$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: OmiE8Hz0Gu80S4vIUgT4NMT/xUzbIPZEovHLGqTIwbw= Subject key identifier: 19:5D:0F:31:C0:47:CB:DE:69:CF:54:66:AC:67:EF:72:20:0B:F6:83 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 016C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 0169 Signing time: Sat 23 Aug 2025 04:01:41 +0000 Manifest this update: Sat 23 Aug 2025 04:01:41 +0000 Manifest next update: Sat 30 Aug 2025 04:01:40 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: yiMcu3heOrG//+dl+N7/vw3yPHjv3SENHonmQqaHUuM=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: Pojppps22r3xRUUOYA4Lq5WqJQ1e2Svo0KKFdlUH1VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 364 (0x16c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Aug 23 04:01:41 2025 GMT Not After : Aug 30 04:01:40 2025 GMT Subject: CN=68a93d25-aa70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1b:a7:4b:5a:ff:25:30:f1:9d:d9:da:bc:83: af:2f:d3:4b:87:01:d2:70:fd:b6:9a:31:2a:66:91: 3e:d0:b6:56:7f:d8:66:79:2c:6d:bc:9d:d9:f2:b7: e0:4a:fa:ed:a5:f7:2e:3d:6e:69:5e:a4:d9:90:0b: 1b:a2:8f:8f:54:32:c6:6d:df:a7:2c:65:4e:4c:1d: fe:9a:85:7d:b5:74:59:3c:14:3b:d9:1d:a4:29:8d: 60:f2:6f:36:56:0b:a5:d2:70:26:ce:36:b3:02:36: a9:0c:63:3e:d9:81:b6:fa:bc:1b:dc:70:2d:0b:72: 71:84:ce:08:1d:61:c3:c9:2b:96:68:d6:ed:01:55: a1:9d:e6:9c:6e:01:d1:d2:91:46:b5:2d:75:c2:eb: bf:5f:3d:85:5e:33:ff:2a:ef:aa:ce:d4:e1:fe:43: 53:4b:e9:fd:9e:44:aa:97:d3:01:20:9c:f0:0c:b9: 05:0f:8a:c8:53:55:d3:e9:d3:0d:07:b1:c5:e3:45: 56:be:1f:a9:77:85:c6:84:03:45:37:70:be:ba:ac: 94:4a:70:53:9d:76:0c:b4:3d:0d:2f:70:63:3c:04: 53:e2:1c:98:f7:d4:aa:f8:69:5f:80:2d:ab:b9:67: 1b:f8:3d:50:29:ce:83:1f:22:bc:c6:f3:84:7c:85: 91:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:5D:0F:31:C0:47:CB:DE:69:CF:54:66:AC:67:EF:72:20:0B:F6:83 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:e5:90:84:4f:af:e9:57:fe:0a:6e:25:49:5e:db:be:73:ff: 9c:ee:ce:42:e9:cc:a0:2b:9e:2f:c5:95:5e:7f:62:f1:0f:98: 3b:d5:bb:88:41:2d:5e:f2:e1:73:d9:f6:c8:f8:50:ac:51:84: c0:73:2b:2e:8f:4b:7c:6f:9b:28:c2:f4:5c:39:24:8c:04:4a: 9d:52:f8:70:e4:cf:12:db:f3:6a:b0:f9:a1:cf:6a:a2:c9:bc: 16:6f:d5:f9:73:60:af:f6:4b:08:e5:e0:36:6c:53:81:28:8d: 82:87:bd:1d:c8:01:89:1f:bf:96:f9:47:8f:a1:06:a0:f8:e9: 47:82:53:01:a6:4a:07:ea:06:9f:39:7f:08:e0:e7:72:c0:00: c0:15:09:31:8e:c8:61:d2:8c:b7:e6:32:32:35:e4:2c:7e:81: 41:8c:31:71:46:ab:33:8d:da:32:a4:5d:0e:26:ec:f5:64:eb: 67:82:a8:1d:53:4e:15:19:3b:df:c5:e8:50:06:41:25:7c:1c: 1d:e1:45:1b:96:86:79:fa:c5:7b:14:58:8c:70:44:7f:5a:6d: 55:b4:2d:5c:ee:c2:1b:78:71:21:11:d2:15:1b:c1:99:5b:70: 14:25:ff:7b:ac:57:5a:64:49:16:88:0f:6b:e1:31:60:7a:b8: f0:67:f7:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjUwODIzMDQwMTQxWhcNMjUwODMwMDQwMTQwWjAYMRYwFAYD VQQDEw02OGE5M2QyNS1hYTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2RunS1r/JTDxndnavIOvL9NLhwHScP22mjEqZpE+0LZWf9hmeSxtvJ3Z8rfg SvrtpfcuPW5pXqTZkAsboo+PVDLGbd+nLGVOTB3+moV9tXRZPBQ72R2kKY1g8m82 Vgul0nAmzjazAjapDGM+2YG2+rwb3HAtC3JxhM4IHWHDySuWaNbtAVWhneacbgHR 0pFGtS11wuu/Xz2FXjP/Ku+qztTh/kNTS+n9nkSql9MBIJzwDLkFD4rIU1XT6dMN B7HF40VWvh+pd4XGhANFN3C+uqyUSnBTnXYMtD0NL3BjPART4hyY99Sq+GlfgC2r uWcb+D1QKc6DHyK8xvOEfIWRmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBldDzHA R8veac9UZqxn73IgC/aDMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi5ZCET6/pV/4KbiVJXtu+c/+c7s5C6cygK54vxZVef2LxD5g71buI QS1e8uFz2fbI+FCsUYTAcysuj0t8b5sowvRcOSSMBEqdUvhw5M8S2/NqsPmhz2qi ybwWb9X5c2Cv9ksI5eA2bFOBKI2Ch70dyAGJH7+W+UePoQag+OlHglMBpkoH6gaf OX8I4OdywADAFQkxjshh0oy35jIyNeQsfoFBjDFxRqszjdoypF0OJuz1ZOtngqgd U04VGTvfxehQBkElfBwd4UUbloZ5+sV7FFiMcER/Wm1VtC1c7sIbeHEhEdIVG8GZ W3AUJf97rFdaZEkWiA9r4TFgerjwZ/f+ -----END CERTIFICATE-----Generated at Sat Aug 23 20:26:15 2025 by rpki-client