$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: HozG71HJ45vBycNXriTK34TXLp16YK3xRuBY0C1MqRM= Subject key identifier: 76:6B:B5:CF:2C:98:0A:45:6C:1F:C4:65:8A:6C:10:05:B6:95:FA:46 Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 0520 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 051A Signing time: Wed 20 Aug 2025 23:41:48 +0000 Manifest this update: Wed 20 Aug 2025 23:41:48 +0000 Manifest next update: Wed 27 Aug 2025 23:41:48 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: TF9YrGRqQmEr9mtnxIUSd4h7bEqXFqojnL8XqmMyBVQ=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: 9is5aeB2FzFVh9EnamHZGKMz2wLecoiTResPsgf3D2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 23:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1312 (0x520) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: Aug 20 23:41:48 2025 GMT Not After : Aug 27 23:41:48 2025 GMT Subject: CN=68a65d3c-4864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6d:4e:54:2e:f2:a1:95:18:e8:cc:33:29:7c: cb:ca:18:3d:e7:d9:55:1c:eb:a8:9a:63:f9:7d:58: d8:d6:4d:d5:49:e0:46:0b:13:20:ac:bd:66:93:1a: 33:c1:4a:82:16:67:56:cf:8c:d9:ec:3f:e2:a4:a0: 65:0a:ab:ab:50:c9:af:86:e0:14:72:78:ca:54:68: 81:af:07:39:24:ce:69:7d:f1:b5:d1:bd:a3:b6:90: 71:23:2e:56:e8:b3:69:1c:b3:e7:7d:c0:a8:39:98: 02:74:8a:e8:e8:f2:ff:6d:79:2a:c9:86:17:e3:22: f6:e8:a7:eb:d2:12:9e:03:51:f4:9d:f9:13:d6:78: f0:c7:db:27:ab:0c:05:d0:82:d7:bb:07:54:f0:50: d8:ac:00:27:d8:ca:9b:c1:2e:e4:64:a5:b2:2b:d5: 3d:ee:5b:ce:58:a0:a0:7b:49:39:d9:e5:ca:98:7e: 5f:e0:eb:74:ee:9c:51:81:02:22:08:d5:2d:a3:ef: f3:aa:5c:ea:ff:84:c8:4d:d0:d3:3e:05:9b:b6:26: b4:35:a6:f3:f1:0c:d3:f1:c4:65:fb:53:42:d4:15: c8:d7:fe:33:50:6e:7a:78:b8:e9:6c:8b:6a:1e:63: 36:cb:cd:87:7c:36:bb:79:a2:a5:e6:57:57:a2:a5: c6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:6B:B5:CF:2C:98:0A:45:6C:1F:C4:65:8A:6C:10:05:B6:95:FA:46 X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:a6:70:2a:ca:7d:7f:75:76:d6:cb:26:a8:07:b0:9e:55:79: 19:5f:bc:46:3e:2d:61:21:31:b5:db:70:0a:6f:af:54:24:ee: 93:82:60:bc:5c:70:37:10:e6:6b:bc:cc:08:70:e1:a4:a8:55: 9c:a4:b7:c6:50:3b:b6:5f:4c:a4:7d:84:fb:1d:a5:cd:c4:f9: 67:7c:ec:71:c4:ac:86:f7:89:bc:11:00:45:8d:09:78:8e:82: 0b:9c:bd:60:dd:b2:fa:ed:40:f0:df:b3:75:09:fc:5a:7a:e5: 85:44:29:39:9b:0f:c4:49:ba:85:2d:3b:1e:8a:37:6b:c3:c6: 74:59:fb:69:ba:f9:7c:d9:01:f7:3b:ca:b2:ab:6b:e8:fe:5b: a2:7d:2b:55:81:19:e9:44:31:3f:68:2b:c2:52:8a:74:ab:d5: 6f:02:38:94:df:eb:54:50:c5:59:eb:c3:31:30:96:53:10:da: 36:4d:34:2c:96:13:b6:d2:b7:ee:f9:9b:8d:05:6c:b9:9b:63: a2:6e:f1:5b:32:d8:6e:71:10:69:ff:53:a3:9c:3c:18:33:ab: f0:26:f0:aa:87:63:e2:6c:ba:59:ce:82:e6:a3:d1:55:44:8e: 43:a9:76:33:4c:25:49:c1:1f:4f:d6:46:a1:a0:d8:e1:dc:18: 80:08:fc:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBSAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUwODIwMjM0MTQ4WhcNMjUwODI3MjM0MTQ4WjAYMRYwFAYD VQQDEw02OGE2NWQzYy00ODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4W1OVC7yoZUY6MwzKXzLyhg959lVHOuommP5fVjY1k3VSeBGCxMgrL1mkxoz wUqCFmdWz4zZ7D/ipKBlCqurUMmvhuAUcnjKVGiBrwc5JM5pffG10b2jtpBxIy5W 6LNpHLPnfcCoOZgCdIro6PL/bXkqyYYX4yL26Kfr0hKeA1H0nfkT1njwx9snqwwF 0ILXuwdU8FDYrAAn2MqbwS7kZKWyK9U97lvOWKCge0k52eXKmH5f4Ot07pxRgQIi CNUto+/zqlzq/4TITdDTPgWbtia0Nabz8QzT8cRl+1NC1BXI1/4zUG56eLjpbItq HmM2y82HfDa7eaKl5ldXoqXGYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHZrtc8s mApFbB/EZYpsEAW2lfpGMB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCEpnAqyn1/dXbWyyaoB7CeVXkZX7xGPi1hITG123AKb69UJO6TgmC8 XHA3EOZrvMwIcOGkqFWcpLfGUDu2X0ykfYT7HaXNxPlnfOxxxKyG94m8EQBFjQl4 joILnL1g3bL67UDw37N1CfxaeuWFRCk5mw/ESbqFLTseijdrw8Z0Wftpuvl82QH3 O8qyq2vo/luifStVgRnpRDE/aCvCUop0q9VvAjiU3+tUUMVZ68MxMJZTENo2TTQs lhO20rfu+ZuNBWy5m2OibvFbMthucRBp/1OjnDwYM6vwJvCqh2PibLpZzoLmo9FV RI5DqXYzTCVJwR9P1kahoNjh3BiACPyH -----END CERTIFICATE-----Generated at Fri Aug 22 16:35:13 2025 by rpki-client