$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: Fv7iwyj5/8SXNokFOTN2k9LJajPJf7x2QXcJqnEBbzw= Subject key identifier: A5:99:E2:00:31:4D:CE:6E:3E:43:2C:3E:99:1E:B0:8F:7B:0B:95:68 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 0685 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 0669 Signing time: Fri 22 Aug 2025 22:43:58 +0000 Manifest this update: Fri 22 Aug 2025 22:43:57 +0000 Manifest next update: Fri 29 Aug 2025 22:43:57 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: t90mEFbzafdpalmyHxoR+DGoH6JLL1bfSXFdottlN6U=) 2: 4092F17AE64811EFA0F37560C4F9AE02.roa (hash: MuDOs+UNP3qWV7q9sz+FoRMoZ33SC0+8rektpH4Ht5s=) 3: 698130FEE60411EFA2DC3057C4F9AE02.roa (hash: Vt5tMPro7Yd+AkFJe3Cnn+BsDTWCkJWM0XoIlmggi2I=) 4: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: lfQZb+Cu5k1P9aIBAVZr1VIcUuyX72bxEGl/rtrTc0A=) 5: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: guMsQztHXJe0nHYo+3sRzxnbrPq9rNiGro7Edp8V/SQ=) 6: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: 0e9NIIe4Eh6DQ3FvIOOg4nTVMnHbYlzq1N/yU/4pzQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1669 (0x685) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Aug 22 22:43:57 2025 GMT Not After : Aug 29 22:43:57 2025 GMT Subject: CN=68a8f2ad-7738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:2d:17:6a:5f:07:c8:42:33:ae:9b:ed:2a:a4: 19:ea:93:81:29:04:2b:cd:6f:7c:61:7a:1f:23:20: e6:e4:cd:79:dc:33:d3:9f:b8:dc:58:0d:a4:e5:17: 8a:24:ac:36:f9:a0:47:f1:a2:db:e3:75:97:0c:d6: 76:72:72:ef:05:05:81:e0:5a:69:f7:40:1c:60:ec: e3:60:d4:e1:64:70:2c:58:b2:5b:d2:61:12:d9:64: d2:3d:58:d0:d8:89:fe:8e:c2:58:c3:38:87:9f:c1: 09:16:cb:2d:c7:65:ec:f0:88:6c:cc:6a:4e:02:95: 06:e4:93:db:c6:eb:15:b8:5c:6a:df:34:fc:f6:2d: b0:7e:97:5e:5f:a3:06:41:2f:29:49:b3:13:0c:4b: 83:72:cf:9a:c0:1d:ef:ac:cc:1c:9e:65:77:6a:c6: 17:21:0d:49:81:7d:6e:ab:44:e9:54:f1:61:1f:71: 1b:fb:7c:83:81:4b:88:38:e1:12:66:c9:47:1d:81: f7:ac:91:45:14:90:d6:c1:19:f2:b4:70:c6:35:8b: 1d:23:d0:d3:a7:ee:ef:7e:ae:f6:46:f5:b5:d8:df: 1d:56:41:9e:e2:d8:c8:9c:44:2c:19:73:44:ce:cc: e4:02:a2:d8:af:f7:64:63:0e:ac:d1:f5:bc:ea:08: 34:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:99:E2:00:31:4D:CE:6E:3E:43:2C:3E:99:1E:B0:8F:7B:0B:95:68 X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e8:2c:4a:60:11:2f:07:c9:fa:fb:98:7a:60:07:5a:2c:79: 6a:ca:6e:d6:94:8d:c7:b5:0e:a4:ff:db:45:5e:81:23:b3:f9: 70:2d:29:7c:56:7e:e1:4c:73:48:c9:27:a6:cd:79:76:02:83: 9d:ee:90:90:f5:cf:19:1c:f7:65:ee:c6:2c:89:36:40:5f:b6: c9:da:88:2d:58:a2:39:e6:5e:1f:f1:6b:c9:be:05:e1:81:da: 80:c1:59:76:22:3a:64:b0:46:7c:13:87:13:63:86:75:1d:69: cc:78:2b:d5:e5:56:ad:b7:ed:24:53:1c:06:34:f5:29:88:ba: 8f:3f:0b:88:3e:c3:4f:4a:00:99:92:48:92:4c:37:6e:fa:27: 1b:e3:0e:95:2a:14:9a:8b:67:5b:3b:51:63:2d:ca:4c:29:34: 34:40:ca:11:27:65:ec:0e:92:d9:cb:bc:51:13:9d:d0:df:32: 77:25:2a:9a:1a:2a:4f:72:ff:59:4a:cb:5d:b3:8c:a6:89:67: de:59:02:69:31:83:6c:62:cd:ae:04:9d:46:0d:97:d6:37:fa: 13:60:d8:4f:07:7d:49:22:13:2b:f0:b9:35:6e:50:b3:1b:95: 3e:61:61:cc:b8:c8:4e:7d:dd:51:48:a2:ca:be:4c:e0:96:60: cd:ff:e2:2c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjUwODIyMjI0MzU3WhcNMjUwODI5MjI0MzU3WjAYMRYwFAYD VQQDEw02OGE4ZjJhZC03NzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoi0Xal8HyEIzrpvtKqQZ6pOBKQQrzW98YXofIyDm5M153DPTn7jcWA2k5ReK JKw2+aBH8aLb43WXDNZ2cnLvBQWB4Fpp90AcYOzjYNThZHAsWLJb0mES2WTSPVjQ 2In+jsJYwziHn8EJFsstx2Xs8IhszGpOApUG5JPbxusVuFxq3zT89i2wfpdeX6MG QS8pSbMTDEuDcs+awB3vrMwcnmV3asYXIQ1JgX1uq0TpVPFhH3Eb+3yDgUuIOOES ZslHHYH3rJFFFJDWwRnytHDGNYsdI9DTp+7vfq72RvW12N8dVkGe4tjInEQsGXNE zszkAqLYr/dkYw6s0fW86gg05wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKWZ4gAx Tc5uPkMsPpkesI97C5VoMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA36CxKYBEvB8n6+5h6YAdaLHlqym7WlI3HtQ6k/9tFXoEjs/lwLSl8 Vn7hTHNIySemzXl2AoOd7pCQ9c8ZHPdl7sYsiTZAX7bJ2ogtWKI55l4f8WvJvgXh gdqAwVl2IjpksEZ8E4cTY4Z1HWnMeCvV5Vatt+0kUxwGNPUpiLqPPwuIPsNPSgCZ kkiSTDdu+icb4w6VKhSai2dbO1FjLcpMKTQ0QMoRJ2XsDpLZy7xRE53Q3zJ3JSqa GipPcv9ZSstds4ymiWfeWQJpMYNsYs2uBJ1GDZfWN/oTYNhPB31JIhMr8Lk1blCz G5U+YWHMuMhOfd1RSKLKvkzglmDN/+Is -----END CERTIFICATE-----Generated at Sat Aug 23 19:03:01 2025 by rpki-client