$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: XZmFkV0oyQ3OqORaKF2MzkBT/Xi0DrBK5QoV/9Fm9qQ= Subject key identifier: 8C:5D:62:46:4E:18:63:DC:E4:48:75:18:F8:4D:FA:B8:76:32:41:B5 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 027C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 0278 Signing time: Fri 19 Sep 2025 02:08:16 +0000 Manifest this update: Fri 19 Sep 2025 02:08:15 +0000 Manifest next update: Fri 26 Sep 2025 02:08:15 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: Vls9Dx21PBUtvbaTAL+arizPXrbcJT53nCN/Zp4NQwg=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 02:08:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Sep 19 02:08:15 2025 GMT Not After : Sep 26 02:08:15 2025 GMT Subject: CN=68ccbb10-6a02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:97:af:dd:49:3d:29:d2:9e:d2:65:51:99:41: 53:83:1f:5e:c5:fd:f8:dd:6b:b2:11:23:9f:a2:7f: e5:2f:b7:7b:a9:5e:51:ed:b0:68:7e:c7:6f:09:d8: c5:d2:1f:9f:04:a6:90:67:96:d6:03:d1:66:e5:a6: 8c:09:7a:f5:23:24:89:24:2b:6e:ee:c7:9c:4c:4b: 9b:ac:1f:bf:5c:a5:5b:4a:b9:d9:d4:b4:cf:c7:97: 1a:37:84:8b:fd:52:46:d2:b3:dd:00:72:dd:13:ee: a9:f1:41:23:fb:69:ec:0f:00:bf:54:b3:b7:6f:d7: 3d:2e:10:d6:72:23:65:16:6f:68:46:0b:35:f8:9d: 53:16:b9:f8:8d:14:b2:62:39:97:6f:2f:39:9b:63: 3e:d1:98:32:cc:d7:6e:dd:bc:20:54:bd:83:3b:b3: 72:ef:5f:d4:82:52:71:37:f0:01:00:b7:e9:3d:3f: 34:0c:82:a5:62:c9:ab:4a:b5:20:eb:13:cf:f9:d6: 20:f0:12:41:8b:46:ce:c7:87:c7:b3:70:3b:4e:d5: 6a:9a:57:a4:43:b0:dd:d2:1d:00:1f:ed:72:11:df: c9:e6:03:a8:c3:f6:b1:d5:17:eb:44:7b:f2:88:c9: 1a:af:5e:44:b2:86:4e:d7:16:3d:eb:67:6b:0d:27: f5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:5D:62:46:4E:18:63:DC:E4:48:75:18:F8:4D:FA:B8:76:32:41:B5 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:16:84:57:9a:6d:fb:27:df:84:07:af:e8:15:ab:3c:5d:e0: ab:ad:75:28:6b:5f:38:32:cd:97:eb:0c:52:5d:00:7e:9d:54: ef:2b:ef:a8:55:17:b2:d2:f9:6d:99:5e:a9:ad:23:56:42:b5: 21:01:f8:45:4c:47:45:91:3f:06:85:a7:dd:29:5f:d6:13:1e: 76:31:79:75:9d:54:23:f3:f2:61:19:01:65:be:d7:08:29:84: c4:a6:30:2b:a8:3d:ee:43:62:c6:44:e0:47:38:49:31:ec:8f: 3f:2f:69:b5:27:83:62:f4:33:a0:42:7b:a3:91:a3:6b:b8:d3: c8:19:80:b2:33:0a:e2:75:cf:7c:e1:0d:a0:3d:df:7b:09:8d: d0:71:6e:c9:aa:0b:62:00:92:36:34:50:a4:b1:34:80:93:3c: c9:e0:e5:09:6c:ef:32:c2:7f:16:36:d1:50:19:12:5c:3d:68: f4:d1:62:ab:27:20:13:8f:9e:81:d8:05:af:53:e4:eb:87:c7: 17:2c:43:ce:69:eb:8d:b3:e3:05:8f:06:c1:9e:69:c7:ef:03: 3e:77:d1:59:3e:ee:4a:24:4f:56:51:d0:d6:71:d9:c8:56:2f: 78:ee:16:4a:f2:ca:04:a7:73:89:20:a3:0b:62:c9:c1:4e:c7: 0f:76:97:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwOTE5MDIwODE1WhcNMjUwOTI2MDIwODE1WjAYMRYwFAYD VQQDEw02OGNjYmIxMC02YTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Jev3Uk9KdKe0mVRmUFTgx9exf343WuyESOfon/lL7d7qV5R7bBofsdvCdjF 0h+fBKaQZ5bWA9Fm5aaMCXr1IySJJCtu7secTEubrB+/XKVbSrnZ1LTPx5caN4SL /VJG0rPdAHLdE+6p8UEj+2nsDwC/VLO3b9c9LhDWciNlFm9oRgs1+J1TFrn4jRSy YjmXby85m2M+0ZgyzNdu3bwgVL2DO7Ny71/UglJxN/ABALfpPT80DIKlYsmrSrUg 6xPP+dYg8BJBi0bOx4fHs3A7TtVqmlekQ7Dd0h0AH+1yEd/J5gOow/ax1RfrRHvy iMkar15EsoZO1xY962drDSf1ewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIxdYkZO GGPc5Eh1GPhN+rh2MkG1MB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8FoRXmm37J9+EB6/oFas8XeCrrXUoa184Ms2X6wxSXQB+nVTvK++o VRey0vltmV6prSNWQrUhAfhFTEdFkT8GhafdKV/WEx52MXl1nVQj8/JhGQFlvtcI KYTEpjArqD3uQ2LGROBHOEkx7I8/L2m1J4Ni9DOgQnujkaNruNPIGYCyMwridc98 4Q2gPd97CY3QcW7JqgtiAJI2NFCksTSAkzzJ4OUJbO8ywn8WNtFQGRJcPWj00WKr JyATj56B2AWvU+Trh8cXLEPOaeuNs+MFjwbBnmnH7wM+d9FZPu5KJE9WUdDWcdnI Vi947hZK8soEp3OJIKMLYsnBTscPdpc1 -----END CERTIFICATE-----Generated at Fri Sep 19 09:08:22 2025 by rpki-client