$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft File: khLuorkaMmYPdScf7IWJswnDifA.mft (raw, json) Hash identifier: 9+8cqaMsYISKrrW9XpW0axyCYS5Dj+77Ny0FeDU1zfU= Subject key identifier: 01:92:5E:33:86:AB:15:9A:BF:69:18:82:71:3F:81:A5:B3:8D:6F:FE Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 03C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft Manifest number: 03BB Signing time: Thu 07 Aug 2025 01:17:56 +0000 Manifest this update: Thu 07 Aug 2025 01:17:55 +0000 Manifest next update: Thu 14 Aug 2025 01:17:55 +0000 Files and hashes: 1: khLuorkaMmYPdScf7IWJswnDifA.crl (hash: 1rNYWym779EkIv5oCQWwW0OIgt58aITIByLVOi1A14Y=) 2: F84777FCD9DC11EDA4083A71C4F9AE02.roa (hash: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 01:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 963 (0x3c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5, serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Validity Not Before: Aug 7 01:17:55 2025 GMT Not After : Aug 14 01:17:55 2025 GMT Subject: CN=6893fec4-1095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2b:e5:1f:4f:5d:07:c8:e2:16:98:08:93:7a: 8d:54:27:cc:df:a7:ce:c9:03:54:20:d2:3a:6e:49: b3:c3:c8:26:34:53:ee:69:45:13:9f:be:40:84:9d: 84:86:04:b3:0a:e2:8e:3a:31:d2:05:7f:1d:d2:aa: 88:4b:52:69:75:6f:de:cf:e4:e1:bd:97:1d:dc:6e: b9:f5:ce:c7:49:c2:c5:fe:1d:d2:89:66:dc:41:44: 75:4e:ce:6e:93:f6:21:a1:d2:62:87:90:c4:b8:75: fb:be:5a:97:d1:50:3a:c7:ef:b9:59:46:a5:a5:8d: f4:f1:9a:0d:83:51:79:ca:76:41:a3:31:e4:43:bd: 4b:cd:02:d9:5f:aa:52:f8:3c:7c:06:27:00:a2:a6: 42:bc:35:02:f7:d2:56:97:c4:d6:25:ce:20:6a:78: 7d:67:6f:1b:02:c7:19:30:53:4f:49:20:e4:d2:f8: 1c:ea:2d:3c:41:c9:2b:e3:2b:0d:5d:d4:ec:7e:2a: 7d:a6:41:7c:67:1b:d5:68:40:b3:26:99:ab:4e:af: de:95:40:79:b3:dc:21:30:2b:c7:84:c8:ce:dd:de: c1:35:b3:fd:bd:49:e0:b2:e1:bd:28:7c:b5:a2:1c: c7:67:ef:8d:f7:cd:6c:5e:68:21:c4:eb:96:65:3b: ff:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:92:5E:33:86:AB:15:9A:BF:69:18:82:71:3F:81:A5:B3:8D:6F:FE X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:14:54:c3:b6:bd:ef:6e:f1:b3:cd:fd:ac:54:d3:1e:36:e7: 06:40:2c:e4:74:46:50:fa:d6:aa:73:12:56:96:bb:a6:0a:be: b1:0c:fa:7c:cb:39:be:33:d9:4a:f5:84:73:6f:14:cd:76:f1: f6:50:50:4e:af:9b:07:71:e0:85:b4:07:19:3c:02:ae:ff:3f: f9:47:2d:5e:59:26:8a:73:ca:3b:54:b7:8d:1e:37:84:2a:51: 18:b2:8f:8a:39:85:e7:8a:06:97:f2:af:f6:38:56:32:22:96: 1b:c5:5b:5c:b4:d4:1a:18:16:29:3e:35:74:02:74:40:f0:79: a3:c7:df:97:76:10:72:c1:0d:8d:08:22:a3:71:81:e3:c9:6e: db:da:8f:ad:4d:73:81:a7:66:6e:54:ea:64:77:d3:9c:eb:e0: 41:54:b6:93:21:3c:bf:1f:af:86:df:f2:48:19:b4:35:48:c0: 58:5a:f2:82:93:ec:8e:75:f5:45:11:99:97:b2:f3:a6:99:9a: 34:d2:16:22:0c:33:73:46:9b:05:4f:d0:65:ff:b7:bc:9e:6c: 1c:37:e8:d6:7b:e2:53:41:06:a1:47:4b:50:6f:6d:b8:60:b4: e9:a6:ce:57:f2:45:44:e5:0d:19:b9:69:c5:5f:56:1a:35:08: 20:95:c5:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjUwODA3MDExNzU1WhcNMjUwODE0MDExNzU1WjAYMRYwFAYD VQQDEw02ODkzZmVjNC0xMDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyvlH09dB8jiFpgIk3qNVCfM36fOyQNUINI6bkmzw8gmNFPuaUUTn75AhJ2E hgSzCuKOOjHSBX8d0qqIS1JpdW/ez+ThvZcd3G659c7HScLF/h3SiWbcQUR1Ts5u k/YhodJih5DEuHX7vlqX0VA6x++5WUalpY308ZoNg1F5ynZBozHkQ71LzQLZX6pS +Dx8BicAoqZCvDUC99JWl8TWJc4ganh9Z28bAscZMFNPSSDk0vgc6i08Qckr4ysN XdTsfip9pkF8ZxvVaECzJpmrTq/elUB5s9whMCvHhMjO3d7BNbP9vUngsuG9KHy1 ohzHZ++N981sXmghxOuWZTv/MQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGSXjOG qxWav2kYgnE/gaWzjW/+MB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTlGNS82QTNEQjU3ODlGNzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1t WVBkU2NmN0lXSnN3bkRpZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6FFTDtr3vbvGzzf2sVNMeNucGQCzkdEZQ+taqcxJWlrumCr6xDPp8 yzm+M9lK9YRzbxTNdvH2UFBOr5sHceCFtAcZPAKu/z/5Ry1eWSaKc8o7VLeNHjeE KlEYso+KOYXnigaX8q/2OFYyIpYbxVtctNQaGBYpPjV0AnRA8Hmjx9+XdhBywQ2N CCKjcYHjyW7b2o+tTXOBp2ZuVOpkd9Oc6+BBVLaTITy/H6+G3/JIGbQ1SMBYWvKC k+yOdfVFEZmXsvOmmZo00hYiDDNzRpsFT9Bl/7e8nmwcN+jWe+JTQQahR0tQb224 YLTpps5X8kVE5Q0ZuWnFX1YaNQgglcVd -----END CERTIFICATE-----Generated at Fri Aug 8 20:49:01 2025 by rpki-client