$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: bxc3bDXfZqT0Pbl6qRchSnJqPirLWdPht3N+HZNP1AQ= Subject key identifier: 43:3A:0F:4C:80:3B:78:CB:22:78:75:DC:F5:90:8F:92:A0:95:29:BE Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 0680 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 067B Signing time: Fri 08 Aug 2025 22:47:14 +0000 Manifest this update: Fri 08 Aug 2025 22:47:13 +0000 Manifest next update: Fri 15 Aug 2025 22:47:13 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: PuDq8LjcFIqDkrpV2+FJ4DLoY7N2dK9PoWk5DorYlqk=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Aug 8 22:47:13 2025 GMT Not After : Aug 15 22:47:13 2025 GMT Subject: CN=68967e72-a9ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:95:b4:22:14:8c:01:a7:42:38:27:b9:9b:1c: 11:e2:d1:e5:24:d8:77:e7:f1:bf:f5:b9:2b:15:20: 30:24:46:c1:e4:43:77:1f:3a:85:17:c1:d5:ca:3f: d1:38:f3:92:02:b4:d1:3f:64:69:dc:0e:ac:d3:e9: e1:3b:0d:20:55:76:19:bd:99:d7:e2:72:c2:b9:21: c8:d0:b1:0a:ed:3f:dc:4b:56:fb:5b:31:5f:96:d5: 88:38:40:6b:c3:7f:77:53:46:53:16:fa:30:7c:3c: 85:96:7e:d8:11:f4:69:68:98:74:9c:0f:fa:7f:7a: 20:6d:64:c5:a8:9d:1c:23:a3:42:a1:f0:06:12:ac: 3f:de:7e:39:8b:d9:84:17:d4:53:fc:65:0f:8c:af: 40:fa:8b:1b:07:c9:aa:84:c6:38:6d:a7:8f:48:c6: 43:7b:b8:33:e0:9c:70:5b:71:26:76:10:9e:2b:c0: 3d:07:41:21:ec:01:bc:30:10:79:a9:f1:4f:e0:f4: 63:f2:8b:75:a8:89:83:fe:19:7b:68:c3:aa:e9:f5: d1:10:1e:cd:f7:4b:8b:8f:21:a5:38:44:d5:94:48: d1:6a:3a:07:ba:0a:70:88:68:4b:ce:8d:10:7c:31: 62:6c:7f:1a:79:80:81:ad:af:33:ef:7b:5e:02:c9: ec:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:3A:0F:4C:80:3B:78:CB:22:78:75:DC:F5:90:8F:92:A0:95:29:BE X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:2a:10:12:d9:31:14:9d:fb:26:0c:44:ea:6a:67:32:da:27: c6:5f:92:c4:9c:b5:ac:78:03:db:56:c2:d3:9b:32:e5:b3:8f: e9:60:97:f5:62:d7:64:8f:46:7c:9f:4e:f6:81:83:fb:7d:12: 93:54:2d:cd:92:56:b0:86:16:09:a3:47:ea:52:6b:86:46:79: 4d:5c:13:0c:f0:7b:f4:f3:97:25:5d:0a:80:bb:67:02:7f:e0: 70:a4:cc:92:da:be:21:d9:f6:17:7b:90:b9:49:be:36:91:fd: 1f:c0:8d:ac:8a:93:5f:67:4c:24:52:5c:55:ad:f5:01:a4:e8: 0a:5b:7f:8a:56:10:76:8b:e8:bc:90:20:b4:f4:9b:39:23:61: 9e:d3:e0:26:5b:e5:3e:03:4f:55:b7:37:53:df:18:ed:ba:0b: 1b:78:2d:63:72:d6:9d:d2:ff:d6:9f:83:82:ba:58:b4:b6:1d: 5e:a7:56:8c:83:26:5f:6b:d7:cb:61:cd:f0:06:d6:45:71:85: 0f:6c:c0:c6:c9:48:27:41:3c:a5:26:34:61:5f:1c:ef:6e:1c: 68:74:2c:8a:f3:bf:38:43:6c:90:8d:c6:32:85:32:91:29:c1: 91:c1:5b:77:c0:e4:4d:96:4a:56:c4:c8:9c:74:81:3e:63:d7: c1:e1:37:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUwODA4MjI0NzEzWhcNMjUwODE1MjI0NzEzWjAYMRYwFAYD VQQDEw02ODk2N2U3Mi1hOWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJW0IhSMAadCOCe5mxwR4tHlJNh35/G/9bkrFSAwJEbB5EN3HzqFF8HVyj/R OPOSArTRP2Rp3A6s0+nhOw0gVXYZvZnX4nLCuSHI0LEK7T/cS1b7WzFfltWIOEBr w393U0ZTFvowfDyFln7YEfRpaJh0nA/6f3ogbWTFqJ0cI6NCofAGEqw/3n45i9mE F9RT/GUPjK9A+osbB8mqhMY4baePSMZDe7gz4JxwW3EmdhCeK8A9B0Eh7AG8MBB5 qfFP4PRj8ot1qImD/hl7aMOq6fXREB7N90uLjyGlOETVlEjRajoHugpwiGhLzo0Q fDFibH8aeYCBra8z73teAsnsmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEM6D0yA O3jLInh13PWQj5KglSm+MB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAmKhAS2TEUnfsmDETqamcy2ifGX5LEnLWseAPbVsLTmzLls4/pYJf1 Ytdkj0Z8n072gYP7fRKTVC3NklawhhYJo0fqUmuGRnlNXBMM8Hv085clXQqAu2cC f+BwpMyS2r4h2fYXe5C5Sb42kf0fwI2sipNfZ0wkUlxVrfUBpOgKW3+KVhB2i+i8 kCC09Js5I2Ge0+AmW+U+A09VtzdT3xjtugsbeC1jctad0v/Wn4OCuli0th1ep1aM gyZfa9fLYc3wBtZFcYUPbMDGyUgnQTylJjRhXxzvbhxodCyK8784Q2yQjcYyhTKR KcGRwVt3wORNlkpWxMicdIE+Y9fB4TdK -----END CERTIFICATE-----Generated at Sun Aug 10 18:30:16 2025 by rpki-client