$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: mYVie/2MVBiFzMvrrbC0lREQEF4P19Oy+owYnm9h3Kk= Subject key identifier: AB:62:FB:8E:9C:17:58:8D:EC:67:1A:14:77:7D:D9:3C:65:A3:8B:D2 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 068C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 0670 Signing time: Thu 04 Sep 2025 22:49:00 +0000 Manifest this update: Thu 04 Sep 2025 22:49:00 +0000 Manifest next update: Thu 11 Sep 2025 22:49:00 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: bTCkgjIBVPS6IwXMMy8+xpw3N2c8WQtM/v3HAt1By4M=) 2: 4092F17AE64811EFA0F37560C4F9AE02.roa (hash: MuDOs+UNP3qWV7q9sz+FoRMoZ33SC0+8rektpH4Ht5s=) 3: 698130FEE60411EFA2DC3057C4F9AE02.roa (hash: Vt5tMPro7Yd+AkFJe3Cnn+BsDTWCkJWM0XoIlmggi2I=) 4: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: lfQZb+Cu5k1P9aIBAVZr1VIcUuyX72bxEGl/rtrTc0A=) 5: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: guMsQztHXJe0nHYo+3sRzxnbrPq9rNiGro7Edp8V/SQ=) 6: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: 0e9NIIe4Eh6DQ3FvIOOg4nTVMnHbYlzq1N/yU/4pzQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:48:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1676 (0x68c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Sep 4 22:49:00 2025 GMT Not After : Sep 11 22:49:00 2025 GMT Subject: CN=68ba175c-c024 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:d2:34:3c:99:25:d0:11:ac:8b:36:d2:05: e5:ed:a6:84:7c:d1:b8:6e:9b:55:56:30:0c:e6:16: 8a:27:d9:79:74:c0:eb:6e:5a:66:f5:1a:05:5e:40: ef:89:17:a7:83:9b:1d:7c:9f:0b:59:5b:54:08:db: bd:22:40:60:26:32:5a:b0:df:71:20:a8:0f:99:af: 9f:e3:c3:d0:04:88:8c:7b:8d:84:63:7c:81:b1:69: c9:94:54:7b:31:82:42:cf:a1:db:9a:18:a7:41:d8: 71:6e:3d:c4:50:5d:2b:d7:fe:47:c2:64:5d:be:5c: 1e:26:28:58:eb:1f:9d:82:c8:dd:6a:a0:3a:d2:f1: 68:2a:d1:c8:ad:a7:70:4f:c8:09:66:b3:51:2f:12: a1:f8:b8:c2:3c:3e:56:2d:a7:e6:f0:f0:1d:ad:49: f1:2c:d6:a1:88:25:bb:1a:26:65:0e:72:0c:a9:05: a7:9a:31:4d:bc:81:15:62:8b:42:80:ba:da:df:13: 3c:81:c9:d1:b1:6b:c1:b9:ff:20:bc:9f:d2:1d:1d: 5c:c6:5e:f9:b6:b7:cd:9d:24:cd:d2:50:05:c6:b9: 39:3f:79:b4:a8:68:86:94:98:47:60:db:a2:80:e4: 42:03:95:96:53:d0:92:59:e5:97:5f:e5:e8:0c:d9: f7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:62:FB:8E:9C:17:58:8D:EC:67:1A:14:77:7D:D9:3C:65:A3:8B:D2 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:c3:59:fb:51:90:07:3d:55:a1:99:dc:15:18:e5:a8:77:7a: b6:ef:49:24:d5:cc:68:0c:98:83:a1:37:1a:b3:10:b7:2b:a3: 5e:99:d2:f7:aa:19:fb:55:0d:2a:3b:53:5f:22:1e:66:73:81: e5:5c:32:47:b6:0e:e9:dd:df:37:2a:8a:a4:fe:07:eb:2c:9b: 4b:7e:58:f2:c6:7e:d0:e3:96:df:67:c1:cc:cc:cb:81:dc:72: 53:b2:7e:36:7d:da:cc:31:d0:b7:04:e1:69:29:ca:82:33:a3: 75:bf:b5:8c:7c:d9:2f:3f:42:dc:d4:4e:ea:ea:a8:fe:a0:5a: c4:7b:b2:ef:64:46:bd:19:d9:43:25:c1:72:47:a6:19:d3:6e: 57:c5:99:e5:2d:ba:40:6a:bd:3e:a3:87:b0:e5:99:b8:5e:bf: b3:da:4a:f7:c8:53:59:a7:c5:42:ce:a5:29:77:7f:a4:87:97: 1c:d7:1a:ff:e2:be:03:33:62:b8:e7:9c:4b:1b:d6:75:e7:b4: cf:aa:20:f4:e8:4c:6b:a6:59:b3:52:d8:bd:00:1f:e0:bd:62: ee:6c:2f:4e:3c:06:33:e8:61:a4:41:67:75:da:8f:97:f6:c3: f9:3e:6d:f8:1f:a8:da:c8:66:b9:09:ec:09:8e:80:cf:b8:cb: 88:ab:70:69 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjUwOTA0MjI0OTAwWhcNMjUwOTExMjI0OTAwWjAYMRYwFAYD VQQDEw02OGJhMTc1Yy1jMDI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuaPSNDyZJdARrIs20gXl7aaEfNG4bptVVjAM5haKJ9l5dMDrblpm9RoFXkDv iReng5sdfJ8LWVtUCNu9IkBgJjJasN9xIKgPma+f48PQBIiMe42EY3yBsWnJlFR7 MYJCz6HbmhinQdhxbj3EUF0r1/5HwmRdvlweJihY6x+dgsjdaqA60vFoKtHIradw T8gJZrNRLxKh+LjCPD5WLafm8PAdrUnxLNahiCW7GiZlDnIMqQWnmjFNvIEVYotC gLra3xM8gcnRsWvBuf8gvJ/SHR1cxl75trfNnSTN0lAFxrk5P3m0qGiGlJhHYNui gORCA5WWU9CSWeWXX+XoDNn3rwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKti+46c F1iN7GcaFHd92Txlo4vSMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkw1n7UZAHPVWhmdwVGOWod3q270kk1cxoDJiDoTcasxC3K6NemdL3 qhn7VQ0qO1NfIh5mc4HlXDJHtg7p3d83Koqk/gfrLJtLfljyxn7Q45bfZ8HMzMuB 3HJTsn42fdrMMdC3BOFpKcqCM6N1v7WMfNkvP0Lc1E7q6qj+oFrEe7LvZEa9GdlD JcFyR6YZ025XxZnlLbpAar0+o4ew5Zm4Xr+z2kr3yFNZp8VCzqUpd3+kh5cc1xr/ 4r4DM2K455xLG9Z157TPqiD06ExrplmzUti9AB/gvWLubC9OPAYz6GGkQWd12o+X 9sP5Pm34H6jayGa5CewJjoDPuMuIq3Bp -----END CERTIFICATE-----Generated at Sat Sep 6 17:11:02 2025 by rpki-client