$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: Ptnhhta/Xz5YEF7J/UkYhPtmlNavYE9LOASucRNeavA= Subject key identifier: 45:02:C6:D0:3D:51:D3:C6:B4:D6:D8:4F:D4:9A:08:50:6C:64:13:21 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 4F Signing time: Sat 23 Aug 2025 07:33:17 +0000 Manifest this update: Sat 23 Aug 2025 07:33:16 +0000 Manifest next update: Sat 30 Aug 2025 07:33:16 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: daALNykTKZy5Za5QecQPpzyV7yMZ1wzRac9nFgfSK+0=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Aug 23 07:33:16 2025 GMT Not After : Aug 30 07:33:16 2025 GMT Subject: CN=68a96ebc-52d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:65:45:a2:6e:60:24:06:89:9b:88:7a:ff:2a: 6f:4e:10:6e:75:93:f6:77:69:67:54:1f:79:50:cf: 51:a1:c8:ed:8f:73:5f:e5:9e:d0:3f:26:ba:09:d7: 62:30:7b:25:f3:84:f9:df:65:53:83:8d:87:1f:e5: 70:21:46:17:82:93:cd:56:f2:d8:9f:9c:ed:e4:25: da:98:9e:0c:f2:20:eb:e8:96:6b:92:4a:4f:d8:e9: fa:4e:2e:37:c4:eb:b0:44:09:1b:23:71:ca:22:06: 5f:d9:8e:dd:1e:c1:01:9a:21:13:98:18:f6:03:3b: a2:9e:41:d3:67:e7:9a:5f:d3:b2:11:d2:48:6c:14: e9:94:26:75:49:2c:0d:33:20:ae:7c:cd:9b:1d:31: 7b:21:e9:44:bd:26:48:a4:97:21:db:40:f9:05:5a: 40:7a:17:7f:eb:96:92:f4:22:a2:f5:5b:67:d1:d1: 0a:50:5e:2d:62:c3:15:1a:b5:53:68:f6:f5:dc:64: 53:35:b1:e5:4e:1c:43:26:0f:ba:d1:89:3b:09:18: 72:34:e9:da:b0:7a:85:ab:6a:f4:e9:7c:09:c1:65: f7:ca:72:d1:32:eb:23:8a:d8:05:e2:ac:9a:2d:53: b7:82:fb:ea:47:59:6b:92:d1:3a:09:0f:3e:8f:81: 18:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:02:C6:D0:3D:51:D3:C6:B4:D6:D8:4F:D4:9A:08:50:6C:64:13:21 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:53:97:7c:b6:77:8c:62:ef:32:d7:6d:62:ff:a9:7b:6f:21: fc:f7:e0:d1:37:28:3d:c2:97:d9:0f:e8:d3:e4:4f:0a:2a:32: 88:71:9a:93:99:88:2d:07:c1:9d:25:3c:b4:2d:08:60:c7:74: 3a:00:59:78:f6:3f:83:21:a2:5c:ac:65:66:bf:d6:03:5d:e2: d2:0a:bb:04:c3:11:fd:fd:bd:47:9b:fc:9f:ff:2e:f1:6f:59: 85:81:07:0d:05:47:c2:2e:4e:14:c4:f5:92:78:a9:f7:f2:bb: d0:f5:c9:21:95:56:67:72:ee:cf:73:07:22:bc:68:0b:86:b3: 02:b5:6d:b7:5d:1d:15:0a:bc:d9:2a:c4:c4:fe:91:bf:9e:aa: 56:da:0b:df:79:ef:07:4b:0d:dd:39:bd:8d:0d:52:cc:74:8c: 89:fd:f3:ee:0c:12:ff:82:23:3e:d7:f6:17:3e:d0:63:f6:20: 6c:aa:7a:13:18:e2:5c:0e:3b:d6:a9:2f:55:a5:6f:1d:78:69: 48:eb:c1:fb:3c:7b:c5:75:b8:de:73:70:84:d1:c0:61:21:7e: ad:72:40:a3:6b:b4:45:a5:33:7d:58:f5:70:21:e9:64:2c:61: 08:8a:20:45:7a:cf:c0:7c:42:31:f5:6f:cc:29:4f:57:5b:10: ff:03:a5:b6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTA4MjMwNzMzMTZaFw0yNTA4MzAwNzMzMTZaMBgxFjAUBgNV BAMTDTY4YTk2ZWJjLTUyZDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDZUWibmAkBombiHr/Km9OEG51k/Z3aWdUH3lQz1GhyO2Pc1/lntA/JroJ12Iw eyXzhPnfZVODjYcf5XAhRheCk81W8tifnO3kJdqYngzyIOvolmuSSk/Y6fpOLjfE 67BECRsjccoiBl/Zjt0ewQGaIROYGPYDO6KeQdNn55pf07IR0khsFOmUJnVJLA0z IK58zZsdMXsh6US9JkiklyHbQPkFWkB6F3/rlpL0IqL1W2fR0QpQXi1iwxUatVNo 9vXcZFM1seVOHEMmD7rRiTsJGHI06dqweoWravTpfAnBZffKctEy6yOK2AXirJot U7eC++pHWWuS0ToJDz6PgRhXAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQURQLG0D1R 08a01thP1JoIUGxkEyEwHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABpTl3y2d4xi7zLXbWL/qXtvIfz34NE3KD3Cl9kP6NPkTwoqMohxmpOZ iC0HwZ0lPLQtCGDHdDoAWXj2P4MholysZWa/1gNd4tIKuwTDEf39vUeb/J//LvFv WYWBBw0FR8IuThTE9ZJ4qffyu9D1ySGVVmdy7s9zByK8aAuGswK1bbddHRUKvNkq xMT+kb+eqlbaC9957wdLDd05vY0NUsx0jIn98+4MEv+CIz7X9hc+0GP2IGyqehMY 4lwOO9apL1Wlbx14aUjrwfs8e8V1uN5zcITRwGEhfq1yQKNrtEWlM31Y9XAh6WQs YQiKIEV6z8B8QjH1b8wpT1dbEP8DpbY= -----END CERTIFICATE-----Generated at Sun Aug 24 05:04:55 2025 by rpki-client