$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft File: KFO9oWOMWZqEwwlTEOab_SYKqXg.mft (raw, json) Hash identifier: K0nCd5MTm8zwySRLf1cv1LNNq8vH9OMNbzvn6xDCRVE= Subject key identifier: 20:DC:47:5A:63:66:2A:1E:84:8C:1D:D7:F9:64:21:80:F0:8B:D1:32 Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 041D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft Manifest number: 03AE Signing time: Sat 19 Jul 2025 01:24:48 +0000 Manifest this update: Sat 19 Jul 2025 01:24:47 +0000 Manifest next update: Sat 26 Jul 2025 01:24:47 +0000 Files and hashes: 1: KFO9oWOMWZqEwwlTEOab_SYKqXg.crl (hash: 2ttYZjGeSasPlRZX7O1710a7sX0S3Ha73zAuaIqRdTE=) 2: F7D72D3E23E211EFA47D6C68C4F9AE02.roa (hash: e+M4adDsVVtiBfslPnOBJOSyjq+6gRCvAtKsdhjHrg8=) 3: 57A7394C4B0E11EE8682CD4CC4F9AE02.roa (hash: j6YHhVIdNkPdVV6kIT6wpzB9Muw42P+/9W2kK5xhqXo=) 4: 04AB651469C211EFA06F8562C4F9AE02.roa (hash: YV6zDgOh2QMJi+TbqoW1Wt5O6E3eSYJDwfMJ3aJ2a10=) 5: F1930FBAEFE011ED81AE706DC4F9AE02.roa (hash: NP4Z7Tt6CY/HSXNtbW7GXldzu9mQG/LCVCiq7fXDLJ8=) 6: 2F24736869C111EF92B54060C4F9AE02.roa (hash: 3Y7RO9a921W0m0+KGz0aqJiJml6RthEQD034mrQPM14=) 7: 45BC5258C6F711ED9BD6E476C4F9AE02.roa (hash: wASZh3+a4jtcXdGHzHa3qDgrJcrhUIDBhkIcjHP+VMU=) 8: A336FE62609111EFB751B771C4F9AE02.roa (hash: 52bkXRq+LzImcNciZMVc/RbkFDyxds03UT8vcrTtvWc=) 9: 02734B6624D611F0B50DE20BC4F9AE02.roa (hash: kMVjaoh/nl+HaXtTqo7eTliBreBhvFCgfQya7sUAs84=) 10: 1F89C5C22CB511F08A1A9242C4F9AE02.roa (hash: baAQ8jjbDnd+yIywZELKI/f+fLzoC+yEEVRka25c/bE=) 11: 07D38A6669C011EF90EADF5CC4F9AE02.roa (hash: MZXl+TpE4PKXHu+CHp6bbz53wt0k4JzbyBQBboqTIP4=) 12: 14000EECD46811EEBDB9C07CC4F9AE02.roa (hash: riBHCo9Gmq1D+0u/pG7iCc4xDo8oVc7na3FG+hNveUk=) 13: 79AA61622C8711EFBDD6F672C4F9AE02.roa (hash: 3biVBRmslEYYBK7sgaVOapllwelbsd+exeLENbjHwjc=) 14: F83786F4030011F0984B974FC4F9AE02.roa (hash: dZbjlWTe8fWMRR6qgpL+ZoRL9VFsmU1Nz8661bmlCro=) 15: 1DBF3F2E69BF11EF9B52775AC4F9AE02.roa (hash: oEcJmw9GBlLPpcX10UQcg9xp3RCQZJ+XOY7mrRgn4Bk=) 16: 458AC21A684111EEA6632877C4F9AE02.roa (hash: rQlxlSsLfUnZ/IhD06ff6PZ8dH3kW3qdosnvLtL69I4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1053 (0x41d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B, serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Jul 19 01:24:47 2025 GMT Not After : Jul 26 01:24:47 2025 GMT Subject: CN=687af3e0-0ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:1b:49:fe:e5:21:5a:b5:9b:5c:0b:41:88:28: 9f:61:63:b0:73:aa:7c:1f:f6:3f:22:53:a1:bb:f3: 5f:a7:f7:9e:42:8c:be:03:39:95:ff:ce:ea:1e:6a: 6a:86:17:aa:30:56:d1:da:d8:a2:65:08:85:9c:d6: f2:e7:4b:19:9e:b1:cf:38:16:5a:17:24:a0:0e:c1: 64:39:d5:56:b0:91:56:b8:85:37:3c:1e:bc:7e:4c: 8c:28:2e:10:18:ab:1d:c8:a9:7d:e7:56:90:f5:81: 66:c3:1a:5e:59:48:b1:7c:74:31:74:77:7d:15:8f: cf:9c:0a:4a:79:7c:e6:42:08:81:1d:89:70:68:e0: d7:0f:76:87:7a:11:28:c8:67:28:35:37:06:36:98: 21:34:14:72:dc:fa:50:11:81:a8:07:67:9c:2f:90: 4a:90:2c:63:04:47:26:44:b1:1f:a1:8b:03:e4:ef: 19:18:02:2a:0d:a6:a0:ed:ff:95:67:39:35:ec:7b: 19:45:9d:5d:86:a5:21:88:79:62:a2:46:a9:18:eb: 63:69:4b:26:cb:be:76:4a:7e:02:17:89:e7:ec:d5: 07:f4:67:39:5b:e5:c4:89:83:80:25:b8:1a:00:34: cd:8d:98:31:d8:80:fe:30:b9:02:24:0c:fa:07:9e: 24:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:DC:47:5A:63:66:2A:1E:84:8C:1D:D7:F9:64:21:80:F0:8B:D1:32 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:29:e0:30:e3:7f:65:19:2c:c3:a8:be:c9:c3:73:c8:d3:c0: 55:bf:fa:90:40:42:48:da:28:fd:80:a5:57:f1:92:0e:cd:d1: 42:bb:6f:27:80:39:cd:27:40:87:9c:9a:65:d6:52:1c:a5:b4: ee:b9:07:20:47:8b:fe:a6:f2:75:0b:05:75:56:78:af:41:7c: a7:8d:41:14:c4:c4:dd:64:b9:ce:96:91:21:62:fa:74:db:7f: a7:07:5f:c2:c6:d1:39:71:54:51:52:e2:a2:cd:83:5d:fc:2d: 23:b6:e6:0e:c7:0f:0e:7d:2a:ee:d9:0b:91:de:41:47:78:cb: c4:5f:52:cd:86:4d:e3:af:79:3f:d2:a2:b5:aa:52:e8:b0:06: e6:f1:e6:ec:12:cf:bf:49:3a:63:81:52:2b:a7:2d:8f:b3:23: 4e:55:f6:d0:e2:49:78:23:e6:9d:4e:16:82:32:dd:fc:11:a0: 3d:42:51:1d:6f:28:59:a6:25:f4:6f:a4:65:e0:f4:82:14:ec: 00:a9:11:2a:ee:ab:18:ee:7b:d5:6a:c4:e7:13:3c:57:ae:ee: 7c:9b:9f:a7:48:22:74:ed:4c:f1:a9:5e:0a:ab:9e:1e:f1:11: 5b:59:25:78:d9:e2:81:01:c1:53:b1:1d:2e:44:e8:eb:6e:a1: 09:fa:dd:36 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBB0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjUwNzE5MDEyNDQ3WhcNMjUwNzI2MDEyNDQ3WjAYMRYwFAYD VQQDEw02ODdhZjNlMC0wZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBtJ/uUhWrWbXAtBiCifYWOwc6p8H/Y/IlOhu/Nfp/eeQoy+AzmV/87qHmpq hheqMFbR2tiiZQiFnNby50sZnrHPOBZaFySgDsFkOdVWsJFWuIU3PB68fkyMKC4Q GKsdyKl951aQ9YFmwxpeWUixfHQxdHd9FY/PnApKeXzmQgiBHYlwaODXD3aHehEo yGcoNTcGNpghNBRy3PpQEYGoB2ecL5BKkCxjBEcmRLEfoYsD5O8ZGAIqDaag7f+V Zzk17HsZRZ1dhqUhiHliokapGOtjaUsmy752Sn4CF4nn7NUH9Gc5W+XEiYOAJbga ADTNjZgx2ID+MLkCJAz6B54krwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCDcR1pj ZioehIwd1/lkIYDwi9EyMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU3Qi84REE3MjY0MEMxRkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVda cUV3d2xURU9hYl9TWUtxWGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXKeAw439lGSzDqL7Jw3PI08BVv/qQQEJI2ij9gKVX8ZIOzdFCu28n gDnNJ0CHnJpl1lIcpbTuuQcgR4v+pvJ1CwV1VnivQXynjUEUxMTdZLnOlpEhYvp0 23+nB1/CxtE5cVRRUuKizYNd/C0jtuYOxw8OfSru2QuR3kFHeMvEX1LNhk3jr3k/ 0qK1qlLosAbm8ebsEs+/STpjgVIrpy2PsyNOVfbQ4kl4I+adThaCMt38EaA9QlEd byhZpiX0b6Rl4PSCFOwAqREq7qsY7nvVasTnEzxXru58m5+nSCJ07UzxqV4Kq54e 8RFbWSV42eKBAcFTsR0uROjrbqEJ+t02 -----END CERTIFICATE-----Generated at Sun Jul 20 18:41:40 2025 by rpki-client