$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: hXl7+MerEL7rITBR7SLjx1loWefwES5rwZbE6HjgpGo= Subject key identifier: 5D:6E:62:0B:FC:24:99:59:D4:89:C0:9F:DE:8B:B9:89:C8:E6:F5:D1 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 0154 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 0151 Signing time: Mon 07 Jul 2025 04:18:35 +0000 Manifest this update: Mon 07 Jul 2025 04:18:35 +0000 Manifest next update: Mon 14 Jul 2025 04:18:35 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: +Siy7dcsm1A0SJwzJ6bgXGG9gAUjOHieoRPrtuzmeHw=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: Pojppps22r3xRUUOYA4Lq5WqJQ1e2Svo0KKFdlUH1VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 04:18:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 340 (0x154) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Jul 7 04:18:35 2025 GMT Not After : Jul 14 04:18:35 2025 GMT Subject: CN=686b4a9b-99fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cd:52:ca:eb:ce:5a:cc:f8:39:bb:96:86:7b: ef:13:c0:a8:3b:e5:32:31:f8:0a:8c:54:89:89:0b: 36:69:5e:bf:ce:67:e8:ff:5a:de:d2:1f:3d:11:49: ba:b5:6c:19:a5:ec:64:29:00:70:de:dd:35:c8:3d: ea:22:63:8b:5f:41:ea:f6:ea:35:78:41:e4:90:f4: e5:fd:51:29:2a:ed:c7:56:34:23:04:82:d2:c0:1c: ca:df:b6:4d:35:4c:d5:7a:08:cb:f0:a1:e3:ae:bb: 93:17:9c:ec:e2:fa:c2:b2:aa:43:57:0d:88:c3:b0: 73:bb:e5:55:ab:11:16:d0:f8:04:c6:68:2f:b0:8a: b7:46:0c:85:d4:6c:d5:a1:fe:58:be:e6:a4:f2:73: 87:aa:0e:c2:90:60:7f:e8:a7:d1:d8:96:c3:3a:45: 6b:8f:0e:42:c6:d4:52:9f:ec:3d:5a:43:bc:1d:79: 13:06:06:95:e7:e1:87:1d:a6:81:55:16:a3:62:31: 84:1f:a2:5a:ad:84:98:d4:ae:6f:ec:72:ba:3c:23: 58:62:2b:23:05:e4:26:e8:79:20:e1:a3:3b:a4:03: b6:d4:95:ab:5d:30:fd:3a:a3:35:1d:53:77:f3:0c: a3:32:72:d0:be:13:b6:aa:92:fd:46:56:4d:d8:97: 0b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:6E:62:0B:FC:24:99:59:D4:89:C0:9F:DE:8B:B9:89:C8:E6:F5:D1 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:2c:3d:81:ab:3e:2b:ac:bc:c0:bd:f5:c1:c8:b7:7f:0d:e7: 7e:ac:c5:f2:c3:be:d1:a3:69:f0:aa:26:fe:2c:dd:cc:6f:a2: 48:e0:b6:c5:64:50:6f:ce:58:d7:b3:93:85:e3:8b:41:2e:79: d8:83:75:d3:96:d1:b8:f5:0b:b6:fe:41:73:5a:b5:5f:91:d3: da:2c:6c:60:07:29:ae:1f:d2:be:15:e4:e4:8d:2a:9c:df:f3: 46:5b:4e:eb:5f:0a:8d:39:76:fc:bc:e1:88:7c:7a:03:ee:d9: 5d:a2:94:9c:63:61:fb:cd:fc:d4:e5:2a:27:5a:fb:57:4f:fc: 34:a9:e6:7b:1c:91:c0:b3:d6:77:a9:f5:75:1f:eb:ed:b7:96: 8d:92:e6:4d:62:a6:ef:b6:d8:8b:28:f2:82:01:81:b1:90:4e: 34:28:76:4d:58:2a:1f:5c:f4:d7:8e:33:35:91:e9:c7:df:b9: 49:8e:ec:c0:37:1d:a7:f1:d5:bf:66:97:bf:cd:42:5c:8c:67: 11:07:26:41:e0:99:81:d9:b1:de:f4:63:e7:b0:dd:41:3d:8f: 3d:8a:8c:c2:85:27:f4:be:66:71:15:c6:70:ef:a5:cc:72:40: 82:ab:86:5e:f5:6f:5d:86:49:11:0d:c8:e2:89:ed:00:72:45: 64:3c:8c:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjUwNzA3MDQxODM1WhcNMjUwNzE0MDQxODM1WjAYMRYwFAYD VQQDEw02ODZiNGE5Yi05OWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxM1SyuvOWsz4ObuWhnvvE8CoO+UyMfgKjFSJiQs2aV6/zmfo/1re0h89EUm6 tWwZpexkKQBw3t01yD3qImOLX0Hq9uo1eEHkkPTl/VEpKu3HVjQjBILSwBzK37ZN NUzVegjL8KHjrruTF5zs4vrCsqpDVw2Iw7Bzu+VVqxEW0PgExmgvsIq3RgyF1GzV of5Yvuak8nOHqg7CkGB/6KfR2JbDOkVrjw5CxtRSn+w9WkO8HXkTBgaV5+GHHaaB VRajYjGEH6JarYSY1K5v7HK6PCNYYisjBeQm6Hkg4aM7pAO21JWrXTD9OqM1HVN3 8wyjMnLQvhO2qpL9RlZN2JcLxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF1uYgv8 JJlZ1InAn96LuYnI5vXRMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC3LD2Bqz4rrLzAvfXByLd/Ded+rMXyw77Ro2nwqib+LN3Mb6JI4LbF ZFBvzljXs5OF44tBLnnYg3XTltG49Qu2/kFzWrVfkdPaLGxgBymuH9K+FeTkjSqc 3/NGW07rXwqNOXb8vOGIfHoD7tldopScY2H7zfzU5SonWvtXT/w0qeZ7HJHAs9Z3 qfV1H+vtt5aNkuZNYqbvttiLKPKCAYGxkE40KHZNWCofXPTXjjM1kenH37lJjuzA Nx2n8dW/Zpe/zUJcjGcRByZB4JmB2bHe9GPnsN1BPY89iozChSf0vmZxFcZw76XM ckCCq4Ze9W9dhkkRDcjiie0AckVkPIxd -----END CERTIFICATE-----Generated at Mon Jul 7 09:09:33 2025 by rpki-client