$ rpki-client -vvf rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft File: _ksuVPGAyAmvHsmemnx-JzLZ3aY.mft (raw, json) Hash identifier: nk1MGpeTtgr5ur18FNDp1oWS5+IAY99kMkfpG+iv344= Subject key identifier: 29:F0:45:7A:6B:37:4D:63:1D:23:86:64:2F:6B:D6:C9:C3:EB:31:1D Authority key identifier: FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 Certificate issuer: /CN=A914BE96/serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Certificate serial: 1003 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft Manifest number: 0FF4 Signing time: Fri 22 Aug 2025 17:36:01 +0000 Manifest this update: Fri 22 Aug 2025 17:36:00 +0000 Manifest next update: Fri 29 Aug 2025 17:36:00 +0000 Files and hashes: 1: _ksuVPGAyAmvHsmemnx-JzLZ3aY.crl (hash: b4yS4DiuA8bCbklbOWQC9shuKtssJyQkBpUsFGHQXfQ=) 2: 8F75257455E911E9AE112D6CC4F9AE02.roa (hash: thEUPRHmxogbvRJ6Y3FkP32LyqLTW2o8NNUuKxB2tbk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:36:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4099 (0x1003) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BE96, serialNumber=FE4B2E54F180C809AF1EC99E9A7C7E2732D9DDA6 Validity Not Before: Aug 22 17:36:00 2025 GMT Not After : Aug 29 17:36:00 2025 GMT Subject: CN=68a8aa81-deb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4b:cb:23:45:c1:c6:65:db:18:51:05:16:4a: db:f9:93:29:14:a6:71:95:39:ab:db:78:87:16:f9: 69:44:7f:b0:18:be:5d:4e:89:6f:08:5a:f8:74:2d: 99:49:91:c1:80:ac:9b:82:91:96:03:22:fe:f3:64: b5:93:e9:73:f6:5a:1c:b1:bd:ca:12:04:30:ff:47: 56:80:c7:04:86:10:74:20:6a:bd:66:2a:92:b6:a6: a0:34:de:f5:07:b9:22:8c:d6:91:37:8e:23:96:76: 59:6a:8a:c6:c0:f1:4b:72:d0:96:2f:01:93:c6:d7: f0:95:32:96:21:fd:d8:fa:47:66:db:27:8e:c3:b7: a4:ce:cb:a9:1c:ec:3b:c5:2b:dd:c1:3b:a0:89:77: ca:e1:45:c2:68:b4:c5:1b:d7:7f:0c:ed:39:2f:7c: 07:5b:2e:47:df:b4:78:70:11:ab:c6:90:c9:99:59: 58:39:02:79:a3:f7:b5:ae:68:3b:88:a6:3e:27:a4: 4f:71:ca:2a:04:e3:62:a4:d7:c4:94:a5:e1:7a:6a: 11:cd:74:ef:24:f6:6c:d8:a5:f1:2d:ee:c9:a5:bd: fc:8b:74:53:ef:75:ce:34:c8:d0:c1:79:62:3f:c0: a8:23:d8:3a:e9:2e:12:27:36:22:f6:c3:ea:cd:42: 3a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:F0:45:7A:6B:37:4D:63:1D:23:86:64:2F:6B:D6:C9:C3:EB:31:1D X509v3 Authority Key Identifier: keyid:FE:4B:2E:54:F1:80:C8:09:AF:1E:C9:9E:9A:7C:7E:27:32:D9:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_ksuVPGAyAmvHsmemnx-JzLZ3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BE96/EDA65AC455E811E9B305376BC4F9AE02/_ksuVPGAyAmvHsmemnx-JzLZ3aY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d6:e4:95:4a:99:ec:53:31:28:8f:89:e8:99:44:6a:c7:38: 50:a1:4c:4d:23:29:4b:41:6f:89:75:03:80:dd:58:ce:65:39: 3b:67:65:89:94:f5:7a:3d:4b:f2:48:de:5a:c9:e1:d8:2a:8a: c6:40:c0:3a:11:6e:09:a8:58:4b:70:0e:8c:2f:5a:24:e8:87: 75:54:73:63:77:6b:14:67:c6:6b:5e:eb:19:f5:8e:74:72:13: e5:1a:b8:7b:82:7e:27:85:5f:4f:97:d1:4a:4c:c7:13:c0:96: 04:86:cd:78:92:a3:77:b6:15:30:8c:9e:fa:d0:a8:52:0b:11: 95:9c:c9:40:26:c1:8c:52:0a:2e:7a:dd:55:32:ca:bc:aa:f6: dc:c9:69:82:48:c0:48:f5:4e:81:00:30:67:73:b0:1e:46:28: 36:f0:0f:e5:fb:ff:47:36:1e:57:2e:6d:09:8e:a0:f9:9a:47: 3a:a9:9e:81:2b:65:17:9a:a2:f8:db:64:88:ae:55:f4:6c:82: 46:86:38:8a:49:51:21:76:b0:55:3e:62:8d:05:fc:c7:3b:10: c1:0c:49:f3:a9:4c:55:b8:fa:d6:4c:2c:c4:45:d5:ab:d5:9a: e9:40:7a:37:d1:11:a2:68:dd:1f:9b:13:d4:08:42:56:d6:76: 97:8f:9f:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJFOTYxMTAvBgNVBAUTKEZFNEIyRTU0RjE4MEM4MDlBRjFFQzk5RTlBN0M3RTI3 MzJEOUREQTYwHhcNMjUwODIyMTczNjAwWhcNMjUwODI5MTczNjAwWjAYMRYwFAYD VQQDEw02OGE4YWE4MS1kZWI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz0vLI0XBxmXbGFEFFkrb+ZMpFKZxlTmr23iHFvlpRH+wGL5dTolvCFr4dC2Z SZHBgKybgpGWAyL+82S1k+lz9locsb3KEgQw/0dWgMcEhhB0IGq9ZiqStqagNN71 B7kijNaRN44jlnZZaorGwPFLctCWLwGTxtfwlTKWIf3Y+kdm2yeOw7ekzsupHOw7 xSvdwTugiXfK4UXCaLTFG9d/DO05L3wHWy5H37R4cBGrxpDJmVlYOQJ5o/e1rmg7 iKY+J6RPccoqBONipNfElKXhemoRzXTvJPZs2KXxLe7Jpb38i3RT73XONMjQwXli P8CoI9g66S4SJzYi9sPqzUI6NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCnwRXpr N01jHSOGZC9r1snD6zEdMB8GA1UdIwQYMBaAFP5LLlTxgMgJrx7Jnpp8ficy2d2m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkU5Ni9FREE2NUFDNDU1 RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlBbXZIc21lbW54LUp6TFoz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rc3VWUEdBeUFtdkhzbWVtbngtSnpMWjNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 QkU5Ni9FREE2NUFDNDU1RTgxMUU5QjMwNTM3NkJDNEY5QUUwMi9fa3N1VlBHQXlB bXZIc21lbW54LUp6TFozYVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBs1uSVSpnsUzEoj4nomURqxzhQoUxNIylLQW+JdQOA3VjOZTk7Z2WJ lPV6PUvySN5ayeHYKorGQMA6EW4JqFhLcA6ML1ok6Id1VHNjd2sUZ8ZrXusZ9Y50 chPlGrh7gn4nhV9Pl9FKTMcTwJYEhs14kqN3thUwjJ760KhSCxGVnMlAJsGMUgou et1VMsq8qvbcyWmCSMBI9U6BADBnc7AeRig28A/l+/9HNh5XLm0JjqD5mkc6qZ6B K2UXmqL422SIrlX0bIJGhjiKSVEhdrBVPmKNBfzHOxDBDEnzqUxVuPrWTCzERdWr 1ZrpQHo30RGiaN0fmxPUCEJW1naXj583 -----END CERTIFICATE-----Generated at Sun Aug 24 00:16:28 2025 by rpki-client