$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: rLAzneel+hDsAl+TpTEugyh/oSBfmHDIUmShF05+XkY= Subject key identifier: A7:BF:5F:8F:0E:E6:42:96:E8:6B:B4:26:FE:70:C5:B9:27:33:FC:F4 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 025F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 025B Signing time: Fri 25 Jul 2025 02:11:37 +0000 Manifest this update: Fri 25 Jul 2025 02:11:37 +0000 Manifest next update: Fri 01 Aug 2025 02:11:37 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 3H5CdzKnnfCch7R762lri6DSsqd96TNiLhTTevFeSlc=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 02:11:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 607 (0x25f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Jul 25 02:11:37 2025 GMT Not After : Aug 1 02:11:37 2025 GMT Subject: CN=6882e7d9-97c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:74:20:6c:85:36:c1:13:6c:2a:51:3f:af:f1: 24:33:db:f4:b6:d5:e6:22:44:92:2b:df:df:c1:93: bb:86:1e:1b:00:de:8a:88:1d:0e:b5:ce:96:66:f1: c8:75:7d:0a:93:be:4b:19:5a:57:4a:18:1f:99:60: ff:17:a2:9b:15:00:32:09:c3:1a:dc:08:c7:00:4b: 0a:28:ae:25:90:8f:f8:0c:ad:e1:f3:52:47:0a:e7: 9f:39:85:89:00:4e:b6:01:c9:a1:2f:0d:1c:ff:60: a4:66:9f:5e:d1:85:3d:f8:87:e7:9b:08:8a:9f:e9: 47:b8:69:23:52:bb:5a:6e:78:a9:18:4c:c5:97:ed: 0c:79:69:f1:37:35:cf:16:63:87:10:42:6a:4a:fb: 0d:c5:d1:bf:cf:30:0c:be:35:0d:30:48:5a:51:1c: 70:63:37:f1:7c:f9:a9:13:7f:38:1f:f7:7d:80:a3: 8f:3a:81:f3:b0:56:4a:15:1b:a6:8e:f1:68:37:51: f0:ff:26:c8:6a:00:f1:a2:0d:1d:57:f7:64:14:11: 14:67:fc:86:b0:d4:5f:5b:e7:09:99:c2:3d:0a:2e: 4a:0d:88:26:54:b2:0e:47:26:30:0b:aa:dc:7d:76: 3f:af:14:0e:a2:b0:22:08:e5:54:f5:b3:65:3f:c9: 17:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:BF:5F:8F:0E:E6:42:96:E8:6B:B4:26:FE:70:C5:B9:27:33:FC:F4 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e3:44:1d:ce:da:d1:a4:90:62:51:ef:7c:57:56:c2:62:d3: a0:40:55:48:95:b1:98:ea:06:ff:00:f4:40:d3:ef:d4:9c:0b: b2:a7:0c:f0:83:bb:30:2d:2e:79:4e:50:4b:61:37:29:aa:42: 7a:df:a8:b8:3b:3d:0a:e6:67:50:85:e1:0c:51:76:4e:92:47: 2d:3f:81:50:04:cd:1b:ad:a1:69:34:3b:d6:f9:68:b7:7d:9f: 89:2d:85:98:ee:21:d8:92:d2:25:73:e8:96:e1:a9:a8:ad:d3: 61:67:b8:2c:04:3f:01:e4:b3:7c:ce:ac:c8:b9:d4:e8:ff:0d: 6e:a8:f8:b8:00:4b:68:91:6c:90:77:eb:52:20:08:97:84:02: ee:cc:2e:69:4e:5f:40:80:44:0a:38:77:55:d7:93:ea:1c:8a: 61:58:5d:12:f4:98:75:3f:23:cb:8d:9d:95:90:02:96:8b:cf: 7c:2b:a3:ce:ba:bb:16:7f:f2:34:f8:83:98:a9:a3:49:18:09: 9b:68:f2:7e:75:aa:21:70:30:1c:34:a1:e6:ac:fa:cf:8f:18: 9c:82:03:5b:af:c8:56:ec:4c:00:c5:6f:06:4d:3a:b8:50:fc: 63:2c:50:8d:ae:6b:3b:a8:ed:63:c5:87:60:6c:b5:85:5e:24: 43:c1:10:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwNzI1MDIxMTM3WhcNMjUwODAxMDIxMTM3WjAYMRYwFAYD VQQDEw02ODgyZTdkOS05N2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnQgbIU2wRNsKlE/r/EkM9v0ttXmIkSSK9/fwZO7hh4bAN6KiB0Otc6WZvHI dX0Kk75LGVpXShgfmWD/F6KbFQAyCcMa3AjHAEsKKK4lkI/4DK3h81JHCuefOYWJ AE62AcmhLw0c/2CkZp9e0YU9+IfnmwiKn+lHuGkjUrtabnipGEzFl+0MeWnxNzXP FmOHEEJqSvsNxdG/zzAMvjUNMEhaURxwYzfxfPmpE384H/d9gKOPOoHzsFZKFRum jvFoN1Hw/ybIagDxog0dV/dkFBEUZ/yGsNRfW+cJmcI9Ci5KDYgmVLIORyYwC6rc fXY/rxQOorAiCOVU9bNlP8kX9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKe/X48O 5kKW6Gu0Jv5wxbknM/z0MB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCb40QdztrRpJBiUe98V1bCYtOgQFVIlbGY6gb/APRA0+/UnAuypwzw g7swLS55TlBLYTcpqkJ636i4Oz0K5mdQheEMUXZOkkctP4FQBM0braFpNDvW+Wi3 fZ+JLYWY7iHYktIlc+iW4amordNhZ7gsBD8B5LN8zqzIudTo/w1uqPi4AEtokWyQ d+tSIAiXhALuzC5pTl9AgEQKOHdV15PqHIphWF0S9Jh1PyPLjZ2VkAKWi898K6PO ursWf/I0+IOYqaNJGAmbaPJ+daohcDAcNKHmrPrPjxicggNbr8hW7EwAxW8GTTq4 UPxjLFCNrms7qO1jxYdgbLWFXiRDwRDs -----END CERTIFICATE-----Generated at Sat Jul 26 02:00:14 2025 by rpki-client