$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: wuLKEc1HTZk5EI5DnMuYUxA7Z9nIj5qYAp0NIBrFqXw= Subject key identifier: D5:40:C3:1A:42:55:E8:8E:49:96:98:97:34:23:CA:2C:D2:89:96:23 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: AE Signing time: Fri 25 Jul 2025 06:27:35 +0000 Manifest this update: Fri 25 Jul 2025 06:27:34 +0000 Manifest next update: Fri 01 Aug 2025 06:27:34 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: H+1LS/dD248Yn76Xndj5l4fVvbEiNUFIrerFVNb85Rw=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: HQpJTfgqUX8sx/Vj8e61bP6mPFBvq/NcDI8+HFxFJJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 01 Aug 2025 06:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Jul 25 06:27:34 2025 GMT Not After : Aug 1 06:27:34 2025 GMT Subject: CN=688323d6-0eec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b8:7b:33:7c:9e:9a:38:de:b9:0e:31:67:17: 55:5d:62:81:41:10:29:48:80:0a:b8:aa:70:c9:15: 55:31:65:31:df:38:bf:9f:f4:6a:85:17:ab:c6:82: 1a:32:da:98:61:91:38:d4:24:0e:5d:3f:23:7a:25: 9c:94:92:f5:04:03:ff:d5:06:73:e0:9f:41:cf:da: 70:a5:22:71:5d:e5:15:f2:fa:8b:24:ca:19:43:2f: 10:f3:ff:8b:b6:b0:7d:bd:f9:43:14:1e:77:a2:fb: ac:11:a9:2e:4e:d1:34:10:75:bf:5c:08:aa:4e:21: 3a:49:d4:7e:d7:34:68:bd:73:e8:46:e0:a9:8c:f1: 62:3b:da:e3:63:6a:ae:97:c3:00:28:23:a0:24:eb: 47:40:1f:1b:85:34:be:2b:f2:e0:8c:cb:81:62:06: 6f:78:01:c6:f5:f0:44:f2:99:86:38:99:82:a5:99: ba:49:90:8e:fd:bc:f8:f0:a4:17:66:b4:9d:9f:fc: f8:49:0f:11:dd:b6:42:cd:ec:b2:e3:1a:e8:64:9e: 78:62:59:83:ee:95:37:dc:5d:19:01:a5:ff:bf:1e: d5:8c:c5:3b:85:b0:a4:27:96:11:0b:b7:f3:a3:b9: b3:ef:49:50:06:5a:8a:7b:6d:38:eb:c1:0a:89:ae: 0a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:40:C3:1A:42:55:E8:8E:49:96:98:97:34:23:CA:2C:D2:89:96:23 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b8:d3:19:e8:a7:c0:ff:57:af:73:e4:24:8e:7c:df:7f:44: e7:15:56:88:d0:f9:1a:c6:44:f3:21:27:f1:f3:91:c6:79:be: 0c:3e:ea:fa:47:2b:bf:f1:ac:78:32:62:4e:62:84:07:6a:35: f7:42:de:57:2b:eb:45:f7:9b:93:9d:f4:18:9d:fa:3f:ea:ac: 00:af:8a:80:0e:27:c8:de:96:9a:dd:4c:6a:63:ff:54:7f:7d: 01:47:dc:99:2f:d2:82:37:eb:5c:9c:d7:0a:3a:65:9d:b8:de: 42:8d:01:a5:b7:77:4b:64:5a:d2:d1:f3:bc:ff:34:98:ca:28: be:61:06:14:af:6a:52:d5:25:e1:b6:f0:59:11:11:30:1d:0b: 50:0c:54:d9:42:a9:c7:75:b1:96:8a:61:6b:f5:38:92:29:25: 0a:4e:92:b2:d8:11:29:9d:44:0c:df:f1:bf:c9:83:63:08:e4: 93:3c:0a:11:c1:5a:60:8d:74:ed:bb:4a:f0:ee:bb:2e:c7:95: 37:49:29:14:cc:e5:30:63:6f:d0:b0:a6:56:d1:75:74:35:43: 5a:c0:95:7d:63:84:02:b9:2f:ed:d4:cc:36:81:06:f9:c9:c7: 56:bb:ca:f4:96:54:aa:36:c1:32:75:25:9c:65:4d:79:1e:b1: 17:7b:23:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwNzI1MDYyNzM0WhcNMjUwODAxMDYyNzM0WjAYMRYwFAYD VQQDEw02ODgzMjNkNi0wZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1bh7M3yemjjeuQ4xZxdVXWKBQRApSIAKuKpwyRVVMWUx3zi/n/RqhRerxoIa MtqYYZE41CQOXT8jeiWclJL1BAP/1QZz4J9Bz9pwpSJxXeUV8vqLJMoZQy8Q8/+L trB9vflDFB53ovusEakuTtE0EHW/XAiqTiE6SdR+1zRovXPoRuCpjPFiO9rjY2qu l8MAKCOgJOtHQB8bhTS+K/LgjMuBYgZveAHG9fBE8pmGOJmCpZm6SZCO/bz48KQX ZrSdn/z4SQ8R3bZCzeyy4xroZJ54YlmD7pU33F0ZAaX/vx7VjMU7hbCkJ5YRC7fz o7mz70lQBlqKe20468EKia4K1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNVAwxpC VeiOSZaYlzQjyizSiZYjMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJuNMZ6KfA/1evc+Qkjnzff0TnFVaI0PkaxkTzISfx85HGeb4MPur6 Ryu/8ax4MmJOYoQHajX3Qt5XK+tF95uTnfQYnfo/6qwAr4qADifI3paa3UxqY/9U f30BR9yZL9KCN+tcnNcKOmWduN5CjQGlt3dLZFrS0fO8/zSYyii+YQYUr2pS1SXh tvBZEREwHQtQDFTZQqnHdbGWimFr9TiSKSUKTpKy2BEpnUQM3/G/yYNjCOSTPAoR wVpgjXTtu0rw7rsux5U3SSkUzOUwY2/QsKZW0XV0NUNawJV9Y4QCuS/t1Mw2gQb5 ycdWu8r0llSqNsEydSWcZU15HrEXeyM7 -----END CERTIFICATE-----Generated at Fri Jul 25 13:13:09 2025 by rpki-client