$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: Du57f/ah97CwAOeJZn94A87mxYS37vV9MO52aueoWNY= Subject key identifier: 77:8C:B1:3E:2A:FF:34:B4:6F:C7:7F:20:22:CB:34:FA:13:E0:1D:23 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 01AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 01A7 Signing time: Fri 19 Sep 2025 03:43:22 +0000 Manifest this update: Fri 19 Sep 2025 03:43:21 +0000 Manifest next update: Fri 26 Sep 2025 03:43:21 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: FBgwJoJbFeOetuTFI5rnDpLfNuonft9AC2FG8vGDqu0=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 03:43:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Sep 19 03:43:21 2025 GMT Not After : Sep 26 03:43:21 2025 GMT Subject: CN=68ccd159-6d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:29:90:af:f6:70:1a:97:76:16:81:1c:eb:17: c8:a0:77:ff:f3:e8:ab:7d:21:fd:00:07:f6:65:f4: 24:f6:7a:dc:e1:f9:37:70:0a:c8:6e:a2:b5:67:47: 56:c1:8b:39:c0:3c:3f:9b:53:6d:e0:19:16:22:71: e6:2f:60:05:e1:0b:4e:4b:f6:a4:d5:53:1c:17:26: 4a:2d:8f:75:e8:7b:a6:56:1f:16:ae:ee:69:47:99: 19:e9:f9:f6:e7:c7:be:21:2b:69:c7:db:e2:b1:cf: fb:b4:f7:cb:82:96:a3:78:08:09:19:e9:49:01:df: b7:ce:61:49:1e:9c:39:74:68:c7:f6:7f:e1:6d:4b: 9b:f2:d2:53:eb:4c:d4:53:a3:64:47:63:c8:72:66: 72:16:3c:80:75:9e:ce:46:80:58:61:57:c2:ec:f5: 9f:92:b4:9f:9e:f4:08:e9:0a:6e:77:3a:6a:94:04: 46:0d:15:59:9f:47:67:46:09:db:34:ba:f3:14:6d: 6d:32:64:fb:b8:8e:01:2b:08:ca:73:da:a7:6b:01: 10:44:4d:b6:e0:6e:76:1d:1b:69:c6:0a:db:08:22: 67:45:a9:ce:24:7c:45:f3:ce:69:d1:b3:ae:92:b4: fa:98:94:2c:24:be:9a:e3:56:29:39:65:1c:5b:9e: 96:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:8C:B1:3E:2A:FF:34:B4:6F:C7:7F:20:22:CB:34:FA:13:E0:1D:23 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:67:23:9c:3d:c7:e0:95:bb:65:b4:db:ee:40:49:d1:2e:31: 32:6e:16:f7:00:f9:28:75:ee:4a:23:86:b6:ca:b0:2c:89:d0: ad:ef:a9:3d:e9:90:c4:e6:f4:71:cd:64:37:10:bb:ca:54:e9: 62:73:d3:25:f5:34:47:89:27:2f:34:e0:a4:58:7d:d2:2c:e4: 56:dd:3e:e2:13:41:c2:5b:8b:86:3a:43:86:11:16:22:98:32: f1:7a:64:43:b8:1f:6b:01:5f:a5:4c:e4:4b:18:7b:f5:6e:38: 6a:38:00:cd:b1:79:83:ee:f8:19:f7:29:67:04:fa:c1:ae:25: 2f:5d:5c:87:83:06:60:30:67:77:a6:0b:09:d9:11:e7:da:d9: b3:c7:6c:7e:50:b2:ce:f9:46:53:12:de:c1:9a:ec:49:85:3a: 35:70:05:85:1d:be:48:cb:20:5c:8e:60:71:31:57:5c:ac:4c: b9:59:2f:1b:8a:4a:03:5f:78:24:fc:0e:5d:98:3c:2b:eb:5b: ee:4e:fa:05:ac:7e:30:b4:57:d4:02:9f:14:4e:3e:d8:bd:0f: b2:02:56:93:27:a5:17:03:a8:63:45:9f:65:61:c8:9f:30:95: 9e:58:3c:83:5b:48:dc:c7:d2:fc:e3:ca:ba:c4:5e:0b:83:c9: 0c:b3:3c:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwOTE5MDM0MzIxWhcNMjUwOTI2MDM0MzIxWjAYMRYwFAYD VQQDEw02OGNjZDE1OS02ZDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzCmQr/ZwGpd2FoEc6xfIoHf/8+irfSH9AAf2ZfQk9nrc4fk3cArIbqK1Z0dW wYs5wDw/m1Nt4BkWInHmL2AF4QtOS/ak1VMcFyZKLY916HumVh8Wru5pR5kZ6fn2 58e+IStpx9visc/7tPfLgpajeAgJGelJAd+3zmFJHpw5dGjH9n/hbUub8tJT60zU U6NkR2PIcmZyFjyAdZ7ORoBYYVfC7PWfkrSfnvQI6QpudzpqlARGDRVZn0dnRgnb NLrzFG1tMmT7uI4BKwjKc9qnawEQRE224G52HRtpxgrbCCJnRanOJHxF885p0bOu krT6mJQsJL6a41YpOWUcW56W6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHeMsT4q /zS0b8d/ICLLNPoT4B0jMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIZyOcPcfglbtltNvuQEnRLjEybhb3APkode5KI4a2yrAsidCt76k9 6ZDE5vRxzWQ3ELvKVOlic9Ml9TRHiScvNOCkWH3SLORW3T7iE0HCW4uGOkOGERYi mDLxemRDuB9rAV+lTORLGHv1bjhqOADNsXmD7vgZ9ylnBPrBriUvXVyHgwZgMGd3 pgsJ2RHn2tmzx2x+ULLO+UZTEt7BmuxJhTo1cAWFHb5IyyBcjmBxMVdcrEy5WS8b ikoDX3gk/A5dmDwr61vuTvoFrH4wtFfUAp8UTj7YvQ+yAlaTJ6UXA6hjRZ9lYcif MJWeWDyDW0jcx9L848q6xF4Lg8kMszy7 -----END CERTIFICATE-----Generated at Fri Sep 19 05:54:49 2025 by rpki-client