$ rpki-client -vvf rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft File: kBpDycSAhnF-284lXAKi8DU9qvo.mft (raw, json) Hash identifier: mts9vj2ekPMY7NSAzqDdq/1Ww4tvAgxmn9iHhV9UQXw= Subject key identifier: C0:43:D4:D3:CD:F7:68:77:12:09:0B:F6:CB:4E:B0:4D:DF:D3:89:A8 Authority key identifier: 90:1A:43:C9:C4:80:86:71:7E:DB:CE:25:5C:02:A2:F0:35:3D:AA:FA Certificate issuer: /CN=A9165DB1/serialNumber=901A43C9C48086717EDBCE255C02A2F0353DAAFA Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft Manifest number: 028B Signing time: Sat 19 Jul 2025 02:03:26 +0000 Manifest this update: Sat 19 Jul 2025 02:03:26 +0000 Manifest next update: Sat 26 Jul 2025 02:03:26 +0000 Files and hashes: 1: kBpDycSAhnF-284lXAKi8DU9qvo.crl (hash: MDfiLwPcSAr1ZjPvO+vIrMtSYVzs3wPtyuXImV16lyA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.crl rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 02:03:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165DB1, serialNumber=901A43C9C48086717EDBCE255C02A2F0353DAAFA Validity Not Before: Jul 19 02:03:26 2025 GMT Not After : Jul 26 02:03:26 2025 GMT Subject: CN=687afcee-b5a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a5:af:0a:47:2d:41:1d:09:4b:ae:9f:6d:3c: 47:bd:28:96:1c:d3:14:cd:fd:ec:f6:f3:0a:ed:ff: 92:80:e0:be:fb:f9:a0:0a:f7:f8:42:5d:08:b1:47: 69:65:a1:40:13:e0:31:6a:14:16:34:5d:bc:d1:f1: 7f:9c:cc:78:76:ff:92:7d:93:fe:4a:f6:2a:f4:1d: c7:ca:30:65:29:fb:c8:eb:61:f5:bc:86:a0:a5:75: 96:bf:08:b8:a3:99:23:39:08:3f:5a:a5:fd:c7:f2: c9:db:4b:ac:9e:00:82:2e:51:61:fd:0a:03:a9:c5: 15:7d:ef:81:3c:5a:b3:6c:71:55:5a:70:c6:a2:dc: 6c:56:bd:f7:f7:af:a9:75:6d:02:e7:d6:4d:5f:ae: 8a:6b:c3:6d:7f:2e:aa:ca:b6:3e:ff:25:cc:8f:72: 71:30:5c:ae:24:a4:a6:28:64:92:07:a9:4e:07:33: 73:d3:dc:f7:d3:09:3f:3f:1d:db:30:8d:49:1c:94: 8f:9b:08:2c:f8:d9:26:52:a7:7d:9c:eb:65:fe:d5: 32:c0:3e:c0:37:d5:2c:12:b2:e5:df:a4:5f:0b:37: fd:be:aa:db:e4:00:0d:21:d2:4d:b0:8b:6f:a1:45: 6b:79:08:49:e9:7b:e8:18:ff:75:f4:88:06:98:4d: 7f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:43:D4:D3:CD:F7:68:77:12:09:0B:F6:CB:4E:B0:4D:DF:D3:89:A8 X509v3 Authority Key Identifier: keyid:90:1A:43:C9:C4:80:86:71:7E:DB:CE:25:5C:02:A2:F0:35:3D:AA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBpDycSAhnF-284lXAKi8DU9qvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165DB1/50C1BF920E1711ED8E3BD915C4F9AE02/kBpDycSAhnF-284lXAKi8DU9qvo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:4a:01:55:fb:bd:b7:62:ef:4f:b9:22:09:10:87:ef:16:00: 39:96:d5:83:f4:96:04:26:7f:04:38:83:53:28:bd:0f:10:a0: e4:e2:c0:ec:90:ad:ea:08:f0:ff:63:3d:64:d6:6d:5b:e7:4d: 4e:59:30:5b:5a:32:f7:11:53:08:35:48:4c:66:e7:b4:26:3d: 09:5e:a2:74:86:bf:d9:0a:5d:eb:d1:b1:58:f6:23:b9:d0:ce: 48:9f:c6:5f:86:d0:81:52:7e:d3:38:c2:6f:ca:67:0d:64:66: dc:c8:c0:a5:9d:52:a1:d7:41:1a:93:d6:5c:b4:9a:ea:54:a7: b2:cb:ca:9c:9d:20:7c:23:ea:a6:6d:3d:0c:5c:68:8c:df:cd: 3a:1b:c2:30:9b:a9:8c:cd:f1:ef:76:74:2c:bd:06:c5:b4:e6: e1:46:d7:76:e1:d0:2c:4c:59:e8:cf:70:11:89:19:7a:7f:69: 95:a3:b7:76:bc:9c:b4:29:dd:4b:fb:ec:51:8f:1b:38:3f:19: d2:f6:1b:ff:83:84:1e:dc:fe:ae:35:60:bf:42:8d:16:f7:80: a1:4c:74:24:be:74:df:c0:a6:c3:16:19:d6:91:28:5a:2d:04: b6:77:c8:e2:d2:99:36:a2:bb:a7:6e:70:34:cb:7c:f8:60:79: 31:00:f3:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVEQjExMTAvBgNVBAUTKDkwMUE0M0M5QzQ4MDg2NzE3RURCQ0UyNTVDMDJBMkYw MzUzREFBRkEwHhcNMjUwNzE5MDIwMzI2WhcNMjUwNzI2MDIwMzI2WjAYMRYwFAYD VQQDEw02ODdhZmNlZS1iNWE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6WvCkctQR0JS66fbTxHvSiWHNMUzf3s9vMK7f+SgOC++/mgCvf4Ql0IsUdp ZaFAE+AxahQWNF280fF/nMx4dv+SfZP+SvYq9B3HyjBlKfvI62H1vIagpXWWvwi4 o5kjOQg/WqX9x/LJ20usngCCLlFh/QoDqcUVfe+BPFqzbHFVWnDGotxsVr3396+p dW0C59ZNX66Ka8Ntfy6qyrY+/yXMj3JxMFyuJKSmKGSSB6lOBzNz09z30wk/Px3b MI1JHJSPmwgs+NkmUqd9nOtl/tUywD7AN9UsErLl36RfCzf9vqrb5AANIdJNsItv oUVreQhJ6XvoGP919IgGmE1/CQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMBD1NPN 92h3EgkL9stOsE3f04moMB8GA1UdIwQYMBaAFJAaQ8nEgIZxftvOJVwCovA1Par6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NURCMS81MEMxQkY5MjBF MTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9rQnBEeWNTQWhuRi0yODRsWEFLaThEVTlx dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCcER5Y1NBaG5GLTI4NGxYQUtpOERVOXF2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NURCMS81MEMxQkY5MjBFMTcxMUVEOEUzQkQ5MTVDNEY5QUUwMi9rQnBEeWNTQWhu Ri0yODRsWEFLaThEVTlxdm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoSgFV+723Yu9PuSIJEIfvFgA5ltWD9JYEJn8EOINTKL0PEKDk4sDs kK3qCPD/Yz1k1m1b501OWTBbWjL3EVMINUhMZue0Jj0JXqJ0hr/ZCl3r0bFY9iO5 0M5In8ZfhtCBUn7TOMJvymcNZGbcyMClnVKh10Eak9ZctJrqVKeyy8qcnSB8I+qm bT0MXGiM3806G8Iwm6mMzfHvdnQsvQbFtObhRtd24dAsTFnoz3ARiRl6f2mVo7d2 vJy0Kd1L++xRjxs4PxnS9hv/g4Qe3P6uNWC/Qo0W94ChTHQkvnTfwKbDFhnWkSha LQS2d8ji0pk2orunbnA0y3z4YHkxAPOE -----END CERTIFICATE-----Generated at Sun Jul 20 04:33:00 2025 by rpki-client