS1kN2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArK+rlisLHu8rticPNj4HFpE/csJyxTwJz5IHbqt3Xud3dSMjbOE6IlkI0JCo NZF6fdPK8/zv17KJnEi8VQXoLyRmNex24yzlqaZugO/z+GEwzOPGXN/eQlHtCPji SQ04fTKpgE7lv/efaoUwCcSHk/ynwsFaiUMuv95Y98UVzP7MquTjkAfLbXaWeHfk Cx7Z2Tg7/r6Eri4Jdjx0qk0iOEt+g8hSeX2NCDwIFntFqy67e/weezjhveKqGFcG ac3YG50CEMYVwjt77GilZGHTbY69z53rVrpC5ZULCTdT4bxq4w+fL2D3FVLMYY7Q 27kbc4Tc3VTBqicwMQ9jqYJcfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAUN4y5J M0yJUvVUphcgEC2cs4xXMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVeZPM8dPG0glmON4yCNnYrt4/+DvEz9i4AQBGZaqZE3m4xdEzav+v ZsKtgWnyNqLYlSacMB0CwioXucBg94LUxe/ufx7Tm6ScOYPoAcBbJ8HbQeXaxk00 VKx/OnUjlfn9PJQidAgHHHM8FkIMZU9kMPm26mVVadEeOou3p+/D68bYhr2DUnFk sWk18HqCLw+H025FIwxgGQwTVRqEVigAQMlWggf24miK3IKtSNVLNvkAsMXzXypg oVfWEbNklgh6F8vyfHxFfS5KHZ7UVSvvX8Hu2kh+rtVTV0OdbAzcltnjBkYnA7PX Un0ZX1g1I8/f4qeQ3QKLJPGAR4ZjtjV9 -----END CERTIFICATE-----Generated at Fri Aug 8 20:47:01 2025 by rpki-client