$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: gnAUxYsVXNL+ZoWJBEXJmrQWIuVq/CB8mEkHAc1ndfA= Subject key identifier: 45:32:E8:28:52:5D:FD:48:CC:3B:9C:13:89:81:64:D2:5A:FA:BB:0D Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 026E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 026A Signing time: Sat 23 Aug 2025 01:58:37 +0000 Manifest this update: Sat 23 Aug 2025 01:58:37 +0000 Manifest next update: Sat 30 Aug 2025 01:58:37 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: 5L/T6tP48l8cEZJ756krHd1XvSUUBv4wgP/M77wSU8U=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 622 (0x26e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Aug 23 01:58:37 2025 GMT Not After : Aug 30 01:58:37 2025 GMT Subject: CN=68a9204d-0425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fe:8c:83:03:9a:e6:56:13:32:cf:44:79:57: bf:96:df:88:19:85:25:db:d9:c2:b3:11:97:58:77: 5d:30:a0:16:ba:d0:a8:5a:2b:c2:37:72:bb:9e:2d: 1c:76:55:b2:c1:e9:b3:a8:56:64:a2:42:55:c2:ab: d1:e4:93:4f:20:24:f5:ce:02:b0:98:b4:a7:0f:b0: 8e:1c:15:e6:64:09:c9:f8:8d:db:c9:15:99:62:ef: 50:1d:27:d7:44:b7:93:b8:6a:35:10:82:ca:88:96: 86:58:45:64:78:47:56:a6:a6:90:bb:5c:ba:fe:96: 5d:5b:d9:ba:20:24:c9:f9:6f:81:84:16:15:b5:e0: 8b:45:39:ee:c5:6e:5a:b2:ea:be:72:10:4b:10:6f: 5a:f2:b8:58:04:8e:03:5b:98:3c:3d:58:32:ef:31: 34:41:1c:a7:6e:be:5a:ce:c4:0d:4f:77:8b:40:cb: 78:a0:e2:d9:b7:ae:85:7d:f9:ee:7e:35:13:f0:62: 39:9b:d2:d5:99:80:60:94:75:77:bc:f1:e3:37:57: 9f:18:2c:47:50:02:43:c6:0f:3c:77:96:9c:80:27: 7e:10:73:08:50:5c:25:15:38:4d:cb:11:11:9e:1f: 75:4f:cc:20:cb:55:51:18:fd:06:38:43:75:b6:7c: 0d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:32:E8:28:52:5D:FD:48:CC:3B:9C:13:89:81:64:D2:5A:FA:BB:0D X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:d3:93:e0:b5:a2:2b:c1:52:05:f4:ad:a3:23:ff:5f:ca:af: 81:5b:74:94:9f:72:ad:c8:a5:9c:25:fb:b3:65:b9:65:71:c4: ef:65:51:1c:10:71:ba:89:56:a8:98:3a:2d:76:29:51:c7:87: af:7c:ad:35:d4:85:e2:6c:e2:03:21:a6:f9:d0:a7:80:3c:5f: 0e:af:e4:6e:64:9a:c0:61:ad:ee:37:d7:bd:b4:20:e4:d9:f4: 93:6c:73:bd:36:d8:50:54:8a:a4:cf:da:66:08:a9:0b:ec:26: 60:da:a6:16:ba:68:27:7c:a0:d3:54:5d:41:a7:77:51:19:fb: 8d:81:3b:67:e6:a2:24:d1:f1:35:92:5a:34:06:92:39:1e:49: 74:bb:4a:1f:71:bb:cc:54:a8:8f:f9:be:41:86:2f:67:73:5e: 88:80:3d:db:7c:a4:7f:4e:f9:cc:82:85:c0:f7:ee:9f:5c:d9: 9c:a6:7e:df:b3:2b:5b:e2:67:6f:70:19:a5:65:9f:fb:07:57: 51:ce:08:ab:9c:93:aa:dd:50:b5:04:ed:97:8b:f0:f4:c9:bc: 4c:89:c2:70:42:8e:94:25:64:37:fa:a7:f4:13:96:da:ca:92: fa:d8:d0:b1:8b:a8:bd:99:ef:a9:d5:1e:52:ae:56:4f:d4:cd: 13:8d:c2:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUwODIzMDE1ODM3WhcNMjUwODMwMDE1ODM3WjAYMRYwFAYD VQQDEw02OGE5MjA0ZC0wNDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf6MgwOa5lYTMs9EeVe/lt+IGYUl29nCsxGXWHddMKAWutCoWivCN3K7ni0c dlWywemzqFZkokJVwqvR5JNPICT1zgKwmLSnD7COHBXmZAnJ+I3byRWZYu9QHSfX RLeTuGo1EILKiJaGWEVkeEdWpqaQu1y6/pZdW9m6ICTJ+W+BhBYVteCLRTnuxW5a suq+chBLEG9a8rhYBI4DW5g8PVgy7zE0QRynbr5azsQNT3eLQMt4oOLZt66Fffnu fjUT8GI5m9LVmYBglHV3vPHjN1efGCxHUAJDxg88d5acgCd+EHMIUFwlFThNyxER nh91T8wgy1VRGP0GOEN1tnwN7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUy6ChS Xf1IzDucE4mBZNJa+rsNMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBD05PgtaIrwVIF9K2jI/9fyq+BW3SUn3KtyKWcJfuzZbllccTvZVEc EHG6iVaomDotdilRx4evfK011IXibOIDIab50KeAPF8Or+RuZJrAYa3uN9e9tCDk 2fSTbHO9NthQVIqkz9pmCKkL7CZg2qYWumgnfKDTVF1Bp3dRGfuNgTtn5qIk0fE1 klo0BpI5Hkl0u0ofcbvMVKiP+b5Bhi9nc16IgD3bfKR/TvnMgoXA9+6fXNmcpn7f sytb4mdvcBmlZZ/7B1dRzgirnJOq3VC1BO2Xi/D0ybxMicJwQo6UJWQ3+qf0E5ba ypL62NCxi6i9me+p1R5SrlZP1M0TjcIf -----END CERTIFICATE-----Generated at Sat Aug 23 19:35:49 2025 by rpki-client