$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: mpdXpK4FKPA1QzcMql/fL4yH86y753/Xp9FE7vXeYvg= Subject key identifier: 28:17:15:AF:FE:63:43:EF:97:62:31:C8:74:1B:44:AA:8B:E7:E9:8D Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 34 Signing time: Tue 01 Jul 2025 08:25:04 +0000 Manifest this update: Tue 01 Jul 2025 08:25:04 +0000 Manifest next update: Tue 08 Jul 2025 08:25:04 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: uuErt3Iufs28yTQIuhbrU7wYOql+e6qySAwo+7Fr3bE=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 08:25:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53 (0x35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Jul 1 08:25:04 2025 GMT Not After : Jul 8 08:25:04 2025 GMT Subject: CN=68639b60-8ef5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e9:17:a8:d8:c7:d1:f5:bb:5d:b2:b4:fb:99: 99:08:9e:3b:15:14:af:ab:fb:92:83:57:d1:85:d1: 03:45:36:7e:27:d5:e9:cd:89:15:1c:f5:0a:7c:4c: d4:a0:1d:11:fa:1c:15:94:87:65:aa:3e:e4:5f:b5: a4:5e:0a:0b:2f:b4:72:4e:be:db:79:42:10:33:32: e3:fa:b1:7d:10:12:15:65:9b:2d:c2:b6:5d:3b:29: a0:57:ff:36:82:89:a6:d4:a2:c9:cc:87:a2:09:f5: 7c:8e:5b:96:a5:a0:ef:45:13:1d:7c:0f:df:91:e3: 0a:9f:14:bf:25:b7:39:67:f3:db:4a:c4:62:39:fe: f0:b8:4d:ca:ed:11:22:b3:26:35:15:5c:97:77:47: 7a:03:72:21:23:f4:ba:1c:c3:de:1e:66:9f:4f:8a: 83:76:77:ae:f3:0a:97:bd:e9:8a:9b:2f:c8:ad:14: 62:52:4b:dd:49:db:67:be:66:c1:86:1d:ee:d4:a3: cc:2d:c6:90:7d:71:21:ab:6e:ba:28:b4:17:bd:bf: 17:94:4f:18:75:dc:7e:1c:ef:15:eb:dd:1c:0c:21: b9:d1:3c:63:31:4e:52:0b:d3:11:b8:ea:8d:2d:d7: e9:7a:1e:9b:79:f1:ea:cb:3f:b2:85:2a:80:8b:14: 80:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:17:15:AF:FE:63:43:EF:97:62:31:C8:74:1B:44:AA:8B:E7:E9:8D X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:bf:61:95:2b:a2:b8:d4:49:f8:90:f4:d3:99:08:ec:9b:40: 69:00:ae:bb:68:01:eb:be:44:ac:c9:85:53:a0:e5:1c:ff:8e: 8e:63:aa:80:c5:04:ae:28:51:98:bb:4b:ad:fd:c7:b2:32:a6: c5:e2:8d:6e:85:88:56:38:f5:36:f7:28:ed:8c:4b:32:ff:b8: b1:64:9c:7e:dd:56:b7:48:0e:12:22:ef:18:34:af:b3:18:32: 18:e2:42:0d:96:d6:d4:da:8a:d4:e6:32:d7:04:55:9f:7f:f3: a6:ec:f4:42:53:af:91:79:c7:4f:62:68:11:61:49:2e:df:f0: c1:fc:89:5f:68:83:90:a1:eb:79:bd:1a:b7:19:48:41:5e:41: f9:64:92:a9:ce:35:8c:5a:8f:b9:08:a4:0e:4d:e4:63:30:8e: cb:f0:f8:0e:be:7d:fe:68:57:7b:6a:64:b6:d5:b2:f8:b7:be: 08:e4:0c:81:d2:89:66:5b:fa:87:76:ab:81:86:eb:d1:47:55: 4c:0f:e7:40:19:99:4c:d8:56:1f:f7:42:dd:0e:80:f3:43:e7: 7c:b6:79:4e:e1:20:2d:6b:e5:e5:9c:79:1a:d1:86:c3:52:2a: f1:1b:82:83:b4:da:b3:a8:6b:21:80:68:9c:01:b4:82:2f:e5: 61:0c:12:af -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBNTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTA3MDEwODI1MDRaFw0yNTA3MDgwODI1MDRaMBgxFjAUBgNV BAMTDTY4NjM5YjYwLThlZjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDe6Reo2MfR9btdsrT7mZkInjsVFK+r+5KDV9GF0QNFNn4n1enNiRUc9Qp8TNSg HRH6HBWUh2WqPuRftaReCgsvtHJOvtt5QhAzMuP6sX0QEhVlmy3Ctl07KaBX/zaC iabUosnMh6IJ9XyOW5aloO9FEx18D9+R4wqfFL8ltzln89tKxGI5/vC4TcrtESKz JjUVXJd3R3oDciEj9Locw94eZp9PioN2d67zCpe96YqbL8itFGJSS91J22e+ZsGG He7Uo8wtxpB9cSGrbrootBe9vxeUTxh13H4c7xXr3RwMIbnRPGMxTlIL0xG46o0t 1+l6Hpt58erLP7KFKoCLFIAnAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUKBcVr/5j Q++XYjHIdBtEqovn6Y0wHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAK+/YZUrorjUSfiQ9NOZCOybQGkArrtoAeu+RKzJhVOg5Rz/jo5jqoDF BK4oUZi7S639x7IypsXijW6FiFY49Tb3KO2MSzL/uLFknH7dVrdIDhIi7xg0r7MY MhjiQg2W1tTaitTmMtcEVZ9/86bs9EJTr5F5x09iaBFhSS7f8MH8iV9og5Ch63m9 GrcZSEFeQflkkqnONYxaj7kIpA5N5GMwjsvw+A6+ff5oV3tqZLbVsvi3vgjkDIHS iWZb+od2q4GG69FHVUwP50AZmUzYVh/3Qt0OgPND53y2eU7hIC1r5eWceRrRhsNS KvEbgoO02rOoayGAaJwBtIIv5WEMEq8= -----END CERTIFICATE-----Generated at Thu Jul 3 08:14:00 2025 by rpki-client