$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: ekAVOYDfekN2CROdsqey7p2c3Yhq/vOnLl5FjzD9jSM= Subject key identifier: FE:5D:66:57:7C:F7:E4:44:60:B0:5A:83:E8:90:D4:6E:03:CF:0E:E2 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 34DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 34C9 Signing time: Fri 22 Aug 2025 14:23:50 +0000 Manifest this update: Fri 22 Aug 2025 14:23:50 +0000 Manifest next update: Fri 29 Aug 2025 14:23:50 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: Qj6JA2xAYJzauY5XPHMs0tnIVkL34dog58rolFOPHlE=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: nOTO05trzCD6uEEv4FInP/xVHgXMSyk7YCzU2yFeaPI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:23:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13530 (0x34da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Aug 22 14:23:50 2025 GMT Not After : Aug 29 14:23:50 2025 GMT Subject: CN=68a87d76-6874 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f1:27:f8:3b:db:c6:d6:9e:54:3d:7a:4a:1b: f3:d1:88:bb:b2:e2:37:6b:5e:78:6a:ad:67:37:6c: 6b:4b:94:b6:34:80:c0:ca:aa:7d:b7:ef:4d:bc:aa: 4c:cb:c1:c2:22:fe:0b:3c:04:6c:7b:c4:77:f7:36: b7:32:58:74:e6:71:99:78:53:3a:1c:44:65:07:b2: 84:64:f9:9e:e8:64:3b:2d:5b:e4:d3:17:36:8c:3c: 1b:7e:0b:9f:7a:5f:88:c8:c1:5b:bb:de:9c:60:8f: d5:a6:af:1c:42:aa:71:0a:4b:a9:8a:11:f0:84:5c: e1:57:57:93:72:95:10:ba:04:ed:01:98:f0:19:92: 6a:e5:88:8e:46:2b:33:bd:79:3f:5d:cd:48:7f:60: 9d:a1:75:15:46:0c:3e:95:4f:a8:a5:9d:1b:dd:f0: fd:d5:5d:7a:c7:26:dc:f2:99:79:6c:de:04:c0:4a: 4f:bb:9b:d4:a0:7f:db:69:ce:3a:3b:78:cc:5a:b5: d5:50:50:8e:9e:3f:e9:d1:b0:22:fa:c9:06:18:cf: d6:25:a3:77:0e:f5:c2:58:10:f9:9b:0f:18:ed:a0: 2a:0c:a6:9e:1c:da:c7:9e:7a:d4:17:ff:cc:2e:9e: b8:2f:97:49:ff:4d:3d:ef:f8:fe:a9:42:7d:66:24: 8f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:5D:66:57:7C:F7:E4:44:60:B0:5A:83:E8:90:D4:6E:03:CF:0E:E2 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:85:b1:8c:b3:7d:da:f3:ad:52:50:c2:02:21:ae:0e:b1:38: 93:b5:82:ab:25:c6:e3:bd:93:ce:38:bd:bf:32:3e:fc:3a:43: 68:2b:57:a7:0e:d6:90:42:29:88:bc:9c:ed:3f:a0:d9:92:8d: 60:ac:81:00:ea:69:5e:44:2f:9b:2d:48:00:8a:37:92:99:8b: 09:c8:66:db:ac:ac:2b:ed:63:9b:b0:af:3f:26:c1:8d:b4:a1: 75:62:f4:68:ae:30:c5:85:52:32:ef:bd:f2:9b:8b:01:01:26: b0:59:75:41:52:ae:1a:b0:0b:3b:19:e2:d7:83:0c:72:13:03: 45:26:d7:a4:39:c6:a5:62:32:52:2d:b1:cb:bd:98:c7:77:04: cb:24:46:12:c0:97:a2:63:16:b5:7c:bc:0f:33:d1:d7:78:df: 64:6e:4a:b5:17:7b:c8:d9:29:9f:23:22:cb:65:02:1b:30:94: f4:35:30:c4:52:b7:7b:a4:41:99:e0:0f:90:d7:2f:51:2f:9f: 33:87:62:53:4f:fb:70:6d:75:d5:61:b8:2d:d1:fe:9e:09:3d: 5b:28:45:9f:43:a4:a8:1f:9d:74:69:32:2d:74:d3:69:f2:e9: 3b:5c:99:d3:cb:b9:4c:e9:8a:19:31:c8:76:5b:6c:2f:fd:52: f3:4c:df:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUwODIyMTQyMzUwWhcNMjUwODI5MTQyMzUwWjAYMRYwFAYD VQQDEw02OGE4N2Q3Ni02ODc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPEn+DvbxtaeVD16Shvz0Yi7suI3a154aq1nN2xrS5S2NIDAyqp9t+9NvKpM y8HCIv4LPARse8R39za3Mlh05nGZeFM6HERlB7KEZPme6GQ7LVvk0xc2jDwbfguf el+IyMFbu96cYI/Vpq8cQqpxCkupihHwhFzhV1eTcpUQugTtAZjwGZJq5YiORisz vXk/Xc1If2CdoXUVRgw+lU+opZ0b3fD91V16xybc8pl5bN4EwEpPu5vUoH/bac46 O3jMWrXVUFCOnj/p0bAi+skGGM/WJaN3DvXCWBD5mw8Y7aAqDKaeHNrHnnrUF//M Lp64L5dJ/0097/j+qUJ9ZiSPcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP5dZld8 9+REYLBag+iQ1G4Dzw7iMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqhbGMs33a861SUMICIa4OsTiTtYKrJcbjvZPOOL2/Mj78OkNoK1en DtaQQimIvJztP6DZko1grIEA6mleRC+bLUgAijeSmYsJyGbbrKwr7WObsK8/JsGN tKF1YvRorjDFhVIy773ym4sBASawWXVBUq4asAs7GeLXgwxyEwNFJtekOcalYjJS LbHLvZjHdwTLJEYSwJeiYxa1fLwPM9HXeN9kbkq1F3vI2SmfIyLLZQIbMJT0NTDE Urd7pEGZ4A+Q1y9RL58zh2JTT/twbXXVYbgt0f6eCT1bKEWfQ6SoH510aTItdNNp 8uk7XJnTy7lM6YoZMch2W2wv/VLzTN/S -----END CERTIFICATE-----Generated at Sat Aug 23 18:59:28 2025 by rpki-client