$ rpki-client -vvf rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft File: kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft (raw, json) Hash identifier: dDrS5PIOUcUSThCsQ4wj8gs7jW5PP0yKRf+Y0cJ/0c8= Subject key identifier: E3:80:78:3A:20:30:10:F5:10:D8:64:64:6C:1F:B7:6C:CD:2A:65:60 Authority key identifier: 91:12:6E:86:F1:8C:60:94:04:D1:90:F2:98:C3:2C:D6:09:FC:FA:79 Certificate issuer: /CN=A914669D/serialNumber=91126E86F18C609404D190F298C32CD609FCFA79 Certificate serial: 0664 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft Manifest number: 065F Signing time: Fri 18 Jul 2025 22:49:28 +0000 Manifest this update: Fri 18 Jul 2025 22:49:27 +0000 Manifest next update: Fri 25 Jul 2025 22:49:27 +0000 Files and hashes: 1: kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl (hash: PTwDRNV2dwD79ElscNKRiCUlToyLGbG8nt4dOvLFGCU=) 2: E521C8BE8DB011EBBA0A3723C4F9AE02.roa (hash: QIcvi4uK4+sV4KonLrCq7np3/p5FTh38+jPZf45l5Uo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 22:49:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1636 (0x664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914669D, serialNumber=91126E86F18C609404D190F298C32CD609FCFA79 Validity Not Before: Jul 18 22:49:27 2025 GMT Not After : Jul 25 22:49:27 2025 GMT Subject: CN=687acf77-645a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:a8:7c:1a:c8:c3:dd:34:c7:b4:f6:0b:52:ca: b5:02:7e:6e:8c:a0:a3:29:7a:42:a5:4b:63:bc:47: 73:f6:98:56:22:4e:e5:4b:8f:8f:7c:40:b1:79:6e: be:10:f0:e1:7d:80:57:7a:4a:bb:f4:cb:d0:76:78: f3:9a:6f:33:9b:1e:7d:fd:8b:40:70:12:46:ef:e1: 38:14:0b:1c:c4:2e:46:4a:e2:c7:99:20:55:04:40: 7f:20:19:79:94:48:56:21:9a:f1:df:dc:d1:73:ce: 8b:66:ec:b3:64:70:4a:4b:cb:0b:ec:75:20:84:f3: d9:0b:d0:c1:63:7e:b8:cf:39:a0:3b:62:55:f5:41: 2b:08:2d:e3:c2:8a:04:0e:37:9f:ac:0b:4e:7c:ab: e1:5c:61:45:59:45:bc:59:03:83:6f:62:1a:22:ed: 98:de:3f:f7:5c:a7:65:aa:7f:8c:c2:98:f3:e2:80: fd:e8:b8:f9:54:d9:85:ed:75:ca:d2:1d:d8:4c:97: ec:a7:2f:cf:7b:52:c8:c6:5e:cf:21:26:e0:a7:22: d5:43:76:f4:37:dc:bc:80:a4:99:af:55:f8:db:51: f8:d9:9d:da:4b:b4:23:c4:c3:37:da:f5:97:3b:95: 9c:62:42:47:76:0b:a7:de:75:e9:84:44:83:4b:a8: 17:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:80:78:3A:20:30:10:F5:10:D8:64:64:6C:1F:B7:6C:CD:2A:65:60 X509v3 Authority Key Identifier: keyid:91:12:6E:86:F1:8C:60:94:04:D1:90:F2:98:C3:2C:D6:09:FC:FA:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRJuhvGMYJQE0ZDymMMs1gn8-nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914669D/BF6E20A68DAE11EBB298B51FC4F9AE02/kRJuhvGMYJQE0ZDymMMs1gn8-nk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:63:b4:76:37:db:8c:98:b6:cb:da:14:ad:a0:50:19:91:24: 93:75:d6:a5:a7:50:19:ae:9e:d4:3c:11:30:d1:48:85:97:ff: fd:54:1c:05:1a:91:1e:f8:8c:93:ad:2e:30:70:d1:68:4d:00: 66:5f:b0:ad:fc:01:8a:50:39:05:56:ff:b5:07:ed:cf:ed:28: 52:00:10:ce:92:92:4b:5b:b9:fc:ce:76:ad:79:90:9f:1f:fc: 91:96:51:3d:8f:a5:7c:95:fd:69:39:f0:77:37:59:0b:d9:16: 15:91:9d:63:e0:6d:33:f0:c4:af:df:53:8d:73:75:87:da:ec: 23:a4:b3:26:b8:0f:89:c1:0c:b3:e8:07:11:35:9a:b1:9c:f9: 87:f7:55:98:a9:c4:a8:b2:09:55:4e:44:48:f6:77:e3:79:3f: a5:d4:1a:21:b4:65:a3:df:0f:06:b5:86:64:82:48:19:55:51: 19:50:ed:a3:38:fe:c1:7e:aa:8e:bc:bd:a3:9d:85:0f:46:c3: 22:1a:f8:8a:78:9e:37:cb:bd:95:d4:86:93:4f:f6:95:8d:03: a3:c0:db:88:c7:94:c4:8c:c7:d9:43:0f:8b:c9:dc:3b:cb:a9: 90:76:b6:aa:51:70:9f:7b:3f:0a:7b:0a:08:6e:d5:cc:c5:00: cb:3b:c1:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY2OUQxMTAvBgNVBAUTKDkxMTI2RTg2RjE4QzYwOTQwNEQxOTBGMjk4QzMyQ0Q2 MDlGQ0ZBNzkwHhcNMjUwNzE4MjI0OTI3WhcNMjUwNzI1MjI0OTI3WjAYMRYwFAYD VQQDEw02ODdhY2Y3Ny02NDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7ah8GsjD3TTHtPYLUsq1An5ujKCjKXpCpUtjvEdz9phWIk7lS4+PfECxeW6+ EPDhfYBXekq79MvQdnjzmm8zmx59/YtAcBJG7+E4FAscxC5GSuLHmSBVBEB/IBl5 lEhWIZrx39zRc86LZuyzZHBKS8sL7HUghPPZC9DBY364zzmgO2JV9UErCC3jwooE DjefrAtOfKvhXGFFWUW8WQODb2IaIu2Y3j/3XKdlqn+Mwpjz4oD96Lj5VNmF7XXK 0h3YTJfspy/Pe1LIxl7PISbgpyLVQ3b0N9y8gKSZr1X421H42Z3aS7QjxMM32vWX O5WcYkJHdgun3nXphESDS6gX0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOOAeDog MBD1ENhkZGwft2zNKmVgMB8GA1UdIwQYMBaAFJESbobxjGCUBNGQ8pjDLNYJ/Pp5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjY5RC9CRjZFMjBBNjhE QUUxMUVCQjI5OEI1MUZDNEY5QUUwMi9rUkp1aHZHTVlKUUUwWkR5bU1NczFnbjgt bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tSSnVodkdNWUpRRTBaRHltTU1zMWduOC1uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjY5RC9CRjZFMjBBNjhEQUUxMUVCQjI5OEI1MUZDNEY5QUUwMi9rUkp1aHZHTVlK UUUwWkR5bU1NczFnbjgtbmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC6Y7R2N9uMmLbL2hStoFAZkSSTddalp1AZrp7UPBEw0UiFl//9VBwF GpEe+IyTrS4wcNFoTQBmX7Ct/AGKUDkFVv+1B+3P7ShSABDOkpJLW7n8znateZCf H/yRllE9j6V8lf1pOfB3N1kL2RYVkZ1j4G0z8MSv31ONc3WH2uwjpLMmuA+JwQyz 6AcRNZqxnPmH91WYqcSosglVTkRI9nfjeT+l1BohtGWj3w8GtYZkgkgZVVEZUO2j OP7BfqqOvL2jnYUPRsMiGviKeJ43y72V1IaTT/aVjQOjwNuIx5TEjMfZQw+Lydw7 y6mQdraqUXCfez8KewoIbtXMxQDLO8FP -----END CERTIFICATE-----Generated at Sun Jul 20 19:01:59 2025 by rpki-client