$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: Gm55u40Nt52GtKzjil3N7fhwNcDtkn4QW8crtbuMY74= Subject key identifier: 30:B1:2D:E8:75:C1:7C:2E:7F:C6:7B:60:14:22:A1:2A:94:2E:FC:E2 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 0117 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 0115 Signing time: Sat 19 Jul 2025 05:04:53 +0000 Manifest this update: Sat 19 Jul 2025 05:04:52 +0000 Manifest next update: Sat 26 Jul 2025 05:04:52 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: KDAefngmKo4lty1lfeO4Z3nysE6mdbXfTc6D/H2O2B0=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:04:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 279 (0x117) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Jul 19 05:04:52 2025 GMT Not After : Jul 26 05:04:52 2025 GMT Subject: CN=687b2774-34f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:69:33:25:a2:c2:83:01:11:11:b7:24:d6:6e: 79:13:65:79:70:42:bd:09:5b:5d:6f:c9:d6:82:09: 29:b2:22:90:7b:0f:53:c5:ef:96:f8:6b:7e:ca:fc: 05:fa:35:f9:7d:d2:a6:19:c3:9f:88:29:51:19:9a: 42:0e:64:57:f9:e3:b3:7b:f0:61:a5:96:f2:b3:85: 47:43:ea:c5:be:5e:83:a6:5d:2d:1c:8c:9f:ac:2d: f5:1e:05:56:ab:6c:9a:4f:53:08:49:f2:82:aa:1b: ec:0b:73:ca:87:4a:65:4e:65:a5:3b:78:8f:86:02: 60:5d:d1:49:29:2f:da:39:4f:3a:25:8f:df:e6:85: ed:01:29:0a:d6:8c:88:a2:0c:a7:3f:14:e6:a7:37: 07:51:a3:bd:10:7b:6e:c6:f7:63:53:6d:f9:ee:11: 8c:50:cb:ad:af:7f:90:1b:1f:de:a6:1f:96:d8:0d: 1d:63:7a:ae:c6:7e:18:69:fc:d2:6b:74:08:32:90: 82:d0:58:43:1d:68:e3:fd:a8:12:3d:0f:91:bb:ac: a3:17:62:35:ca:2c:3d:61:28:0b:ae:ae:e2:c1:3c: d4:60:c6:b9:37:8c:14:44:df:80:e1:c0:63:1e:96: ef:c4:ec:79:77:74:ce:0b:d4:6a:a5:49:22:50:e3: 14:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:B1:2D:E8:75:C1:7C:2E:7F:C6:7B:60:14:22:A1:2A:94:2E:FC:E2 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4b:4f:b7:e9:e8:0e:c4:1a:99:62:bc:60:78:4a:62:ff:40:f7: b7:4f:cc:bb:81:68:38:c4:5c:a7:c2:0e:fe:f6:60:e3:d3:d1: e2:9a:e2:40:c9:50:99:65:98:51:16:1f:97:a9:11:ab:79:7a: ac:02:1c:fe:21:b7:50:e1:a7:0d:2f:b6:98:77:f9:0d:27:1b: 36:bf:99:b6:3c:f6:ed:0d:1e:8e:d9:51:ac:ce:01:33:b8:14: 96:c5:20:e5:a5:fb:91:30:ff:58:03:dd:c1:b6:66:8b:a7:f2: ac:92:e4:54:80:c7:54:43:28:19:5f:3a:9f:14:3d:02:2b:9b: 01:de:97:f5:a2:80:66:84:c1:f5:a4:d7:93:02:71:6c:99:36: c9:7e:51:8c:07:15:2c:4a:a8:aa:8e:a7:47:33:99:a7:fa:fe: 5d:c4:76:89:69:cd:7a:be:a2:e3:6f:5a:ec:ad:a0:7b:a7:c3: 16:77:17:4e:57:c4:bc:30:4d:40:54:1e:7b:5b:c3:01:04:f5: 37:08:99:2e:e6:15:f0:41:49:1c:94:d2:ec:55:eb:c5:95:ca: 05:17:52:51:35:27:5d:ab:13:b4:ce:0c:02:f7:c6:71:12:12: 6b:54:ce:01:5a:f8:dc:03:e3:8a:cd:be:dc:e0:b7:c9:d6:38: 63:9f:3a:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwNzE5MDUwNDUyWhcNMjUwNzI2MDUwNDUyWjAYMRYwFAYD VQQDEw02ODdiMjc3NC0zNGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2kzJaLCgwEREbck1m55E2V5cEK9CVtdb8nWggkpsiKQew9Txe+W+Gt+yvwF +jX5fdKmGcOfiClRGZpCDmRX+eOze/BhpZbys4VHQ+rFvl6Dpl0tHIyfrC31HgVW q2yaT1MISfKCqhvsC3PKh0plTmWlO3iPhgJgXdFJKS/aOU86JY/f5oXtASkK1oyI ogynPxTmpzcHUaO9EHtuxvdjU2357hGMUMutr3+QGx/eph+W2A0dY3quxn4YafzS a3QIMpCC0FhDHWjj/agSPQ+Ru6yjF2I1yiw9YSgLrq7iwTzUYMa5N4wURN+A4cBj HpbvxOx5d3TOC9RqpUkiUOMUPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDCxLeh1 wXwuf8Z7YBQioSqULvziMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBLT7fp6A7EGplivGB4SmL/QPe3T8y7gWg4xFynwg7+9mDj09HimuJA yVCZZZhRFh+XqRGreXqsAhz+IbdQ4acNL7aYd/kNJxs2v5m2PPbtDR6O2VGszgEz uBSWxSDlpfuRMP9YA93BtmaLp/KskuRUgMdUQygZXzqfFD0CK5sB3pf1ooBmhMH1 pNeTAnFsmTbJflGMBxUsSqiqjqdHM5mn+v5dxHaJac16vqLjb1rsraB7p8MWdxdO V8S8ME1AVB57W8MBBPU3CJku5hXwQUkclNLsVevFlcoFF1JRNSddqxO0zgwC98Zx EhJrVM4BWvjcA+OKzb7c4LfJ1jhjnzrl -----END CERTIFICATE-----Generated at Sun Jul 20 20:40:51 2025 by rpki-client