$ rpki-client -vvf rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft File: kI54kDTxhBXYdZwmo0brgQ71pBU.mft (raw, json) Hash identifier: oqFVBb8BIfw2KnjiPYin0omG/JyE2V1acB2hBCQONPg= Subject key identifier: FD:6D:F2:DA:3F:E2:E0:94:88:E1:8A:F4:EA:28:AC:15:72:53:AD:04 Authority key identifier: 90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 Certificate issuer: /CN=A911B4ED/serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Certificate serial: 019D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft Manifest number: 0199 Signing time: Sat 23 Aug 2025 03:30:16 +0000 Manifest this update: Sat 23 Aug 2025 03:30:15 +0000 Manifest next update: Sat 30 Aug 2025 03:30:15 +0000 Files and hashes: 1: kI54kDTxhBXYdZwmo0brgQ71pBU.crl (hash: 9hQiHpAdhoJcu8KQPg3bQQw1y4DBiW28H4cPkXuzaxY=) 2: 86A2CEB60F3E11EEA4C55465C4F9AE02.roa (hash: feRFh9Ht2rEY2jS2ePhZA2T4F0vbXp37hvleoPM6Wus=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 413 (0x19d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B4ED, serialNumber=908E789034F18415D8759C26A346EB810EF5A415 Validity Not Before: Aug 23 03:30:15 2025 GMT Not After : Aug 30 03:30:15 2025 GMT Subject: CN=68a935c7-292a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:94:99:7a:c8:c5:45:96:15:da:4b:b9:dd:ac: dc:bb:47:3d:f3:fc:e6:1a:0d:60:b9:31:77:40:f1: 42:46:3d:d5:22:ba:40:91:f3:97:7b:27:ea:00:5a: 91:fc:c7:84:ed:94:10:44:70:1b:54:82:a9:36:6f: 60:99:a4:e6:5c:76:ff:56:0b:0e:ca:f4:fb:67:70: 74:4d:87:f9:e5:78:d5:58:38:74:fb:81:4e:38:4a: 86:ea:4d:db:14:8d:35:1a:87:e3:52:d9:5a:77:fb: 57:ec:5f:a5:ac:51:44:af:f1:90:72:67:e7:aa:69: b1:fe:c5:5c:35:e9:6a:db:97:b0:98:76:dc:4a:bd: a3:87:62:ad:cb:e1:c2:a7:cf:25:c0:82:86:47:b5: 00:fb:fe:c8:1c:2e:b2:0a:9e:2e:87:cd:d0:1c:ed: 53:a6:88:01:ac:97:dd:ab:f7:4c:24:af:95:46:cb: a9:a2:7a:23:0d:47:2b:b4:d5:42:92:85:29:71:70: fb:9a:ca:9a:de:06:a8:cf:ae:4d:a5:4c:5a:7b:f5: f0:02:64:7d:86:6b:bb:a5:f9:da:31:53:15:db:51: cf:b7:6a:ba:a1:ad:3d:e1:98:a5:45:cc:15:61:7d: 3f:9a:cd:12:77:d4:5b:06:b0:17:c4:18:b6:04:e6: 05:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:6D:F2:DA:3F:E2:E0:94:88:E1:8A:F4:EA:28:AC:15:72:53:AD:04 X509v3 Authority Key Identifier: keyid:90:8E:78:90:34:F1:84:15:D8:75:9C:26:A3:46:EB:81:0E:F5:A4:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI54kDTxhBXYdZwmo0brgQ71pBU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B4ED/FA4B0AC40F3711EEAB9D9468C4F9AE02/kI54kDTxhBXYdZwmo0brgQ71pBU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cb:e1:fb:58:61:f5:38:3e:99:b1:af:26:4b:5f:32:fb:37:42: 46:77:11:c6:9a:05:7f:97:26:db:b5:34:5b:98:e1:b9:37:1d: c0:25:ab:a1:15:ed:10:68:43:11:5b:62:e8:2f:a3:ad:14:98: ea:b7:b6:57:db:8e:10:c7:ce:d2:31:0e:f5:de:db:b2:b5:14: 3e:a6:70:0e:6d:43:0b:31:21:bf:41:4c:81:57:eb:4e:f1:87: 61:f3:a1:71:41:37:9c:6d:da:bc:ac:27:56:14:8e:2f:96:e2: dd:5c:8c:cb:da:fb:73:aa:97:bf:a1:a4:ef:44:19:64:ce:be: 41:18:02:84:e5:84:d9:33:e4:73:fc:14:11:52:58:3f:68:77: e9:40:18:94:1b:a6:4b:8c:03:62:7d:21:12:c3:94:bc:86:6a: 82:11:41:7e:6f:d9:e2:af:19:f4:33:b5:dd:db:a4:ef:5c:2d: e9:00:21:9d:11:41:51:d4:7e:fa:80:7d:47:fa:28:75:b8:a4: f8:fa:52:99:2d:5a:b7:ac:89:94:44:b8:d7:24:95:d5:8a:de: 68:bc:35:4c:38:95:f1:1c:07:c3:33:6b:84:9a:14:d4:55:99: 4c:d0:26:1f:b7:38:53:e4:1c:2c:69:23:03:f8:44:2b:e8:b0: 77:51:3d:0f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0RUQxMTAvBgNVBAUTKDkwOEU3ODkwMzRGMTg0MTVEODc1OUMyNkEzNDZFQjgx MEVGNUE0MTUwHhcNMjUwODIzMDMzMDE1WhcNMjUwODMwMDMzMDE1WjAYMRYwFAYD VQQDEw02OGE5MzVjNy0yOTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pSZesjFRZYV2ku53azcu0c98/zmGg1guTF3QPFCRj3VIrpAkfOXeyfqAFqR /MeE7ZQQRHAbVIKpNm9gmaTmXHb/VgsOyvT7Z3B0TYf55XjVWDh0+4FOOEqG6k3b FI01GofjUtlad/tX7F+lrFFEr/GQcmfnqmmx/sVcNelq25ewmHbcSr2jh2Kty+HC p88lwIKGR7UA+/7IHC6yCp4uh83QHO1TpogBrJfdq/dMJK+VRsuponojDUcrtNVC koUpcXD7msqa3gaoz65NpUxae/XwAmR9hmu7pfnaMVMV21HPt2q6oa094ZilRcwV YX0/ms0Sd9RbBrAXxBi2BOYFLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP1t8to/ 4uCUiOGK9OoorBVyU60EMB8GA1UdIwQYMBaAFJCOeJA08YQV2HWcJqNG64EO9aQV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjRFRC9GQTRCMEFDNDBG MzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhCWFlkWndtbzBicmdRNzFw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJNTRrRFR4aEJYWWRad21vMGJyZ1E3MXBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjRFRC9GQTRCMEFDNDBGMzcxMUVFQUI5RDk0NjhDNEY5QUUwMi9rSTU0a0RUeGhC WFlkWndtbzBicmdRNzFwQlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDL4ftYYfU4PpmxryZLXzL7N0JGdxHGmgV/lybbtTRbmOG5Nx3AJauh Fe0QaEMRW2LoL6OtFJjqt7ZX244Qx87SMQ713tuytRQ+pnAObUMLMSG/QUyBV+tO 8Ydh86FxQTecbdq8rCdWFI4vluLdXIzL2vtzqpe/oaTvRBlkzr5BGAKE5YTZM+Rz /BQRUlg/aHfpQBiUG6ZLjANifSESw5S8hmqCEUF+b9nirxn0M7Xd26TvXC3pACGd EUFR1H76gH1H+ih1uKT4+lKZLVq3rImURLjXJJXVit5ovDVMOJXxHAfDM2uEmhTU VZlM0CYftzhT5BwsaSMD+EQr6LB3UT0P -----END CERTIFICATE-----Generated at Sat Aug 23 20:43:56 2025 by rpki-client