$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: 4MkcNlHkIvxYTe8N2/6pIgss3FwxazAj/T0FoI0Zvds= Subject key identifier: F4:2A:56:74:4E:28:40:80:AF:EF:A2:40:FD:30:5E:4D:81:35:6B:B8 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 069C Signing time: Fri 22 Aug 2025 22:22:50 +0000 Manifest this update: Fri 22 Aug 2025 22:22:50 +0000 Manifest next update: Fri 29 Aug 2025 22:22:50 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: 6BClbujpuTJLUVoflCkViY/y2LaK694dyk+YgIip8QI=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:22:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Aug 22 22:22:50 2025 GMT Not After : Aug 29 22:22:50 2025 GMT Subject: CN=68a8edba-a738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c9:a8:f1:ba:62:6c:7d:89:c6:c3:46:b8:aa: 78:1f:8e:31:56:69:16:81:6a:8d:47:cf:24:4e:18: 9b:86:d5:71:33:17:8a:b4:93:52:59:e8:f9:94:cf: d0:93:0e:52:fb:e2:69:de:a2:1e:b0:e5:1f:cf:7b: 0e:1a:9d:d3:f0:be:b6:d5:0f:ac:a1:9d:6e:37:da: a2:54:9a:09:3a:65:96:50:25:5f:04:74:ec:e0:d6: d2:6a:32:ba:9b:14:d8:ba:b2:58:cd:48:99:de:18: 83:82:13:3e:66:25:4d:f3:51:34:1e:3d:81:b3:d3: 47:98:84:2f:98:83:c9:d0:40:e2:e0:67:ac:87:5b: bd:d3:1b:f3:23:03:bd:31:5c:5c:c2:fb:d9:e4:a0: a8:15:f0:77:93:9e:d2:21:a7:08:7d:d2:95:c4:6f: 8d:52:61:8d:97:3f:10:cb:57:66:81:6e:f3:fd:e4: af:bf:f2:3f:9f:f4:28:a4:bd:bd:e6:49:d8:31:1f: f1:83:59:25:20:60:f3:c6:25:e0:d5:f1:b6:80:76: 3a:64:e0:da:ac:f8:ee:12:25:e0:ad:59:d1:4a:8c: 86:e9:5a:4c:b7:fa:05:b5:54:e0:2b:86:4c:98:ae: 94:7b:3d:e3:2e:99:e8:61:84:c6:40:7c:80:a7:02: 14:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:2A:56:74:4E:28:40:80:AF:EF:A2:40:FD:30:5E:4D:81:35:6B:B8 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 07:b8:82:c2:66:4e:4c:12:97:c4:35:44:f8:0e:5d:2d:3a:40: b2:92:7d:0d:a0:79:04:f1:b9:df:cc:4b:ae:1f:86:e6:3d:c8: 62:42:ec:6b:b0:5b:42:dd:3b:53:d7:5a:bf:96:b2:52:06:42: e6:91:b4:f1:9f:17:22:d1:54:b3:42:1f:e3:c3:cf:dc:60:5b: e2:30:24:63:a8:5c:4c:4e:45:b2:ef:43:db:c5:d5:b0:b7:89: 4e:8d:31:a7:91:67:50:98:e8:19:c9:98:cc:1b:8a:a1:f4:1c: 5d:08:2c:7e:01:f9:78:66:70:40:33:67:1c:e5:9d:b8:5c:e3: 93:80:23:85:de:a3:2a:05:e7:cb:66:df:48:85:fd:b6:23:23: 94:6b:0a:22:ae:d4:be:16:7a:1f:3d:cf:7c:1e:81:96:d8:bd: 08:25:5d:9a:69:1e:15:bf:24:da:e4:15:3b:03:8b:f8:47:de: f6:21:08:0e:ea:1d:1f:7c:7a:51:e3:37:60:65:0d:44:b6:37: ff:4b:3b:11:97:75:a1:a4:b7:f6:41:8b:3c:5c:54:81:49:70: b9:a9:44:91:7e:57:bc:57:49:32:53:16:94:9c:ec:27:16:e6: f3:3c:95:75:61:4c:28:af:15:ad:e2:1d:c5:4e:93:10:c1:ca: dd:e4:4e:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjUwODIyMjIyMjUwWhcNMjUwODI5MjIyMjUwWjAYMRYwFAYD VQQDEw02OGE4ZWRiYS1hNzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0cmo8bpibH2JxsNGuKp4H44xVmkWgWqNR88kThibhtVxMxeKtJNSWej5lM/Q kw5S++Jp3qIesOUfz3sOGp3T8L621Q+soZ1uN9qiVJoJOmWWUCVfBHTs4NbSajK6 mxTYurJYzUiZ3hiDghM+ZiVN81E0Hj2Bs9NHmIQvmIPJ0EDi4Gesh1u90xvzIwO9 MVxcwvvZ5KCoFfB3k57SIacIfdKVxG+NUmGNlz8Qy1dmgW7z/eSvv/I/n/QopL29 5knYMR/xg1klIGDzxiXg1fG2gHY6ZODarPjuEiXgrVnRSoyG6VpMt/oFtVTgK4ZM mK6Uez3jLpnoYYTGQHyApwIUyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPQqVnRO KECAr++iQP0wXk2BNWu4MB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAHuILCZk5MEpfENUT4Dl0tOkCykn0NoHkE8bnfzEuuH4bmPchiQuxr sFtC3TtT11q/lrJSBkLmkbTxnxci0VSzQh/jw8/cYFviMCRjqFxMTkWy70PbxdWw t4lOjTGnkWdQmOgZyZjMG4qh9BxdCCx+Afl4ZnBAM2cc5Z24XOOTgCOF3qMqBefL Zt9Ihf22IyOUawoirtS+FnofPc98HoGW2L0IJV2aaR4VvyTa5BU7A4v4R972IQgO 6h0ffHpR4zdgZQ1Etjf/SzsRl3WhpLf2QYs8XFSBSXC5qUSRfle8V0kyUxaUnOwn FubzPJV1YUworxWt4h3FTpMQwcrd5E4w -----END CERTIFICATE-----Generated at Sat Aug 23 16:37:44 2025 by rpki-client