$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: CGY6OelSEimJ0iLuRyZfaUxre4yuOsjLRHE5PcX1OWM= Subject key identifier: A7:1D:B4:4B:2F:F6:2F:E4:F8:10:B7:46:B9:BD:C1:0F:30:8F:AC:5C Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 0687 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 0682 Signing time: Fri 22 Aug 2025 22:31:07 +0000 Manifest this update: Fri 22 Aug 2025 22:31:07 +0000 Manifest next update: Fri 29 Aug 2025 22:31:07 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: 22OXUBpbdhKkOoIHekfnuj5T/Q2ea3AC81Z5BZkZOhc=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1671 (0x687) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Aug 22 22:31:07 2025 GMT Not After : Aug 29 22:31:07 2025 GMT Subject: CN=68a8efab-9087 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:0d:22:93:78:b3:18:bf:b3:9e:ca:b4:a9: 3e:48:72:2d:82:79:e3:32:6a:fd:dc:b3:d8:64:30: 48:8d:30:17:aa:d3:dd:1b:8d:2e:23:62:b2:c8:27: 4c:93:ab:59:32:0a:45:5c:19:6b:cc:c9:bb:2b:d0: d5:45:e0:03:55:91:0c:8e:55:93:2f:d5:8f:38:e7: 18:25:2e:e6:95:90:9a:c1:ee:11:66:af:2a:80:10: 9a:82:dd:c5:d1:e2:40:a4:dc:f3:9f:15:c0:e0:60: 69:e5:1b:42:8c:0b:8f:e7:07:56:17:97:dc:e3:ac: 60:ea:b3:b8:46:77:51:73:a5:81:b8:f1:be:1f:ed: 12:a5:b8:f5:a5:12:29:73:45:69:1c:e3:0c:6c:f6: 71:4b:e0:f7:b9:c9:a1:cb:e2:23:4c:66:b7:25:1c: 19:13:54:5d:f6:30:87:46:7c:19:0a:53:e4:ce:ea: 71:cd:e3:2e:1b:94:b5:79:42:bb:9d:97:92:33:f6: 9e:c2:09:14:95:0f:25:5d:8e:32:3f:f1:5d:f6:07: 42:38:56:e1:5f:6a:2a:6a:d2:a3:69:00:59:c3:2f: cd:38:bc:fd:50:9e:02:3e:25:1c:1f:6a:71:a0:c4: f0:84:9f:42:b9:c7:af:2a:e7:3d:1b:46:39:9a:ad: a6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:1D:B4:4B:2F:F6:2F:E4:F8:10:B7:46:B9:BD:C1:0F:30:8F:AC:5C X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:9a:08:db:a5:63:51:f2:58:db:4e:f2:94:8a:29:17:83:04: b2:e4:ba:e9:dc:e3:e4:cb:3b:53:63:54:ad:d8:3c:07:22:5d: 80:e2:da:be:cc:d5:fe:2f:16:91:e9:60:11:0a:49:1d:75:14: aa:df:d9:0d:f5:a1:cc:0b:b2:de:eb:7e:56:b0:58:c7:c8:71: de:48:c7:2e:f7:32:97:65:fc:3f:d6:f3:8d:28:62:ea:79:ff: bb:97:3d:4b:f7:d5:ec:74:0b:4f:5a:a4:39:a1:b1:6b:da:42: 7a:e7:22:85:3e:20:92:1a:a4:c5:de:4a:c5:99:f1:d3:3e:51: ba:56:0c:b6:27:18:e9:1b:3d:24:72:4b:4b:e0:1a:1c:83:b1: 42:11:ba:5e:9e:04:87:da:51:a5:0f:c6:cc:84:f7:37:6f:76: e6:af:3d:61:27:47:d9:0b:0a:49:ad:3e:e2:2f:a7:ae:b8:7e: a0:fb:ad:ff:7b:f1:32:c2:c2:cf:0a:42:8c:5c:ab:a2:95:32: 35:7f:7e:4c:e8:0c:a7:85:68:c4:54:09:52:66:ac:ce:b9:ab: de:48:57:ae:c7:9d:48:24:a6:42:29:f2:c5:da:7e:d0:c4:0e: 0e:a3:c2:60:b1:12:40:c3:24:f3:de:41:90:03:8b:2e:b7:8b: 47:4c:58:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUwODIyMjIzMTA3WhcNMjUwODI5MjIzMTA3WjAYMRYwFAYD VQQDEw02OGE4ZWZhYi05MDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArmANIpN4sxi/s57KtKk+SHItgnnjMmr93LPYZDBIjTAXqtPdG40uI2KyyCdM k6tZMgpFXBlrzMm7K9DVReADVZEMjlWTL9WPOOcYJS7mlZCawe4RZq8qgBCagt3F 0eJApNzznxXA4GBp5RtCjAuP5wdWF5fc46xg6rO4RndRc6WBuPG+H+0Spbj1pRIp c0VpHOMMbPZxS+D3ucmhy+IjTGa3JRwZE1Rd9jCHRnwZClPkzupxzeMuG5S1eUK7 nZeSM/aewgkUlQ8lXY4yP/Fd9gdCOFbhX2oqatKjaQBZwy/NOLz9UJ4CPiUcH2px oMTwhJ9CucevKuc9G0Y5mq2mDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKcdtEsv 9i/k+BC3Rrm9wQ8wj6xcMB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYmgjbpWNR8ljbTvKUiikXgwSy5Lrp3OPkyztTY1St2DwHIl2A4tq+ zNX+LxaR6WARCkkddRSq39kN9aHMC7Le635WsFjHyHHeSMcu9zKXZfw/1vONKGLq ef+7lz1L99XsdAtPWqQ5obFr2kJ65yKFPiCSGqTF3krFmfHTPlG6Vgy2JxjpGz0k cktL4Bocg7FCEbpengSH2lGlD8bMhPc3b3bmrz1hJ0fZCwpJrT7iL6euuH6g+63/ e/EywsLPCkKMXKuilTI1f35M6AynhWjEVAlSZqzOuaveSFeux51IJKZCKfLF2n7Q xA4Oo8JgsRJAwyTz3kGQA4sut4tHTFiN -----END CERTIFICATE-----Generated at Sat Aug 23 19:41:59 2025 by rpki-client