$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: 4nPeATdSzE2+T7IUeFaNboiZI4MbCo1vb4BZ1cn/Jz0= Subject key identifier: 47:6B:B4:5E:59:BC:8C:19:96:D8:ED:C2:24:F3:51:FF:80:A0:A4:2A Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0A9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0A7E Signing time: Fri 18 Jul 2025 19:51:08 +0000 Manifest this update: Fri 18 Jul 2025 19:51:08 +0000 Manifest next update: Fri 25 Jul 2025 19:51:08 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: Kb3e5Ndk8cygEq5HG0EpOeqFfcvBI+AHZiOnkptH5Wk=) 2: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=) 3: DE137C362C7811EC97C8D979C4F9AE02.roa (hash: ORPxj2tqrIsIpHEdVkZPm4n/aNb1Vqu1v7KB5t0Gcw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 19:51:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2714 (0xa9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Jul 18 19:51:08 2025 GMT Not After : Jul 25 19:51:08 2025 GMT Subject: CN=687aa5ac-c76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:10:cd:41:3c:27:ae:26:2d:5d:7f:d5:be:e9: 25:3c:ab:f0:4a:79:f5:47:92:ce:66:0e:27:0b:3f: bb:50:20:4f:7b:f9:3f:44:94:ca:15:38:a9:fa:a7: 4a:ed:cc:36:29:4f:e8:37:3b:2c:4b:30:bb:f9:77: 34:c6:32:36:54:20:ad:b3:fd:d9:d2:af:3c:14:5f: 18:a2:88:46:59:a1:55:33:66:3c:51:d1:db:85:03: b6:60:9a:0a:1b:9d:cf:20:dc:41:b6:58:1b:50:9a: 38:ae:c1:8f:b1:1d:76:6c:af:ab:33:b1:ff:76:1d: 2b:e9:b8:b4:54:55:05:55:af:91:45:89:69:50:99: 44:eb:3b:32:a4:26:c8:a3:e6:08:9c:2d:55:d0:d0: ba:e4:a1:a9:97:c2:8a:96:60:ef:7b:41:3d:39:db: ed:22:a1:ec:fe:35:90:1f:34:46:94:72:d3:d9:5e: 64:2d:fc:8a:28:56:bc:cb:d6:06:73:0b:d8:f0:88: 43:a7:1f:51:26:7a:40:0d:e6:d5:52:fc:b5:67:e6: 31:f6:be:de:f4:29:bf:2d:06:bb:37:18:8a:7a:79: f3:15:5e:53:6a:66:0e:31:fc:b4:69:db:e9:d1:60: c1:d6:09:82:f8:9e:d2:e7:78:c4:c1:0c:15:62:d5: e1:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:6B:B4:5E:59:BC:8C:19:96:D8:ED:C2:24:F3:51:FF:80:A0:A4:2A X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:10:7d:54:86:71:e8:f0:3e:61:3d:62:86:94:b7:70:e1:61: 78:8c:41:89:9f:be:0e:c7:a3:4f:c2:99:b6:cb:1b:95:61:26: d5:4d:3e:b8:43:5b:68:a8:39:62:b6:dc:ed:1b:39:79:b4:0e: fe:85:61:69:96:9d:bf:c2:fa:99:99:ad:a2:03:0d:7a:f3:a2: fb:2a:06:81:18:1f:a4:ff:22:89:7c:6e:b0:db:d5:39:57:c2: 0f:5b:ec:f3:94:ca:df:91:78:20:7d:1c:74:60:51:4f:af:a8: a8:a1:7e:17:e7:da:ae:6f:df:ca:b1:4d:b8:84:1b:47:d0:2f: 09:2d:f7:27:67:08:29:56:e0:3b:11:1e:dd:7e:45:be:d5:01: 1e:15:40:5a:f0:25:85:63:14:a2:e0:46:92:b3:2a:17:45:e3: eb:78:ef:6a:a9:51:4b:45:32:b1:d8:95:43:3b:aa:86:c0:dc: 53:96:c1:fb:e2:de:9f:95:d2:a7:9f:05:aa:08:2d:f3:0b:26: dd:01:77:73:77:ac:29:76:69:2f:a8:1a:4b:a6:40:be:b7:14: 8e:ec:e6:50:86:ec:d3:b0:a8:63:c8:1f:dd:21:8e:bd:61:28: f0:a7:21:ad:47:dd:7d:fe:d1:aa:63:91:69:c8:c3:ff:92:43: c1:e4:0b:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjUwNzE4MTk1MTA4WhcNMjUwNzI1MTk1MTA4WjAYMRYwFAYD VQQDEw02ODdhYTVhYy1jNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxDNQTwnriYtXX/VvuklPKvwSnn1R5LOZg4nCz+7UCBPe/k/RJTKFTip+qdK 7cw2KU/oNzssSzC7+Xc0xjI2VCCts/3Z0q88FF8YoohGWaFVM2Y8UdHbhQO2YJoK G53PINxBtlgbUJo4rsGPsR12bK+rM7H/dh0r6bi0VFUFVa+RRYlpUJlE6zsypCbI o+YInC1V0NC65KGpl8KKlmDve0E9OdvtIqHs/jWQHzRGlHLT2V5kLfyKKFa8y9YG cwvY8IhDpx9RJnpADebVUvy1Z+Yx9r7e9Cm/LQa7NxiKennzFV5TamYOMfy0advp 0WDB1gmC+J7S53jEwQwVYtXhbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEdrtF5Z vIwZltjtwiTzUf+AoKQqMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUEH1UhnHo8D5hPWKGlLdw4WF4jEGJn74Ox6NPwpm2yxuVYSbVTT64 Q1toqDlittztGzl5tA7+hWFplp2/wvqZma2iAw1686L7KgaBGB+k/yKJfG6w29U5 V8IPW+zzlMrfkXggfRx0YFFPr6iooX4X59qub9/KsU24hBtH0C8JLfcnZwgpVuA7 ER7dfkW+1QEeFUBa8CWFYxSi4EaSsyoXRePreO9qqVFLRTKx2JVDO6qGwNxTlsH7 4t6fldKnnwWqCC3zCybdAXdzd6wpdmkvqBpLpkC+txSO7OZQhuzTsKhjyB/dIY69 YSjwpyGtR919/tGqY5FpyMP/kkPB5Atq -----END CERTIFICATE-----Generated at Sun Jul 20 06:50:03 2025 by rpki-client