$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: Go6IFt49esfVDcF1+HAx9zhbj9uoO+hrDO/P05hdPbA= Subject key identifier: 2A:E8:1E:F0:DC:DE:9E:2C:8D:69:ED:A7:E7:87:D4:3A:96:0D:F7:E2 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 018B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0187 Signing time: Sat 19 Jul 2025 03:46:23 +0000 Manifest this update: Sat 19 Jul 2025 03:46:22 +0000 Manifest next update: Sat 26 Jul 2025 03:46:22 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: RwhB8BNEyWOXn/MYC0uzGiY0gVtzF7gJivs4eC8JsEs=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:46:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 395 (0x18b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Jul 19 03:46:22 2025 GMT Not After : Jul 26 03:46:22 2025 GMT Subject: CN=687b150f-79aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:12:49:f6:cf:26:04:ac:f2:6b:64:a8:9c: a9:29:00:34:2a:db:2e:42:9c:1f:ee:10:c6:45:f2: 22:b2:0b:78:0f:a2:60:ec:55:ec:7a:e4:84:7e:47: fd:74:24:36:81:e8:de:d5:d7:98:bc:e8:10:b9:c4: b6:56:74:6a:16:3d:3c:ca:8c:e5:5e:ff:12:52:64: 4f:d0:30:e6:73:4d:55:6d:ac:95:fa:54:2e:97:49: 2f:77:7c:9a:07:36:a3:17:da:3b:d6:fd:5b:a5:95: 9a:4f:88:30:ce:26:d2:03:f5:1c:5a:e4:bd:c2:19: 29:51:a7:02:db:f0:e9:1d:95:3f:e9:35:e6:c8:f9: 6c:dc:b9:0a:0e:fc:4e:68:d3:d2:5b:93:cb:12:b3: 54:5c:38:7c:3f:d4:08:71:9b:21:e5:26:ec:d0:17: d8:7e:43:b9:eb:1d:f8:cc:1d:7e:67:7a:c7:62:2b: 1c:50:7b:9a:4e:3f:e3:96:bc:1c:e6:da:a4:29:21: 7d:70:f8:8f:03:fc:43:7e:8d:17:e6:ad:51:0d:c7: 24:13:0a:55:82:ec:a1:bb:e0:0e:12:5e:d6:ac:d3: c2:0b:74:03:96:80:c6:f2:4b:62:f5:a1:b4:22:41: b9:9a:b6:22:00:f8:71:eb:8e:31:04:e3:1e:d4:d8: 19:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E8:1E:F0:DC:DE:9E:2C:8D:69:ED:A7:E7:87:D4:3A:96:0D:F7:E2 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:39:71:a9:c5:15:37:30:a1:e0:78:b7:26:24:b0:4e:ab:c8: 3c:1e:5c:c9:22:02:1c:7d:e4:3a:10:0e:4b:4e:92:f2:49:6a: d8:91:bd:ce:01:c4:a7:57:c3:e4:00:f4:da:21:e2:6a:ac:bb: 04:cc:f2:92:0f:09:9a:de:c7:81:e6:77:99:5b:39:5f:7d:60: e2:38:5c:87:8f:43:e6:74:f9:fb:9c:6c:87:a1:5b:9c:9d:e6: 58:e2:a7:58:da:50:db:2b:3b:7d:36:1d:83:72:6e:61:e0:be: 85:c9:e6:6b:9a:dd:45:f0:8c:56:18:fb:f3:a9:6f:ef:08:ca: 7c:5a:38:58:00:9c:90:d3:a4:bb:af:7e:d3:0b:89:f5:09:86: 99:a0:32:d4:f2:18:0a:a8:c9:0b:4c:71:36:7c:0f:dd:b8:bc: 05:c2:be:3e:9d:db:d6:7f:5e:db:7e:58:fd:9a:8f:62:ba:ad: a0:b9:ba:df:f8:4f:68:a8:3d:17:d6:02:83:ab:77:3c:b9:44: a2:94:c1:d1:ed:22:92:e5:5c:7c:a1:25:33:15:cd:9e:81:14: 93:71:e3:81:8f:85:44:0f:26:15:88:df:66:4a:51:c1:e7:10: d2:8d:46:12:77:27:d0:e8:ad:4e:be:af:d4:d1:84:d7:6e:04: 68:e1:ab:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwNzE5MDM0NjIyWhcNMjUwNzI2MDM0NjIyWjAYMRYwFAYD VQQDEw02ODdiMTUwZi03OWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xESSfbPJgSs8mtkqJypKQA0KtsuQpwf7hDGRfIisgt4D6Jg7FXseuSEfkf9 dCQ2geje1deYvOgQucS2VnRqFj08yozlXv8SUmRP0DDmc01VbayV+lQul0kvd3ya BzajF9o71v1bpZWaT4gwzibSA/UcWuS9whkpUacC2/DpHZU/6TXmyPls3LkKDvxO aNPSW5PLErNUXDh8P9QIcZsh5Sbs0BfYfkO56x34zB1+Z3rHYiscUHuaTj/jlrwc 5tqkKSF9cPiPA/xDfo0X5q1RDcckEwpVguyhu+AOEl7WrNPCC3QDloDG8kti9aG0 IkG5mrYiAPhx644xBOMe1NgZdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCroHvDc 3p4sjWntp+eH1DqWDffiMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCyOXGpxRU3MKHgeLcmJLBOq8g8HlzJIgIcfeQ6EA5LTpLySWrYkb3O AcSnV8PkAPTaIeJqrLsEzPKSDwma3seB5neZWzlffWDiOFyHj0PmdPn7nGyHoVuc neZY4qdY2lDbKzt9Nh2Dcm5h4L6FyeZrmt1F8IxWGPvzqW/vCMp8WjhYAJyQ06S7 r37TC4n1CYaZoDLU8hgKqMkLTHE2fA/duLwFwr4+ndvWf17bflj9mo9iuq2gubrf +E9oqD0X1gKDq3c8uUSilMHR7SKS5Vx8oSUzFc2egRSTceOBj4VEDyYViN9mSlHB 5xDSjUYSdyfQ6K1Ovq/U0YTXbgRo4atl -----END CERTIFICATE-----Generated at Sun Jul 20 03:49:50 2025 by rpki-client