$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: TJQHy+a5KjWMB0DDMNQ+6i6oB3Z6V9chW2O6t8pSc+U= Subject key identifier: E4:B9:3E:34:9D:A8:F0:3E:56:1D:DF:A1:FE:22:E9:ED:86:17:4A:E6 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A39 Signing time: Fri 22 Aug 2025 19:51:41 +0000 Manifest this update: Fri 22 Aug 2025 19:51:41 +0000 Manifest next update: Fri 29 Aug 2025 19:51:41 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: 4lGXzHc5+7GqzkWnXUlkt/ClqxKVB/gFKF/5SSduIZk=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 19:51:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2624 (0xa40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Aug 22 19:51:41 2025 GMT Not After : Aug 29 19:51:41 2025 GMT Subject: CN=68a8ca4d-cf6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:73:02:fc:7d:a5:9c:44:06:78:72:8d:08:19: af:39:18:92:de:fe:f6:7f:94:1f:e5:2e:d6:7e:4c: eb:29:b5:09:1d:65:38:80:92:aa:0a:5f:48:be:31: aa:c1:d7:63:c4:6a:f9:a1:e7:82:b5:f9:86:88:c3: e4:fd:b5:5c:b4:0a:38:83:67:de:1d:b0:4c:9a:3b: 16:56:ae:6d:07:93:9f:49:74:b2:ca:47:bc:8f:d2: 6c:4e:39:ed:00:13:98:d2:91:b6:80:05:79:2a:7b: de:15:a0:6d:9c:a4:0a:09:7c:d7:94:09:b4:c1:9b: 69:59:c0:d6:9d:66:df:75:1f:b8:5a:6f:9d:03:f9: 11:b8:8a:36:57:da:d3:4c:60:f2:af:89:d3:86:65: 6a:4c:dd:0f:4e:cd:d2:48:7e:3e:aa:83:d4:2a:cc: 1f:7c:ac:4d:aa:bd:1c:69:d6:42:a4:59:f2:c4:19: fa:b1:10:b2:e0:35:1e:b1:98:23:6b:3a:50:59:69: ff:44:18:16:ea:1d:05:58:39:dc:74:b8:c8:2d:00: 34:c2:e8:bd:3e:75:ad:7b:3a:dc:c0:f5:44:bf:20: 68:e0:14:ed:26:28:3d:5e:9f:1c:c4:13:f3:eb:7a: 8e:5b:c8:30:17:5c:88:5b:7c:54:1c:2a:e5:9a:5a: fe:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B9:3E:34:9D:A8:F0:3E:56:1D:DF:A1:FE:22:E9:ED:86:17:4A:E6 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:88:38:d0:66:19:1c:86:a3:26:4c:fa:8c:5f:14:c5:ab:a2: 9a:2f:8b:df:dc:76:9a:04:58:7e:31:64:76:11:27:f9:1b:44: 97:c8:c0:07:bf:9e:c6:ce:40:a7:2c:86:73:dd:ad:49:e4:07: d5:41:57:d3:91:04:96:d1:43:a9:d7:de:05:b7:87:e0:c1:aa: 84:04:ae:9d:98:ce:33:d3:2f:ff:ef:89:9a:5a:4a:de:d3:fe: 55:7b:16:37:a5:c9:0d:98:0a:4e:8d:44:b8:62:1b:bb:ca:f5: 4c:49:30:b1:72:2b:b6:ef:9d:ce:c0:8b:33:cd:d3:18:3f:7d: 08:45:81:e2:24:9b:11:d1:c6:d2:3d:5a:36:43:e6:9f:c3:cc: 65:c9:a7:bc:a7:93:3a:83:39:fc:94:02:ef:4a:a6:b0:c5:ac: 23:50:b3:97:85:d4:d9:00:82:43:30:24:fc:4d:62:d8:f6:7f: 00:c7:39:54:91:34:85:63:32:32:c5:f4:71:8d:68:f6:fa:75: ea:89:67:fb:9b:72:78:54:32:9e:23:0a:4f:0f:6f:44:13:30: 23:06:b4:56:39:bd:fa:74:48:90:25:c6:6c:b0:41:3a:56:f1: 68:f5:66:8b:26:9f:ab:50:33:55:50:ed:88:34:69:8d:8f:a6: 0f:cf:58:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUwODIyMTk1MTQxWhcNMjUwODI5MTk1MTQxWjAYMRYwFAYD VQQDEw02OGE4Y2E0ZC1jZjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArXMC/H2lnEQGeHKNCBmvORiS3v72f5Qf5S7WfkzrKbUJHWU4gJKqCl9IvjGq wddjxGr5oeeCtfmGiMPk/bVctAo4g2feHbBMmjsWVq5tB5OfSXSyyke8j9JsTjnt ABOY0pG2gAV5KnveFaBtnKQKCXzXlAm0wZtpWcDWnWbfdR+4Wm+dA/kRuIo2V9rT TGDyr4nThmVqTN0PTs3SSH4+qoPUKswffKxNqr0cadZCpFnyxBn6sRCy4DUesZgj azpQWWn/RBgW6h0FWDncdLjILQA0wui9PnWtezrcwPVEvyBo4BTtJig9Xp8cxBPz 63qOW8gwF1yIW3xUHCrlmlr+UwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOS5PjSd qPA+Vh3fof4i6e2GF0rmMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHiDjQZhkchqMmTPqMXxTFq6KaL4vf3HaaBFh+MWR2ESf5G0SXyMAH v57GzkCnLIZz3a1J5AfVQVfTkQSW0UOp194Ft4fgwaqEBK6dmM4z0y//74maWkre 0/5VexY3pckNmApOjUS4Yhu7yvVMSTCxciu2753OwIszzdMYP30IRYHiJJsR0cbS PVo2Q+afw8xlyae8p5M6gzn8lALvSqawxawjULOXhdTZAIJDMCT8TWLY9n8AxzlU kTSFYzIyxfRxjWj2+nXqiWf7m3J4VDKeIwpPD29EEzAjBrRWOb36dEiQJcZssEE6 VvFo9WaLJp+rUDNVUO2INGmNj6YPz1ic -----END CERTIFICATE-----Generated at Sat Aug 23 21:29:37 2025 by rpki-client