$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: GImVwSSxc5PHZLG7TkEyDZox3Gp/hMzTIxlZBKty3GU= Subject key identifier: F2:0F:E8:A0:62:31:EB:B6:09:A0:0F:42:46:A6:A8:64:8D:F3:F7:56 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 0401 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 03FD Signing time: Mon 21 Jul 2025 00:42:08 +0000 Manifest this update: Mon 21 Jul 2025 00:42:07 +0000 Manifest next update: Mon 28 Jul 2025 00:42:07 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: MeYyVOgRbLJjsrAU1x61/UyxMalP4KED/RIPGf4qvWk=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 00:42:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1025 (0x401) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Jul 21 00:42:07 2025 GMT Not After : Jul 28 00:42:07 2025 GMT Subject: CN=687d8ce0-fec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:95:c0:5e:ff:9e:46:ca:c0:b6:3e:11:87:5c: 4f:63:11:c3:4f:ac:f8:7d:4f:a7:55:86:66:f0:db: 6f:04:93:db:52:39:72:78:6f:05:e1:db:f9:da:91: fa:43:ef:43:41:19:5f:a8:0e:80:f7:77:d1:59:4d: 36:cb:33:67:3f:33:86:0d:ca:3d:f2:68:83:a2:2d: 9e:76:6b:55:e7:5e:e0:f2:58:34:55:94:e9:41:71: 34:87:dc:a2:e1:ad:46:15:93:b6:a7:58:93:bc:dc: e4:43:b8:20:85:cc:f6:79:ad:07:42:cb:e4:50:4b: 9a:eb:60:bf:11:0e:21:5e:2e:a4:dc:5c:d1:f5:b7: b5:a2:05:2e:54:12:72:33:24:dc:82:86:f0:2e:32: 84:26:ad:43:f4:cb:b3:8f:77:28:c1:69:4b:94:a8: 18:eb:2a:83:7a:9c:b9:96:75:0d:d9:a2:34:5e:70: a0:e3:62:d0:07:23:b8:74:28:40:ad:d7:9a:e1:f4: 81:91:6d:95:55:e8:4b:d8:c9:7a:5a:04:6e:db:f4: d3:15:2a:7b:06:6c:d0:f2:69:56:67:45:5e:a2:ec: 66:e5:fd:db:8a:b1:a6:13:87:eb:9b:6e:d2:98:09: b9:bb:37:7e:a4:e3:b8:b7:30:94:3b:04:01:9f:4b: 2e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0F:E8:A0:62:31:EB:B6:09:A0:0F:42:46:A6:A8:64:8D:F3:F7:56 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:7f:e0:2f:73:15:19:10:89:ff:bd:3c:e1:25:07:b9:18:eb: 96:3a:fc:cc:e5:38:26:cf:f6:33:93:1b:a3:ec:d6:44:ed:e2: 9e:12:07:d0:ef:a2:3a:df:31:6c:78:47:9b:c6:06:39:50:c1: 83:7a:cd:64:35:db:82:45:4d:b0:40:a6:d7:d4:a8:e1:df:99: d9:9c:86:9c:a9:d8:53:5a:31:f4:85:3c:fb:f3:73:27:9b:e3: 77:01:09:13:8f:b7:59:16:83:aa:ae:a6:f4:7a:a8:44:ae:e4: c4:ac:5c:fb:40:6f:a0:35:f0:44:d8:6d:b1:12:ae:06:3e:53: 28:4b:a5:90:05:e7:96:94:b8:de:ca:f0:5e:1d:dd:16:a5:9c: d1:ff:8f:eb:dc:bb:4f:31:2b:f3:31:d4:a5:d0:51:4d:49:92: 19:ab:5b:5e:f9:6a:95:ed:74:08:98:35:0c:75:ed:bc:7a:17: f2:7f:6a:21:87:7d:89:b9:15:4b:9f:11:62:51:42:0c:49:41: 7f:0d:58:cf:16:2c:e9:4f:6e:9e:a7:2e:48:47:11:14:54:c7: bd:a9:67:48:35:7c:a1:9c:75:2e:3c:82:8b:a3:1c:21:10:e9: e7:23:e5:51:aa:f0:7a:97:7e:a4:b0:e0:04:0d:6e:b1:24:96: 6c:80:24:0b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwNzIxMDA0MjA3WhcNMjUwNzI4MDA0MjA3WjAYMRYwFAYD VQQDEw02ODdkOGNlMC1mZWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZXAXv+eRsrAtj4Rh1xPYxHDT6z4fU+nVYZm8NtvBJPbUjlyeG8F4dv52pH6 Q+9DQRlfqA6A93fRWU02yzNnPzOGDco98miDoi2edmtV517g8lg0VZTpQXE0h9yi 4a1GFZO2p1iTvNzkQ7gghcz2ea0HQsvkUEua62C/EQ4hXi6k3FzR9be1ogUuVBJy MyTcgobwLjKEJq1D9Muzj3cowWlLlKgY6yqDepy5lnUN2aI0XnCg42LQByO4dChA rdea4fSBkW2VVehL2Ml6WgRu2/TTFSp7BmzQ8mlWZ0Veouxm5f3birGmE4frm27S mAm5uzd+pOO4tzCUOwQBn0suEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPIP6KBi Meu2CaAPQkamqGSN8/dWMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAtf+AvcxUZEIn/vTzhJQe5GOuWOvzM5Tgmz/Yzkxuj7NZE7eKeEgfQ 76I63zFseEebxgY5UMGDes1kNduCRU2wQKbX1Kjh35nZnIacqdhTWjH0hTz783Mn m+N3AQkTj7dZFoOqrqb0eqhEruTErFz7QG+gNfBE2G2xEq4GPlMoS6WQBeeWlLje yvBeHd0WpZzR/4/r3LtPMSvzMdSl0FFNSZIZq1te+WqV7XQImDUMde28ehfyf2oh h32JuRVLnxFiUUIMSUF/DVjPFizpT26epy5IRxEUVMe9qWdINXyhnHUuPIKLoxwh EOnnI+VRqvB6l36ksOAEDW6xJJZsgCQL -----END CERTIFICATE-----Generated at Mon Jul 21 13:23:59 2025 by rpki-client