$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: aqpxzEl9L4q4tj9UYG1XLVgldg2ILg3iHI7ZhugnFQg= Subject key identifier: 0C:24:4D:B7:1F:0C:83:6A:82:75:59:3B:15:5F:13:81:BA:01:D6:9C Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 03A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 03A1 Signing time: Thu 03 Jul 2025 01:09:08 +0000 Manifest this update: Thu 03 Jul 2025 01:09:07 +0000 Manifest next update: Thu 10 Jul 2025 01:09:07 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: ZaxjRylQBnOkLDNERMMlBoVfbM0Kph0h/0s7BUuOQo8=) 2: 44FBB466A03911EC9AD2F840C4F9AE02.roa (hash: u8Y2qHn4dP492v5Q3muwggQyuBR/yx2lsL2jNNDR8KY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Jul 3 01:09:07 2025 GMT Not After : Jul 10 01:09:07 2025 GMT Subject: CN=6865d833-d0a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3e:d2:3b:13:3b:ad:b5:b9:84:3a:fe:5e:39: 74:9a:6a:51:23:7d:06:e8:82:38:4e:41:f4:12:1c: f4:7c:9e:e2:f5:ce:81:06:4c:ae:06:0c:59:b2:27: 7b:50:1e:f3:66:d8:d1:b0:61:13:6c:07:c0:5e:94: 71:b5:91:13:66:16:9f:1e:65:da:2d:50:55:23:b9: 36:37:26:02:bc:f6:29:92:a9:d8:76:ba:be:46:20: fa:00:04:c7:32:e8:ca:0f:ef:ac:f3:c4:fb:0d:c3: 5b:60:f6:b8:fd:b9:aa:13:50:7c:ad:35:dc:f9:a8: 88:73:e4:78:18:1e:e7:84:d4:d4:d1:d4:56:52:0a: b8:af:3f:16:4b:53:1f:a2:12:1c:01:1a:65:4c:24: 2d:7b:7f:cc:7f:c7:5a:51:b0:a9:8e:12:a5:5f:1f: f4:7f:3e:2e:bd:89:69:fe:7b:91:b8:7a:c1:14:a4: b7:85:a5:7f:4d:3a:f9:5f:ef:4d:51:01:aa:8c:5c: 46:80:3c:d3:db:ad:a0:a9:87:c0:9e:39:96:eb:30: 75:a1:f9:02:a9:20:42:92:c0:3f:2d:25:9e:9b:c5: fe:85:da:52:98:18:16:dd:3d:60:5d:9f:b1:44:11: ee:51:6c:fc:cb:98:c8:ff:1b:e7:44:fc:44:64:39: 1a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:24:4D:B7:1F:0C:83:6A:82:75:59:3B:15:5F:13:81:BA:01:D6:9C X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:92:03:13:bb:0b:2a:c4:3a:1c:e4:a4:93:da:67:08:5b:a7: a3:fe:cf:f6:3a:c2:51:1e:26:d2:65:77:d3:f4:9c:b1:ae:78: 36:d2:d2:cc:29:00:e6:5b:b9:ca:66:fd:99:1a:42:ae:67:c8: f9:f0:fe:e8:3a:6f:d4:d5:fc:9c:37:71:c1:e6:d4:16:8c:28: 56:c0:fe:0e:6f:f4:89:fa:00:3a:6a:0b:dc:11:e0:42:18:3f: 11:e3:76:bd:6f:b9:e4:9b:8e:97:07:63:97:fe:f4:46:10:36: 09:42:c5:20:eb:82:65:e2:b6:d7:74:3c:ab:cd:fb:aa:e5:d8: d2:06:0b:39:58:8a:53:3c:60:b2:54:29:7a:b1:e6:6e:fd:c7: 9f:82:da:05:74:07:31:6d:86:11:86:fd:ff:a4:10:a5:2a:7e: 76:14:42:bc:57:56:cd:75:ce:25:0a:5a:3b:d6:a2:a6:c9:11: fd:58:ee:27:23:aa:1e:6b:5d:01:ad:fa:aa:b3:33:1a:69:75: 58:aa:05:79:58:5c:5e:f6:22:a0:89:72:65:9e:00:42:d9:b5: af:23:a1:ce:96:45:f7:13:d5:bd:e8:82:61:77:4a:57:e2:11: 4f:e4:ad:de:16:b1:d9:2b:3e:e8:46:9b:e6:c4:3a:b0:ec:3d: 51:eb:83:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUwNzAzMDEwOTA3WhcNMjUwNzEwMDEwOTA3WjAYMRYwFAYD VQQDEw02ODY1ZDgzMy1kMGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzz7SOxM7rbW5hDr+Xjl0mmpRI30G6II4TkH0Ehz0fJ7i9c6BBkyuBgxZsid7 UB7zZtjRsGETbAfAXpRxtZETZhafHmXaLVBVI7k2NyYCvPYpkqnYdrq+RiD6AATH MujKD++s88T7DcNbYPa4/bmqE1B8rTXc+aiIc+R4GB7nhNTU0dRWUgq4rz8WS1Mf ohIcARplTCQte3/Mf8daUbCpjhKlXx/0fz4uvYlp/nuRuHrBFKS3haV/TTr5X+9N UQGqjFxGgDzT262gqYfAnjmW6zB1ofkCqSBCksA/LSWem8X+hdpSmBgW3T1gXZ+x RBHuUWz8y5jI/xvnRPxEZDkaDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAwkTbcf DINqgnVZOxVfE4G6AdacMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqkgMTuwsqxDoc5KST2mcIW6ej/s/2OsJRHibSZXfT9Jyxrng20tLM KQDmW7nKZv2ZGkKuZ8j58P7oOm/U1fycN3HB5tQWjChWwP4Ob/SJ+gA6agvcEeBC GD8R43a9b7nkm46XB2OX/vRGEDYJQsUg64Jl4rbXdDyrzfuq5djSBgs5WIpTPGCy VCl6seZu/cefgtoFdAcxbYYRhv3/pBClKn52FEK8V1bNdc4lClo71qKmyRH9WO4n I6oea10BrfqqszMaaXVYqgV5WFxe9iKgiXJlngBC2bWvI6HOlkX3E9W96IJhd0pX 4hFP5K3eFrHZKz7oRpvmxDqw7D1R64NP -----END CERTIFICATE-----Generated at Fri Jul 4 14:50:54 2025 by rpki-client