$ rpki-client -vvf rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft File: Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft (raw, json) Hash identifier: 3llPBAzAKH5qIvFP0UfcGieD1+V8za3OhIN1tpZIAik= Subject key identifier: 8F:47:AC:B5:91:50:8E:CF:43:21:32:BE:27:8B:D9:A3:9E:45:68:0E Authority key identifier: 29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83 Certificate issuer: /CN=A917F241/serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283 Certificate serial: ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft Manifest number: E7 Signing time: Sat 19 Jul 2025 05:39:21 +0000 Manifest this update: Sat 19 Jul 2025 05:39:20 +0000 Manifest next update: Sat 26 Jul 2025 05:39:20 +0000 Files and hashes: 1: Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl (hash: ocxvat/vEGEkvuaZLWSBE1UnYJNNVty6i5ChvJ84Ans=) 2: A0B44D9C60E211EFB1283930C4F9AE02.roa (hash: We+bh/dPouK8NlGju2k+lFoIHBb/HkpPfF89DMkSLSg=) 3: 7434811060E211EFBAE0C52FC4F9AE02.roa (hash: OvtEst3O8Yb7GSI88hSTYs6uncMGZjm+NzSGzxQ2axk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:39:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 237 (0xed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F241, serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283 Validity Not Before: Jul 19 05:39:20 2025 GMT Not After : Jul 26 05:39:20 2025 GMT Subject: CN=687b2f88-df68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:51:07:4a:f6:cf:c0:92:0d:01:81:98:87:8c: 2d:c3:b3:e6:a5:2c:d4:e3:3c:dc:3d:8b:38:a4:5f: c1:02:24:7c:6c:7c:d4:9d:3e:da:45:b8:cd:5e:7a: 94:2d:ea:e2:89:e1:69:18:d7:2b:ef:10:49:f6:02: e9:11:b7:4c:43:2b:b2:91:3a:bb:2f:bf:53:f4:d9: 47:21:92:43:07:d3:b8:ac:ab:34:44:77:36:f4:15: 1b:20:00:98:39:c9:ee:66:eb:40:92:bd:8a:1c:d7: 37:f4:1c:2d:54:87:f2:06:a9:5d:31:de:ed:b1:be: 60:a5:38:f7:7e:cf:b3:d2:e1:9e:aa:9c:34:b2:b5: 17:e0:26:fe:0c:3e:7b:ce:92:28:f5:a2:35:eb:3a: 83:ed:25:bc:84:e6:e4:a1:14:df:55:a0:e3:19:d3: ef:20:88:c4:7a:ac:09:9d:c6:19:3d:91:68:6f:cc: 00:a7:e1:0c:67:a6:dd:92:03:d9:8a:64:1b:3f:84: c7:42:62:df:4f:56:d2:79:e7:52:a4:bf:56:ee:7b: d9:b7:48:4a:5f:da:98:82:d1:32:84:65:d0:25:56: 0d:84:e5:ad:e4:43:2b:d7:95:ff:1c:eb:93:2f:ca: 6a:0f:fa:66:f8:06:b5:76:4b:0b:0c:c1:a6:40:dc: d9:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:47:AC:B5:91:50:8E:CF:43:21:32:BE:27:8B:D9:A3:9E:45:68:0E X509v3 Authority Key Identifier: keyid:29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:c7:4c:9d:81:0c:33:e7:be:f2:03:d4:34:a7:3c:52:58:4f: f5:79:69:c2:a2:2b:14:a4:8c:5e:49:72:fe:b8:ce:b9:52:c8: 8e:30:3b:f3:fa:8b:0b:f7:15:18:7a:11:e1:04:54:cf:e3:66: 6a:9f:b5:5c:9b:d6:85:a2:98:2a:6f:71:a0:d1:fd:c9:f4:cf: 32:cf:1f:d5:f9:fd:d5:dc:d3:7b:d9:71:70:ca:d0:00:6d:fa: d1:e7:49:28:46:58:d4:df:a2:8a:79:33:17:d7:dd:b4:a0:6f: ec:ed:f0:3c:d0:7c:ad:83:f7:b1:fa:be:3a:9e:6d:45:61:27: ff:3c:bf:ca:65:95:7c:3c:95:6a:78:b7:1c:e1:f9:b9:ae:41: af:50:c1:5e:ea:63:4f:8b:d8:f5:46:6b:f3:1a:4f:2e:8a:92: e6:bd:14:af:84:08:49:52:8b:e3:99:01:63:22:3e:66:0a:13: 09:0c:75:68:72:bc:9a:91:e0:16:f1:5e:ea:fa:4c:06:e0:50: 7a:1e:84:3e:f5:19:cc:e7:48:87:bc:2d:cb:cb:f1:95:73:b9: 38:0f:37:8a:12:f2:8a:85:87:f9:cc:29:f5:91:45:3c:62:71: 6b:36:ae:30:87:7e:12:25:54:93:50:15:2e:ff:8c:4e:4e:f5: c9:83:8d:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YyNDExMTAvBgNVBAUTKDI5Q0Q4REY4ODA2RTExNjc0Q0JDNUY5REY0REJGOEQy M0UwQzIyODMwHhcNMjUwNzE5MDUzOTIwWhcNMjUwNzI2MDUzOTIwWjAYMRYwFAYD VQQDEw02ODdiMmY4OC1kZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31EHSvbPwJINAYGYh4wtw7PmpSzU4zzcPYs4pF/BAiR8bHzUnT7aRbjNXnqU LeriieFpGNcr7xBJ9gLpEbdMQyuykTq7L79T9NlHIZJDB9O4rKs0RHc29BUbIACY OcnuZutAkr2KHNc39BwtVIfyBqldMd7tsb5gpTj3fs+z0uGeqpw0srUX4Cb+DD57 zpIo9aI16zqD7SW8hObkoRTfVaDjGdPvIIjEeqwJncYZPZFob8wAp+EMZ6bdkgPZ imQbP4THQmLfT1bSeedSpL9W7nvZt0hKX9qYgtEyhGXQJVYNhOWt5EMr15X/HOuT L8pqD/pm+Aa1dksLDMGmQNzZfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI9HrLWR UI7PQyEyvieL2aOeRWgOMB8GA1UdIwQYMBaAFCnNjfiAbhFnTLxfnfTb+NI+DCKD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjI0MS9FQjIxMzY4ODBC RjYxMUVGOUNBOUMxNTFDNEY5QUUwMi9LYzJOLUlCdUVXZE12Ri1kOU52NDBqNE1J b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tjMk4tSUJ1RVdkTXZGLWQ5TnY0MGo0TUlvTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjI0MS9FQjIxMzY4ODBCRjYxMUVGOUNBOUMxNTFDNEY5QUUwMi9LYzJOLUlCdUVX ZE12Ri1kOU52NDBqNE1Jb00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2x0ydgQwz577yA9Q0pzxSWE/1eWnCoisUpIxeSXL+uM65UsiOMDvz +osL9xUYehHhBFTP42Zqn7Vcm9aFopgqb3Gg0f3J9M8yzx/V+f3V3NN72XFwytAA bfrR50koRljU36KKeTMX1920oG/s7fA80Hytg/ex+r46nm1FYSf/PL/KZZV8PJVq eLcc4fm5rkGvUMFe6mNPi9j1RmvzGk8uipLmvRSvhAhJUovjmQFjIj5mChMJDHVo cryakeAW8V7q+kwG4FB6HoQ+9RnM50iHvC3Ly/GVc7k4DzeKEvKKhYf5zCn1kUU8 YnFrNq4wh34SJVSTUBUu/4xOTvXJg42t -----END CERTIFICATE-----Generated at Sun Jul 20 11:19:04 2025 by rpki-client