$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: 29fMrwS4Ej2zE/nhlVyBF0OQBhxN/6wJbJD0AcszZTA= Subject key identifier: C4:56:34:DD:A8:85:35:01:DF:30:E4:03:9F:69:88:E1:B5:2C:A4:5E Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: DB Signing time: Thu 07 Aug 2025 06:04:38 +0000 Manifest this update: Thu 07 Aug 2025 06:04:38 +0000 Manifest next update: Thu 14 Aug 2025 06:04:38 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: malKXaaBOTKDM2pxDp6fdibVWVpNARUf5QF+RdXrUXM=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Aug 7 06:04:38 2025 GMT Not After : Aug 14 06:04:38 2025 GMT Subject: CN=689441f6-2950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9a:de:d0:3f:a6:0c:f2:2e:16:34:32:da:52: a2:33:b0:fa:8f:a3:7d:ab:9e:1a:2e:4a:0b:d9:cb: 26:b4:b7:19:a2:60:93:65:b1:05:17:7f:ed:77:9c: be:48:63:34:87:71:44:6e:e7:4f:ee:c7:de:bd:68: 27:9a:1c:c5:a5:fb:2b:86:87:88:91:d3:3e:ee:d3: 48:e9:2e:0f:f2:e1:64:11:e5:ef:93:94:49:aa:0b: 0c:a6:bb:69:3e:3f:69:09:1f:5c:e5:6d:90:5d:4e: 3c:d3:19:97:26:8c:b3:c1:08:e5:3a:41:31:74:28: 9b:99:94:94:2f:ce:04:67:97:ca:e0:de:b1:ba:1d: 5f:2e:f5:2b:57:6a:77:2c:88:6d:b6:69:a8:05:32: fa:86:1f:e4:bf:e4:24:77:5d:a9:9f:cd:4a:e9:a4: 50:bf:75:1e:d3:df:62:9d:6d:7a:8c:34:40:94:dc: 05:ed:13:f8:18:37:f0:58:ab:6f:ee:aa:c6:b9:42: b7:db:e0:8f:33:de:dc:49:2a:37:f2:b7:57:fa:09: 19:10:0a:cb:74:ae:37:04:70:8e:55:62:51:69:f4: ef:4a:9c:23:dc:9e:78:78:7b:34:9e:3d:90:9f:03: f9:3f:61:83:d9:d9:7b:60:64:32:4f:ad:ce:9c:20: d5:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:56:34:DD:A8:85:35:01:DF:30:E4:03:9F:69:88:E1:B5:2C:A4:5E X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:69:03:ac:c0:42:12:09:af:4e:e6:76:60:19:46:23:8a:b6: 41:7e:c2:8f:ed:f6:49:90:a9:04:5d:89:9e:80:c2:4d:9c:58: c2:b6:be:58:b6:0d:ed:ea:7a:9e:0c:37:e0:a8:74:fe:91:ab: 6a:14:ab:7d:09:41:aa:77:5d:e0:06:d2:1a:5a:85:3a:7c:c9: 60:fb:f5:8e:12:98:0b:9e:04:44:73:86:5d:e3:b2:94:9d:9d: 5b:9a:a7:2f:91:ab:2c:3f:ab:2b:40:97:48:94:da:7a:74:33: 54:37:ad:b3:00:56:b8:b7:a2:aa:ea:0b:be:a0:7d:40:59:d6: 9f:0b:ed:e8:18:96:cd:72:b5:08:32:4e:80:bd:24:61:50:d0: 0e:7e:82:a6:a0:6c:69:ab:ce:d6:61:2a:d9:f0:ad:7f:2f:34: 2e:ca:b7:0b:14:6e:73:5f:fb:b3:b0:05:00:6c:a6:3d:9a:b6: 7f:84:ce:7e:62:6e:3b:a4:64:03:8d:1b:5f:ca:75:d0:f7:9b: d6:d2:69:dd:c0:4a:02:7f:d4:4d:78:d2:a6:06:5f:77:aa:0a: 06:ac:d3:94:8b:d7:c6:9a:6e:60:61:28:3c:95:97:7e:f4:1f: b7:c3:b9:92:af:81:00:bc:01:7b:b6:21:ca:98:2b:1e:de:6c: 1c:a8:81:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUwODA3MDYwNDM4WhcNMjUwODE0MDYwNDM4WjAYMRYwFAYD VQQDEw02ODk0NDFmNi0yOTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Jre0D+mDPIuFjQy2lKiM7D6j6N9q54aLkoL2csmtLcZomCTZbEFF3/td5y+ SGM0h3FEbudP7sfevWgnmhzFpfsrhoeIkdM+7tNI6S4P8uFkEeXvk5RJqgsMprtp Pj9pCR9c5W2QXU480xmXJoyzwQjlOkExdCibmZSUL84EZ5fK4N6xuh1fLvUrV2p3 LIhttmmoBTL6hh/kv+Qkd12pn81K6aRQv3Ue099inW16jDRAlNwF7RP4GDfwWKtv 7qrGuUK32+CPM97cSSo38rdX+gkZEArLdK43BHCOVWJRafTvSpwj3J54eHs0nj2Q nwP5P2GD2dl7YGQyT63OnCDVeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRWNN2o hTUB3zDkA59piOG1LKReMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlaQOswEISCa9O5nZgGUYjirZBfsKP7fZJkKkEXYmegMJNnFjCtr5Y tg3t6nqeDDfgqHT+katqFKt9CUGqd13gBtIaWoU6fMlg+/WOEpgLngREc4Zd47KU nZ1bmqcvkassP6srQJdIlNp6dDNUN62zAFa4t6Kq6gu+oH1AWdafC+3oGJbNcrUI Mk6AvSRhUNAOfoKmoGxpq87WYSrZ8K1/LzQuyrcLFG5zX/uzsAUAbKY9mrZ/hM5+ Ym47pGQDjRtfynXQ95vW0mndwEoCf9RNeNKmBl93qgoGrNOUi9fGmm5gYSg8lZd+ 9B+3w7mSr4EAvAF7tiHKmCse3mwcqIE0 -----END CERTIFICATE-----Generated at Fri Aug 8 19:38:00 2025 by rpki-client