$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: ac+oKiLlwLUlK2AHTpgdR7PJJRgpEZfScMtfQXXVcc8= Subject key identifier: EB:A4:66:5F:7A:B0:DB:F0:4D:E8:BF:13:C9:38:90:83:51:88:56:96 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 4B Signing time: Sat 19 Jul 2025 07:43:43 +0000 Manifest this update: Sat 19 Jul 2025 07:43:42 +0000 Manifest next update: Sat 26 Jul 2025 07:43:42 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: hi3jh71AyW4MI0Jul+rpMGJPpnS+ZzC98HJhfcxd0H4=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Jul 19 07:43:42 2025 GMT Not After : Jul 26 07:43:42 2025 GMT Subject: CN=687b4caf-2398 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:46:db:e4:a2:01:69:88:49:14:28:7b:6a:3f: dd:75:44:5f:6a:93:db:e9:32:e6:2f:5c:4e:8e:1d: 4a:d5:33:28:1f:cd:52:3a:e5:87:9b:94:d3:9d:13: 4f:0d:90:00:c4:e2:13:b5:2e:0f:55:d9:2b:94:93: 04:a1:1a:68:80:52:a1:cc:e1:82:49:ec:08:01:f8: 6a:1e:e7:75:43:d8:3c:ac:3b:27:7a:db:af:31:6b: 65:ec:76:24:b8:3d:d3:36:ab:1a:fc:12:1a:38:29: c7:c2:5d:b2:f0:e0:3f:77:cd:4d:f1:67:dd:b3:eb: f3:60:88:35:5f:7a:72:e8:02:11:04:6d:6f:a8:8f: 79:80:dc:23:4a:b6:19:f3:8e:52:45:9f:b7:8b:89: 76:6f:80:66:39:ab:b2:1c:19:b6:ca:97:88:70:f8: 40:56:59:3a:18:02:37:8c:2c:5c:14:40:a2:e0:9a: fa:4b:91:4f:e1:33:12:b1:34:36:db:5e:78:75:18: 93:d9:83:46:ca:cb:d3:72:95:03:36:d2:11:66:2c: 81:18:46:e3:cc:ea:21:3b:14:ea:bd:bc:eb:53:36: 97:26:35:78:e9:54:19:6b:f2:c2:82:ee:27:c5:30: 7b:cf:13:1c:e2:ca:df:4c:90:5f:bf:f2:99:61:40: ad:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A4:66:5F:7A:B0:DB:F0:4D:E8:BF:13:C9:38:90:83:51:88:56:96 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:41:1c:d7:d1:c7:fa:eb:13:80:47:b9:25:89:4e:f5:6f:5d: f6:13:6d:cd:b7:d8:30:52:8b:ed:de:a3:37:cb:58:9d:20:ae: 36:11:ca:e8:7d:01:3e:3f:0c:86:82:95:56:a6:26:23:67:24: 0e:c7:c1:6b:fd:d6:a6:98:97:e3:2c:04:ae:97:bc:15:24:e4: df:4f:b1:d4:d2:c3:2e:ae:e8:0f:91:b9:fa:a2:7f:b1:dc:89: 84:dd:c7:8f:d3:cd:7d:1d:b5:ef:94:c6:53:ec:65:46:18:f2: cb:a9:07:bf:45:d5:96:1c:cf:a9:48:5f:01:08:4b:84:1d:7a: 20:d4:fd:9c:fe:04:c6:6d:3f:6f:90:5c:d6:7d:cc:b9:f8:6b: 22:57:20:dd:35:c0:a6:4a:be:39:fe:8d:03:6b:5e:72:6c:c6: 82:0e:b3:28:58:47:c9:fc:4b:24:af:55:55:a8:79:88:6d:83: 64:c7:c6:4a:d9:09:4b:09:4d:c7:d2:2b:e2:34:7c:42:5d:4d: 14:4c:1b:ff:3d:fb:b4:07:df:97:29:1c:3e:d9:bf:f0:e2:47: 0a:34:e4:7c:13:1d:0d:da:e1:01:0e:c6:83:2f:c5:bc:af:34: bd:19:fb:e4:ec:36:c7:10:35:75:84:7f:c0:57:d9:7d:39:3e: d7:14:e8:ee -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA3MTkwNzQzNDJaFw0yNTA3MjYwNzQzNDJaMBgxFjAUBgNV BAMTDTY4N2I0Y2FmLTIzOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDcRtvkogFpiEkUKHtqP911RF9qk9vpMuYvXE6OHUrVMygfzVI65YeblNOdE08N kADE4hO1Lg9V2SuUkwShGmiAUqHM4YJJ7AgB+Goe53VD2DysOyd6268xa2XsdiS4 PdM2qxr8Eho4KcfCXbLw4D93zU3xZ92z6/NgiDVfenLoAhEEbW+oj3mA3CNKthnz jlJFn7eLiXZvgGY5q7IcGbbKl4hw+EBWWToYAjeMLFwUQKLgmvpLkU/hMxKxNDbb Xnh1GJPZg0bKy9NylQM20hFmLIEYRuPM6iE7FOq9vOtTNpcmNXjpVBlr8sKC7ifF MHvPExziyt9MkF+/8plhQK2RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU66RmX3qw 2/BN6L8TyTiQg1GIVpYwHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH9BHNfRx/rrE4BHuSWJTvVvXfYTbc232DBSi+3eozfLWJ0grjYRyuh9 AT4/DIaClVamJiNnJA7HwWv91qaYl+MsBK6XvBUk5N9PsdTSwy6u6A+Rufqif7Hc iYTdx4/TzX0dte+UxlPsZUYY8supB79F1ZYcz6lIXwEIS4QdeiDU/Zz+BMZtP2+Q XNZ9zLn4ayJXIN01wKZKvjn+jQNrXnJsxoIOsyhYR8n8SySvVVWoeYhtg2THxkrZ CUsJTcfSK+I0fEJdTRRMG/89+7QH35cpHD7Zv/DiRwo05HwTHQ3a4QEOxoMvxbyv NL0Z++TsNscQNXWEf8BX2X05PtcU6O4= -----END CERTIFICATE-----Generated at Sun Jul 20 03:47:47 2025 by rpki-client