$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: pE1/Q157Sp3iMSgANqjSpEyC8hODoZYZN/DAu7FJ1mk= Subject key identifier: 05:8E:02:C7:15:13:CE:2F:64:61:C3:33:36:7F:D3:60:49:42:26:E7 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 01E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 01D8 Signing time: Sat 23 Aug 2025 02:56:49 +0000 Manifest this update: Sat 23 Aug 2025 02:56:49 +0000 Manifest next update: Sat 30 Aug 2025 02:56:49 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: TIgwm92O3uDJ8sNJVNL8tly4Gbk20sYgT5A0i8eNpRo=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: 7Dqx51HWm5FHrY3yqH5za3wPDKkHA22oTIJYfgHsb38=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: fXQJZHONbxHqV0/XhxdMVhavc2gV0JF7ZuHG+631NZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:56:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Aug 23 02:56:49 2025 GMT Not After : Aug 30 02:56:49 2025 GMT Subject: CN=68a92df1-03c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b4:7a:fb:2f:e2:bd:64:82:48:57:61:b6:dc: 51:14:5b:d3:34:96:e0:32:b3:63:a8:24:a7:df:9b: c5:8a:93:03:2d:4b:18:18:86:20:32:7e:34:30:d7: df:6f:8a:3e:e2:29:b4:ef:17:3d:3c:c9:e4:ee:2a: 1b:02:9d:b8:9f:9b:3b:7c:db:4a:7a:6d:c3:21:81: f8:b7:6c:d3:76:98:42:4a:9f:a1:05:cc:4f:57:21: aa:43:7b:db:3f:3c:b7:07:b1:7e:35:49:88:d0:c2: 08:e1:0d:ac:60:1b:a2:52:31:29:aa:d2:70:bd:a6: 15:f9:84:45:9c:6a:63:fa:54:5f:8b:b9:e6:64:af: 89:d0:b2:c0:b0:c0:4c:34:b0:1c:4d:f4:e7:cd:78: dd:4f:f0:f0:06:0f:7f:ea:28:84:90:27:b7:0a:70: ec:97:4a:66:54:ca:e1:20:a8:5c:95:ed:82:aa:1f: f3:09:1b:d5:3f:b0:78:3a:2e:05:5c:65:55:ed:01: 95:9c:10:e6:da:eb:c2:85:1e:1b:e9:64:9a:63:ec: 26:73:e5:1e:5d:91:43:a3:9a:63:64:ab:c2:70:69: 77:c7:be:53:08:9c:9c:b7:64:2b:14:53:55:a6:00: 7b:f6:f4:38:36:66:fd:9e:0b:45:f2:47:94:e6:da: c7:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8E:02:C7:15:13:CE:2F:64:61:C3:33:36:7F:D3:60:49:42:26:E7 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:6f:d3:d0:a9:e1:10:97:36:51:ae:0b:86:9d:bd:02:4a:84: fc:3c:08:7e:f3:3d:a4:45:5c:f7:af:0b:c6:79:e9:b4:66:c7: 3b:49:2a:4a:64:b9:45:e5:16:48:39:6a:81:f6:f9:85:29:b2: c6:1f:21:0d:47:04:cf:20:59:30:03:e9:2d:c1:db:86:97:45: 90:a0:6d:9d:cd:0c:19:88:d0:3f:6c:a6:da:45:a0:b0:d7:63: 9e:d1:4f:a2:23:68:29:d8:7c:9c:bf:bc:f3:15:e8:13:aa:35: d6:3f:ab:ac:1e:44:a1:a2:8a:32:85:69:ed:7e:82:a4:df:ff: c1:c6:f0:83:ae:ba:50:26:e1:cd:8a:68:61:26:6a:ef:66:6f: d7:4c:6b:72:37:d9:d7:2f:23:07:7b:8e:b3:b1:f1:6a:5e:bc: cd:7d:e4:b8:de:31:01:66:45:80:c5:03:2e:db:ee:a0:46:40: 63:a4:9f:03:b8:11:24:86:3a:df:ca:c8:3d:53:a6:77:5f:3d: ca:2d:25:d3:8c:c8:a1:bf:aa:9a:e4:56:a9:8b:53:d0:fc:0a: 3e:6b:04:b9:47:d9:e8:1e:2a:8c:a1:69:51:46:cf:99:cb:e0: 11:8e:41:16:d4:76:ba:cf:e5:28:84:93:23:4b:a1:72:17:10: 64:a3:82:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUwODIzMDI1NjQ5WhcNMjUwODMwMDI1NjQ5WjAYMRYwFAYD VQQDEw02OGE5MmRmMS0wM2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3LR6+y/ivWSCSFdhttxRFFvTNJbgMrNjqCSn35vFipMDLUsYGIYgMn40MNff b4o+4im07xc9PMnk7iobAp24n5s7fNtKem3DIYH4t2zTdphCSp+hBcxPVyGqQ3vb Pzy3B7F+NUmI0MII4Q2sYBuiUjEpqtJwvaYV+YRFnGpj+lRfi7nmZK+J0LLAsMBM NLAcTfTnzXjdT/DwBg9/6iiEkCe3CnDsl0pmVMrhIKhcle2Cqh/zCRvVP7B4Oi4F XGVV7QGVnBDm2uvChR4b6WSaY+wmc+UeXZFDo5pjZKvCcGl3x75TCJyct2QrFFNV pgB79vQ4Nmb9ngtF8keU5trHdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAWOAscV E84vZGHDMzZ/02BJQibnMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtb9PQqeEQlzZRrguGnb0CSoT8PAh+8z2kRVz3rwvGeem0Zsc7SSpK ZLlF5RZIOWqB9vmFKbLGHyENRwTPIFkwA+ktwduGl0WQoG2dzQwZiNA/bKbaRaCw 12Oe0U+iI2gp2Hycv7zzFegTqjXWP6usHkShoooyhWntfoKk3//BxvCDrrpQJuHN imhhJmrvZm/XTGtyN9nXLyMHe46zsfFqXrzNfeS43jEBZkWAxQMu2+6gRkBjpJ8D uBEkhjrfysg9U6Z3Xz3KLSXTjMihv6qa5Fapi1PQ/Ao+awS5R9noHiqMoWlRRs+Z y+ARjkEW1Ha6z+UohJMjS6FyFxBko4Ik -----END CERTIFICATE-----Generated at Sun Aug 24 01:20:20 2025 by rpki-client