$ rpki-client -vvf rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft File: kbx5rhXMrqROT-eEX7_KY-f6654.mft (raw, json) Hash identifier: URyAJXeS8QJfs5ViLFf7WXhLPxtNGTxzOQ5ok1uBC7k= Subject key identifier: 68:1D:BE:C5:85:EB:53:A8:C2:36:94:0B:8E:D8:15:92:A7:8B:7F:B0 Authority key identifier: 91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E Certificate issuer: /CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Certificate serial: 1022 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft Manifest number: 1006 Signing time: Sun 24 Aug 2025 17:25:51 +0000 Manifest this update: Sun 24 Aug 2025 17:25:51 +0000 Manifest next update: Sun 31 Aug 2025 17:25:51 +0000 Files and hashes: 1: kbx5rhXMrqROT-eEX7_KY-f6654.crl (hash: hz0Xu9vidYZt/U//eVgEozPeB90naZdUL8AEjRg1sQo=) 2: 30BF32F2C28C11EAB764BF4CC4F9AE02.roa (hash: 91GhAMmVYDOKIaPlZtLbS9DCeqxqN11XLz4AvQ01ZCY=) 3: 122F83AAC4AD11EA9E35F20AC4F9AE02.roa (hash: aCjyEapN5RNEdBx43BF8hSE5Js6g7kyTOXpzPyF+n3k=) 4: 13C01CC0C4AD11EA9E35F20AC4F9AE02.roa (hash: fOkeLT2T9sGexymAbtOvzE9kd8mH2xk9Q29zH8sz1Bw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 17:25:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4130 (0x1022) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194335, serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Validity Not Before: Aug 24 17:25:51 2025 GMT Not After : Aug 31 17:25:51 2025 GMT Subject: CN=68ab4b1f-be02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:59:e2:75:fc:ae:43:18:60:ef:4e:e7:6a: ef:65:21:d2:07:d7:9b:78:db:29:26:b4:c4:b5:ab: 49:84:73:98:72:a8:12:64:1e:81:48:a2:f2:cc:38: 00:c1:b4:a8:d6:6c:ab:c3:7e:56:74:ae:af:9e:83: 20:51:c0:29:2e:89:b3:62:cc:3b:b5:51:d1:01:62: 8a:3d:37:f2:c4:3a:c5:6f:e0:e6:95:e5:40:18:17: e6:b9:1c:22:4c:3d:17:ef:fd:76:0d:7c:e2:c9:1f: 6e:26:fb:3a:0b:ee:4d:6e:fe:36:a8:f6:32:4b:ad: e8:96:6a:d5:0f:e6:5c:88:23:22:56:90:b9:75:11: 59:1f:06:80:9e:15:60:f6:7c:bd:56:0a:84:01:10: d4:1c:41:cf:d6:ed:d3:01:72:7c:25:67:27:ae:43: 77:0f:98:1e:a2:32:91:7b:86:7e:20:02:d5:86:4c: df:a7:4e:e2:20:44:1d:0f:00:9e:65:d4:64:db:21: ca:7f:20:54:06:0d:ec:12:46:9a:ca:f1:bd:0b:9b: 1e:7b:aa:55:f8:85:50:ae:e8:78:3e:77:e7:04:b3: 6d:21:7d:19:8c:e4:bb:66:82:65:e1:7e:e9:f4:53: e0:24:42:1b:71:cd:60:5e:30:0f:96:03:95:2f:91: 14:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:1D:BE:C5:85:EB:53:A8:C2:36:94:0B:8E:D8:15:92:A7:8B:7F:B0 X509v3 Authority Key Identifier: keyid:91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:d6:ff:de:5f:77:38:50:5f:6d:63:4c:95:6d:de:e8:4f:c7: 46:ae:68:0c:62:9c:c3:31:13:6e:e2:87:af:9f:f8:b2:2b:e7: 1b:e6:88:8b:7f:39:4d:98:9c:7a:49:b9:f1:5b:52:00:2f:8c: b9:0c:45:1a:30:90:4c:ca:b5:99:27:52:11:d4:c6:1b:83:f0: 26:aa:9b:d3:69:98:03:3a:23:c8:e3:82:13:78:cd:2d:0a:af: 15:ff:09:75:40:ad:82:66:6d:78:67:5a:40:e4:2f:b9:85:68: ce:e6:1e:10:49:a7:84:98:57:8a:67:9b:45:16:3b:20:fc:ea: e1:d2:92:df:b5:a0:62:52:59:ba:ba:20:89:0f:fc:5e:90:23: 99:a5:33:bb:5d:9a:04:e7:8e:7d:c7:92:8e:86:b7:ec:d4:b1: c0:be:8c:9c:6e:3e:2d:31:ad:ad:fa:03:a9:dc:a5:07:d4:70: ad:1c:b2:5e:21:1d:e7:90:8f:bf:97:98:5f:bd:1b:89:1c:f6: 7a:51:44:89:af:fa:43:ab:d0:85:e5:24:dd:26:7a:13:83:1d: 91:aa:6e:ba:88:e4:c4:5f:8c:71:11:09:db:9b:f8:65:20:9a: 2f:b9:d6:cd:3f:5f:f2:f1:e4:9a:74:dd:33:db:25:55:9f:92: 03:44:b1:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICECIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQzMzUxMTAvBgNVBAUTKDkxQkM3OUFFMTVDQ0FFQTQ0RTRGRTc4NDVGQkZDQTYz RTdGQUVCOUUwHhcNMjUwODI0MTcyNTUxWhcNMjUwODMxMTcyNTUxWjAYMRYwFAYD VQQDEw02OGFiNGIxZi1iZTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy+9Z4nX8rkMYYO9O52rvZSHSB9ebeNspJrTEtatJhHOYcqgSZB6BSKLyzDgA wbSo1myrw35WdK6vnoMgUcApLomzYsw7tVHRAWKKPTfyxDrFb+DmleVAGBfmuRwi TD0X7/12DXziyR9uJvs6C+5Nbv42qPYyS63olmrVD+ZciCMiVpC5dRFZHwaAnhVg 9ny9VgqEARDUHEHP1u3TAXJ8JWcnrkN3D5geojKRe4Z+IALVhkzfp07iIEQdDwCe ZdRk2yHKfyBUBg3sEkaayvG9C5see6pV+IVQruh4PnfnBLNtIX0ZjOS7ZoJl4X7p 9FPgJEIbcc1gXjAPlgOVL5EUEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGgdvsWF 61OowjaUC47YFZKni3+wMB8GA1UdIwQYMBaAFJG8ea4VzK6kTk/nhF+/ymPn+uue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDMzNS8zNDJEMjIyODUx RDExMUU5QUYxRkY3M0NDNEY5QUUwMi9rYng1cmhYTXJxUk9ULWVFWDdfS1ktZjY2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tieDVyaFhNcnFST1QtZUVYN19LWS1mNjY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDMzNS8zNDJEMjIyODUxRDExMUU5QUYxRkY3M0NDNEY5QUUwMi9rYng1cmhYTXJx Uk9ULWVFWDdfS1ktZjY2NTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/1v/eX3c4UF9tY0yVbd7oT8dGrmgMYpzDMRNu4oevn/iyK+cb5oiL fzlNmJx6SbnxW1IAL4y5DEUaMJBMyrWZJ1IR1MYbg/AmqpvTaZgDOiPI44ITeM0t Cq8V/wl1QK2CZm14Z1pA5C+5hWjO5h4QSaeEmFeKZ5tFFjsg/Orh0pLftaBiUlm6 uiCJD/xekCOZpTO7XZoE5459x5KOhrfs1LHAvoycbj4tMa2t+gOp3KUH1HCtHLJe IR3nkI+/l5hfvRuJHPZ6UUSJr/pDq9CF5STdJnoTgx2Rqm66iOTEX4xxEQnbm/hl IJovudbNP1/y8eSadN0z2yVVn5IDRLEP -----END CERTIFICATE-----Generated at Sun Aug 24 21:50:13 2025 by rpki-client