$ rpki-client -vvf rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft File: kI2z-bdG9SC7uahMhT9pJsFeub0.mft (raw, json) Hash identifier: 43wOh+g6/x97KQA3J/hXwvvVvQiz9mHr+CdPIT2AO+o= Subject key identifier: DC:BC:54:40:EB:61:29:69:04:F0:E4:03:E5:05:9C:4C:11:72:14:1D Authority key identifier: 90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD Certificate issuer: /CN=A919A909/serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Certificate serial: E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft Manifest number: E3 Signing time: Sat 23 Aug 2025 05:36:52 +0000 Manifest this update: Sat 23 Aug 2025 05:36:52 +0000 Manifest next update: Sat 30 Aug 2025 05:36:52 +0000 Files and hashes: 1: kI2z-bdG9SC7uahMhT9pJsFeub0.crl (hash: p80KPGp3oCDLN3qOAxwS3JG0sO8sFiQvc2QRRhcFvsg=) 2: 879152E62E4811EF929FE162C4F9AE02.roa (hash: cr46hMBXMjVoUuUCIeS55LaT84JtFcqvVMAfnbq95f8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:36:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A909, serialNumber=908DB3F9B746F520BBB9A84C853F6926C15EB9BD Validity Not Before: Aug 23 05:36:52 2025 GMT Not After : Aug 30 05:36:52 2025 GMT Subject: CN=68a95374-ae38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1f:9d:01:a4:c6:29:98:44:36:b0:7d:2d:7c: 36:0b:a1:80:ea:c8:fa:7f:6d:0d:1c:4f:c1:ee:35: 9a:fb:90:57:bf:b6:01:69:3b:d2:85:46:23:0e:8b: 1a:45:f6:e6:10:bf:b3:93:a7:81:35:d1:8d:1f:db: 9f:44:1c:60:ed:76:ef:d2:90:1d:67:8d:92:9d:e1: 2c:6f:ef:83:66:30:3d:01:e2:44:9a:a5:77:fb:6d: 01:2e:2d:63:1e:b8:86:63:c0:11:da:7f:76:67:3d: c4:fc:b1:12:b7:3c:6e:df:db:92:c3:a3:99:5d:10: 21:44:1f:25:ff:26:6d:fe:62:37:e9:64:06:66:09: f5:1b:31:ac:f3:c8:4e:50:e7:7c:b3:3a:61:db:66: 60:be:18:37:ef:20:43:0e:89:3d:09:ba:f6:30:b2: d1:41:95:60:8b:73:c3:0f:8f:a2:8d:8c:dd:d0:50: 56:4e:da:a9:02:4f:60:2b:1a:20:39:71:5d:fb:23: fd:f6:a2:63:5c:b1:cc:95:a9:e4:0b:59:88:21:ff: c8:f3:00:f7:00:c4:43:42:48:3a:19:c9:76:59:37: e7:63:f4:14:8b:c7:9f:d1:71:58:19:bb:53:11:ff: 19:c1:0e:a1:a2:db:a9:00:2b:e9:a3:3d:7c:e0:94: 3f:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BC:54:40:EB:61:29:69:04:F0:E4:03:E5:05:9C:4C:11:72:14:1D X509v3 Authority Key Identifier: keyid:90:8D:B3:F9:B7:46:F5:20:BB:B9:A8:4C:85:3F:69:26:C1:5E:B9:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kI2z-bdG9SC7uahMhT9pJsFeub0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A909/209EDDCE2A3311EFBE9AA859C4F9AE02/kI2z-bdG9SC7uahMhT9pJsFeub0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:d1:50:4a:86:b1:9b:b0:81:3f:75:7a:0b:52:a3:53:c2:18: dd:1d:53:53:70:0c:7a:6c:0f:0f:d9:db:68:25:eb:d5:7a:7a: f6:11:b4:c4:9d:d8:c5:45:3c:5b:1d:c3:b5:2b:f4:28:77:a8: 46:91:04:38:83:12:80:1d:03:f1:f6:90:a6:51:02:62:bb:62: 97:95:fc:e0:90:81:17:01:43:fa:87:16:96:0b:73:87:59:6c: 86:1f:bd:e4:d6:32:ca:4f:a4:03:53:a2:b1:b5:7c:35:dd:51: 8a:fe:3e:85:fe:d9:38:ae:bd:73:e0:e7:c8:28:06:df:66:a0: e6:c4:14:ff:88:05:70:4f:db:72:43:96:a8:7c:b9:4f:e5:46: d6:61:bc:e2:f1:75:1f:fa:0b:da:43:28:f7:4f:ee:4b:0b:07: fd:fd:43:39:22:b9:a9:33:cb:f5:ce:4b:c6:08:5c:79:30:32: 37:11:e0:68:fb:19:37:77:9f:f0:49:08:36:69:e2:dd:34:94: c0:89:f6:e3:65:28:7c:95:97:93:b2:b0:7c:29:d3:5b:a7:57: 36:36:29:9c:8b:3c:93:cc:31:3e:71:54:dd:7e:8e:ba:28:7e: e6:88:ff:7d:70:e7:7c:70:a2:38:8e:ef:e4:a1:ee:0a:3c:49: 2e:c4:97:63 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUE5MDkxMTAvBgNVBAUTKDkwOERCM0Y5Qjc0NkY1MjBCQkI5QTg0Qzg1M0Y2OTI2 QzE1RUI5QkQwHhcNMjUwODIzMDUzNjUyWhcNMjUwODMwMDUzNjUyWjAYMRYwFAYD VQQDEw02OGE5NTM3NC1hZTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvh+dAaTGKZhENrB9LXw2C6GA6sj6f20NHE/B7jWa+5BXv7YBaTvShUYjDosa RfbmEL+zk6eBNdGNH9ufRBxg7Xbv0pAdZ42SneEsb++DZjA9AeJEmqV3+20BLi1j HriGY8AR2n92Zz3E/LEStzxu39uSw6OZXRAhRB8l/yZt/mI36WQGZgn1GzGs88hO UOd8szph22Zgvhg37yBDDok9Cbr2MLLRQZVgi3PDD4+ijYzd0FBWTtqpAk9gKxog OXFd+yP99qJjXLHMlankC1mIIf/I8wD3AMRDQkg6Gcl2WTfnY/QUi8ef0XFYGbtT Ef8ZwQ6hotupACvpoz184JQ//QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNy8VEDr YSlpBPDkA+UFnEwRchQdMB8GA1UdIwQYMBaAFJCNs/m3RvUgu7moTIU/aSbBXrm9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTkwOS8yMDlFRERDRTJB MzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlTQzd1YWhNaFQ5cEpzRmV1 YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJMnotYmRHOVNDN3VhaE1oVDlwSnNGZXViMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTkwOS8yMDlFRERDRTJBMzMxMUVGQkU5QUE4NTlDNEY5QUUwMi9rSTJ6LWJkRzlT Qzd1YWhNaFQ5cEpzRmV1YjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBE0VBKhrGbsIE/dXoLUqNTwhjdHVNTcAx6bA8P2dtoJevVenr2EbTE ndjFRTxbHcO1K/Qod6hGkQQ4gxKAHQPx9pCmUQJiu2KXlfzgkIEXAUP6hxaWC3OH WWyGH73k1jLKT6QDU6KxtXw13VGK/j6F/tk4rr1z4OfIKAbfZqDmxBT/iAVwT9ty Q5aofLlP5UbWYbzi8XUf+gvaQyj3T+5LCwf9/UM5IrmpM8v1zkvGCFx5MDI3EeBo +xk3d5/wSQg2aeLdNJTAifbjZSh8lZeTsrB8KdNbp1c2NimcizyTzDE+cVTdfo66 KH7miP99cOd8cKI4ju/koe4KPEkuxJdj -----END CERTIFICATE-----Generated at Sat Aug 23 16:39:11 2025 by rpki-client