$ rpki-client -vvf rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft File: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft (raw, json) Hash identifier: SUf/mH3a3EJS7mefwaEslh4iMHOTlw4j9F8jPqQ09RA= Subject key identifier: 9A:C5:2D:8D:99:0F:95:61:5B:C7:2C:D4:B1:20:E6:BE:0B:B0:67:41 Authority key identifier: 2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 Certificate issuer: /CN=A912B75A/serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Certificate serial: C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft Manifest number: C1 Signing time: Sat 23 Aug 2025 06:01:53 +0000 Manifest this update: Sat 23 Aug 2025 06:01:52 +0000 Manifest next update: Sat 30 Aug 2025 06:01:52 +0000 Files and hashes: 1: Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl (hash: wBsxTb7OdX7LSHasCaWKM+cZnaTnHs69LnWwA9CLlGQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:01:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B75A, serialNumber=2B3D211FC9998DF2035E20D91AA55EDEC628F0A3 Validity Not Before: Aug 23 06:01:52 2025 GMT Not After : Aug 30 06:01:52 2025 GMT Subject: CN=68a95951-c4a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:18:87:9d:73:65:0b:1d:be:6e:0f:17:c4:e8: b8:80:2e:14:4e:ce:ff:58:d2:38:62:ca:48:8a:4c: 94:b1:8d:3d:6b:e3:d4:91:89:23:d1:4c:0b:08:41: b6:f6:ec:49:4a:94:17:a0:09:e0:ae:4d:64:07:32: 5b:6a:8e:7d:cc:8b:2c:14:2b:56:5e:60:71:ac:cf: d5:50:4d:e4:4a:64:13:35:16:91:39:1f:84:06:2c: 78:8d:60:e3:a4:33:a1:0d:fa:2f:01:35:9f:c5:63: 3d:5f:09:74:c7:c7:46:51:51:88:d3:e3:a2:fb:fc: 57:6c:fe:92:3a:4f:ab:3b:4b:d7:a4:f0:c5:fd:50: 60:a4:62:0f:5b:d4:ad:a3:14:82:f9:ce:db:cd:61: 77:24:7e:7c:49:e7:52:15:8b:a3:4e:57:31:dd:c7: 51:c0:8b:54:01:01:c8:7c:17:f5:d3:c6:e8:fe:96: e7:56:97:04:74:a0:25:c3:0d:06:b2:59:dc:3e:9e: f4:d0:12:fc:9e:43:95:d7:c7:31:1f:90:b8:c0:b2: 0a:32:9c:64:d7:01:1c:62:31:9c:2a:7f:38:e8:4c: 57:5a:4d:7e:e7:e6:75:ca:47:ff:08:69:25:ea:f4: 26:8a:fb:a0:b0:c5:c3:c1:7c:8e:d0:80:f1:02:6a: 06:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:C5:2D:8D:99:0F:95:61:5B:C7:2C:D4:B1:20:E6:BE:0B:B0:67:41 X509v3 Authority Key Identifier: keyid:2B:3D:21:1F:C9:99:8D:F2:03:5E:20:D9:1A:A5:5E:DE:C6:28:F0:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B75A/1B22E1FE5B9A11EF82027640C4F9AE02/Kz0hH8mZjfIDXiDZGqVe3sYo8KM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:6a:dd:9b:6e:04:04:3e:d3:91:ac:0a:a0:eb:4a:e8:ba:19: 1e:98:46:22:d9:0b:bc:fa:7f:92:93:b2:2b:48:db:af:3b:1f: 1a:4a:d5:45:85:39:9c:73:5e:f1:ec:e9:7c:56:8e:2c:71:c7: 30:a4:e2:d5:d8:e7:e8:de:87:85:a6:34:92:f1:33:17:23:06: d4:71:45:bb:bb:36:f0:e1:ce:de:c2:f1:53:79:4d:c1:ca:be: e2:70:e5:62:e0:a4:d1:46:9f:9d:5f:18:98:90:e2:28:3d:7e: 59:7b:86:52:41:cc:46:13:07:a6:4d:34:81:d0:bd:2c:e6:66: 28:ea:e8:13:ce:39:a0:7b:81:41:9f:14:29:9f:bc:1c:d7:9d: c4:53:f5:26:e8:69:21:7b:24:d4:bf:f8:58:8a:af:4c:6b:26: 2c:27:78:78:5c:17:a9:fc:e7:90:d6:be:52:f0:0a:89:6c:58: 81:9f:4d:39:13:b5:e1:7b:0b:c1:6d:3e:4b:d0:36:95:bd:04: 74:17:2d:24:c9:63:d8:fa:6c:8e:04:61:fe:bd:d1:fb:f0:d6: 3c:7d:1b:21:e6:07:8e:0f:8f:ed:bf:6b:ad:c2:96:03:cd:be: 16:8d:6d:56:d6:32:eb:47:13:5c:43:8d:96:79:55:bb:fe:6c: 5a:c8:ed:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkI3NUExMTAvBgNVBAUTKDJCM0QyMTFGQzk5OThERjIwMzVFMjBEOTFBQTU1RURF QzYyOEYwQTMwHhcNMjUwODIzMDYwMTUyWhcNMjUwODMwMDYwMTUyWjAYMRYwFAYD VQQDEw02OGE5NTk1MS1jNGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzxiHnXNlCx2+bg8XxOi4gC4UTs7/WNI4YspIikyUsY09a+PUkYkj0UwLCEG2 9uxJSpQXoAngrk1kBzJbao59zIssFCtWXmBxrM/VUE3kSmQTNRaROR+EBix4jWDj pDOhDfovATWfxWM9Xwl0x8dGUVGI0+Oi+/xXbP6SOk+rO0vXpPDF/VBgpGIPW9St oxSC+c7bzWF3JH58SedSFYujTlcx3cdRwItUAQHIfBf108bo/pbnVpcEdKAlww0G slncPp700BL8nkOV18cxH5C4wLIKMpxk1wEcYjGcKn846ExXWk1+5+Z1ykf/CGkl 6vQmivugsMXDwXyO0IDxAmoGaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJrFLY2Z D5VhW8cs1LEg5r4LsGdBMB8GA1UdIwQYMBaAFCs9IR/JmY3yA14g2RqlXt7GKPCj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQjc1QS8xQjIyRTFGRTVC OUExMUVGODIwMjc2NDBDNEY5QUUwMi9LejBoSDhtWmpmSURYaURaR3FWZTNzWW84 S00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6MGhIOG1aamZJRFhpRFpHcVZlM3NZbzhLTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy Qjc1QS8xQjIyRTFGRTVCOUExMUVGODIwMjc2NDBDNEY5QUUwMi9LejBoSDhtWmpm SURYaURaR3FWZTNzWW84S00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAaat2bbgQEPtORrAqg60rouhkemEYi2Qu8+n+Sk7IrSNuvOx8aStVF hTmcc17x7Ol8Vo4scccwpOLV2Ofo3oeFpjSS8TMXIwbUcUW7uzbw4c7ewvFTeU3B yr7icOVi4KTRRp+dXxiYkOIoPX5Ze4ZSQcxGEwemTTSB0L0s5mYo6ugTzjmge4FB nxQpn7wc153EU/Um6GkheyTUv/hYiq9MayYsJ3h4XBep/OeQ1r5S8AqJbFiBn005 E7XhewvBbT5L0DaVvQR0Fy0kyWPY+myOBGH+vdH78NY8fRsh5geOD4/tv2utwpYD zb4WjW1W1jLrRxNcQ42WeVW7/mxayO1H -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:55 2025 by rpki-client