$ rpki-client -vvf rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft File: KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft (raw, json) Hash identifier: HHHtK1jrX9l0OZ+NubhRhwtJYW4ZLV1PMFMvCH9SLfM= Subject key identifier: D4:D3:BD:41:DE:1F:61:9D:F0:66:36:F5:02:C9:0C:35:87:52:0C:48 Authority key identifier: 28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 Certificate issuer: /CN=A91E04FE/serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft Manifest number: 0125 Signing time: Thu 07 Aug 2025 05:12:38 +0000 Manifest this update: Thu 07 Aug 2025 05:12:38 +0000 Manifest next update: Thu 14 Aug 2025 05:12:38 +0000 Files and hashes: 1: KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl (hash: BpdKAr7YvUzi56i0Lt+NEbFJPhepZVsthwQH4GW/Iug=) 2: 5EE215CCC33D11EE97B67979C4F9AE02.roa (hash: qIW59Vu75lotEAXz2XFEI0+6mfrqPvKAPSHChiVChpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E04FE, serialNumber=2883741B0F5BCA764F4D3C83D3ED6A0F27CD2298 Validity Not Before: Aug 7 05:12:38 2025 GMT Not After : Aug 14 05:12:38 2025 GMT Subject: CN=689435c6-bec6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:bf:3b:ee:0f:d9:53:dd:56:2f:04:51:57:20: ba:bd:01:40:2b:fe:09:99:1d:61:2e:79:b6:38:8c: 36:ac:a4:52:a6:09:50:04:9f:e3:8f:25:8c:87:d8: fc:04:93:ab:63:64:dc:d3:16:83:04:f2:da:b0:a6: 7e:9b:42:c5:bf:58:e0:e9:d6:1c:20:aa:ab:91:dd: 8b:a4:a5:02:7e:fe:88:e5:a5:f0:33:8e:af:cc:4a: 29:1b:d4:3f:11:e7:d0:14:32:9b:ea:d0:98:52:cd: 41:98:47:0a:2c:2c:f5:34:f1:01:ab:72:8b:7e:35: b0:b4:98:6c:38:42:7e:33:ea:65:87:aa:ae:0a:31: bc:ce:b6:8f:67:fc:23:0c:a0:ad:bb:cb:d1:fb:61: a6:24:05:23:22:ee:cc:44:0b:03:c6:14:2d:4a:f0: 10:a1:05:77:eb:07:fa:8c:58:1f:72:d1:5c:30:f1: 8f:e4:28:91:8a:27:51:61:4b:14:bf:cd:32:42:e2: e0:80:c0:d1:fd:57:76:f7:e8:1d:a0:ec:49:2a:8e: 94:d4:02:86:35:f7:57:2e:93:bb:49:ca:2f:ee:c1: 95:17:33:0b:23:ca:9f:69:22:e3:24:bf:58:6a:e2: 6c:97:b8:14:43:b0:ec:1b:52:8c:89:d8:ba:41:78: 2c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:D3:BD:41:DE:1F:61:9D:F0:66:36:F5:02:C9:0C:35:87:52:0C:48 X509v3 Authority Key Identifier: keyid:28:83:74:1B:0F:5B:CA:76:4F:4D:3C:83:D3:ED:6A:0F:27:CD:22:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KIN0Gw9bynZPTTyD0-1qDyfNIpg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E04FE/86A6F654B73F11EEAF12B87BC4F9AE02/KIN0Gw9bynZPTTyD0-1qDyfNIpg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:9a:6f:16:1f:91:ba:d9:8e:b4:8b:fb:d2:4d:41:a1:bf:1c: 0f:1c:d9:be:75:bd:af:62:5b:44:f1:0a:35:18:2a:16:91:01: 00:73:d4:a2:90:1f:13:61:0a:d2:12:46:68:85:7f:4d:63:7d: 98:53:40:08:c5:e7:98:f4:3d:1b:43:22:5d:cc:60:ba:d4:47: bb:24:6a:ef:44:c1:6a:ac:37:3c:32:a6:80:aa:27:e1:f0:49: 83:b1:bc:6b:b8:17:bd:16:af:fb:f4:ca:5c:f6:59:a6:09:51: 50:42:91:16:b5:35:3e:51:fc:5a:07:36:ba:8b:0b:dc:26:66: 4c:e1:36:2a:d1:5a:c7:8e:16:bf:4b:de:a6:c9:e8:8e:a5:07: 06:f8:57:94:43:e1:ce:17:40:bf:27:33:79:33:b6:21:c3:a7: 45:d7:28:21:bd:b2:1d:fd:ba:03:73:a1:cd:71:25:06:69:d0: 77:f4:55:81:14:d2:95:a4:b4:97:e1:60:6c:ab:13:68:fe:cb: dd:18:bc:ff:15:62:a2:b9:20:19:55:b4:77:d4:89:d0:34:05: 41:09:2e:5a:2d:68:2a:8d:69:fe:eb:5c:cc:c1:02:df:db:b2: f6:5d:fd:e7:94:a9:8d:e5:64:5f:81:69:ae:86:cb:69:2e:3e: a8:61:9b:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA0RkUxMTAvBgNVBAUTKDI4ODM3NDFCMEY1QkNBNzY0RjREM0M4M0QzRUQ2QTBG MjdDRDIyOTgwHhcNMjUwODA3MDUxMjM4WhcNMjUwODE0MDUxMjM4WjAYMRYwFAYD VQQDEw02ODk0MzVjNi1iZWM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA47877g/ZU91WLwRRVyC6vQFAK/4JmR1hLnm2OIw2rKRSpglQBJ/jjyWMh9j8 BJOrY2Tc0xaDBPLasKZ+m0LFv1jg6dYcIKqrkd2LpKUCfv6I5aXwM46vzEopG9Q/ EefQFDKb6tCYUs1BmEcKLCz1NPEBq3KLfjWwtJhsOEJ+M+plh6quCjG8zraPZ/wj DKCtu8vR+2GmJAUjIu7MRAsDxhQtSvAQoQV36wf6jFgfctFcMPGP5CiRiidRYUsU v80yQuLggMDR/Vd29+gdoOxJKo6U1AKGNfdXLpO7Scov7sGVFzMLI8qfaSLjJL9Y auJsl7gUQ7DsG1KMidi6QXgsFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNTTvUHe H2Gd8GY29QLJDDWHUgxIMB8GA1UdIwQYMBaAFCiDdBsPW8p2T008g9Ptag8nzSKY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDRGRS84NkE2RjY1NEI3 M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5YnluWlBUVHlEMC0xcUR5Zk5J cGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tJTjBHdzlieW5aUFRUeUQwLTFxRHlmTklwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDRGRS84NkE2RjY1NEI3M0YxMUVFQUYxMkI4N0JDNEY5QUUwMi9LSU4wR3c5Ynlu WlBUVHlEMC0xcUR5Zk5JcGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSmm8WH5G62Y60i/vSTUGhvxwPHNm+db2vYltE8Qo1GCoWkQEAc9Si kB8TYQrSEkZohX9NY32YU0AIxeeY9D0bQyJdzGC61Ee7JGrvRMFqrDc8MqaAqifh 8EmDsbxruBe9Fq/79Mpc9lmmCVFQQpEWtTU+UfxaBza6iwvcJmZM4TYq0VrHjha/ S96myeiOpQcG+FeUQ+HOF0C/JzN5M7Yhw6dF1yghvbId/boDc6HNcSUGadB39FWB FNKVpLSX4WBsqxNo/svdGLz/FWKiuSAZVbR31InQNAVBCS5aLWgqjWn+61zMwQLf 27L2Xf3nlKmN5WRfgWmuhstpLj6oYZtO -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:02 2025 by rpki-client