$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft File: KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft (raw, json) Hash identifier: f7gigDvcU/2M6mq/dyXugXa6CmSoYf+SRIYyTdgq+0U= Subject key identifier: CC:34:AC:0A:0B:3B:56:DA:C0:DB:4B:9D:7F:68:FC:0F:5B:25:BA:67 Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Certificate serial: 06EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft Manifest number: 06E5 Signing time: Thu 04 Sep 2025 22:16:28 +0000 Manifest this update: Thu 04 Sep 2025 22:16:28 +0000 Manifest next update: Thu 11 Sep 2025 22:16:28 +0000 Files and hashes: 1: KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl (hash: pJet4Rq7PhfcsFOgu68C9N6LEyvueNgACqVVlEqUMJc=) 2: ED534930C8B511ED9A1D817EC4F9AE02.roa (hash: cWc+J1TIBwheicFkr/uWy0LuYQxsGfxktq1Xam8BBXI=) 3: 9398F508619611EBA485B448C4F9AE02.roa (hash: Nd8Cn8Kc0/NAG96VlpahXIFBzBlttK0FrKVnW80S2cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:16:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190960, serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Validity Not Before: Sep 4 22:16:28 2025 GMT Not After : Sep 11 22:16:28 2025 GMT Subject: CN=68ba0fbc-f3c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:1c:d5:99:96:9b:39:aa:2a:53:89:0f:0d: c8:f4:28:8d:c5:7a:3f:d7:06:a2:d8:2b:9a:a2:b7: 03:8f:3e:e4:79:9a:ba:ac:e9:e4:b2:ae:f3:93:0b: 32:67:d4:7d:74:0b:37:64:90:6f:ba:ce:da:8f:5f: 50:0f:16:36:e6:20:bd:dc:90:f4:c4:f8:ce:44:0f: 8e:aa:14:bc:be:4c:62:12:6a:b1:24:e0:da:f3:0a: 58:9c:16:57:ba:bb:8a:60:f6:6f:7d:cb:3e:d2:e9: 7d:07:12:a3:dd:8e:2d:55:00:61:c5:8a:e9:8f:47: 1e:a4:bc:69:7b:ad:4a:ee:e5:a4:8a:60:7c:ef:30: a2:ac:bf:a9:34:62:9c:25:7b:5a:b3:93:e7:f1:e3: af:04:7c:79:fb:ea:08:f0:4b:ce:a8:7a:ab:cf:4d: 36:1d:94:92:b8:1f:dc:c2:32:b6:58:77:5b:08:15: 07:54:e4:e1:bf:8f:b2:e7:53:d5:f2:48:bc:ee:4f: 99:af:88:41:4a:c8:e8:d8:b5:bb:fd:de:0a:ab:7a: 76:c8:3e:d3:c8:3b:f0:db:17:28:1d:4f:21:5e:e9: 52:ec:2b:5f:41:b8:9f:bd:c8:da:9d:aa:5e:fb:1b: 65:91:cc:98:5b:b4:c1:11:5f:eb:08:fd:7f:b6:b7: 74:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:34:AC:0A:0B:3B:56:DA:C0:DB:4B:9D:7F:68:FC:0F:5B:25:BA:67 X509v3 Authority Key Identifier: keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:a5:6e:5b:36:cb:8d:3c:5b:b2:43:55:c5:e1:eb:3e:a6:7b: d2:d0:f9:20:54:47:10:35:2a:d9:32:06:a8:1c:ee:54:39:b3: df:9c:0a:d2:44:20:ec:eb:fd:ba:4f:38:18:fa:cb:d9:00:18: 5c:84:28:c3:8b:94:e2:67:4b:47:c9:66:5e:96:42:a3:65:3c: 9e:93:0f:16:99:da:30:f8:44:b1:b3:ef:39:64:94:4b:c3:af: 21:e9:95:ae:39:0f:5a:ed:18:87:d2:bd:17:50:e4:99:02:a6: 54:9d:a8:c8:f4:c2:68:cd:5b:eb:7e:3f:97:b7:07:91:81:75: 09:c1:7d:44:84:71:49:3a:ea:00:66:38:37:b8:66:22:7a:50: 1f:bb:67:b3:ed:1a:24:92:de:d4:fc:89:11:f1:c0:37:6a:da: da:c9:f4:58:cb:9d:5c:72:22:98:b2:40:a1:a0:b5:1e:5e:91: d0:2e:cc:b1:86:cd:8f:25:64:55:b2:bd:32:17:97:14:c1:69: 4a:6f:83:a0:f3:c8:fb:2a:3b:5e:fc:dc:12:9b:8c:bc:6d:cf: 52:ad:73:c4:29:dd:03:96:41:35:a8:c5:d0:57:10:79:a2:d8: dd:c1:56:1c:17:f4:b9:c6:d3:ba:0b:65:60:03:a7:73:a9:b6: 6f:a4:89:aa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5NjAxMTAvBgNVBAUTKDJBOTAwNzM0QzVFM0I5M0FDQTk0NzBFM0Y1QUREQURD MkYyMTVCMzEwHhcNMjUwOTA0MjIxNjI4WhcNMjUwOTExMjIxNjI4WjAYMRYwFAYD VQQDEw02OGJhMGZiYy1mM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArj4c1ZmWmzmqKlOJDw3I9CiNxXo/1wai2CuaorcDjz7keZq6rOnksq7zkwsy Z9R9dAs3ZJBvus7aj19QDxY25iC93JD0xPjORA+OqhS8vkxiEmqxJODa8wpYnBZX uruKYPZvfcs+0ul9BxKj3Y4tVQBhxYrpj0cepLxpe61K7uWkimB87zCirL+pNGKc JXtas5Pn8eOvBHx5++oI8EvOqHqrz002HZSSuB/cwjK2WHdbCBUHVOThv4+y51PV 8ki87k+Zr4hBSsjo2LW7/d4Kq3p2yD7TyDvw2xcoHU8hXulS7CtfQbifvcjanape +xtlkcyYW7TBEV/rCP1/trd0BwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMw0rAoL O1bawNtLnX9o/A9bJbpnMB8GA1UdIwQYMBaAFCqQBzTF47k6ypRw4/Wt2twvIVsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk2MC85QzZGN0JFQTYx OTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVUcktsSERqOWEzYTNDOGhX ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twQUhOTVhqdVRyS2xIRGo5YTNhM0M4aFd6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDk2MC85QzZGN0JFQTYxOTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVU cktsSERqOWEzYTNDOGhXekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBpW5bNsuNPFuyQ1XF4es+pnvS0PkgVEcQNSrZMgaoHO5UObPfnArS RCDs6/26TzgY+svZABhchCjDi5TiZ0tHyWZelkKjZTyekw8Wmdow+ESxs+85ZJRL w68h6ZWuOQ9a7RiH0r0XUOSZAqZUnajI9MJozVvrfj+XtweRgXUJwX1EhHFJOuoA Zjg3uGYielAfu2ez7Rokkt7U/IkR8cA3atrayfRYy51cciKYskChoLUeXpHQLsyx hs2PJWRVsr0yF5cUwWlKb4Og88j7Kjte/NwSm4y8bc9SrXPEKd0DlkE1qMXQVxB5 otjdwVYcF/S5xtO6C2VgA6dzqbZvpImq -----END CERTIFICATE-----Generated at Fri Sep 5 11:27:43 2025 by rpki-client