$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: tZUT8IAnxjkrhkqFurq2t2CnRPlS+WVZnIHSpMYYGSo= Subject key identifier: 7A:16:21:88:26:58:53:7D:36:C4:57:10:D0:81:06:2F:F7:F7:25:26 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 10F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 242C Signing time: Fri 22 Aug 2025 17:08:08 +0000 Manifest this update: Fri 22 Aug 2025 17:08:07 +0000 Manifest next update: Fri 29 Aug 2025 17:08:07 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: whurdQb3Qid8dkVBCL6gvJWmuETX6HX8SEM/2jKm+yQ=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:08:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4337 (0x10f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Aug 22 17:08:07 2025 GMT Not After : Aug 29 17:08:07 2025 GMT Subject: CN=68a8a3f7-7ecd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5f:2b:0b:5b:f3:7d:0c:a5:3f:f7:17:0c:58: 0b:8a:cc:6a:77:fe:9c:96:1f:ae:75:0f:40:b9:49: b1:1e:8a:05:13:f2:28:20:17:f4:c9:5e:0f:22:b8: 04:6e:f0:d0:cb:90:5e:0e:6d:d1:01:54:1a:46:6d: 13:e8:27:03:b2:15:c5:b2:29:f7:3c:cc:38:8b:40: 62:af:81:25:34:f6:0a:9b:2c:9b:4c:85:6e:d6:fa: e2:a3:ae:4c:f5:26:b5:66:27:88:b9:b8:9e:28:b3: c6:2a:f8:de:9a:44:3a:c1:9a:cb:7d:5d:f5:3a:18: 8f:91:f6:83:04:4d:54:93:ce:1e:c8:55:1a:57:3e: 03:c8:a3:e0:2e:e7:7c:a0:c7:c9:53:dd:4d:2c:7e: 9d:4e:56:60:85:ac:f1:5a:99:fa:db:b2:8a:57:c5: 71:58:3f:4a:91:02:55:d0:4c:c6:0e:6a:70:96:e3: 10:8c:d5:3b:4d:66:c5:e4:a4:fa:d8:b1:89:c4:d3: ca:f4:9d:a0:90:7e:cc:da:2d:1b:78:a2:f6:63:db: 46:4e:b3:ed:0e:b1:85:85:2a:d3:88:57:13:97:6d: 04:76:65:57:ee:43:d0:96:bd:0d:09:5a:77:38:b3: 21:26:f0:ad:e1:8a:e4:fd:c0:0b:10:13:89:c9:f6: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:16:21:88:26:58:53:7D:36:C4:57:10:D0:81:06:2F:F7:F7:25:26 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:ea:dc:bd:1c:a4:dc:5f:99:5f:da:b3:00:e8:90:c7:fc:90: c7:ba:54:97:b3:98:37:0d:2c:b3:77:66:90:1e:cd:ca:f9:ad: 14:f9:0a:57:ba:1b:83:2d:a5:58:95:4e:62:d7:96:dd:7a:44: 47:c2:1a:aa:cd:99:3e:e9:3e:f8:0c:0b:2f:ad:91:d8:2b:9b: d8:c7:86:35:cc:da:51:3e:bd:e1:1f:18:35:e7:f8:32:35:01: 99:db:32:37:03:d8:fa:30:b4:bf:08:11:02:1d:9d:57:8e:d9: 96:8c:a1:0f:59:6b:fd:ca:32:a9:ae:85:53:38:9e:6e:8f:ba: 83:ff:e9:62:cc:93:15:10:30:52:98:d2:82:db:c1:78:dc:5e: 86:c9:ba:86:eb:f1:63:8b:57:43:71:0d:c8:a8:20:91:f5:c7: 35:eb:02:3f:33:19:ba:95:8a:69:d0:5a:88:7f:16:0a:7c:13: 60:fa:30:71:f5:ed:11:cb:a6:5e:22:3d:7c:07:3e:a7:64:e2: f9:7f:8d:78:fe:83:b3:d6:a5:49:d3:7f:8b:b8:b8:67:86:29: a2:0d:ee:dd:4c:b4:04:36:2f:0d:77:f4:47:ce:91:c7:6f:f5: 7e:11:91:3a:dc:74:94:28:52:77:fd:9b:f9:b8:93:3e:25:4c: eb:a2:8c:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUwODIyMTcwODA3WhcNMjUwODI5MTcwODA3WjAYMRYwFAYD VQQDEw02OGE4YTNmNy03ZWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAul8rC1vzfQylP/cXDFgLisxqd/6clh+udQ9AuUmxHooFE/IoIBf0yV4PIrgE bvDQy5BeDm3RAVQaRm0T6CcDshXFsin3PMw4i0Bir4ElNPYKmyybTIVu1vrio65M 9Sa1ZieIubieKLPGKvjemkQ6wZrLfV31OhiPkfaDBE1Uk84eyFUaVz4DyKPgLud8 oMfJU91NLH6dTlZghazxWpn627KKV8VxWD9KkQJV0EzGDmpwluMQjNU7TWbF5KT6 2LGJxNPK9J2gkH7M2i0beKL2Y9tGTrPtDrGFhSrTiFcTl20EdmVX7kPQlr0NCVp3 OLMhJvCt4Yrk/cALEBOJyfa1iQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHoWIYgm WFN9NsRXENCBBi/39yUmMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDD6ty9HKTcX5lf2rMA6JDH/JDHulSXs5g3DSyzd2aQHs3K+a0U+QpX uhuDLaVYlU5i15bdekRHwhqqzZk+6T74DAsvrZHYK5vYx4Y1zNpRPr3hHxg15/gy NQGZ2zI3A9j6MLS/CBECHZ1XjtmWjKEPWWv9yjKproVTOJ5uj7qD/+lizJMVEDBS mNKC28F43F6GybqG6/Fji1dDcQ3IqCCR9cc16wI/Mxm6lYpp0FqIfxYKfBNg+jBx 9e0Ry6ZeIj18Bz6nZOL5f414/oOz1qVJ03+LuLhnhimiDe7dTLQENi8Nd/RHzpHH b/V+EZE63HSUKFJ3/Zv5uJM+JUzrooxH -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:08 2025 by rpki-client