$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: uYTwUv5ZaXpU6BQiMAt7Rb8Lt7fo7uAJOgL5VuFYGmY= Subject key identifier: 67:F7:54:16:01:BC:DF:7A:41:79:17:77:0D:0D:D6:43:8E:89:D7:B1 Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: A4 Signing time: Sat 05 Jul 2025 06:32:16 +0000 Manifest this update: Sat 05 Jul 2025 06:32:16 +0000 Manifest next update: Sat 12 Jul 2025 06:32:16 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: ZOWwo0IpJGOyyLSZY4qbrfpKnpBN2/TsHBMra1e7nTc=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: HQpJTfgqUX8sx/Vj8e61bP6mPFBvq/NcDI8+HFxFJJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Jul 5 06:32:16 2025 GMT Not After : Jul 12 06:32:16 2025 GMT Subject: CN=6868c6f0-8e57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f6:7d:9d:7d:5c:8d:c3:d3:c8:54:76:39:7d: ff:cb:35:0b:91:6e:9e:8a:b2:cc:1c:ed:0b:99:01: 4b:4b:8e:4e:3d:36:9b:b3:9d:16:d2:cc:7b:5f:2f: 06:6c:60:24:0a:ab:51:90:ed:95:40:be:b1:d7:f1: ad:0f:17:c4:21:b7:a1:87:8a:ff:ea:61:33:c7:81: 18:d7:13:ab:5e:37:66:06:b6:ac:6e:f9:e2:1b:a7: 73:07:a4:37:b4:3a:7c:c3:fa:56:eb:0c:2f:ee:c3: a8:dc:f9:b2:78:ff:36:51:5e:04:ca:81:d0:32:f0: a8:cd:21:af:68:f4:ed:55:c6:17:45:96:e5:71:df: 2d:27:ad:a1:77:7b:b2:95:04:2f:76:2b:b4:37:12: 2f:60:a7:e0:1a:08:c2:1d:db:0d:80:a4:04:29:8f: b7:43:fc:dc:0a:70:00:76:74:d9:3a:5f:85:cd:16: ad:18:16:1d:07:73:6e:ad:d2:2a:cc:9a:db:77:be: 33:25:17:20:cf:8c:a4:44:54:82:12:74:98:e4:f5: 73:db:7b:09:fc:7b:5b:6e:f1:e2:ff:2d:71:a3:ba: 3f:0b:9c:da:71:36:3c:70:91:e6:4b:16:1c:65:2b: 97:ca:ae:a9:3e:00:19:84:09:e3:aa:f5:16:a8:ce: 8a:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F7:54:16:01:BC:DF:7A:41:79:17:77:0D:0D:D6:43:8E:89:D7:B1 X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:f6:b9:23:0c:a1:12:40:fb:03:93:dc:45:9a:ba:d3:be:aa: c1:34:e5:51:18:27:2f:91:e4:d1:5e:51:b4:a5:dd:0f:ac:cc: 6e:e9:d8:25:6b:8d:75:52:66:b6:e7:9b:56:0a:1f:84:53:12: dd:7a:c6:4e:ef:c7:8b:de:6d:a9:fb:fc:7d:b9:6e:7b:0e:ad: 1e:ba:8c:f6:a6:73:43:da:07:8d:85:e1:3e:9f:ce:e2:71:29: 3b:30:80:bb:4b:f4:ca:2b:db:02:9e:41:f4:46:62:95:08:2d: cc:bf:e9:4b:a5:40:db:1f:a8:59:4d:b8:46:8e:07:29:79:6e: 81:4e:a1:61:2c:b4:3a:1b:aa:79:81:08:62:85:3c:3e:1f:b2: b6:90:21:ba:5c:e2:64:8e:24:cd:76:61:97:3c:55:00:17:1f: 3b:f8:ed:af:ef:2e:e5:de:1e:36:dc:67:f4:44:c3:c4:c3:98: 14:3a:0d:03:bc:0d:1c:51:4b:ee:35:f7:7d:bb:74:9f:f9:0c: d5:52:6d:b7:c0:a2:ad:b3:54:cc:78:a7:07:99:c3:1d:c8:dc: 55:51:c7:87:16:c5:7d:1a:eb:43:c1:f1:d4:d5:2f:ec:a5:e0: 44:79:57:fd:62:52:96:43:04:20:25:64:31:e7:92:5b:0b:7c: bf:76:62:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwNzA1MDYzMjE2WhcNMjUwNzEyMDYzMjE2WjAYMRYwFAYD VQQDEw02ODY4YzZmMC04ZTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwvZ9nX1cjcPTyFR2OX3/yzULkW6eirLMHO0LmQFLS45OPTabs50W0sx7Xy8G bGAkCqtRkO2VQL6x1/GtDxfEIbehh4r/6mEzx4EY1xOrXjdmBrasbvniG6dzB6Q3 tDp8w/pW6wwv7sOo3PmyeP82UV4EyoHQMvCozSGvaPTtVcYXRZblcd8tJ62hd3uy lQQvdiu0NxIvYKfgGgjCHdsNgKQEKY+3Q/zcCnAAdnTZOl+FzRatGBYdB3NurdIq zJrbd74zJRcgz4ykRFSCEnSY5PVz23sJ/HtbbvHi/y1xo7o/C5zacTY8cJHmSxYc ZSuXyq6pPgAZhAnjqvUWqM6KqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGf3VBYB vN96QXkXdw0N1kOOidexMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCT9rkjDKESQPsDk9xFmrrTvqrBNOVRGCcvkeTRXlG0pd0PrMxu6dgl a411Uma255tWCh+EUxLdesZO78eL3m2p+/x9uW57Dq0euoz2pnND2geNheE+n87i cSk7MIC7S/TKK9sCnkH0RmKVCC3Mv+lLpUDbH6hZTbhGjgcpeW6BTqFhLLQ6G6p5 gQhihTw+H7K2kCG6XOJkjiTNdmGXPFUAFx87+O2v7y7l3h423Gf0RMPEw5gUOg0D vA0cUUvuNfd9u3Sf+QzVUm23wKKts1TMeKcHmcMdyNxVUceHFsV9GutDwfHU1S/s peBEeVf9YlKWQwQgJWQx55JbC3y/dmLs -----END CERTIFICATE-----Generated at Sun Jul 6 01:10:09 2025 by rpki-client