$ rpki-client -vvf rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft File: K0QMfEWQAwVRV2J95yFOnKwSi0w.mft (raw, json) Hash identifier: vPXl5ZUFUu40W8DBd/KJWC2d9z6GOkF1WJZykxOHJsc= Subject key identifier: 6D:03:58:1F:E2:07:D9:49:D7:01:79:31:49:E3:C6:22:1A:98:F3:15 Authority key identifier: 2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C Certificate issuer: /CN=A9187729/serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Certificate serial: 03FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft Manifest number: 03F7 Signing time: Sat 23 Aug 2025 00:43:30 +0000 Manifest this update: Sat 23 Aug 2025 00:43:30 +0000 Manifest next update: Sat 30 Aug 2025 00:43:30 +0000 Files and hashes: 1: K0QMfEWQAwVRV2J95yFOnKwSi0w.crl (hash: e42vOJKORKplAEIF7MyTXlaljuIN/vnPTDzYf0IGsBo=) 2: 394B48F6889811EC9D1DF920C4F9AE02.roa (hash: l0TDwbIQKnn22v377SYBCTiXJEwlU244XaVGT+AApO8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:43:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1020 (0x3fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187729, serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Validity Not Before: Aug 23 00:43:30 2025 GMT Not After : Aug 30 00:43:30 2025 GMT Subject: CN=68a90eb2-2ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:45:f9:94:d5:f9:e3:66:b4:93:42:c7:d0:d1: 77:14:b2:03:4a:3e:e7:02:8f:da:d2:03:16:3c:5b: 64:15:a2:d5:47:d6:58:38:f8:ef:02:f8:38:d0:e1: 82:48:c6:39:2f:33:e9:a9:b1:7f:97:29:7e:41:9d: 81:1f:db:8d:86:87:32:e0:15:7c:d8:49:ae:56:78: 8c:12:4f:26:a0:54:9e:95:db:d4:29:56:4e:4f:3e: d2:12:af:cd:f1:d5:dc:6e:af:29:68:02:c1:83:44: 16:4f:7a:7c:21:de:34:75:2f:0e:85:07:15:a4:b6: 87:21:b9:65:ea:70:80:1c:23:c9:f2:64:0a:b6:72: 17:70:ab:fc:f1:0f:53:b7:b8:6a:da:1b:ac:74:95: 25:01:72:09:3a:c8:ca:22:cc:51:19:a6:a3:75:21: b8:ab:ec:17:56:dc:a5:e0:aa:95:bd:ed:7e:ef:12: aa:af:9c:79:0c:db:0d:bd:4a:96:21:e3:cf:36:6c: 44:a2:3d:8e:e6:f8:bb:59:fc:1a:f8:d5:29:86:65: e2:31:aa:bc:59:f7:96:8e:c3:e3:6f:2f:9b:47:65: 22:7a:32:ef:fb:3d:86:69:c5:d9:60:9b:83:f7:95: 47:03:04:35:6e:fc:de:1e:c0:54:71:f8:5a:40:6e: 2e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:03:58:1F:E2:07:D9:49:D7:01:79:31:49:E3:C6:22:1A:98:F3:15 X509v3 Authority Key Identifier: keyid:2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b4:e4:5f:3f:7c:28:c9:ef:6d:21:75:5a:29:8b:40:df:e4:eb: e5:a2:c4:4a:6c:4f:6a:8e:64:de:eb:3d:53:a2:30:df:23:0a: ef:1c:2d:31:ff:53:f4:25:5f:09:64:73:f7:dc:b2:33:db:49: ce:de:4b:ce:b3:e6:61:50:20:53:07:c7:e0:f7:fe:c2:4e:4b: 85:3c:ae:68:9f:a3:8d:88:1f:bf:94:43:dc:ff:e4:bb:02:c3: 08:f2:fd:5d:ce:9a:d6:fd:f5:ed:27:ce:8a:3d:46:3a:e0:ea: be:b2:ef:a8:28:b3:b3:eb:06:5a:f4:c2:36:b9:f1:68:e4:4c: 3e:cf:37:b3:01:1d:24:24:50:7c:7c:a8:33:04:07:47:c6:0e: cd:a5:6f:90:ed:9c:77:2b:ec:95:73:ad:21:4e:c6:83:b0:dd: f4:af:52:5b:16:59:94:13:db:49:ce:9a:83:ea:f5:f4:d0:36: 16:25:a3:99:2f:54:e3:6a:1a:7b:f6:ee:89:e0:55:ad:a7:af: 82:8d:91:9c:77:34:ed:35:d3:a8:cb:46:8d:e9:b9:1c:ed:83: e9:8b:5d:a4:9a:ae:8b:ed:a5:12:36:f3:14:62:90:ec:f8:70: b3:8c:1a:dd:e0:1e:f3:e2:c6:91:dd:10:29:8b:a0:f7:fd:1a: 0f:3a:90:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MjkxMTAvBgNVBAUTKDJCNDQwQzdDNDU5MDAzMDU1MTU3NjI3REU3MjE0RTlD QUMxMjhCNEMwHhcNMjUwODIzMDA0MzMwWhcNMjUwODMwMDA0MzMwWjAYMRYwFAYD VQQDEw02OGE5MGViMi0yZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+UX5lNX542a0k0LH0NF3FLIDSj7nAo/a0gMWPFtkFaLVR9ZYOPjvAvg40OGC SMY5LzPpqbF/lyl+QZ2BH9uNhocy4BV82EmuVniMEk8moFSeldvUKVZOTz7SEq/N 8dXcbq8paALBg0QWT3p8Id40dS8OhQcVpLaHIbll6nCAHCPJ8mQKtnIXcKv88Q9T t7hq2husdJUlAXIJOsjKIsxRGaajdSG4q+wXVtyl4KqVve1+7xKqr5x5DNsNvUqW IePPNmxEoj2O5vi7Wfwa+NUphmXiMaq8WfeWjsPjby+bR2UiejLv+z2GacXZYJuD 95VHAwQ1bvzeHsBUcfhaQG4urQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG0DWB/i B9lJ1wF5MUnjxiIamPMVMB8GA1UdIwQYMBaAFCtEDHxFkAMFUVdifechTpysEotM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcyOS8xMzEyRjkwODg4 OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3VlJWMko5NXlGT25Ld1Np MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0swUU1mRVdRQXdWUlYySjk1eUZPbkt3U2kwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzcyOS8xMzEyRjkwODg4OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3 VlJWMko5NXlGT25Ld1NpMHcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC05F8/fCjJ720hdVopi0Df5OvlosRKbE9qjmTe6z1TojDfIwrvHC0x /1P0JV8JZHP33LIz20nO3kvOs+ZhUCBTB8fg9/7CTkuFPK5on6ONiB+/lEPc/+S7 AsMI8v1dzprW/fXtJ86KPUY64Oq+su+oKLOz6wZa9MI2ufFo5Ew+zzezAR0kJFB8 fKgzBAdHxg7NpW+Q7Zx3K+yVc60hTsaDsN30r1JbFlmUE9tJzpqD6vX00DYWJaOZ L1Tjahp79u6J4FWtp6+CjZGcdzTtNdOoy0aN6bkc7YPpi12kmq6L7aUSNvMUYpDs +HCzjBrd4B7z4saR3RApi6D3/RoPOpDx -----END CERTIFICATE-----Generated at Sun Aug 24 22:14:36 2025 by rpki-client