$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: fqvZEDbSeJrsxcNqyCVtz5ga8a/WQdH39Us6y/j+kPs= Subject key identifier: 9A:18:C2:09:B0:33:A0:CE:6C:DC:86:C0:83:6F:1B:52:66:6B:DD:A7 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 10F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 242E Signing time: Sun 24 Aug 2025 16:58:36 +0000 Manifest this update: Sun 24 Aug 2025 16:58:36 +0000 Manifest next update: Sun 31 Aug 2025 16:58:36 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: 0rUsj2ShGPtKhzdk+p7VeLm521IyJPadIKDo4jjeCCY=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 16:58:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4338 (0x10f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Aug 24 16:58:36 2025 GMT Not After : Aug 31 16:58:36 2025 GMT Subject: CN=68ab44bc-823a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1d:42:2d:9a:5d:d6:4d:10:2b:60:e3:07:f3: 40:8f:65:36:98:7c:1f:87:74:21:41:d4:91:6b:c6: 12:3e:74:f7:08:7a:65:17:05:df:b9:f2:2f:1b:b9: cb:8f:23:cf:b3:0c:3d:fd:0d:93:63:e5:75:ab:3e: 93:da:de:56:4f:a7:a1:f0:9d:37:76:da:47:47:db: 8a:a5:53:6c:86:2e:22:23:3d:cd:cc:98:09:6a:80: 18:80:64:ac:2c:fc:bc:26:61:40:dd:47:f6:5f:c2: 81:70:17:36:1f:c4:f4:da:31:ae:04:d7:92:75:0c: f7:b4:b1:de:9a:dc:bc:ed:06:2f:3c:9d:7b:bf:17: f6:ab:eb:5e:c9:b5:db:6a:8b:5f:13:ef:50:22:70: fd:c6:78:3d:1a:32:99:50:9b:46:77:01:11:83:e9: e2:9d:f0:19:3b:4d:d3:b1:8f:31:a3:38:d3:76:d4: c8:ae:4d:40:a1:3b:6f:f0:8f:3e:23:43:d7:98:33: 37:f0:18:92:0a:b1:86:b3:75:29:a1:5b:8c:c1:6c: e2:76:31:d7:d8:0a:98:32:72:3b:5d:6b:62:96:db: e4:dc:0d:bf:39:f4:a6:df:e0:93:48:e0:88:ce:d8: b6:db:f0:29:b8:bb:bb:77:fb:89:93:09:81:da:b1: 49:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:18:C2:09:B0:33:A0:CE:6C:DC:86:C0:83:6F:1B:52:66:6B:DD:A7 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7e:aa:4d:1d:5e:66:8d:bc:1f:6c:7c:61:fe:d6:ff:ba:53:16: 97:23:82:6d:17:48:69:2a:36:bf:d5:46:63:ac:b7:0e:c1:85: 02:25:d8:74:6a:71:7c:79:36:84:e7:60:d0:e1:41:52:17:c7: ac:f3:28:64:28:96:e9:88:4d:a0:20:35:e6:ef:5e:4c:3c:e9: 19:35:f0:06:78:65:49:71:61:d3:c9:11:4e:fc:05:0f:70:05: 80:ca:49:62:26:c5:33:d6:c9:35:3c:45:18:32:b4:0b:ef:57: 28:64:15:76:3e:7a:18:ed:bb:ec:b2:02:49:64:a9:14:06:18: f7:ab:78:e5:58:91:ad:38:d8:1e:b6:3f:ae:3e:9c:a9:9d:42: 64:52:06:40:74:8a:55:d6:57:b8:82:8e:7d:d4:85:c0:70:f6: 8f:b5:a8:6f:64:c5:c8:0d:ae:e8:51:15:73:3e:f5:19:c4:99: e1:d6:ff:47:48:6f:76:b5:f6:0b:64:38:9e:55:e6:48:c9:2a: a6:c2:ec:cd:5e:d0:2a:ca:d8:c2:9d:01:87:a4:e9:f2:66:d6: a2:c8:27:35:50:f1:91:2d:3a:f1:30:de:15:0b:92:1f:24:5f: 74:56:34:d4:47:d3:81:3d:a4:04:9d:97:31:3f:20:0b:c2:12: 6a:0d:90:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUwODI0MTY1ODM2WhcNMjUwODMxMTY1ODM2WjAYMRYwFAYD VQQDEw02OGFiNDRiYy04MjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoB1CLZpd1k0QK2DjB/NAj2U2mHwfh3QhQdSRa8YSPnT3CHplFwXfufIvG7nL jyPPsww9/Q2TY+V1qz6T2t5WT6eh8J03dtpHR9uKpVNshi4iIz3NzJgJaoAYgGSs LPy8JmFA3Uf2X8KBcBc2H8T02jGuBNeSdQz3tLHemty87QYvPJ17vxf2q+teybXb aotfE+9QInD9xng9GjKZUJtGdwERg+ninfAZO03TsY8xozjTdtTIrk1AoTtv8I8+ I0PXmDM38BiSCrGGs3UpoVuMwWzidjHX2AqYMnI7XWtiltvk3A2/OfSm3+CTSOCI zti22/ApuLu7d/uJkwmB2rFJ9QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoYwgmw M6DObNyGwINvG1Jma92nMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB+qk0dXmaNvB9sfGH+1v+6UxaXI4JtF0hpKja/1UZjrLcOwYUCJdh0 anF8eTaE52DQ4UFSF8es8yhkKJbpiE2gIDXm715MPOkZNfAGeGVJcWHTyRFO/AUP cAWAykliJsUz1sk1PEUYMrQL71coZBV2PnoY7bvssgJJZKkUBhj3q3jlWJGtONge tj+uPpypnUJkUgZAdIpV1le4go591IXAcPaPtahvZMXIDa7oURVzPvUZxJnh1v9H SG92tfYLZDieVeZIySqmwuzNXtAqytjCnQGHpOnyZtaiyCc1UPGRLTrxMN4VC5If JF90VjTUR9OBPaQEnZcxPyALwhJqDZBl -----END CERTIFICATE-----Generated at Sun Aug 24 22:20:55 2025 by rpki-client