$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json) Hash identifier: y0eDc3jQl8SyboJY6XsU3NhYEdYgk6dFIYdFQuowGi8= Subject key identifier: 2B:4E:09:EE:A2:65:0E:E6:80:55:3D:C5:C4:94:9A:DE:6A:17:69:6F Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: 7F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft Manifest number: 7C Signing time: Fri 05 Sep 2025 07:15:58 +0000 Manifest this update: Fri 05 Sep 2025 07:15:57 +0000 Manifest next update: Fri 12 Sep 2025 07:15:57 +0000 Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: S8WP2OkHGhCLGERSmr5Nn+HMSDfrYlLAEBzCHQp6Dgg=) 2: 5042D03ED2EF11EFBA610425C4F9AE02.roa (hash: Td45KF7s5KJjDmYTPbjMG6cwXZMtoTfhOtwsLcRRVB4=) 3: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gzNobaLbEvK3FJ3mC0CiPYdWO820L9Sv8IKQdUKftFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:15:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 127 (0x7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Sep 5 07:15:57 2025 GMT Not After : Sep 12 07:15:57 2025 GMT Subject: CN=68ba8e2e-39d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:33:ab:44:79:55:a5:ca:e7:6d:dc:9e:03:9b: c2:a2:6f:bc:f9:00:fb:56:57:39:4a:08:5b:d7:36: 1e:5c:49:f8:02:0c:1d:98:40:20:c8:48:b3:b4:42: b8:9b:7d:49:8a:cd:a0:56:f5:c1:f3:ae:71:c6:bc: 58:45:82:1e:b2:2a:f7:91:a0:4f:45:3a:d5:8d:dd: 58:ce:7f:05:d4:cc:ce:ba:f2:29:c0:be:07:39:d7: 89:c3:d6:b6:a1:27:37:68:70:a4:7c:4a:dd:18:dc: 03:e5:bf:2d:e4:ef:9e:ff:65:e2:19:be:8c:46:75: 07:71:64:c0:c4:c8:77:52:e4:0e:25:88:87:29:4d: d2:fe:60:1a:25:f1:51:ec:34:36:ed:49:f4:0a:1b: d4:3e:ca:f6:ae:ad:61:75:57:90:b8:20:c4:df:80: ec:a4:c3:0f:b1:35:68:ba:8e:fe:3e:7a:8e:a8:2d: 6e:9e:a2:cb:8c:e3:e9:7d:4e:65:d1:d7:98:00:ea: 3b:f7:4d:ce:5a:b4:8a:e1:38:71:fe:3c:b4:68:53: 72:44:5b:79:32:3c:6f:e8:b5:12:60:ed:54:6b:37: d5:ca:a6:31:bd:ab:8c:15:cd:0a:04:f3:ae:79:f7: be:71:18:7f:28:b8:2a:f2:71:0d:70:36:dc:e5:b6: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4E:09:EE:A2:65:0E:E6:80:55:3D:C5:C4:94:9A:DE:6A:17:69:6F X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:67:1e:97:de:ef:75:a9:13:c7:49:d0:a1:e5:f0:cd:5d:2f: e2:f3:b5:7e:0b:b3:a3:65:87:f1:8b:11:29:30:cd:dd:6b:e2: 92:17:9d:09:8c:7b:eb:49:80:7f:6b:51:28:84:b8:42:96:e0: bd:93:ef:ba:d0:3c:07:a9:53:ff:3c:a9:7e:6d:79:ff:53:89: 73:06:1a:0f:21:c8:ea:d4:6f:54:30:73:4c:1b:4a:89:9d:1b: 66:62:b6:c8:9f:d1:1f:8a:af:fc:44:e7:f1:e3:6e:ef:f5:7e: 3e:90:cd:f0:c0:b0:02:9d:56:33:a0:d7:82:95:ee:11:34:56: d5:ac:78:79:54:7f:ef:e9:6d:0a:06:3c:5e:88:7b:ba:76:99: a5:9f:87:ee:66:41:7d:b6:0a:eb:4e:27:0f:55:91:7c:24:92: 21:85:47:23:74:44:4a:09:8c:7e:5d:ad:6d:79:96:be:de:be: 99:b3:2d:a7:ee:ea:0a:94:44:65:6b:eb:12:2f:a4:94:d8:19: ad:63:7f:d8:b8:38:39:dd:77:1d:4c:af:e2:03:fb:fc:f1:2b: d1:bc:49:e6:09:4e:97:5d:0c:a2:d8:70:96:b1:b7:a9:b3:63: f3:46:dc:49:a9:89:37:01:49:bf:6f:24:a9:eb:07:25:b0:1d: 32:d0:bb:7e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODU1MzExMC8GA1UEBRMoOTMwRERGNDEwMTA2OTAzQkVCOTkxOUM5OUJERTAxNjM4 NzA2NTVBRTAeFw0yNTA5MDUwNzE1NTdaFw0yNTA5MTIwNzE1NTdaMBgxFjAUBgNV BAMTDTY4YmE4ZTJlLTM5ZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9M6tEeVWlyudt3J4Dm8Kib7z5APtWVzlKCFvXNh5cSfgCDB2YQCDISLO0Qrib fUmKzaBW9cHzrnHGvFhFgh6yKveRoE9FOtWN3VjOfwXUzM668inAvgc514nD1rah JzdocKR8St0Y3APlvy3k757/ZeIZvoxGdQdxZMDEyHdS5A4liIcpTdL+YBol8VHs NDbtSfQKG9Q+yvaurWF1V5C4IMTfgOykww+xNWi6jv4+eo6oLW6eosuM4+l9TmXR 15gA6jv3Tc5atIrhOHH+PLRoU3JEW3kyPG/otRJg7VRrN9XKpjG9q4wVzQoE8655 975xGH8ouCrycQ1wNtzlth8HAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUK04J7qJl DuaAVT3FxJSa3moXaW8wHwYDVR0jBBgwFoAUkw3fQQEGkDvrmRnJm94BY4cGVa4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NTUzL0E1OUJGRkU0RDJF RDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1Zh NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva3czZlFRRUdrRHZybVJuSm05NEJZNGNHVmE0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4 NTUzL0E1OUJGRkU0RDJFRDExRUY4REVFNTEyMEM0RjlBRTAyL2t3M2ZRUUVHa0R2 cm1SbkptOTRCWTRjR1ZhNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFNnHpfe73WpE8dJ0KHl8M1dL+LztX4Ls6Nlh/GLESkwzd1r4pIXnQmM e+tJgH9rUSiEuEKW4L2T77rQPAepU/88qX5tef9TiXMGGg8hyOrUb1Qwc0wbSomd G2Zitsif0R+Kr/xE5/Hjbu/1fj6QzfDAsAKdVjOg14KV7hE0VtWseHlUf+/pbQoG PF6Ie7p2maWfh+5mQX22CutOJw9VkXwkkiGFRyN0REoJjH5drW15lr7evpmzLafu 6gqURGVr6xIvpJTYGa1jf9i4ODnddx1Mr+ID+/zxK9G8SeYJTpddDKLYcJaxt6mz Y/NG3EmpiTcBSb9vJKnrByWwHTLQu34= -----END CERTIFICATE-----Generated at Sat Sep 6 15:17:33 2025 by rpki-client