$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: ufW5EfDKVfUHn+OIhUKt5yymcQjXGCUuMuA7zwvW3nE= Subject key identifier: 9E:86:43:09:E9:B1:6B:5E:7C:65:E3:72:4F:6C:5C:11:E7:FC:D9:1A Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: B5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: B1 Signing time: Fri 05 Sep 2025 06:32:47 +0000 Manifest this update: Fri 05 Sep 2025 06:32:46 +0000 Manifest next update: Fri 12 Sep 2025 06:32:46 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: DjRApkPw3Wpk25WF/VT2hNM2s0XMpSE1pUuzrJwaNRs=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: VYuqdxkeY8VDCaP9z9fc7NoqICt3B9Gb1p23SFkZpM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:32:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Sep 5 06:32:46 2025 GMT Not After : Sep 12 06:32:46 2025 GMT Subject: CN=68ba840e-32aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:6a:ef:c7:81:18:1b:f4:0c:d4:ea:25:db:13: 97:03:0c:c7:ef:26:a1:8f:6a:74:26:37:2d:36:f5: 11:a2:c5:f1:f6:83:24:26:3a:65:bd:fc:67:5f:e3: 6d:e7:eb:91:75:a1:13:14:45:90:66:f6:5b:40:c3: 50:d7:18:db:51:04:c6:ee:aa:ae:e3:a9:1b:e0:8e: da:3e:d5:26:85:40:b5:f8:1f:ff:4f:b5:ab:71:9b: d3:ca:4b:ed:73:a2:58:2b:bd:c6:c8:a6:a7:d5:0a: 12:1b:e1:de:20:27:46:10:44:ac:58:ec:c8:12:82: ff:32:b5:19:3a:c7:1c:cc:cf:73:da:46:ec:19:6b: 47:d3:5a:95:8c:42:c1:05:c5:9e:83:bf:5c:dd:82: e5:78:83:8f:02:b2:39:6b:12:18:29:dc:1a:39:5c: 08:63:82:07:89:1e:39:9d:bb:5b:70:df:5b:69:1a: df:ac:6f:f2:17:9b:45:88:8e:34:be:62:1e:ff:33: f7:97:36:31:a6:8a:55:dd:cc:71:39:35:8e:fc:03: a0:f2:55:34:4a:a1:f0:9b:e7:10:71:d1:92:a1:43: 13:b6:de:08:27:eb:87:ed:6a:41:71:63:7e:50:e3: 4b:71:4d:62:de:0b:81:56:d1:37:95:0e:95:03:3a: 54:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:86:43:09:E9:B1:6B:5E:7C:65:E3:72:4F:6C:5C:11:E7:FC:D9:1A X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:7b:2d:ed:77:55:86:15:f3:ed:a3:ca:35:c2:51:53:2c:4d: a9:76:28:b3:39:85:68:c7:eb:f1:67:29:2e:ce:4f:e4:87:bb: c0:1d:1c:61:71:78:46:f7:c5:4f:2a:64:dc:d4:fc:d1:d9:00: 45:b1:d2:a1:83:a6:79:16:ba:7f:f3:5a:76:d1:51:77:b7:8d: 3f:b2:54:b9:49:f3:b3:d4:2d:67:bd:c1:1a:50:cc:a0:e5:9f: ea:17:d6:ef:50:ab:2b:2c:d9:f6:08:e2:0c:34:97:14:2e:14: 04:22:16:44:6d:8c:3a:d5:b6:4c:71:a1:91:b2:62:3e:80:c9: 3e:1b:30:ca:41:bc:76:67:a1:d7:ba:38:e9:8f:50:27:04:d1: 9e:f7:ee:b5:b9:44:22:26:36:7f:12:2b:05:7b:0e:58:d8:21: 11:78:15:3d:ba:66:cf:d9:96:bf:6f:79:c1:94:4b:01:f6:21: 5a:a2:1b:93:09:d2:c1:fb:94:fe:0d:3a:1b:3f:a5:a1:1a:f1: ff:61:42:6d:9b:0c:83:cd:b5:56:1f:53:f4:a2:77:42:29:98: b5:cd:14:60:d7:58:15:c0:5d:42:96:84:28:0d:00:8c:21:98: 2a:1f:a9:c4:ef:ff:00:23:23:d8:de:c6:4f:12:c1:2f:dc:7f: a5:ec:da:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1MjUxMTAvBgNVBAUTKDJCM0RCODVFRjk1MjIzOEQxOTJEQ0YxNzBFRTZCRUIx QzhEQjAzQTkwHhcNMjUwOTA1MDYzMjQ2WhcNMjUwOTEyMDYzMjQ2WjAYMRYwFAYD VQQDEw02OGJhODQwZS0zMmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4mrvx4EYG/QM1Ool2xOXAwzH7yahj2p0JjctNvURosXx9oMkJjplvfxnX+Nt 5+uRdaETFEWQZvZbQMNQ1xjbUQTG7qqu46kb4I7aPtUmhUC1+B//T7WrcZvTykvt c6JYK73GyKan1QoSG+HeICdGEESsWOzIEoL/MrUZOscczM9z2kbsGWtH01qVjELB BcWeg79c3YLleIOPArI5axIYKdwaOVwIY4IHiR45nbtbcN9baRrfrG/yF5tFiI40 vmIe/zP3lzYxpopV3cxxOTWO/AOg8lU0SqHwm+cQcdGSoUMTtt4IJ+uH7WpBcWN+ UONLcU1i3guBVtE3lQ6VAzpUZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ6GQwnp sWtefGXjck9sXBHn/NkaMB8GA1UdIwQYMBaAFCs9uF75UiONGS3PFw7mvrHI2wOp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUyNS9FMTg3MTc3Njg0 RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0MFpMYzhYRHVhLXNjamJB NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FMTg3MTc3Njg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0 MFpMYzhYRHVhLXNjamJBNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4ey3td1WGFfPto8o1wlFTLE2pdiizOYVox+vxZykuzk/kh7vAHRxh cXhG98VPKmTc1PzR2QBFsdKhg6Z5Frp/81p20VF3t40/slS5SfOz1C1nvcEaUMyg 5Z/qF9bvUKsrLNn2COIMNJcULhQEIhZEbYw61bZMcaGRsmI+gMk+GzDKQbx2Z6HX ujjpj1AnBNGe9+61uUQiJjZ/EisFew5Y2CEReBU9umbP2Za/b3nBlEsB9iFaohuT CdLB+5T+DTobP6WhGvH/YUJtmwyDzbVWH1P0ondCKZi1zRRg11gVwF1CloQoDQCM IZgqH6nE7/8AIyPY3sZPEsEv3H+l7Nrb -----END CERTIFICATE-----Generated at Sat Sep 6 21:39:42 2025 by rpki-client