$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: I71mFOl1TWPfYND0dbJEZqBtlcc5tI0XtWCANEKNn6I= Subject key identifier: F4:A2:F4:DE:86:ED:DB:17:2E:7E:DE:1C:6A:20:04:A5:35:2B:93:E1 Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 03C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 03BA Signing time: Wed 17 Sep 2025 01:10:13 +0000 Manifest this update: Wed 17 Sep 2025 01:10:13 +0000 Manifest next update: Wed 24 Sep 2025 01:10:13 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: XfMzePuKPhAHMK3PBEYTsMNV+kWZx8nyQSXcfIm/5XU=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: 3k13Zb4rUCPiQVhmHXmV79sBuRx9W6om0fkw2CRWuLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:10:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 960 (0x3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: Sep 17 01:10:13 2025 GMT Not After : Sep 24 01:10:13 2025 GMT Subject: CN=68ca0a75-7835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:15:78:83:06:e2:d0:ee:e4:e6:4b:76:22:65: a6:9b:2b:a1:a7:66:ca:60:ff:b7:cc:22:e7:80:a8: a9:38:9a:da:af:23:3e:41:cf:de:b7:ca:8e:34:b6: 63:1e:fc:26:3a:be:4b:99:e2:5e:23:92:12:d4:9a: fb:0f:fd:36:a5:83:ee:ab:91:e6:b2:0f:76:92:8b: aa:6c:99:4f:ab:0d:18:ee:b4:cb:f4:71:e4:0d:12: 5c:30:18:69:79:ca:a4:c9:f1:1d:d8:bb:93:3d:e7: df:12:eb:33:34:a8:43:e8:66:c4:28:6b:ee:8f:da: 15:d2:32:55:d8:65:67:fa:53:f5:08:95:2b:20:ac: f7:c7:30:32:ec:8f:b0:92:72:43:dc:24:28:71:e4: 14:6d:4e:8a:3a:08:8b:68:f5:96:77:4a:5e:1f:5a: d0:5c:70:99:bb:cc:a6:5b:70:da:bd:17:94:99:4a: 1c:6f:ec:73:1a:44:4e:b0:b1:e6:57:bf:56:50:9a: 9d:97:2b:dd:97:df:e0:b0:fc:7b:d6:63:44:82:bc: b6:9b:b3:a2:9d:35:2e:48:97:15:b5:f6:be:0b:8f: 84:94:b6:86:90:32:de:16:7f:3a:92:90:7c:38:a4: b3:d5:b8:ee:fb:06:15:3e:3f:dc:9d:91:da:ff:49: fb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A2:F4:DE:86:ED:DB:17:2E:7E:DE:1C:6A:20:04:A5:35:2B:93:E1 X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:86:8c:96:0d:66:a6:d9:5f:34:d0:69:84:5c:1b:de:64:72: a4:4a:8b:ad:70:da:bf:10:7d:8c:63:7b:41:ae:c3:a5:8e:72: 33:1c:f8:43:8f:a2:64:af:2f:91:a9:ea:74:89:5a:e6:f9:aa: 09:20:29:97:13:73:de:08:eb:ae:44:3d:a3:a3:1c:7b:5d:4c: d4:78:8b:67:0b:79:68:c4:1f:0c:11:d8:5f:bc:90:fb:b3:eb: 69:1e:87:8b:cf:01:4d:63:89:ec:1e:f4:88:a2:06:77:1f:c7: 11:c0:2c:83:73:b9:37:16:af:5d:5b:35:71:70:f6:43:0f:34: 7b:df:03:74:c1:b4:e3:0c:a0:fe:e8:b6:3d:b7:a1:11:06:b3: 74:ad:9b:55:37:84:08:cc:b9:23:01:31:6b:9e:b6:09:6c:1a: 4a:f7:91:aa:d4:df:5e:e6:2b:de:b3:e0:ba:54:53:e2:5b:9c: d4:ae:61:6d:67:e7:d9:44:4a:fa:a8:36:ba:ab:ac:df:f0:51: da:dc:45:7e:02:60:bc:a7:e3:fd:28:ac:2d:14:0e:51:8a:f3: 31:fb:e0:11:64:dc:c9:44:30:00:0f:aa:e0:f0:e0:cc:d0:72: 4d:84:28:a8:04:bc:e2:7e:eb:23:ae:9a:3e:f2:ce:2b:b1:6c: 67:74:c9:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA8AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjUwOTE3MDExMDEzWhcNMjUwOTI0MDExMDEzWjAYMRYwFAYD VQQDEw02OGNhMGE3NS03ODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBV4gwbi0O7k5kt2ImWmmyuhp2bKYP+3zCLngKipOJraryM+Qc/et8qONLZj HvwmOr5LmeJeI5IS1Jr7D/02pYPuq5Hmsg92kouqbJlPqw0Y7rTL9HHkDRJcMBhp ecqkyfEd2LuTPeffEuszNKhD6GbEKGvuj9oV0jJV2GVn+lP1CJUrIKz3xzAy7I+w knJD3CQoceQUbU6KOgiLaPWWd0peH1rQXHCZu8ymW3DavReUmUocb+xzGkROsLHm V79WUJqdlyvdl9/gsPx71mNEgry2m7OinTUuSJcVtfa+C4+ElLaGkDLeFn86kpB8 OKSz1bju+wYVPj/cnZHa/0n7xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSi9N6G 7dsXLn7eHGogBKU1K5PhMB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkhoyWDWam2V800GmEXBveZHKkSoutcNq/EH2MY3tBrsOljnIzHPhD j6Jkry+Rqep0iVrm+aoJICmXE3PeCOuuRD2joxx7XUzUeItnC3loxB8MEdhfvJD7 s+tpHoeLzwFNY4nsHvSIogZ3H8cRwCyDc7k3Fq9dWzVxcPZDDzR73wN0wbTjDKD+ 6LY9t6ERBrN0rZtVN4QIzLkjATFrnrYJbBpK95Gq1N9e5ives+C6VFPiW5zUrmFt Z+fZREr6qDa6q6zf8FHa3EV+AmC8p+P9KKwtFA5RivMx++ARZNzJRDAAD6rg8ODM 0HJNhCioBLzifusjrpo+8s4rsWxndMkz -----END CERTIFICATE-----Generated at Thu Sep 18 23:30:30 2025 by rpki-client