$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: yRg14bApSQwxHzMMartZCS4P4gh3zu8Yf6/ClsGx9NY= Subject key identifier: 65:2B:B3:51:F7:B4:53:42:9B:A9:86:20:19:D3:E9:68:B0:19:07:48 Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: C7 Signing time: Tue 01 Jul 2025 06:21:39 +0000 Manifest this update: Tue 01 Jul 2025 06:21:39 +0000 Manifest next update: Tue 08 Jul 2025 06:21:39 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: m3NFY0nPJJmzekVjffOOpBhtOierR2k5YhIxf/CaTsI=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: uOPt38YEsEAnQYMhJ/vWZ8Bh0zzqI6ovkE/WceLABSs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 06:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: Jul 1 06:21:39 2025 GMT Not After : Jul 8 06:21:39 2025 GMT Subject: CN=68637e73-cbd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ad:10:75:9b:94:0d:b8:9a:92:ae:71:80:4e: d6:6e:41:40:7a:fc:08:95:f9:4a:5a:1d:5c:bd:c5: e3:32:af:f9:77:48:0d:2e:2b:ac:e5:77:c9:02:d5: 10:ec:d2:f3:3d:bd:1f:ac:9c:44:d1:be:0e:e7:e6: 39:ac:69:a5:6a:9d:48:f3:75:fd:6e:a2:67:e4:3b: 1f:55:33:63:0c:42:1b:73:86:ef:40:4c:b2:d6:16: f5:21:d9:0d:62:1f:af:d0:65:55:b0:fb:2c:2b:13: 8e:ef:f4:f8:a6:c7:42:b9:ef:6a:c6:eb:1d:e1:c7: 00:31:1e:49:bf:ee:18:28:52:a6:fd:d7:2b:27:d6: 3f:26:bc:32:1d:9e:92:83:8d:9d:1e:dc:76:38:15: 44:80:64:73:e2:69:23:f9:b2:bb:27:92:6b:b8:78: 2a:02:0a:45:01:8e:56:ed:92:60:9f:1d:f8:5f:ae: 5d:81:85:6d:6a:ba:ae:e6:99:73:f9:b1:57:7e:b6: fb:91:67:a4:5a:39:e4:a5:4f:39:c1:f6:de:58:6a: 4d:3f:0f:cb:e5:61:ca:f8:65:bc:70:cd:38:34:db: 53:b2:86:44:b9:1d:76:06:27:ca:10:82:c2:19:55: 63:17:65:dd:b1:3f:a6:db:a5:de:7d:d8:42:d7:7e: dc:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2B:B3:51:F7:B4:53:42:9B:A9:86:20:19:D3:E9:68:B0:19:07:48 X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:38:d8:39:39:e5:1c:7f:b3:4f:75:b9:31:8d:77:c4:79:ca: f8:a0:5d:02:d0:b1:00:ab:94:9a:5c:5c:5b:ab:fa:b0:bc:21: 98:d0:e0:58:fd:e9:cc:25:0f:40:9b:0d:6b:c4:d0:4f:00:56: 6b:61:d1:d7:3e:ff:45:c9:a1:94:c6:6d:2e:56:26:49:3e:50: 87:95:f9:c2:cc:1e:7e:5a:a8:2f:9e:3b:9a:3a:b4:59:14:11: ea:d3:f4:f1:44:3c:85:46:f0:5c:63:05:c1:00:6e:2b:36:3e: 9d:e5:2e:b2:b7:c3:78:63:b3:24:0a:72:07:e3:5f:0e:0c:51: 1a:47:76:64:84:39:d8:2f:60:01:21:32:be:e1:43:10:dc:66: f4:8e:5e:11:78:c6:6c:b4:6f:59:1d:fc:7f:92:8a:a0:c5:a1: 41:f6:07:b4:c9:aa:fd:00:53:ae:70:c2:fb:2f:0a:d0:d7:66: 63:da:87:37:26:58:2e:42:01:33:c7:cd:6e:13:3a:f6:f5:03: e6:ea:ca:7c:f7:65:e6:c4:3f:b8:93:dc:4b:f2:05:4e:47:7f: b0:48:db:cb:90:2b:66:90:30:a8:87:2c:32:67:00:58:36:7d: 44:cf:a2:cb:04:78:30:3e:de:37:f6:4f:92:f9:ea:21:2e:f6: 83:09:ac:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUwNzAxMDYyMTM5WhcNMjUwNzA4MDYyMTM5WjAYMRYwFAYD VQQDEw02ODYzN2U3My1jYmQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArK0QdZuUDbiakq5xgE7WbkFAevwIlflKWh1cvcXjMq/5d0gNLius5XfJAtUQ 7NLzPb0frJxE0b4O5+Y5rGmlap1I83X9bqJn5DsfVTNjDEIbc4bvQEyy1hb1IdkN Yh+v0GVVsPssKxOO7/T4psdCue9qxusd4ccAMR5Jv+4YKFKm/dcrJ9Y/JrwyHZ6S g42dHtx2OBVEgGRz4mkj+bK7J5JruHgqAgpFAY5W7ZJgnx34X65dgYVtarqu5plz +bFXfrb7kWekWjnkpU85wfbeWGpNPw/L5WHK+GW8cM04NNtTsoZEuR12BifKEILC GVVjF2XdsT+m26XefdhC137cDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUrs1H3 tFNCm6mGIBnT6WiwGQdIMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqONg5OeUcf7NPdbkxjXfEecr4oF0C0LEAq5SaXFxbq/qwvCGY0OBY /enMJQ9Amw1rxNBPAFZrYdHXPv9FyaGUxm0uViZJPlCHlfnCzB5+WqgvnjuaOrRZ FBHq0/TxRDyFRvBcYwXBAG4rNj6d5S6yt8N4Y7MkCnIH418ODFEaR3ZkhDnYL2AB ITK+4UMQ3Gb0jl4ReMZstG9ZHfx/koqgxaFB9ge0yar9AFOucML7LwrQ12Zj2oc3 JlguQgEzx81uEzr29QPm6sp892XmxD+4k9xL8gVOR3+wSNvLkCtmkDCohywyZwBY Nn1Ez6LLBHgwPt439k+S+eohLvaDCaxB -----END CERTIFICATE-----Generated at Tue Jul 1 20:45:05 2025 by rpki-client