$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: 1tsbwOsAJC1ULS3K1JqYNjza5fLnDI44ZyrchkoZARg= Subject key identifier: 0B:D9:9F:24:E3:63:09:07:C6:D5:2E:66:B6:9B:F3:FE:28:AF:5A:85 Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 03CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 03C4 Signing time: Sat 23 Aug 2025 00:57:12 +0000 Manifest this update: Sat 23 Aug 2025 00:57:12 +0000 Manifest next update: Sat 30 Aug 2025 00:57:12 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: URCcM4v8MUcaCKfo00440szlmQFrYmwLY1x2WpJKDfI=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: YTSXljO/yVhvQBHJezR7ssdww+GXbQn8v2AKybIkw9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:57:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Aug 23 00:57:12 2025 GMT Not After : Aug 30 00:57:12 2025 GMT Subject: CN=68a911e8-4aab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:09:7a:58:ab:46:54:4c:4c:b0:a7:cb:02:d5: 31:90:96:87:78:2f:2f:c7:68:24:58:5d:c9:57:b9: 65:55:72:01:70:bc:78:09:b8:87:66:f8:7f:b8:c6: e9:1c:87:98:18:ce:4a:f6:8a:0d:8d:67:f2:ae:38: a7:ae:1b:e9:fa:bb:36:93:7a:65:56:27:0c:4a:33: 18:cb:ae:34:43:41:14:4e:14:42:d2:da:cc:77:e4: 58:a1:af:81:22:3a:fa:8d:81:4a:82:cb:85:4e:29: 4e:d8:b9:f0:5e:ff:03:46:f5:dd:2c:11:71:2c:11: 0d:84:07:de:49:50:dc:fb:6b:bd:e3:92:49:f0:b5: f1:c3:6a:e8:25:b8:50:33:bc:8e:29:35:df:7f:82: bc:86:8d:33:57:81:72:fd:80:40:0d:73:0a:02:a8: 10:68:9f:2b:dc:6b:ab:3e:15:1c:2d:3b:7d:5a:d6: 9e:67:67:b4:46:58:26:aa:f9:a9:9e:1b:0d:a7:5e: 0f:7a:f1:13:02:3e:fc:dc:40:15:b4:2d:8f:97:06: 84:02:ff:c5:1a:a4:68:a0:32:36:66:0a:08:11:b6: 3b:f1:c2:0f:ee:60:92:f8:8e:b7:bb:6a:21:c5:5f: 72:00:60:15:30:cc:fe:21:0e:f8:0c:23:e2:93:b3: e1:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D9:9F:24:E3:63:09:07:C6:D5:2E:66:B6:9B:F3:FE:28:AF:5A:85 X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:1f:ee:0f:25:8c:a0:2e:31:a3:49:c4:04:4e:01:96:e0:ff: 07:0a:23:4d:fd:47:fe:19:55:cd:f0:49:b1:b5:a6:91:61:06: 6a:81:bc:df:d2:99:02:07:b2:c9:a6:3e:39:c9:e9:09:63:bf: b9:86:e1:52:76:0b:dd:37:bc:eb:e4:b9:72:26:a8:c0:14:77: 5e:87:60:41:8c:95:6c:d1:2d:d6:a2:e9:18:63:a2:80:95:39: 5e:43:93:81:73:12:50:58:0d:a6:0a:cb:88:ec:47:6a:02:f6: 83:54:b3:67:26:8f:7a:56:22:e0:1a:15:59:2e:dd:cb:07:77: 82:f1:a7:2c:5c:d8:09:09:a4:92:78:f7:ba:b0:fc:e4:e9:ad: d2:62:a9:e3:9f:a6:11:8b:ca:f3:a6:c6:bb:92:f9:11:82:95: 1d:62:18:e9:08:91:3e:c7:40:fc:2b:01:49:c1:7e:4e:62:11: b0:ed:dc:e1:d2:bf:5b:71:3e:61:0a:1f:45:32:32:b2:1d:8b: 48:be:91:73:a4:c2:4a:01:c4:eb:14:3c:d2:73:ce:40:ae:35: 89:b7:53:35:59:9c:45:7f:b5:4b:ae:27:0d:63:35:6e:4b:9b: ac:2d:af:e1:77:2a:01:ac:82:99:ab:4f:80:3a:12:dd:b6:35: 30:23:9d:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUwODIzMDA1NzEyWhcNMjUwODMwMDA1NzEyWjAYMRYwFAYD VQQDEw02OGE5MTFlOC00YWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwl6WKtGVExMsKfLAtUxkJaHeC8vx2gkWF3JV7llVXIBcLx4CbiHZvh/uMbp HIeYGM5K9ooNjWfyrjinrhvp+rs2k3plVicMSjMYy640Q0EUThRC0trMd+RYoa+B Ijr6jYFKgsuFTilO2LnwXv8DRvXdLBFxLBENhAfeSVDc+2u945JJ8LXxw2roJbhQ M7yOKTXff4K8ho0zV4Fy/YBADXMKAqgQaJ8r3GurPhUcLTt9WtaeZ2e0Rlgmqvmp nhsNp14PevETAj783EAVtC2PlwaEAv/FGqRooDI2ZgoIEbY78cIP7mCS+I63u2oh xV9yAGAVMMz+IQ74DCPik7PhuwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAvZnyTj YwkHxtUuZrab8/4or1qFMB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByH+4PJYygLjGjScQETgGW4P8HCiNN/Uf+GVXN8EmxtaaRYQZqgbzf 0pkCB7LJpj45yekJY7+5huFSdgvdN7zr5LlyJqjAFHdeh2BBjJVs0S3WoukYY6KA lTleQ5OBcxJQWA2mCsuI7EdqAvaDVLNnJo96ViLgGhVZLt3LB3eC8acsXNgJCaSS ePe6sPzk6a3SYqnjn6YRi8rzpsa7kvkRgpUdYhjpCJE+x0D8KwFJwX5OYhGw7dzh 0r9bcT5hCh9FMjKyHYtIvpFzpMJKAcTrFDzSc85ArjWJt1M1WZxFf7VLricNYzVu S5usLa/hdyoBrIKZq0+AOhLdtjUwI53R -----END CERTIFICATE-----Generated at Sat Aug 23 22:16:23 2025 by rpki-client