$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft File: kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft (raw, json) Hash identifier: bUpzRLar6JXeVazuhc9yITsV9HtAxZVcRH41+6HJTb4= Subject key identifier: 3D:78:80:09:28:3C:79:05:29:DD:61:BA:7E:D4:BF:47:81:11:2C:AF Authority key identifier: 90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 Certificate issuer: /CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Certificate serial: 0108 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft Manifest number: 0104 Signing time: Mon 21 Jul 2025 05:12:48 +0000 Manifest this update: Mon 21 Jul 2025 05:12:47 +0000 Manifest next update: Mon 28 Jul 2025 05:12:47 +0000 Files and hashes: 1: kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl (hash: nvJe7uBTfAlDIvpo3Le8fAotcR7jl0C2LlM4etIavR4=) 2: F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa (hash: d6abLKyd7fr1z0R2GJ3OwWkvRu3wB2ZUv3mxpyp6whI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 264 (0x108) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72, serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Validity Not Before: Jul 21 05:12:47 2025 GMT Not After : Jul 28 05:12:47 2025 GMT Subject: CN=687dcc50-f55d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:12:46:8c:8d:9c:f0:85:ce:49:39:b9:7e:94: 0f:0b:b7:07:9c:0d:fd:e1:33:e3:d9:be:b5:03:72: 70:17:e6:0f:a9:8a:df:3e:f6:4c:7f:8e:e0:f8:25: c0:cc:43:90:d1:cc:f6:2c:cb:8e:5b:05:25:dd:6f: 6b:2f:46:6f:f1:47:d3:05:7b:b2:05:36:ef:12:37: 19:34:f5:e4:52:60:66:94:7f:2e:e2:26:97:50:3f: b5:85:45:dd:ff:02:28:15:6d:d7:2b:ab:25:df:6c: 59:69:fd:c5:43:72:5e:f1:45:ef:cc:26:9f:c1:80: de:2f:a7:7a:4c:6a:30:f6:a1:f0:ba:cc:33:81:7e: 4d:d8:12:01:9a:96:6d:e0:a7:42:7f:70:2f:83:26: 58:1c:20:0a:f7:35:14:0f:8c:98:b6:52:76:ab:4e: f6:7f:58:32:ec:b8:a5:dd:d6:e3:c5:28:46:45:8e: 0b:94:e9:fb:e1:b7:3e:c1:86:4c:a3:cf:f5:95:56: 55:dc:1f:04:51:33:58:6f:4a:86:f2:e6:a4:7e:a3: 3c:ab:86:3c:54:3f:e3:20:cc:1b:1d:82:46:f6:93: cf:f4:4e:54:d2:e2:22:da:5c:be:7b:b0:de:5a:cf: 09:cf:ac:e3:34:e9:59:bc:52:ea:70:0f:53:ac:e4: fa:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:78:80:09:28:3C:79:05:29:DD:61:BA:7E:D4:BF:47:81:11:2C:AF X509v3 Authority Key Identifier: keyid:90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:11:bb:b0:fe:af:0f:b5:d7:84:8d:35:64:20:09:ed:ff:05: a6:5d:0e:2d:17:09:d8:d6:f7:00:26:a4:e8:51:2a:5b:16:31: dc:9e:7e:d0:51:04:33:51:78:e3:c9:67:0a:61:b7:ae:be:a9: b0:dc:18:0e:1f:77:92:3b:dc:22:43:0b:17:b0:93:3e:bd:f3: 47:10:df:08:38:cb:f1:13:6d:db:50:d2:a0:75:3e:cb:fd:39: a0:3d:e9:9c:4a:cb:6a:7c:c7:31:08:9d:3a:21:11:f0:e4:9f: 5f:51:3d:8d:c8:aa:6e:ea:70:c1:af:75:cc:7b:83:61:ae:f3: 41:d8:ac:84:c0:a7:ee:b2:c4:98:89:d5:ff:94:38:ab:78:ce: c1:fc:f1:b0:c6:8b:a7:84:41:a1:0c:38:ec:05:14:6a:ad:ed: 2e:83:76:58:7e:65:00:24:36:ec:83:8c:83:02:48:46:98:e3: bf:c7:88:6b:ee:97:7b:f9:c6:e5:30:f9:34:2f:69:6a:11:08: 79:f3:c0:f4:4d:f9:14:c3:31:d1:4c:38:34:e8:99:32:a0:37: f3:b5:99:35:21:06:af:fb:f4:9c:76:03:27:cf:1a:1c:fb:d6: 05:c5:b0:fb:9d:e7:f5:4e:f3:c0:98:4b:15:2d:50:02:c6:84: ae:21:ae:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdBNzIxMTAvBgNVBAUTKDkwQTQ3RjNDNjU5QjM3MThGREM4MkQzMDA3QTlEMzQy NDlDQ0M4RjQwHhcNMjUwNzIxMDUxMjQ3WhcNMjUwNzI4MDUxMjQ3WjAYMRYwFAYD VQQDEw02ODdkY2M1MC1mNTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBJGjI2c8IXOSTm5fpQPC7cHnA394TPj2b61A3JwF+YPqYrfPvZMf47g+CXA zEOQ0cz2LMuOWwUl3W9rL0Zv8UfTBXuyBTbvEjcZNPXkUmBmlH8u4iaXUD+1hUXd /wIoFW3XK6sl32xZaf3FQ3Je8UXvzCafwYDeL6d6TGow9qHwuswzgX5N2BIBmpZt 4KdCf3AvgyZYHCAK9zUUD4yYtlJ2q072f1gy7Lil3dbjxShGRY4LlOn74bc+wYZM o8/1lVZV3B8EUTNYb0qG8uakfqM8q4Y8VD/jIMwbHYJG9pPP9E5U0uIi2ly+e7De Ws8Jz6zjNOlZvFLqcA9TrOT6AwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD14gAko PHkFKd1hun7Uv0eBESyvMB8GA1UdIwQYMBaAFJCkfzxlmzcY/cgtMAep00JJzMj0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0E3Mi8yMkZEMTIxQURD RjAxMUVFQkM5MDMxMUVDNEY5QUUwMi9rS1JfUEdXYk54ajl5QzB3QjZuVFFrbk15 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLUl9QR1diTnhqOXlDMHdCNm5UUWtuTXlQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0E3Mi8yMkZEMTIxQURDRjAxMUVFQkM5MDMxMUVDNEY5QUUwMi9rS1JfUEdXYk54 ajl5QzB3QjZuVFFrbk15UFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSEbuw/q8PtdeEjTVkIAnt/wWmXQ4tFwnY1vcAJqToUSpbFjHcnn7Q UQQzUXjjyWcKYbeuvqmw3BgOH3eSO9wiQwsXsJM+vfNHEN8IOMvxE23bUNKgdT7L /TmgPemcSstqfMcxCJ06IRHw5J9fUT2NyKpu6nDBr3XMe4NhrvNB2KyEwKfussSY idX/lDireM7B/PGwxounhEGhDDjsBRRqre0ug3ZYfmUAJDbsg4yDAkhGmOO/x4hr 7pd7+cblMPk0L2lqEQh588D0TfkUwzHRTDg06JkyoDfztZk1IQav+/ScdgMnzxoc +9YFxbD7nef1TvPAmEsVLVACxoSuIa50 -----END CERTIFICATE-----Generated at Tue Jul 22 20:39:45 2025 by rpki-client