$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: FalQ9FuhifFAA4L/OwE++pjYTGR5e0yoMQ0Ap+Mi6Fc= Subject key identifier: A7:B8:5D:51:25:EE:67:9F:DE:0F:65:33:01:7F:A2:D7:C2:0E:E2:AE Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1A70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1A50 Signing time: Wed 02 Jul 2025 16:29:25 +0000 Manifest this update: Wed 02 Jul 2025 16:29:24 +0000 Manifest next update: Wed 09 Jul 2025 16:29:24 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: 4rUov0ASMVS6grWCMgZLBs1X3Z/tiIPUA0uuoDHGXLA=) 2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM=) 3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: hBSO24ULXhKu94YR3RfqFp/a4boCJIBAaE6mmtZ9Bvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 16:29:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6768 (0x1a70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: Jul 2 16:29:24 2025 GMT Not After : Jul 9 16:29:24 2025 GMT Subject: CN=68655e65-3789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:60:de:f6:9a:4c:2a:e4:91:62:99:ad:2b:40: f7:67:17:70:70:53:a8:e1:39:54:06:41:c3:d2:e1: 1a:f1:62:1d:04:7c:2a:81:0b:0e:e7:53:b7:1d:64: de:90:ea:5b:0b:62:10:b3:6a:0d:3d:36:f7:a9:02: d0:80:24:37:57:2b:db:60:32:c2:8d:7a:62:d6:00: 20:14:f9:cb:45:6e:41:90:80:5c:c0:69:e4:73:46: bf:89:df:0e:17:8a:8a:54:71:08:29:29:1a:02:58: 43:39:d3:7e:7d:e3:a8:6f:de:07:03:1d:f7:ad:dc: 2f:c8:6e:30:b1:a1:54:e4:54:d6:70:7b:c6:bd:4d: f9:4f:3a:cc:b3:39:68:ce:9d:72:e2:02:ed:ba:7d: f7:37:c1:bd:0f:7b:bd:9f:db:22:75:9e:89:51:c9: 9e:60:fa:61:be:22:42:58:c1:7b:71:9b:01:b9:5b: e5:d4:81:9d:59:c6:a0:19:0f:1c:be:5c:89:8b:d8: 40:03:64:8e:53:37:60:e9:db:14:3a:24:33:55:6c: 30:6b:10:48:a1:00:55:0f:b6:27:c7:0f:b7:9d:a4: 65:cf:4b:84:aa:b9:d4:7d:4f:22:d7:6a:41:46:85: be:2a:af:88:7b:62:95:48:c9:9d:f8:3f:15:60:8b: 5e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B8:5D:51:25:EE:67:9F:DE:0F:65:33:01:7F:A2:D7:C2:0E:E2:AE X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:92:bb:a3:0f:89:86:0f:44:8e:a3:09:12:30:a6:cf:48:12: 1f:91:f0:62:c0:a5:87:ac:54:18:a8:81:1c:8f:6f:ba:27:fb: a5:fb:aa:31:79:37:5d:3d:b4:8d:65:a1:21:c5:f7:4a:02:4d: f9:9c:f4:94:ed:6d:db:79:da:35:f9:8b:fc:29:ef:ec:34:59: 83:8f:f4:d0:98:db:c8:48:b9:3a:a7:3b:d2:d2:6a:b1:3d:ec: 0c:5c:61:4a:84:0d:9e:92:3a:b1:2f:71:95:cf:40:4d:01:a3: ef:ea:d3:9b:c0:14:bc:b9:64:de:e3:7f:f0:0b:56:66:e4:20: 8e:b0:5b:06:04:08:3b:bb:fd:0b:9e:68:d0:f7:03:f1:9d:70: 6e:99:19:1f:2f:1f:2e:d6:9b:0d:3a:fd:bd:9e:db:8f:0e:60: df:ba:8e:f3:d7:90:03:73:b6:81:84:d2:59:8e:5f:79:48:12: 23:c1:f2:77:44:06:5b:b1:f1:0f:79:8f:94:be:22:77:ca:34: 1a:d9:1a:05:01:7c:9b:86:65:04:36:64:c2:33:06:d8:51:40: 89:59:59:5a:b7:a8:e5:42:27:fe:15:51:db:1f:3f:bf:48:53: ab:4b:2c:cc:be:48:91:78:51:23:b3:38:1e:12:bd:d6:55:57: 0b:33:7f:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjUwNzAyMTYyOTI0WhcNMjUwNzA5MTYyOTI0WjAYMRYwFAYD VQQDEw02ODY1NWU2NS0zNzg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWDe9ppMKuSRYpmtK0D3ZxdwcFOo4TlUBkHD0uEa8WIdBHwqgQsO51O3HWTe kOpbC2IQs2oNPTb3qQLQgCQ3VyvbYDLCjXpi1gAgFPnLRW5BkIBcwGnkc0a/id8O F4qKVHEIKSkaAlhDOdN+feOob94HAx33rdwvyG4wsaFU5FTWcHvGvU35TzrMszlo zp1y4gLtun33N8G9D3u9n9sidZ6JUcmeYPphviJCWMF7cZsBuVvl1IGdWcagGQ8c vlyJi9hAA2SOUzdg6dsUOiQzVWwwaxBIoQBVD7Ynxw+3naRlz0uEqrnUfU8i12pB RoW+Kq+Ie2KVSMmd+D8VYIteDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKe4XVEl 7mef3g9lMwF/otfCDuKuMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQkrujD4mGD0SOowkSMKbPSBIfkfBiwKWHrFQYqIEcj2+6J/ul+6ox eTddPbSNZaEhxfdKAk35nPSU7W3bedo1+Yv8Ke/sNFmDj/TQmNvISLk6pzvS0mqx PewMXGFKhA2ekjqxL3GVz0BNAaPv6tObwBS8uWTe43/wC1Zm5CCOsFsGBAg7u/0L nmjQ9wPxnXBumRkfLx8u1psNOv29ntuPDmDfuo7z15ADc7aBhNJZjl95SBIjwfJ3 RAZbsfEPeY+UviJ3yjQa2RoFAXybhmUENmTCMwbYUUCJWVlat6jlQif+FVHbHz+/ SFOrSyzMvkiReFEjszgeEr3WVVcLM38N -----END CERTIFICATE-----Generated at Fri Jul 4 10:24:57 2025 by rpki-client