$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: lvy0v04D67qB14xW+v0vazhpXrUD8JyLIIDJgJRKou4= Subject key identifier: C0:CB:43:F5:AA:92:29:F1:C9:81:1A:29:4A:C0:41:D4:5B:76:C9:B8 Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 0177 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 0174 Signing time: Wed 13 Aug 2025 04:17:31 +0000 Manifest this update: Wed 13 Aug 2025 04:17:31 +0000 Manifest next update: Wed 20 Aug 2025 04:17:31 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: FdkwxzKl4TJrUlg2o9yciFgMiF2fPcbKZnD+yFjclYw=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 04:17:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 375 (0x177) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Aug 13 04:17:31 2025 GMT Not After : Aug 20 04:17:31 2025 GMT Subject: CN=689c11db-950f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:52:da:d0:df:5c:5a:e3:20:9e:0e:7d:97:89: ee:e6:7d:87:a5:6c:1c:59:1e:0a:2d:eb:6e:6d:1e: 3b:35:b0:d7:03:9b:14:14:8f:7a:5e:07:de:9b:2c: ec:4c:0b:e3:43:46:39:da:9e:3b:84:cd:48:86:a3: 13:3f:f2:a4:48:3a:98:b1:fd:7b:05:eb:3b:ec:df: 42:09:a3:12:af:cd:d4:76:59:78:f0:0e:4e:b4:8b: 2d:47:c2:48:80:e5:1e:ca:ab:46:36:87:98:ea:1a: d2:57:44:e8:d4:10:2e:ca:61:ee:98:a6:f5:20:e7: 52:f5:4e:6a:88:96:fa:ed:1b:2d:68:97:18:9b:a4: 48:5a:b8:ac:14:8a:d4:c2:ec:e0:1f:30:0d:43:31: 29:55:4c:a9:31:0c:d5:c3:eb:02:b4:af:8a:6e:3a: f4:df:5c:1c:95:a0:57:8e:da:36:c2:dd:4e:69:4c: 24:b1:7e:e5:0e:6a:3c:20:30:00:aa:e1:ab:d7:c7: 22:77:df:4c:b5:42:ec:4f:8f:e0:65:8e:24:a8:92: 56:8c:e5:ca:62:95:b1:78:75:00:82:c9:af:20:f1: 0b:32:bd:f6:b8:b3:41:63:ed:e3:f8:18:cf:57:62: c5:f7:a2:44:f7:f9:be:bd:57:c6:bc:34:65:7f:c9: 13:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CB:43:F5:AA:92:29:F1:C9:81:1A:29:4A:C0:41:D4:5B:76:C9:B8 X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:03:8c:a5:93:99:eb:81:f3:70:21:d0:47:50:9c:c5:c8:3d: 89:94:83:91:8f:eb:f9:84:c2:fb:37:9d:0d:fc:53:ae:d2:1b: c8:e8:3c:32:60:8b:78:8f:b4:43:a6:bd:84:fd:7b:62:45:9b: 3a:ce:98:c7:28:2d:b5:5b:65:0f:25:9e:fa:ab:c2:54:61:36: 6e:c3:50:45:ea:ca:ca:d0:07:87:da:70:53:48:0c:1f:a8:13: 7a:43:99:ea:2e:65:52:b4:4f:bb:8d:93:7f:0b:db:4e:54:1a: 9c:b4:f4:5b:00:8a:20:83:00:40:9f:79:b9:d9:a0:40:85:6c: 10:80:83:f4:7e:9d:53:3a:93:46:62:5b:55:87:dc:fe:62:94: de:4f:a7:aa:a0:21:12:99:70:2d:18:07:29:25:ec:a5:a7:c6: f0:f6:b9:bc:49:32:8a:ac:06:64:4e:96:8f:61:7e:a8:a1:af: d5:d1:ee:28:a5:3a:5c:29:4f:dd:cc:42:cc:77:be:cf:1d:0d: 70:9f:34:5b:b6:72:f5:3d:19:d3:45:24:ac:da:db:25:ac:c7: 2d:6a:c1:ab:39:52:22:b0:f8:f0:bf:3f:96:65:1f:0d:70:43: d9:5b:3f:a6:3e:2a:b4:01:ec:74:86:23:11:27:f3:fa:39:8e: 57:dc:a6:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjUwODEzMDQxNzMxWhcNMjUwODIwMDQxNzMxWjAYMRYwFAYD VQQDEw02ODljMTFkYi05NTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1La0N9cWuMgng59l4nu5n2HpWwcWR4KLetubR47NbDXA5sUFI96Xgfemyzs TAvjQ0Y52p47hM1IhqMTP/KkSDqYsf17Bes77N9CCaMSr83Udll48A5OtIstR8JI gOUeyqtGNoeY6hrSV0To1BAuymHumKb1IOdS9U5qiJb67RstaJcYm6RIWrisFIrU wuzgHzANQzEpVUypMQzVw+sCtK+Kbjr031wclaBXjto2wt1OaUwksX7lDmo8IDAA quGr18cid99MtULsT4/gZY4kqJJWjOXKYpWxeHUAgsmvIPELMr32uLNBY+3j+BjP V2LF96JE9/m+vVfGvDRlf8kT3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDLQ/Wq kinxyYEaKUrAQdRbdsm4MB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLA4ylk5nrgfNwIdBHUJzFyD2JlIORj+v5hML7N50N/FOu0hvI6Dwy YIt4j7RDpr2E/XtiRZs6zpjHKC21W2UPJZ76q8JUYTZuw1BF6srK0AeH2nBTSAwf qBN6Q5nqLmVStE+7jZN/C9tOVBqctPRbAIoggwBAn3m52aBAhWwQgIP0fp1TOpNG YltVh9z+YpTeT6eqoCESmXAtGAcpJeylp8bw9rm8STKKrAZkTpaPYX6ooa/V0e4o pTpcKU/dzELMd77PHQ1wnzRbtnL1PRnTRSSs2tslrMctasGrOVIisPjwvz+WZR8N cEPZWz+mPiq0Aex0hiMRJ/P6OY5X3KZR -----END CERTIFICATE-----Generated at Wed Aug 13 09:48:30 2025 by rpki-client