$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: LQ5v3wps14kkYg4cGv++5PeGO1VsFwOZsnn3ZeRznmg= Subject key identifier: 0E:AF:44:6A:A7:81:3E:18:5D:C0:28:77:AA:E3:13:97:4E:FB:AD:BF Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 48 Signing time: Sat 09 Aug 2025 07:54:00 +0000 Manifest this update: Sat 09 Aug 2025 07:54:00 +0000 Manifest next update: Sat 16 Aug 2025 07:54:00 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: WgChT+Hx2XxMnu8jKB2D7vu9sRi0b5FO3CUf+8J4SII=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Aug 9 07:54:00 2025 GMT Not After : Aug 16 07:54:00 2025 GMT Subject: CN=6896fe98-9d5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:06:bb:d6:44:2b:57:2b:c4:0b:44:d8:59:54: e8:e6:f9:16:55:ac:c0:52:8f:be:48:1e:f7:f0:e5: 46:a1:1f:56:9f:4c:d5:cd:e8:fc:7b:f5:92:74:9a: f6:40:b2:6c:0e:9d:e1:7a:2c:2a:f8:34:8e:d7:81: 18:7d:c2:9b:d9:dc:73:92:45:57:53:16:3e:56:c7: 92:b9:96:d8:13:c5:86:f2:6d:4e:0f:8a:db:1f:a9: 8b:d9:94:ed:93:dc:20:12:79:83:a9:47:2b:64:c7: 7e:ad:03:7e:59:3e:10:05:db:1e:b0:df:50:09:a7: 23:89:7c:2f:b8:70:2d:ed:94:05:49:b0:db:ef:27: 01:02:5b:45:cd:2a:c6:b5:ad:33:d6:d6:33:ad:95: 94:87:7c:0f:79:92:91:d7:93:0f:19:b5:d9:24:af: d2:c4:00:08:87:92:bc:15:68:34:3f:dd:50:5b:84: 75:c2:1f:5c:8a:66:75:28:d0:45:df:8f:5f:5a:d2: 37:4a:fe:b7:3e:0c:cc:8c:b6:6a:01:91:07:96:dc: af:ca:66:2c:27:ff:22:1e:bb:59:a7:fd:24:d6:6b: 04:cf:40:a5:b0:3a:1f:b1:37:c5:22:87:50:92:f3: 6b:89:0d:76:bf:ac:f1:41:c7:ea:ed:62:17:4d:d3: 98:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:AF:44:6A:A7:81:3E:18:5D:C0:28:77:AA:E3:13:97:4E:FB:AD:BF X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:26:9a:27:9a:14:79:35:c6:94:fc:df:9b:34:67:4f:9e:5e: e9:6d:c9:f0:f5:ba:1b:5f:9f:bb:1c:29:48:29:3b:42:6a:18: 94:ed:3d:6d:19:93:22:4e:45:4f:50:bf:13:99:a7:ff:10:39: 31:6d:fa:f6:5e:4f:e6:dd:39:6e:c8:11:3e:1a:73:0c:41:14: f0:f5:24:3b:a9:56:85:26:6b:49:14:82:77:64:7a:1a:42:63: 5a:69:90:37:3e:5c:63:50:f3:f5:e9:8b:74:66:f2:da:c6:f9: b0:e2:12:87:b2:23:2b:b2:2f:51:05:c2:22:c1:d9:6d:fb:72: e0:dd:a9:f5:d9:84:b0:68:40:b6:e8:a8:e3:31:8c:26:34:64: 0a:d9:da:37:ae:ea:70:96:66:14:78:29:99:fd:89:f3:fb:27: 43:83:d5:81:a8:fd:f6:ab:04:a3:71:0c:e6:ae:be:6c:54:39: a7:30:26:66:4a:9e:ac:23:b0:ca:2c:c4:95:47:c9:82:e9:50: 06:09:1f:97:e4:ff:03:4e:98:94:f7:45:61:52:a9:a8:56:b7: a6:b2:7b:87:63:6d:b9:a2:98:5f:c1:4e:a1:73:24:1a:fe:5d: 8e:5d:b0:d6:45:dd:cc:41:0d:e3:85:a9:e6:1b:44:9e:fe:f4: 42:9c:dd:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTA4MDkwNzU0MDBaFw0yNTA4MTYwNzU0MDBaMBgxFjAUBgNV BAMTDTY4OTZmZTk4LTlkNWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCaBrvWRCtXK8QLRNhZVOjm+RZVrMBSj75IHvfw5UahH1afTNXN6Px79ZJ0mvZA smwOneF6LCr4NI7XgRh9wpvZ3HOSRVdTFj5Wx5K5ltgTxYbybU4PitsfqYvZlO2T 3CASeYOpRytkx36tA35ZPhAF2x6w31AJpyOJfC+4cC3tlAVJsNvvJwECW0XNKsa1 rTPW1jOtlZSHfA95kpHXkw8Ztdkkr9LEAAiHkrwVaDQ/3VBbhHXCH1yKZnUo0EXf j19a0jdK/rc+DMyMtmoBkQeW3K/KZiwn/yIeu1mn/STWawTPQKWwOh+xN8Uih1CS 82uJDXa/rPFBx+rtYhdN05j7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUDq9EaqeB PhhdwCh3quMTl077rb8wHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAwmmieaFHk1xpT835s0Z0+eXultyfD1uhtfn7scKUgpO0JqGJTtPW0Z kyJORU9QvxOZp/8QOTFt+vZeT+bdOW7IET4acwxBFPD1JDupVoUma0kUgndkehpC Y1ppkDc+XGNQ8/Xpi3Rm8trG+bDiEoeyIyuyL1EFwiLB2W37cuDdqfXZhLBoQLbo qOMxjCY0ZArZ2jeu6nCWZhR4KZn9ifP7J0OD1YGo/farBKNxDOauvmxUOacwJmZK nqwjsMosxJVHyYLpUAYJH5fk/wNOmJT3RWFSqahWt6aye4djbbmimF/BTqFzJBr+ XY5dsNZF3cxBDeOFqeYbRJ7+9EKc3d0= -----END CERTIFICATE-----Generated at Sun Aug 10 04:57:25 2025 by rpki-client