$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: BDdS0FPOdcB7/f1HivBUZfTuNXu9YLQemVY37IrVVAI= Subject key identifier: 91:FC:64:7D:DC:55:3D:C4:8B:B0:A6:90:55:A3:80:C7:C0:8A:21:C6 Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 066D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 0668 Signing time: Wed 02 Jul 2025 22:43:50 +0000 Manifest this update: Wed 02 Jul 2025 22:43:50 +0000 Manifest next update: Wed 09 Jul 2025 22:43:50 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: UNLD07+gfq8qiq2tbUxMAXruTNWiZZu8IfZpFuEh1qQ=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Jul 2 22:43:50 2025 GMT Not After : Jul 9 22:43:50 2025 GMT Subject: CN=6865b626-db22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d5:67:b4:a5:28:2d:7d:88:14:87:8f:af:65: 38:f5:58:58:fc:d7:2e:29:bc:db:9b:4d:38:82:1b: 8e:ed:07:81:ff:ef:3b:de:70:48:8f:68:a4:4d:fd: e1:67:5d:91:5b:b0:39:5e:ad:a1:9c:51:41:0c:b6: 79:22:82:d2:14:82:86:22:af:6c:c4:87:3f:3a:b8: 3b:d1:af:59:28:91:f3:fc:85:d4:8a:77:a7:80:71: 53:47:47:1f:3f:3f:ab:7f:a0:f5:4d:11:03:52:36: 8f:52:2a:26:27:a0:31:f3:83:eb:92:fd:48:aa:ec: 6b:11:d5:c5:8c:ca:56:4b:90:ca:94:41:fa:1e:f4: cf:81:8c:0d:45:e3:1e:86:39:01:fc:6f:56:87:66: 00:05:3c:d7:cb:66:75:70:bf:eb:a5:f9:78:3b:91: 82:06:72:ea:6c:70:e3:a5:06:cd:55:b8:46:fe:dd: 27:68:e1:21:50:5a:dd:48:5f:d7:05:40:a6:d5:0c: f3:c2:07:1e:7e:29:5f:87:ab:f6:8c:84:89:cd:cc: 1a:ab:69:1e:0b:91:7a:09:37:1c:66:f8:d2:76:73: 29:fb:b8:96:29:5c:a0:27:8d:5d:34:70:78:ba:d6: ca:5e:fd:86:16:cf:ed:64:c9:2f:43:7a:2a:77:31: 67:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:FC:64:7D:DC:55:3D:C4:8B:B0:A6:90:55:A3:80:C7:C0:8A:21:C6 X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:90:9d:2b:51:79:75:3e:72:ad:d0:d2:b1:da:8f:24:90:a4: 36:c5:a8:35:1f:f6:af:37:e4:f5:60:c4:07:00:fe:e5:35:83: 2f:3a:19:66:64:ea:f7:34:1f:81:8e:47:7b:be:99:0c:0e:25: 60:3e:66:a6:3b:e8:07:01:fd:f1:6e:cd:d1:c1:74:a2:e4:f2: a4:22:a9:d3:6a:98:c6:c5:2e:09:fe:42:7f:d2:cd:1b:60:46: 14:d7:a7:bc:52:49:12:ba:4a:06:da:0d:50:8d:82:9a:86:4c: dc:89:62:ed:09:27:f2:63:bb:75:90:75:26:ed:67:df:c1:ed: dc:ed:9d:af:32:f2:ee:f7:d2:ad:f4:e0:b8:bd:1c:3e:0e:7d: 5e:2d:f6:22:81:5b:74:dd:9b:92:ba:9d:4d:cb:08:84:73:f2: 0c:49:8f:d9:ef:e2:9f:dc:c0:9d:0f:fa:65:fd:54:9f:d5:7d: a3:26:b8:bd:48:7c:ca:3c:0b:30:e3:d8:25:b6:60:1f:82:03: b9:6f:6a:80:a5:84:11:a6:82:f3:1b:f4:b8:88:96:0d:78:66: 85:60:74:9e:cd:9b:08:4c:08:c1:15:6e:a5:60:81:c6:a9:21: 6c:11:07:8a:8a:8a:cd:09:b5:d1:37:5f:de:d6:3d:e3:9e:65: 5d:a7:8c:9d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUwNzAyMjI0MzUwWhcNMjUwNzA5MjI0MzUwWjAYMRYwFAYD VQQDEw02ODY1YjYyNi1kYjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn9VntKUoLX2IFIePr2U49VhY/NcuKbzbm004ghuO7QeB/+873nBIj2ikTf3h Z12RW7A5Xq2hnFFBDLZ5IoLSFIKGIq9sxIc/Org70a9ZKJHz/IXUinengHFTR0cf Pz+rf6D1TREDUjaPUiomJ6Ax84Prkv1IquxrEdXFjMpWS5DKlEH6HvTPgYwNReMe hjkB/G9Wh2YABTzXy2Z1cL/rpfl4O5GCBnLqbHDjpQbNVbhG/t0naOEhUFrdSF/X BUCm1Qzzwgcefilfh6v2jISJzcwaq2keC5F6CTccZvjSdnMp+7iWKVygJ41dNHB4 utbKXv2GFs/tZMkvQ3oqdzFn6QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJH8ZH3c VT3Ei7CmkFWjgMfAiiHGMB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBkJ0rUXl1PnKt0NKx2o8kkKQ2xag1H/avN+T1YMQHAP7lNYMvOhlm ZOr3NB+Bjkd7vpkMDiVgPmamO+gHAf3xbs3RwXSi5PKkIqnTapjGxS4J/kJ/0s0b YEYU16e8UkkSukoG2g1QjYKahkzciWLtCSfyY7t1kHUm7Wffwe3c7Z2vMvLu99Kt 9OC4vRw+Dn1eLfYigVt03ZuSup1NywiEc/IMSY/Z7+Kf3MCdD/pl/VSf1X2jJri9 SHzKPAsw49gltmAfggO5b2qApYQRpoLzG/S4iJYNeGaFYHSezZsITAjBFW6lYIHG qSFsEQeKiorNCbXRN1/e1j3jnmVdp4yd -----END CERTIFICATE-----Generated at Fri Jul 4 18:38:04 2025 by rpki-client