$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: vM41cSS4Zc3HUzCZMPbibwPhsksYBL/r6F13dw6HU3k= Subject key identifier: E6:82:39:13:EA:42:80:32:A0:0E:08:EC:9B:0D:83:C3:1C:19:BD:80 Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 21C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 21C4 Signing time: Sun 24 Aug 2025 15:51:32 +0000 Manifest this update: Sun 24 Aug 2025 15:51:31 +0000 Manifest next update: Sun 31 Aug 2025 15:51:31 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: LJ2jro4t7pA14M8bQCAj8SQlzwwq/MRlU11255DcUOM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 15:51:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8644 (0x21c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40, serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: Aug 24 15:51:31 2025 GMT Not After : Aug 31 15:51:31 2025 GMT Subject: CN=68ab3504-c8cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:12:6a:57:8c:48:cc:f7:b3:be:1c:49:ab:6a: f0:ef:e6:d4:21:b3:37:fc:ae:02:b9:05:fb:73:09: 43:c1:cf:d9:a5:ed:d8:b7:53:aa:47:2e:7c:11:bd: b4:5f:e6:d1:7c:1f:73:a5:11:96:e7:0d:ec:d6:64: 3c:87:3f:42:eb:0b:38:af:f2:4a:ee:fd:de:d2:ad: 14:5c:e9:04:09:59:84:f7:c3:49:ab:eb:c6:c5:e7: f7:83:0b:59:4d:4b:bb:63:c2:6b:75:1e:a9:a4:ee: 81:6f:f6:59:f5:c3:37:c6:44:f3:61:7e:a4:73:53: 7c:88:5b:a7:e8:70:94:86:ac:52:1b:ab:ed:ca:b7: 5d:51:56:1d:5d:1f:8f:28:64:b4:8c:27:5a:88:9e: 8a:cc:8a:4f:6a:38:f6:37:2d:ec:d4:8d:41:d2:ce: 3f:6a:31:70:a2:04:90:f5:53:f1:b7:63:15:b8:c8: dd:ed:6e:f8:67:c4:96:f6:6c:ed:de:c2:5c:76:dc: 22:34:11:ed:60:3f:6f:34:09:be:ca:67:71:e0:16: a6:a5:8f:a7:7b:8a:f0:3c:c9:8f:8b:00:34:f4:ce: fa:0d:77:22:cf:14:5d:ea:8b:f3:88:fb:0b:6a:f1: 1f:db:ed:6e:6d:ac:43:67:fb:d5:65:0b:8d:5d:c9: 11:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:82:39:13:EA:42:80:32:A0:0E:08:EC:9B:0D:83:C3:1C:19:BD:80 X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:f7:16:d3:2d:45:4d:37:d0:ed:b9:92:71:af:0e:e9:ca:be: cc:01:62:3f:48:e7:1d:c0:e7:0d:b4:8f:24:17:94:9a:7b:89: 06:fc:d7:7c:ea:e1:a2:4b:f1:8d:48:da:76:a5:ee:72:2a:7c: ef:e4:53:d2:45:aa:80:c7:da:49:3f:6a:86:82:fb:3e:3f:d2: 06:3d:73:c2:06:5b:45:08:2f:59:cc:f5:ba:57:80:fc:3f:dd: bb:3a:48:a7:7c:9f:2a:35:41:23:89:2c:d2:ad:67:b3:d9:9f: 43:2b:4a:1e:4d:c5:3e:af:90:5f:22:77:d7:0b:e9:25:a1:34: 8a:77:c2:0d:70:fb:ef:2f:87:6f:8c:87:40:c3:ce:25:a9:84: 58:e9:bc:eb:70:47:df:b8:53:c7:0f:88:07:3b:a0:b2:bf:1f: e1:0d:b4:ab:05:2d:17:a0:1c:b9:ee:cb:a8:4a:5f:b0:38:10: 1f:4a:ab:cc:05:f9:b2:98:8d:b9:c6:7a:48:59:23:b6:cf:69: 43:7d:01:b7:9e:c1:82:7b:80:8b:07:f8:ff:c9:40:ef:6d:8c: e7:f2:fa:3c:81:05:14:10:91:a3:d1:da:d3:e3:1b:50:58:08: 16:92:a0:e8:dd:6c:94:d0:74:08:15:bb:ee:f1:9e:58:8d:8f: c0:5f:9a:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjUwODI0MTU1MTMxWhcNMjUwODMxMTU1MTMxWjAYMRYwFAYD VQQDEw02OGFiMzUwNC1jOGNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBJqV4xIzPezvhxJq2rw7+bUIbM3/K4CuQX7cwlDwc/Zpe3Yt1OqRy58Eb20 X+bRfB9zpRGW5w3s1mQ8hz9C6ws4r/JK7v3e0q0UXOkECVmE98NJq+vGxef3gwtZ TUu7Y8JrdR6ppO6Bb/ZZ9cM3xkTzYX6kc1N8iFun6HCUhqxSG6vtyrddUVYdXR+P KGS0jCdaiJ6KzIpPajj2Ny3s1I1B0s4/ajFwogSQ9VPxt2MVuMjd7W74Z8SW9mzt 3sJcdtwiNBHtYD9vNAm+ymdx4BampY+ne4rwPMmPiwA09M76DXcizxRd6ovziPsL avEf2+1ubaxDZ/vVZQuNXckRcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOaCORPq QoAyoA4I7JsNg8McGb2AMB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDh9xbTLUVNN9DtuZJxrw7pyr7MAWI/SOcdwOcNtI8kF5Sae4kG/Nd8 6uGiS/GNSNp2pe5yKnzv5FPSRaqAx9pJP2qGgvs+P9IGPXPCBltFCC9ZzPW6V4D8 P927OkinfJ8qNUEjiSzSrWez2Z9DK0oeTcU+r5BfInfXC+kloTSKd8INcPvvL4dv jIdAw84lqYRY6bzrcEffuFPHD4gHO6Cyvx/hDbSrBS0XoBy57suoSl+wOBAfSqvM BfmymI25xnpIWSO2z2lDfQG3nsGCe4CLB/j/yUDvbYzn8vo8gQUUEJGj0drT4xtQ WAgWkqDo3WyU0HQIFbvu8Z5YjY/AX5oz -----END CERTIFICATE-----Generated at Sun Aug 24 21:38:49 2025 by rpki-client