$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: 2LatCZ1VZQ1UguQRmBfO5esBKw4DEm9iVtzks4bDh0s= Subject key identifier: 4B:95:CA:F5:C1:5D:F3:10:6A:6D:8F:AC:36:42:47:DA:50:EC:AC:6B Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: D0 Signing time: Sat 19 Jul 2025 05:50:02 +0000 Manifest this update: Sat 19 Jul 2025 05:50:00 +0000 Manifest next update: Sat 26 Jul 2025 05:50:00 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: TZiXXAb/pz3tdRBZLtSOtOvzPJ8rvSJY8+tkEhwX1FQ=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: uOPt38YEsEAnQYMhJ/vWZ8Bh0zzqI6ovkE/WceLABSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: Jul 19 05:50:00 2025 GMT Not After : Jul 26 05:50:00 2025 GMT Subject: CN=687b3209-6a07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:26:a7:ed:7d:a4:c4:e6:17:80:de:60:a9:00: 20:a3:b1:ac:18:50:2a:b2:b9:16:84:24:f3:76:f5: 5f:4b:86:a0:4f:fe:6a:3f:49:9b:8a:c1:38:17:23: 79:44:41:10:84:b5:f7:9a:c5:a7:0c:9c:90:1d:79: ee:15:3b:8d:82:7b:f7:9d:4b:25:ad:41:ce:97:bc: ac:c4:05:9c:c0:54:20:99:3b:32:01:da:8a:30:a7: 27:7b:e2:22:1c:e2:8c:d8:65:10:18:5e:34:81:ec: 0b:e8:9c:51:99:b4:a1:e2:94:d3:ed:20:38:21:19: fe:c3:8b:a2:35:c1:9c:8d:54:28:77:c7:6e:7a:68: 24:1c:b5:ff:d4:53:c0:5c:08:48:94:80:fc:b2:df: 06:01:38:a0:d7:12:e7:8c:e6:90:54:f6:9e:31:b3: ea:9d:a2:3a:37:4e:58:14:1c:30:0e:f7:75:42:eb: 33:76:41:ef:b6:ee:64:77:18:30:d9:36:9f:81:15: c0:00:d4:a0:dc:d5:0a:73:3f:13:a9:a5:1f:dd:8c: db:23:84:c6:ec:f3:2d:cc:62:58:3b:e8:78:b8:d8: 48:6e:f9:b9:4f:ae:0d:27:2f:5a:a9:61:96:f4:5d: bc:9b:69:2e:d3:7f:90:80:1d:f9:7f:19:1a:73:4c: d2:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:95:CA:F5:C1:5D:F3:10:6A:6D:8F:AC:36:42:47:DA:50:EC:AC:6B X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:e8:8f:3e:91:5f:d8:72:75:e5:dc:8e:3f:03:a7:e4:83:42: f5:4d:c8:1d:ee:6c:a3:15:38:24:f9:d4:94:ff:56:44:18:36: 22:ea:a1:80:4a:1a:7b:2d:9b:45:e1:01:e0:a5:90:24:57:11: a1:30:ba:0a:e0:84:b2:74:cd:9d:49:8e:1a:cf:d0:fb:71:ef: 8a:0d:de:f0:5c:ca:7a:ae:ee:58:8b:4f:d8:a1:ab:74:14:87: 32:71:db:71:6d:be:22:2d:bf:74:5c:de:e3:1d:ee:49:cd:df: 34:41:73:39:8b:c6:c4:df:2d:a1:db:65:45:b9:86:b5:c3:6f: f7:60:f5:d9:15:50:75:ae:b5:99:29:1c:eb:c0:9b:8b:53:3b: e5:aa:ce:ad:29:fe:ba:73:ce:3f:1b:f0:5d:18:48:d7:36:10: 44:30:f2:c5:bc:5a:d1:13:ea:07:8a:67:42:a5:fe:c6:7f:0f: 94:44:c3:ac:7f:8e:7d:88:d5:dd:75:93:9e:6d:0a:7d:7c:f6: 61:a2:b5:47:90:82:9e:9a:f4:fe:0d:c7:2f:0e:a1:10:b9:87: 19:97:1c:61:8b:39:21:14:29:94:5d:e5:ee:49:ab:62:d7:e4: 2b:d8:71:ca:a6:3c:73:02:e3:b7:86:b6:38:21:03:49:59:89: 3f:ee:ae:d5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUwNzE5MDU1MDAwWhcNMjUwNzI2MDU1MDAwWjAYMRYwFAYD VQQDEw02ODdiMzIwOS02YTA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9Can7X2kxOYXgN5gqQAgo7GsGFAqsrkWhCTzdvVfS4agT/5qP0mbisE4FyN5 REEQhLX3msWnDJyQHXnuFTuNgnv3nUslrUHOl7ysxAWcwFQgmTsyAdqKMKcne+Ii HOKM2GUQGF40gewL6JxRmbSh4pTT7SA4IRn+w4uiNcGcjVQod8duemgkHLX/1FPA XAhIlID8st8GATig1xLnjOaQVPaeMbPqnaI6N05YFBwwDvd1QuszdkHvtu5kdxgw 2TafgRXAANSg3NUKcz8TqaUf3YzbI4TG7PMtzGJYO+h4uNhIbvm5T64NJy9aqWGW 9F28m2ku03+QgB35fxkac0zSwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEuVyvXB XfMQam2PrDZCR9pQ7KxrMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBF6I8+kV/YcnXl3I4/A6fkg0L1Tcgd7myjFTgk+dSU/1ZEGDYi6qGA Shp7LZtF4QHgpZAkVxGhMLoK4ISydM2dSY4az9D7ce+KDd7wXMp6ru5Yi0/Yoat0 FIcycdtxbb4iLb90XN7jHe5Jzd80QXM5i8bE3y2h22VFuYa1w2/3YPXZFVB1rrWZ KRzrwJuLUzvlqs6tKf66c84/G/BdGEjXNhBEMPLFvFrRE+oHimdCpf7Gfw+URMOs f459iNXddZOebQp9fPZhorVHkIKemvT+DccvDqEQuYcZlxxhizkhFCmUXeXuSati 1+Qr2HHKpjxzAuO3hrY4IQNJWYk/7q7V -----END CERTIFICATE-----Generated at Sun Jul 20 03:37:09 2025 by rpki-client