$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: 4Ai23VmVEuGRT1VHzSXk5cFamNaxmkxmXDWhbbhJDCE= Subject key identifier: 95:BA:B0:B7:70:DC:73:E9:26:95:0E:95:DC:99:01:78:57:3A:6E:5A Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0AA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0A89 Signing time: Fri 08 Aug 2025 19:54:23 +0000 Manifest this update: Fri 08 Aug 2025 19:54:22 +0000 Manifest next update: Fri 15 Aug 2025 19:54:22 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: hRQ4999zlPKwfI0ZgNGv7ntvZhucDk9NiILbdJjnGeE=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: ORPxj2tqrIsIpHEdVkZPm4n/aNb1Vqu1v7KB5t0Gcw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2725 (0xaa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Aug 8 19:54:22 2025 GMT Not After : Aug 15 19:54:22 2025 GMT Subject: CN=689655ef-6f48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7e:8c:f1:f0:3a:c7:f3:ea:8f:e8:c2:e6:4a: 22:4e:2f:5b:ee:18:97:f5:8c:fa:ba:b2:b6:be:44: 0c:72:04:f6:33:56:fd:7b:80:74:eb:f4:f9:39:95: d4:4d:f0:ae:46:aa:98:52:4f:48:06:64:55:5a:f5: 56:72:b3:0a:24:56:17:c1:74:86:5b:20:29:c0:b2: bf:0c:52:cb:da:eb:bf:bd:a5:a3:34:40:53:11:0f: f4:12:f7:ed:00:26:cb:db:96:3c:b2:e6:2a:6b:b2: bb:10:4e:bc:d6:f2:44:89:fb:c9:2d:cc:cc:e2:cc: 63:44:72:2a:bc:c4:d3:2a:4e:99:b3:09:77:31:0e: 6a:1b:d6:e0:5e:af:d5:ad:72:16:a3:2f:80:81:ab: f9:24:0c:e2:44:b1:1f:c1:40:d9:55:c2:3b:c7:27: a4:7c:33:50:fb:3b:5c:79:a4:f0:f2:1a:38:1c:59: 42:5e:b3:d2:12:db:14:ce:92:1c:a8:05:10:df:03: cd:13:6d:75:c3:cc:46:1b:07:1e:74:09:0e:03:a9: 0f:dc:52:6a:d6:d4:95:a2:85:ad:83:0d:67:f5:72: 44:ec:b9:a7:f4:0c:57:42:9b:bb:16:8f:9a:5d:4f: 10:9d:f9:dd:63:db:95:9a:77:bc:e2:8b:d8:82:b6: 27:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BA:B0:B7:70:DC:73:E9:26:95:0E:95:DC:99:01:78:57:3A:6E:5A X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:7d:00:57:d0:3c:fe:1a:b1:11:cd:5f:7e:d3:51:95:9b:25: ae:e9:58:00:3c:45:78:a0:88:6c:1c:6d:b4:9d:a8:ed:df:ba: 96:fc:b6:49:9d:2f:d1:9a:0f:c1:4b:6c:c2:be:ca:8d:20:15: 2a:9d:2c:33:b5:18:6c:77:f5:95:bf:0e:3a:b9:a6:e4:b8:54: df:ea:04:4c:3d:25:5a:48:df:6f:b3:c0:f1:c8:f7:b1:77:c5: 12:58:f0:34:89:8c:2d:25:93:e0:8c:c8:4b:01:a6:1c:a9:a6: ab:f6:dc:65:8d:74:10:6e:73:42:c0:e0:84:2f:59:2e:10:b9: 91:14:3f:87:e7:e9:b3:ef:48:74:27:47:ca:c0:2a:59:56:a0: e4:8c:36:54:60:24:0a:ee:a7:25:38:c2:c8:41:80:60:db:b8: 4e:82:4b:35:3c:e4:35:d0:55:7e:fd:e5:20:0c:e4:19:42:ed: 52:fd:d7:13:6b:9b:c0:d5:85:73:4c:3e:6e:24:46:ed:75:e0: 9e:44:d1:9d:7d:ed:08:79:1f:9c:55:48:55:ab:93:45:6d:7f: 74:27:6c:42:69:8d:d7:1b:3a:af:17:1d:3c:4e:9b:28:ee:20: aa:17:2a:7b:5a:c6:61:a2:14:eb:af:a3:67:4c:72:e2:8e:28: 73:bb:a6:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjUwODA4MTk1NDIyWhcNMjUwODE1MTk1NDIyWjAYMRYwFAYD VQQDEw02ODk2NTVlZi02ZjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx36M8fA6x/Pqj+jC5koiTi9b7hiX9Yz6urK2vkQMcgT2M1b9e4B06/T5OZXU TfCuRqqYUk9IBmRVWvVWcrMKJFYXwXSGWyApwLK/DFLL2uu/vaWjNEBTEQ/0Evft ACbL25Y8suYqa7K7EE681vJEifvJLczM4sxjRHIqvMTTKk6Zswl3MQ5qG9bgXq/V rXIWoy+Agav5JAziRLEfwUDZVcI7xyekfDNQ+ztceaTw8ho4HFlCXrPSEtsUzpIc qAUQ3wPNE211w8xGGwcedAkOA6kP3FJq1tSVooWtgw1n9XJE7Lmn9AxXQpu7Fo+a XU8QnfndY9uVmne84ovYgrYnCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJW6sLdw 3HPpJpUOldyZAXhXOm5aMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCmfQBX0Dz+GrERzV9+01GVmyWu6VgAPEV4oIhsHG20najt37qW/LZJ nS/Rmg/BS2zCvsqNIBUqnSwztRhsd/WVvw46uabkuFTf6gRMPSVaSN9vs8DxyPex d8USWPA0iYwtJZPgjMhLAaYcqaar9txljXQQbnNCwOCEL1kuELmRFD+H5+mz70h0 J0fKwCpZVqDkjDZUYCQK7qclOMLIQYBg27hOgks1POQ10FV+/eUgDOQZQu1S/dcT a5vA1YVzTD5uJEbtdeCeRNGdfe0IeR+cVUhVq5NFbX90J2xCaY3XGzqvFx08Tpso 7iCqFyp7WsZhohTrr6NnTHLijihzu6bx -----END CERTIFICATE-----Generated at Sat Aug 9 01:05:35 2025 by rpki-client