$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: toY8P33x3UleXGpbUrsHb3B9RFJjXRJcModxIT2xaoI= Subject key identifier: 5C:20:8F:0E:40:0E:31:7B:CB:D0:DB:B6:5E:93:F1:40:FA:33:06:7C Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 6A Signing time: Wed 17 Sep 2025 07:49:23 +0000 Manifest this update: Wed 17 Sep 2025 07:49:22 +0000 Manifest next update: Wed 24 Sep 2025 07:49:22 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: l9e6SDRB2+PEIu7q4triFn1Nqn67B2QhKxniirStLB0=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 07:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Sep 17 07:49:22 2025 GMT Not After : Sep 24 07:49:22 2025 GMT Subject: CN=68ca6803-b662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:91:f8:d8:25:7d:a0:67:29:a7:7e:21:c9:2d: 42:97:84:d1:ec:65:63:e6:44:97:22:10:46:76:cc: bc:04:89:61:33:00:57:58:a3:0e:c5:c0:6e:a0:05: 78:50:a4:ce:b0:22:e2:ee:da:50:d0:0a:6b:e4:cc: b1:e3:81:e4:f5:a9:b7:d7:fe:51:eb:41:ea:30:7b: 40:71:28:ac:24:40:16:af:f2:ec:6e:26:24:f0:14: 97:fe:0b:4a:49:7e:fb:d8:91:4f:d1:fd:ad:d0:d4: f7:d2:35:d2:7f:f5:50:72:e0:0c:a0:14:b3:b1:a2: 9f:1a:fe:ee:bc:dc:f9:b2:88:36:a1:e5:5c:fb:58: 77:26:54:fb:c0:39:c6:36:ca:1d:6e:2f:47:39:5e: 40:f2:9c:29:26:37:b9:84:3d:1c:09:8a:dd:8c:94: a6:fc:e6:e0:9d:65:cb:fb:78:75:29:57:ee:1d:32: df:85:a4:1e:67:98:3b:cd:cc:85:79:47:d7:55:93: 63:c7:59:22:88:8b:ab:1f:93:a4:0b:04:9a:f6:90: 63:d2:06:96:f8:62:cc:21:fe:23:ce:db:d8:a3:98: 5b:5b:38:16:5a:ac:33:bd:cc:17:89:22:08:b9:32: aa:d5:c5:26:4c:40:49:92:16:b9:69:7e:6a:f8:cb: 4d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:20:8F:0E:40:0E:31:7B:CB:D0:DB:B6:5E:93:F1:40:FA:33:06:7C X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:bd:87:06:ae:7c:10:7e:99:9b:87:47:02:52:b4:22:fc:b3: 53:eb:d4:c8:58:2e:ae:d8:d1:c1:8a:ba:5d:17:9d:80:e0:7f: b1:ad:c8:3c:0a:68:f6:7f:12:55:a5:da:a0:e4:35:cb:56:1b: a8:78:91:c4:bd:83:73:b4:77:26:b5:37:51:4d:d0:39:f5:59: ec:21:6a:5a:3f:20:fe:9d:df:93:2f:79:0a:f0:b4:a9:c5:f6: 9e:92:b8:e3:92:24:3b:18:cb:67:7a:15:5e:70:6c:0c:52:48: 66:15:ef:90:b2:54:b2:cd:41:4f:8d:e3:dc:ee:2a:78:e8:c2: 6f:19:cf:60:16:81:5c:11:fe:f3:bd:b5:fd:d5:dc:45:a5:60: 04:78:bf:74:63:d7:b6:d4:25:50:c1:8a:43:08:3a:60:22:96: 64:bf:ae:29:62:b5:c1:37:80:dd:b5:d8:d8:8b:a3:e2:a3:cc: 44:81:8f:69:59:e2:3b:cb:0c:2d:7e:7f:96:69:3c:c9:d2:b8: d4:60:39:21:49:81:85:5c:d8:01:f2:96:69:7c:42:9c:a2:5c: 06:d0:de:6a:98:ca:08:33:42:e2:cf:19:9b:6f:af:95:4d:0d: 97:de:84:93:b7:a2:00:92:b5:4d:bd:3a:90:c8:c0:d9:dd:bd: 54:eb:f1:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA5MTcwNzQ5MjJaFw0yNTA5MjQwNzQ5MjJaMBgxFjAUBgNV BAMTDTY4Y2E2ODAzLWI2NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAkfjYJX2gZymnfiHJLUKXhNHsZWPmRJciEEZ2zLwEiWEzAFdYow7FwG6gBXhQ pM6wIuLu2lDQCmvkzLHjgeT1qbfX/lHrQeowe0BxKKwkQBav8uxuJiTwFJf+C0pJ fvvYkU/R/a3Q1PfSNdJ/9VBy4AygFLOxop8a/u683PmyiDah5Vz7WHcmVPvAOcY2 yh1uL0c5XkDynCkmN7mEPRwJit2MlKb85uCdZcv7eHUpV+4dMt+FpB5nmDvNzIV5 R9dVk2PHWSKIi6sfk6QLBJr2kGPSBpb4Yswh/iPO29ijmFtbOBZarDO9zBeJIgi5 MqrVxSZMQEmSFrlpfmr4y00hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUXCCPDkAO MXvL0Nu2XpPxQPozBnwwHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJW9hwaufBB+mZuHRwJStCL8s1Pr1MhYLq7Y0cGKul0XnYDgf7GtyDwK aPZ/ElWl2qDkNctWG6h4kcS9g3O0dya1N1FN0Dn1Wewhalo/IP6d35MveQrwtKnF 9p6SuOOSJDsYy2d6FV5wbAxSSGYV75CyVLLNQU+N49zuKnjowm8Zz2AWgVwR/vO9 tf3V3EWlYAR4v3Rj17bUJVDBikMIOmAilmS/rilitcE3gN212NiLo+KjzESBj2lZ 4jvLDC1+f5ZpPMnSuNRgOSFJgYVc2AHylml8QpyiXAbQ3mqYyggzQuLPGZtvr5VN DZfehJO3ogCStU29OpDIwNndvVTr8fY= -----END CERTIFICATE-----Generated at Thu Sep 18 23:51:29 2025 by rpki-client