$ rpki-client -vvf rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft File: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft (raw, json) Hash identifier: 0/VM7CtKNFUMZax5f4s6wc81TnDIoHeHn7guzMs9cqw= Subject key identifier: CA:58:71:98:38:42:18:E6:8D:EE:9E:A8:F3:2A:AB:32:F4:41:75:5E Authority key identifier: 2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 Certificate issuer: /CN=A918424C/serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft Manifest number: E4 Signing time: Sat 23 Aug 2025 05:34:38 +0000 Manifest this update: Sat 23 Aug 2025 05:34:37 +0000 Manifest next update: Sat 30 Aug 2025 05:34:37 +0000 Files and hashes: 1: KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl (hash: 20+hXWeMssLGtUXQ++oJw7R7jnMKZ8WtIAwSWdfNM3c=) 2: 4394064223D511EF9AB13E4FC4F9AE02.roa (hash: GgtpbCe0DWHXE3n4d7zrRXZLNfKbReC9s/SOQ0QeSio=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:34:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918424C, serialNumber=2A4456D172B2B86DCDA712E661F6D9F2FF192038 Validity Not Before: Aug 23 05:34:37 2025 GMT Not After : Aug 30 05:34:37 2025 GMT Subject: CN=68a952ed-a1b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:4e:35:1e:c6:00:8b:74:62:d4:ed:fa:f8: 4c:b8:39:a6:55:2c:44:fa:37:f1:fb:83:70:2d:a5: 57:70:ce:ae:b2:2f:3e:56:9f:87:f8:94:5c:1e:4d: 30:9b:91:a7:a7:30:2c:6a:d9:9c:b3:a5:37:c5:2f: 79:af:4f:f1:13:82:f7:32:b4:65:8d:fe:de:e5:e5: 98:8e:f7:0c:ff:7d:1d:39:db:12:53:43:fd:94:3b: 80:21:9f:02:57:89:11:17:34:90:08:07:8d:e7:30: e7:b5:dd:04:2f:11:10:f9:f2:21:eb:36:ea:66:d7: 00:7a:c6:1f:51:03:ba:80:e0:7f:be:85:67:b1:72: 76:78:37:f1:f4:a7:69:7c:11:ba:ed:60:d0:1d:75: a0:ca:6e:7e:8c:a1:ca:21:dd:93:e9:42:ab:95:18: 4c:2e:34:c7:64:f4:2f:38:b4:16:76:7a:69:bb:ce: 8e:69:13:bb:7e:90:1f:12:e7:2a:30:16:ef:c0:39: cf:21:bd:1b:d4:a4:33:98:56:4b:49:34:c3:02:e9: ed:4e:3b:6c:e8:4e:1a:64:2f:e5:e3:fe:d9:29:b0: 21:67:ee:23:e7:c4:4f:31:47:9d:43:5b:cb:e3:86: 3d:00:3e:c7:1a:4f:26:d5:bb:9a:19:7e:cd:05:a1: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:58:71:98:38:42:18:E6:8D:EE:9E:A8:F3:2A:AB:32:F4:41:75:5E X509v3 Authority Key Identifier: keyid:2A:44:56:D1:72:B2:B8:6D:CD:A7:12:E6:61:F6:D9:F2:FF:19:20:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918424C/ABCBEBD623D411EF9575324EC4F9AE02/KkRW0XKyuG3NpxLmYfbZ8v8ZIDg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:d6:c5:05:3c:f4:b9:d3:4c:3c:9c:b2:a7:2e:4b:f3:c5:7f: f7:56:89:07:65:33:95:69:14:7f:31:02:e8:b8:47:8e:eb:26: 2d:b4:06:20:fe:20:48:6b:90:9c:23:31:e3:34:84:ee:c8:48: df:e7:06:df:6b:e6:7b:13:64:b6:19:f0:a8:93:61:c5:2e:7c: c7:bd:51:d3:3c:be:5c:d0:b5:51:db:a6:6b:f6:a1:d4:38:d1: c8:7a:ed:3a:c7:ed:35:d3:ac:e2:b2:53:b8:03:f6:65:25:d8: a0:8f:25:70:bc:97:db:2d:09:3d:99:79:fb:35:e0:d6:9f:8c: 89:ab:05:6d:11:19:e6:3a:75:98:e3:63:d4:f7:c6:23:4a:58: 11:24:8c:49:cf:b6:09:9f:36:fc:02:8a:0f:17:1e:5f:f0:25: 20:4e:b1:93:1c:73:2b:10:c1:8d:ae:26:51:e3:e9:13:d5:b9: b6:5d:f0:f5:70:11:ac:0c:95:f7:55:72:e6:57:f8:e0:f4:c2: c3:74:24:73:99:65:46:ac:c3:21:48:fa:54:31:d9:12:83:6c: f9:18:ff:5b:be:ef:e2:31:bc:b2:45:79:e7:4c:9a:e2:00:a9: b9:a4:9f:96:04:e4:4d:f5:42:8f:0a:39:d4:98:58:bf:76:ef: ce:88:c9:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQyNEMxMTAvBgNVBAUTKDJBNDQ1NkQxNzJCMkI4NkRDREE3MTJFNjYxRjZEOUYy RkYxOTIwMzgwHhcNMjUwODIzMDUzNDM3WhcNMjUwODMwMDUzNDM3WjAYMRYwFAYD VQQDEw02OGE5NTJlZC1hMWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr81ONR7GAIt0YtTt+vhMuDmmVSxE+jfx+4NwLaVXcM6usi8+Vp+H+JRcHk0w m5GnpzAsatmcs6U3xS95r0/xE4L3MrRljf7e5eWYjvcM/30dOdsSU0P9lDuAIZ8C V4kRFzSQCAeN5zDntd0ELxEQ+fIh6zbqZtcAesYfUQO6gOB/voVnsXJ2eDfx9Kdp fBG67WDQHXWgym5+jKHKId2T6UKrlRhMLjTHZPQvOLQWdnppu86OaRO7fpAfEucq MBbvwDnPIb0b1KQzmFZLSTTDAuntTjts6E4aZC/l4/7ZKbAhZ+4j58RPMUedQ1vL 44Y9AD7HGk8m1buaGX7NBaEGxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMpYcZg4 Qhjmje6eqPMqqzL0QXVeMB8GA1UdIwQYMBaAFCpEVtFysrhtzacS5mH22fL/GSA4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDI0Qy9BQkNCRUJENjIz RDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVHM05weExtWWZiWjh2OFpJ RGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0trUlcwWEt5dUczTnB4TG1ZZmJaOHY4WklEZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDI0Qy9BQkNCRUJENjIzRDQxMUVGOTU3NTMyNEVDNEY5QUUwMi9La1JXMFhLeXVH M05weExtWWZiWjh2OFpJRGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAY1sUFPPS500w8nLKnLkvzxX/3VokHZTOVaRR/MQLouEeO6yYttAYg /iBIa5CcIzHjNITuyEjf5wbfa+Z7E2S2GfCok2HFLnzHvVHTPL5c0LVR26Zr9qHU ONHIeu06x+0106zislO4A/ZlJdigjyVwvJfbLQk9mXn7NeDWn4yJqwVtERnmOnWY 42PU98YjSlgRJIxJz7YJnzb8AooPFx5f8CUgTrGTHHMrEMGNriZR4+kT1bm2XfD1 cBGsDJX3VXLmV/jg9MLDdCRzmWVGrMMhSPpUMdkSg2z5GP9bvu/iMbyyRXnnTJri AKm5pJ+WBORN9UKPCjnUmFi/du/OiMlc -----END CERTIFICATE-----Generated at Sat Aug 23 18:18:49 2025 by rpki-client