$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: 1xrIgTgB1c2lVIBr5rDjLy9tIrOhqF/gdVJawNJLPh4= Subject key identifier: 74:E9:97:B9:24:DE:11:49:C5:C4:4E:63:75:CE:C3:8B:15:77:7F:DB Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: BD Signing time: Sat 23 Aug 2025 06:08:34 +0000 Manifest this update: Sat 23 Aug 2025 06:08:33 +0000 Manifest next update: Sat 30 Aug 2025 06:08:33 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: Nvz76tXbrtu/LHjdZAyJDnNdnxc0/3MqHbUnGY9Q6V0=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: HQpJTfgqUX8sx/Vj8e61bP6mPFBvq/NcDI8+HFxFJJ8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 192 (0xc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Aug 23 06:08:33 2025 GMT Not After : Aug 30 06:08:33 2025 GMT Subject: CN=68a95ae1-d221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:98:b3:83:5a:bb:b1:e1:31:f1:8d:7b:ff:75: dd:bc:43:cf:07:62:3b:b8:6e:bc:64:1a:62:17:39: a9:31:8d:d5:4a:b0:7a:3c:7b:93:6b:67:d1:e4:5b: a8:9c:84:8f:0d:1f:83:a9:53:d7:af:a3:0e:3a:0c: 07:9d:3b:68:1d:d8:be:19:c3:ae:ec:7c:93:8d:64: 8d:4b:e4:55:0e:85:c3:20:80:f7:65:91:d4:59:94: 47:54:cb:c7:df:99:84:26:81:8d:a4:b0:21:6e:77: 17:a7:3b:64:2b:a8:0f:79:17:f8:b0:cc:c7:84:9c: fb:22:7b:fc:c5:c9:15:fa:09:44:e7:b2:08:4a:ee: 89:39:11:19:39:90:63:04:43:64:5a:b3:27:b2:17: f8:9f:1a:c6:e8:32:e1:9a:e8:f2:8a:7f:39:fd:9e: 4e:88:8e:dc:82:e0:98:1a:55:e0:9a:e3:da:e9:6d: b5:88:72:df:43:77:1a:86:9c:8f:ed:21:8f:9b:19: b2:f6:b1:c1:96:c7:33:a9:93:60:4b:5c:99:ef:8e: 0a:1a:e2:72:91:c4:fd:8b:72:10:b4:e7:c9:20:25: b6:46:9a:ee:ed:79:9f:10:6e:41:0a:fa:6d:86:21: 14:34:d1:00:69:91:01:4b:f1:8f:b7:b8:34:c5:31: 8d:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:E9:97:B9:24:DE:11:49:C5:C4:4E:63:75:CE:C3:8B:15:77:7F:DB X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:fb:42:c9:fb:1d:66:4c:07:b2:82:2c:e0:5e:1a:30:cf:bb: e3:fc:c3:e3:96:33:7b:73:f1:15:c4:cb:04:bc:40:26:99:aa: b9:b1:cf:5d:15:97:9b:9f:5e:af:18:dd:df:2c:ac:e9:16:6e: 17:cb:20:48:ea:e8:ce:30:7f:d6:f2:f5:22:8d:d3:2d:14:d4: d3:ef:94:9d:a4:b1:1b:8e:e3:c6:d6:d9:30:63:bd:1c:80:b6: 0c:39:f6:a3:b3:7b:7b:31:3e:d1:85:5b:8c:a8:fc:b0:36:a4: f7:f7:c0:c7:86:57:73:de:64:65:60:a5:6e:25:3e:e2:66:14: fb:7c:52:66:dd:df:c6:a5:fe:3d:6e:66:09:6b:41:ae:26:ee: 27:e1:18:34:4a:cb:bd:e7:f6:d7:a3:5b:f4:95:31:18:71:48: ec:6f:9c:aa:71:11:e0:85:a9:6e:e5:a3:f6:fe:2b:19:bd:83: 96:e2:8e:5f:95:36:3d:f3:99:9e:ce:23:a0:d7:27:d4:ac:27: eb:7d:33:d2:2e:88:9c:4a:23:07:15:67:6d:bb:d6:6f:f0:e7: e8:bc:88:2d:40:68:15:4a:1a:fc:6e:ee:62:8c:df:86:c4:83: 49:e0:00:6b:31:a9:fd:ee:16:07:95:0e:dc:08:91:09:f8:00: eb:1f:fd:2f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUwODIzMDYwODMzWhcNMjUwODMwMDYwODMzWjAYMRYwFAYD VQQDEw02OGE5NWFlMS1kMjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5izg1q7seEx8Y17/3XdvEPPB2I7uG68ZBpiFzmpMY3VSrB6PHuTa2fR5Fuo nISPDR+DqVPXr6MOOgwHnTtoHdi+GcOu7HyTjWSNS+RVDoXDIID3ZZHUWZRHVMvH 35mEJoGNpLAhbncXpztkK6gPeRf4sMzHhJz7Inv8xckV+glE57IISu6JOREZOZBj BENkWrMnshf4nxrG6DLhmujyin85/Z5OiI7cguCYGlXgmuPa6W21iHLfQ3cahpyP 7SGPmxmy9rHBlsczqZNgS1yZ744KGuJykcT9i3IQtOfJICW2Rpru7XmfEG5BCvpt hiEUNNEAaZEBS/GPt7g0xTGNMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHTpl7kk 3hFJxcROY3XOw4sVd3/bMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz+0LJ+x1mTAeygizgXhowz7vj/MPjljN7c/EVxMsEvEAmmaq5sc9d FZebn16vGN3fLKzpFm4XyyBI6ujOMH/W8vUijdMtFNTT75SdpLEbjuPG1tkwY70c gLYMOfajs3t7MT7RhVuMqPywNqT398DHhldz3mRlYKVuJT7iZhT7fFJm3d/Gpf49 bmYJa0GuJu4n4Rg0Ssu95/bXo1v0lTEYcUjsb5yqcRHghalu5aP2/isZvYOW4o5f lTY985meziOg1yfUrCfrfTPSLoicSiMHFWdtu9Zv8OfovIgtQGgVShr8bu5ijN+G xINJ4ABrMan97hYHlQ7cCJEJ+ADrH/0v -----END CERTIFICATE-----Generated at Sat Aug 23 20:27:39 2025 by rpki-client