$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: l/KvnZzkSyIDtYg472+0HhW7EOPeA9Ymc286AkRa5OI= Subject key identifier: 7F:42:F1:CD:71:1C:5A:B5:C0:91:F6:DE:A8:31:AD:4F:AD:35:86:36 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 5D Signing time: Sat 23 Aug 2025 07:29:42 +0000 Manifest this update: Sat 23 Aug 2025 07:29:41 +0000 Manifest next update: Sat 30 Aug 2025 07:29:41 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: akdqz99monAY+CTD63xe74pTuD9PrK+85cu9gt7jU1w=) 2: E40AC356018611F0B7E46C83C4F9AE02.roa (hash: xnpORZ2MtPoqtzWOcmsiFxPYNxl3p5FaKDYctBVtkjc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Aug 23 07:29:41 2025 GMT Not After : Aug 30 07:29:41 2025 GMT Subject: CN=68a96de6-e790 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7f:0c:4e:fc:5f:29:82:43:92:ad:8b:e4:3c: 77:bf:70:66:f7:16:bf:17:1e:4f:9f:5a:eb:ac:13: 78:f8:2f:48:0b:e6:36:53:41:89:65:03:45:1c:03: 68:fc:f5:e7:83:31:47:63:8c:e8:44:76:03:f1:6d: 3b:52:de:71:9b:5d:69:5a:52:e3:db:9a:6d:74:d3: 3e:ac:9d:4f:70:ed:ea:a4:58:db:5f:57:12:bc:23: 8e:74:1b:26:8c:5d:b1:69:d0:49:d0:e0:1e:43:bb: f8:10:f1:b4:f8:9f:93:aa:e9:b6:53:0c:1c:f0:73: c1:ad:2a:41:a1:9c:e6:b0:db:1e:da:5c:59:45:fe: 85:73:fe:74:2c:49:7f:0d:ca:47:b5:1d:b3:aa:f8: 26:dc:46:63:77:26:ae:94:56:56:7c:30:b9:76:da: 6f:2d:39:0b:4f:fe:f0:f3:d5:54:b2:41:4b:28:de: d2:09:c9:0a:e8:28:f9:69:97:14:34:60:f5:5b:d9: 0b:1d:6c:e9:d1:8d:ad:c7:bf:41:f1:45:4b:24:b2: 26:31:69:83:33:2c:7d:65:c0:f1:cd:6c:87:02:25: a2:a2:c0:6b:6e:a3:86:e0:e6:56:48:14:e0:60:2d: 45:fa:be:07:dd:70:88:5b:90:2b:73:f0:e3:28:d5: 33:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:42:F1:CD:71:1C:5A:B5:C0:91:F6:DE:A8:31:AD:4F:AD:35:86:36 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:5c:66:e6:06:d7:a6:bb:fb:72:89:17:e3:db:89:5a:d4:ef: 82:86:1e:2c:d2:56:3b:1f:0f:4a:12:dc:4a:78:23:63:b0:58: 42:a0:49:44:2b:cf:11:8e:9f:07:20:64:70:b9:e2:dc:65:9b: e3:29:f4:99:85:94:f0:5c:1b:60:7c:8c:a2:a7:92:32:5c:20: fc:38:3d:23:21:63:ae:0b:45:52:06:d5:1c:59:54:c9:a4:65: 5c:1d:08:8a:5a:d6:45:64:50:e8:78:3a:4d:71:73:6d:6c:e5: 97:1d:87:be:a6:a9:00:22:4e:b2:48:cd:c5:95:9d:f7:da:0f: ff:2b:1c:53:ce:a3:01:d0:63:2a:ec:f8:83:7c:14:02:8c:8c: 8e:a3:d7:32:4f:4a:29:a6:da:cc:e7:23:7a:76:a3:c5:1a:54: 53:b0:15:da:47:e9:90:2e:93:39:a9:95:9d:e2:77:28:b0:09: d6:02:3e:da:0e:c4:86:99:6d:e4:61:77:45:ed:e6:98:00:ed: 43:46:f9:d0:af:ae:f3:22:ae:f6:4e:73:b1:e4:4a:ed:a6:b2: b9:e6:c2:e6:e4:3e:1a:82:d0:a8:b6:5e:5a:bf:e8:df:d9:71: 3b:aa:2c:13:91:60:b8:ab:2d:82:c4:48:2f:86:4f:6c:c7:33: 20:8c:c1:0c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 Mzg1MDExMC8GA1UEBRMoMkFCMjQzMkMzQUQ1MTI4RUQ3M0U5OUM0NjBEMDYxMUZB RjREMjIwRTAeFw0yNTA4MjMwNzI5NDFaFw0yNTA4MzAwNzI5NDFaMBgxFjAUBgNV BAMTDTY4YTk2ZGU2LWU3OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpfwxO/F8pgkOSrYvkPHe/cGb3Fr8XHk+fWuusE3j4L0gL5jZTQYllA0UcA2j8 9eeDMUdjjOhEdgPxbTtS3nGbXWlaUuPbmm100z6snU9w7eqkWNtfVxK8I450GyaM XbFp0EnQ4B5Du/gQ8bT4n5Oq6bZTDBzwc8GtKkGhnOaw2x7aXFlF/oVz/nQsSX8N yke1HbOq+CbcRmN3Jq6UVlZ8MLl22m8tOQtP/vDz1VSyQUso3tIJyQroKPlplxQ0 YPVb2QsdbOnRja3Hv0HxRUsksiYxaYMzLH1lwPHNbIcCJaKiwGtuo4bg5lZIFOBg LUX6vgfdcIhbkCtz8OMo1TNBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUf0LxzXEc WrXAkfbeqDGtT601hjYwHwYDVR0jBBgwFoAUKrJDLDrVEo7XPpnEYNBhH69NIg4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzODUwLzdCM0IzN0Q0MDE4 NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5Tkln NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS3JKRExEclZFbzdYUHBuRVlOQmhINjlOSWc0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUz ODUwLzdCM0IzN0Q0MDE4NjExRjBCMDVCNEM1OUM0RjlBRTAyL0tySkRMRHJWRW83 WFBwbkVZTkJoSDY5TklnNC5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALtcZuYG16a7+3KJF+PbiVrU74KGHizSVjsfD0oS3Ep4I2OwWEKgSUQr zxGOnwcgZHC54txlm+Mp9JmFlPBcG2B8jKKnkjJcIPw4PSMhY64LRVIG1RxZVMmk ZVwdCIpa1kVkUOh4Ok1xc21s5Zcdh76mqQAiTrJIzcWVnffaD/8rHFPOowHQYyrs +IN8FAKMjI6j1zJPSimm2sznI3p2o8UaVFOwFdpH6ZAukzmplZ3idyiwCdYCPtoO xIaZbeRhd0Xt5pgA7UNG+dCvrvMirvZOc7HkSu2msrnmwubkPhqC0Ki2Xlq/6N/Z cTuqLBORYLirLYLESC+GT2zHMyCMwQw= -----END CERTIFICATE-----Generated at Sun Aug 24 09:04:14 2025 by rpki-client