$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: BnveIwLQcbIDLxUS1PhRT37Hlp9bpPP1DY48AZBf0+E= Subject key identifier: 43:C0:EB:51:7D:45:CB:4A:4F:57:44:7F:FD:A2:2A:32:B5:88:54:1A Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 01D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 01CE Signing time: Sat 23 Aug 2025 02:58:08 +0000 Manifest this update: Sat 23 Aug 2025 02:58:07 +0000 Manifest next update: Sat 30 Aug 2025 02:58:07 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: 8kROumP++qzyKg1qT4r0Yi+oanZSWU0P41ylvDx1DBM=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: la16kPDMZ0PGNGFfbiOJE4nU4r91VONeRM7xfP7lGe4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 466 (0x1d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Aug 23 02:58:07 2025 GMT Not After : Aug 30 02:58:07 2025 GMT Subject: CN=68a92e40-53a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:55:77:15:e8:df:40:6d:e3:ef:c2:07:9f:ef: 1c:c3:29:0e:2f:96:0c:50:96:b9:17:23:6a:a4:07: fb:6a:71:0b:db:ff:50:62:fa:d2:16:eb:63:c5:a2: 77:ea:f0:70:1c:70:cd:b3:e1:a5:7c:c4:05:f4:4b: c6:ff:d4:b0:9c:ca:5c:d8:5c:84:50:10:b9:65:b5: e7:f1:d0:e6:63:cd:94:5e:ac:85:df:c6:32:80:d5: 02:55:4a:4a:d8:aa:12:c5:39:59:15:5e:cd:8d:cb: bb:77:98:50:71:19:b6:b8:34:22:3e:fc:18:fb:ea: c4:4b:74:c9:6e:18:ce:6b:36:d9:d1:00:f0:2d:03: 43:b1:6b:86:b5:da:8b:4b:7f:b2:15:38:92:49:84: 07:52:81:56:e3:6e:1e:89:f0:82:d5:9b:3f:70:b4: dd:0b:65:e5:5b:27:9d:2a:dd:21:be:c0:72:7e:56: 37:65:7f:45:e2:0f:75:09:e3:b6:58:02:dc:2d:21: 8a:08:13:1c:41:33:03:1f:e9:60:6b:6b:15:67:32: 7f:c9:65:da:16:b9:37:bf:d2:9b:52:3c:67:d0:fd: a2:e6:35:92:42:27:34:b7:66:af:0b:38:4b:48:86: dc:25:51:8a:98:0e:dd:25:b7:e2:59:17:ca:46:44: f5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:C0:EB:51:7D:45:CB:4A:4F:57:44:7F:FD:A2:2A:32:B5:88:54:1A X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:f5:fd:e8:e4:e6:b1:3b:e8:dc:d8:1d:25:c1:23:db:0f:8c: c1:3d:74:2d:06:87:89:89:e4:9e:2a:bb:11:74:63:b3:ff:4e: 60:81:14:70:b0:52:72:c1:93:fe:de:ca:27:b5:cf:db:38:97: d5:ca:e6:33:45:39:e7:a9:12:6b:47:34:d5:80:82:4b:cf:db: 4f:cf:aa:55:09:26:56:8a:9e:91:35:83:af:bd:3d:99:c4:2d: d8:c7:e4:b0:0a:ad:8c:ce:4c:29:83:b6:98:cc:96:ce:e0:cd: 10:10:d4:f8:74:88:03:98:b1:2c:6c:f9:48:db:77:67:40:3e: 64:5e:f6:36:44:ad:a0:0e:42:fb:40:b0:d5:ae:e6:f1:74:0e: b5:11:24:1a:56:14:0f:cb:f2:a2:fc:b7:bd:04:53:d8:b1:c0: 27:81:52:36:90:d4:5c:15:f6:3a:bd:dc:c9:93:c4:6e:9d:c0: a6:ff:52:4e:7f:a7:49:54:12:44:6e:b7:a0:a7:83:af:5f:5f: 28:a3:dc:ec:26:e6:bd:db:7e:fd:be:af:87:91:d4:4b:3f:47: e7:c1:fd:d8:b6:77:4a:9b:14:eb:35:25:92:68:c3:dc:5d:72: 1f:03:97:c7:5c:b9:50:fa:72:17:1e:ce:21:9d:58:07:4a:37: 38:20:a8:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUwODIzMDI1ODA3WhcNMjUwODMwMDI1ODA3WjAYMRYwFAYD VQQDEw02OGE5MmU0MC01M2EwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVV3FejfQG3j78IHn+8cwykOL5YMUJa5FyNqpAf7anEL2/9QYvrSFutjxaJ3 6vBwHHDNs+GlfMQF9EvG/9SwnMpc2FyEUBC5ZbXn8dDmY82UXqyF38YygNUCVUpK 2KoSxTlZFV7Njcu7d5hQcRm2uDQiPvwY++rES3TJbhjOazbZ0QDwLQNDsWuGtdqL S3+yFTiSSYQHUoFW424eifCC1Zs/cLTdC2XlWyedKt0hvsByflY3ZX9F4g91CeO2 WALcLSGKCBMcQTMDH+lga2sVZzJ/yWXaFrk3v9KbUjxn0P2i5jWSQic0t2avCzhL SIbcJVGKmA7dJbfiWRfKRkT1FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEPA61F9 RctKT1dEf/2iKjK1iFQaMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAC9f3o5OaxO+jc2B0lwSPbD4zBPXQtBoeJieSeKrsRdGOz/05ggRRw sFJywZP+3sontc/bOJfVyuYzRTnnqRJrRzTVgIJLz9tPz6pVCSZWip6RNYOvvT2Z xC3Yx+SwCq2Mzkwpg7aYzJbO4M0QENT4dIgDmLEsbPlI23dnQD5kXvY2RK2gDkL7 QLDVrubxdA61ESQaVhQPy/Ki/Le9BFPYscAngVI2kNRcFfY6vdzJk8RuncCm/1JO f6dJVBJEbregp4OvX18oo9zsJua92379vq+HkdRLP0fnwf3YtndKmxTrNSWSaMPc XXIfA5fHXLlQ+nIXHs4hnVgHSjc4IKhz -----END CERTIFICATE-----Generated at Sun Aug 24 00:32:57 2025 by rpki-client