$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: aGyVoTK5ofE5gsGDgkE5diBgpbm612G91y1Fez0MT88= Subject key identifier: 9F:C8:DB:98:19:2D:9C:56:CA:6A:9C:DD:38:79:51:9B:14:40:AB:BA Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1A90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1A6E Signing time: Fri 22 Aug 2025 16:27:01 +0000 Manifest this update: Fri 22 Aug 2025 16:27:00 +0000 Manifest next update: Fri 29 Aug 2025 16:27:00 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: pu8YOWPQ27MTUcngmRYmWvYhZzVV2AdYKkTMgpl6w7Y=) 2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM=) 3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: D4FdDOMn9kYOe8wUYl/7g0SwBt2d9VcBYOrZDNcFK0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:26:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6800 (0x1a90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: Aug 22 16:27:00 2025 GMT Not After : Aug 29 16:27:00 2025 GMT Subject: CN=68a89a54-7a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a4:7e:6b:a1:96:50:46:d7:0b:0c:a6:4b:87: 84:6d:bb:dc:52:e9:03:7e:60:4e:57:56:55:25:d3: ee:f6:99:7b:bb:4d:d8:ae:3c:f2:d7:12:17:0b:c6: f8:68:fb:34:20:30:aa:f5:b0:37:d9:25:08:af:67: 6d:7a:d4:7d:06:9a:1d:f3:18:68:79:56:eb:a5:0f: cb:73:e4:30:6b:bd:6b:18:5a:5d:22:2d:77:4d:e5: b5:55:cb:47:1f:19:52:a2:27:ca:82:89:1d:58:67: f0:e6:f7:7a:36:9e:04:cd:47:c4:02:3d:06:f0:09: df:8c:ea:7b:d4:fc:34:f3:ea:7f:5c:0c:24:c3:5e: 4d:09:5b:c3:ff:3a:b0:01:05:00:b1:08:28:05:22: 7b:57:40:d5:d6:e0:f2:e6:cc:91:c0:5e:a1:6a:5b: 54:d5:ba:a1:ec:c7:fe:24:8b:b1:52:75:06:4a:f4: 76:a2:ed:b2:18:9d:10:0d:4a:76:c6:c2:5b:c3:13: b2:55:a7:f0:07:ae:33:a0:c6:af:a1:ef:5e:b3:ee: d6:5a:81:7c:68:92:38:ea:04:9c:85:fa:93:8c:84: ed:8b:1b:d4:c2:eb:01:a1:d0:f9:94:3a:2d:04:ed: ec:10:04:e4:29:45:f6:38:d6:14:0b:5f:74:c6:99: 0a:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C8:DB:98:19:2D:9C:56:CA:6A:9C:DD:38:79:51:9B:14:40:AB:BA X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:b1:05:bc:d6:35:75:80:bd:04:1a:e3:d2:d1:e2:be:ba:7e: 1d:cb:72:88:87:c1:d7:56:6b:8a:12:a2:3c:06:3f:e1:4e:ef: 3e:02:04:c8:91:02:a2:cf:5c:64:e0:2e:45:27:7b:23:7c:9e: 4d:30:c7:61:09:00:5b:1b:84:2e:15:d6:a7:a4:c0:1c:06:5c: 93:74:e1:a5:a9:2d:d6:ef:09:1e:30:17:70:c9:e7:9b:7d:21: 62:18:68:fe:4e:32:24:13:34:18:ec:a4:62:55:30:06:30:a2: 6e:f8:cb:34:5b:aa:9f:95:32:de:47:5f:df:36:d8:12:58:92: f0:78:f3:44:fd:ac:9f:a9:f3:c4:39:9b:2d:29:33:74:ab:82: 3c:36:ae:55:5f:dd:f7:92:b8:ba:42:73:54:2a:0f:ca:e8:fb: ac:3c:fc:28:5e:5b:96:41:6a:35:3a:54:48:46:77:f9:73:e9: 5f:50:e6:c7:06:23:99:19:c4:53:13:74:c7:2a:f4:5b:46:d8: fb:05:10:bd:2e:e8:ea:67:59:e3:ce:71:88:f1:9f:fd:9b:f7: a0:ac:2c:0d:98:d3:e8:b1:21:5f:0b:4b:6f:8a:04:b5:fa:71: ee:de:73:64:9a:d2:f1:5d:ca:3c:eb:50:29:09:45:a8:7c:86: bd:98:e6:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjUwODIyMTYyNzAwWhcNMjUwODI5MTYyNzAwWjAYMRYwFAYD VQQDEw02OGE4OWE1NC03YTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaR+a6GWUEbXCwymS4eEbbvcUukDfmBOV1ZVJdPu9pl7u03Yrjzy1xIXC8b4 aPs0IDCq9bA32SUIr2dtetR9Bpod8xhoeVbrpQ/Lc+Qwa71rGFpdIi13TeW1VctH HxlSoifKgokdWGfw5vd6Np4EzUfEAj0G8AnfjOp71Pw08+p/XAwkw15NCVvD/zqw AQUAsQgoBSJ7V0DV1uDy5syRwF6haltU1bqh7Mf+JIuxUnUGSvR2ou2yGJ0QDUp2 xsJbwxOyVafwB64zoMavoe9es+7WWoF8aJI46gSchfqTjITtixvUwusBodD5lDot BO3sEATkKUX2ONYUC190xpkK0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/I25gZ LZxWymqc3Th5UZsUQKu6MB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQsQW81jV1gL0EGuPS0eK+un4dy3KIh8HXVmuKEqI8Bj/hTu8+AgTI kQKiz1xk4C5FJ3sjfJ5NMMdhCQBbG4QuFdanpMAcBlyTdOGlqS3W7wkeMBdwyeeb fSFiGGj+TjIkEzQY7KRiVTAGMKJu+Ms0W6qflTLeR1/fNtgSWJLwePNE/ayfqfPE OZstKTN0q4I8Nq5VX933kri6QnNUKg/K6PusPPwoXluWQWo1OlRIRnf5c+lfUObH BiOZGcRTE3THKvRbRtj7BRC9LujqZ1njznGI8Z/9m/egrCwNmNPosSFfC0tvigS1 +nHu3nNkmtLxXco861ApCUWofIa9mOax -----END CERTIFICATE-----Generated at Sat Aug 23 23:59:30 2025 by rpki-client