$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: sNEqF91ck3pxR+5WWKYoL3TBdfLoCKl/A6BUpohcXUA= Subject key identifier: 0F:61:58:45:07:D8:A2:8D:4E:73:26:01:D9:83:4C:27:53:75:05:EB Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A1F Signing time: Wed 02 Jul 2025 20:00:14 +0000 Manifest this update: Wed 02 Jul 2025 20:00:14 +0000 Manifest next update: Wed 09 Jul 2025 20:00:14 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: XNWAUnr0DOnOcXJQsf7ZokJP5Eoh9ruWFFau5jD4R84=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2598 (0xa26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Jul 2 20:00:14 2025 GMT Not After : Jul 9 20:00:14 2025 GMT Subject: CN=68658fce-b488 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c2:51:ea:7f:be:82:e9:89:20:61:e6:06:02: 28:40:fd:5f:23:07:24:0e:7e:71:0f:4d:5e:42:dd: be:44:14:e1:f2:17:dd:36:11:06:36:7d:b5:a4:79: eb:af:51:ec:78:d0:c0:05:7c:2e:7c:8a:0b:09:75: bb:1b:ac:e3:5c:2a:bc:d8:d1:c8:3f:0c:c4:3b:c2: 39:33:b8:32:d2:5d:1e:3c:70:1c:42:84:82:7a:62: ff:96:38:65:fc:20:7b:22:96:b3:98:b1:52:22:4c: 9a:5d:c2:5d:9e:79:93:cd:30:91:8e:b0:2a:70:70: a5:94:30:f4:89:25:9d:34:d1:f5:84:b4:79:ed:83: 7c:57:19:ff:3f:6c:a7:a8:51:8a:bc:ec:db:51:bf: 0e:41:90:5e:f2:81:78:35:1e:3f:b0:5f:34:95:1d: 10:86:c6:82:9d:8b:17:92:9c:b1:e3:ec:a7:ff:c0: 19:31:a7:53:da:ff:bd:ad:b1:cf:99:c6:d2:f2:af: 73:08:35:42:aa:ac:c1:ca:75:ae:f9:d5:8d:8f:91: 43:d0:c8:e5:12:c7:37:2d:17:8c:4f:10:0a:99:13: c2:f3:3b:8d:3a:64:a2:e3:d2:6d:32:47:16:34:8e: 85:0e:e2:e9:f8:72:1b:50:85:0f:06:e2:f8:37:20: f5:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:61:58:45:07:D8:A2:8D:4E:73:26:01:D9:83:4C:27:53:75:05:EB X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b2:99:47:c7:7a:82:51:a7:41:dd:23:5f:5c:64:ed:f8:c6:24: b7:7a:1b:47:9c:46:13:ed:62:df:14:ae:00:6e:d1:04:cb:76: b2:3f:2f:a7:20:84:c6:44:7d:fe:c2:08:1b:82:72:ae:c6:a1: c4:f3:22:c7:c8:3a:6b:72:53:0e:1d:35:1d:e7:83:51:91:7a: d7:ad:cf:a9:4b:15:58:f5:c2:de:bd:1d:f1:91:5c:21:44:a2: e0:58:17:3c:55:2b:30:1c:9d:2f:bb:ca:26:de:c6:bc:b7:f8: 53:4d:d3:eb:44:bd:45:ec:d9:9c:83:ec:47:cf:3f:8d:79:8f: 74:7e:4e:42:e1:ec:6e:a7:de:bd:5b:14:3a:5c:ae:40:54:45: 3c:e5:91:a7:53:d6:92:a0:0f:6a:7e:d6:9b:80:80:b3:06:de: 36:0c:01:15:71:af:49:a1:d3:ec:16:2f:ad:b9:c9:4d:ed:07: ea:b2:86:91:9e:b8:6c:56:01:83:57:63:40:7c:3e:91:5c:1f: 8e:0c:7f:23:8c:ae:c6:36:11:d3:91:bb:74:2d:b7:a8:22:5b: 57:46:bb:95:7a:ed:f8:90:07:b2:72:ab:10:f0:0d:00:34:be: a9:ad:65:cd:57:ea:ff:a0:fd:0a:6f:e8:d5:9b:30:5d:87:83: 4e:3f:e0:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUwNzAyMjAwMDE0WhcNMjUwNzA5MjAwMDE0WjAYMRYwFAYD VQQDEw02ODY1OGZjZS1iNDg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8JR6n++gumJIGHmBgIoQP1fIwckDn5xD01eQt2+RBTh8hfdNhEGNn21pHnr r1HseNDABXwufIoLCXW7G6zjXCq82NHIPwzEO8I5M7gy0l0ePHAcQoSCemL/ljhl /CB7IpazmLFSIkyaXcJdnnmTzTCRjrAqcHCllDD0iSWdNNH1hLR57YN8Vxn/P2yn qFGKvOzbUb8OQZBe8oF4NR4/sF80lR0QhsaCnYsXkpyx4+yn/8AZMadT2v+9rbHP mcbS8q9zCDVCqqzBynWu+dWNj5FD0MjlEsc3LReMTxAKmRPC8zuNOmSi49JtMkcW NI6FDuLp+HIbUIUPBuL4NyD1XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFA9hWEUH 2KKNTnMmAdmDTCdTdQXrMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCymUfHeoJRp0HdI19cZO34xiS3ehtHnEYT7WLfFK4AbtEEy3ayPy+n IITGRH3+wggbgnKuxqHE8yLHyDprclMOHTUd54NRkXrXrc+pSxVY9cLevR3xkVwh RKLgWBc8VSswHJ0vu8om3sa8t/hTTdPrRL1F7Nmcg+xHzz+NeY90fk5C4exup969 WxQ6XK5AVEU85ZGnU9aSoA9qftabgICzBt42DAEVca9JodPsFi+tuclN7QfqsoaR nrhsVgGDV2NAfD6RXB+ODH8jjK7GNhHTkbt0LbeoIltXRruVeu34kAeycqsQ8A0A NL6prWXNV+r/oP0Kb+jVmzBdh4NOP+Db -----END CERTIFICATE-----Generated at Wed Jul 2 23:36:50 2025 by rpki-client