$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft File: Khx4XL6-fNe6tToSO2BVhg9gfxg.mft (raw, json) Hash identifier: h7Mo0BD3OJD5NxXFvGOol6V9BXGjsonCQT5TIlTLHs4= Subject key identifier: 73:BE:DF:40:78:BB:66:B0:12:53:AA:56:F9:D0:49:EC:65:93:68:6F Authority key identifier: 2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 Certificate issuer: /CN=A91D6AB2/serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Certificate serial: 085D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft Manifest number: 0C99 Signing time: Fri 22 Aug 2025 20:48:17 +0000 Manifest this update: Fri 22 Aug 2025 20:48:17 +0000 Manifest next update: Fri 29 Aug 2025 20:48:17 +0000 Files and hashes: 1: Khx4XL6-fNe6tToSO2BVhg9gfxg.crl (hash: KGot8EWKJe7N0codhhctPf34YWo6Z4Yt5pygkgPkrw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 20:48:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2141 (0x85d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6AB2, serialNumber=2A1C785CBEBE7CD7BAB53A123B6055860F607F18 Validity Not Before: Aug 22 20:48:17 2025 GMT Not After : Aug 29 20:48:17 2025 GMT Subject: CN=68a8d791-cfd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:14:76:24:d8:6a:6f:0a:db:82:df:e7:7e: 07:69:ee:84:35:71:73:51:08:06:d9:b9:cf:e3:c8: fc:a3:79:35:45:e8:84:b3:c3:73:0e:fd:bb:41:cb: 77:90:db:6b:87:ae:27:0f:a9:e2:26:bb:bf:23:87: 31:c0:4e:8e:21:e3:1e:f4:fb:9c:0c:30:bb:c2:12: 66:ad:b2:6d:b1:27:8b:87:53:8c:5e:e8:65:f4:06: fd:80:89:8a:6b:36:6f:39:cb:bc:29:5c:86:58:9c: e0:94:fb:b3:6d:08:ef:a5:32:1d:8b:ac:1a:ba:7e: 1c:4a:46:d7:a3:98:d5:41:9f:4a:84:c6:dc:cf:59: 76:fb:eb:5f:f6:8f:d4:21:4b:a4:91:5e:bd:38:e3: e4:84:f8:75:91:ff:07:bd:49:b2:fd:25:83:b7:21: c9:22:3a:e9:8e:98:e8:d7:ff:f3:e6:b7:6c:5d:27: 1e:65:6e:5a:89:b6:00:9e:59:4e:7a:f6:ff:b7:7d: 51:b6:3c:ee:99:2e:ef:b3:ee:4d:08:88:88:93:33: 16:97:63:55:da:9a:fa:01:a1:7d:d3:2e:50:af:bb: 12:f1:9f:9f:d6:bc:5b:27:6b:4a:41:68:e2:d8:00: e6:e7:7a:4b:0f:94:bf:9e:c4:d3:37:14:ba:f1:aa: 98:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:BE:DF:40:78:BB:66:B0:12:53:AA:56:F9:D0:49:EC:65:93:68:6F X509v3 Authority Key Identifier: keyid:2A:1C:78:5C:BE:BE:7C:D7:BA:B5:3A:12:3B:60:55:86:0F:60:7F:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Khx4XL6-fNe6tToSO2BVhg9gfxg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6AB2/0AF2EAAACF7011EA8AE55D48C4F9AE02/Khx4XL6-fNe6tToSO2BVhg9gfxg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:d6:6e:34:b6:4f:58:61:04:14:ca:dc:31:c5:c0:76:b9:54: bf:bf:68:04:7f:13:98:fe:a4:b3:66:de:aa:5d:2d:43:da:94: d2:0a:7b:c9:52:af:13:cf:66:56:01:72:8e:61:54:fd:ad:71: 4e:4f:7c:98:79:8e:9d:0c:53:17:cb:98:07:13:df:1f:1b:7f: fd:28:af:45:69:a0:10:85:88:85:d7:ac:c0:3c:1e:e4:71:af: d1:89:fb:d8:3e:88:a9:12:ac:9e:c6:82:84:46:b5:3d:03:5d: 05:9c:3c:fc:8b:e6:63:93:d1:d4:8d:84:65:7e:b7:70:d7:94: ec:ef:2e:2c:40:6d:31:03:7b:2c:ca:bb:73:5e:cc:d1:43:16: ce:94:7c:59:ad:87:a2:bb:38:da:0a:e9:52:a4:6f:32:af:d6: d1:c8:04:56:76:b0:e5:df:b3:d5:3d:28:21:5e:99:0e:37:67: 23:fc:11:70:80:13:aa:b9:d6:69:30:e8:b6:2c:db:bd:96:8e: 11:f8:f6:9e:3a:e9:31:60:9b:8c:b6:17:45:64:c7:af:2b:33: 4d:3e:3e:db:c4:58:3e:51:23:0f:ad:4f:79:41:13:1f:e7:47: d3:c3:d6:6b:e3:b1:69:17:73:81:94:6c:ac:e8:93:86:17:87: 00:b8:42:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCF0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZBQjIxMTAvBgNVBAUTKDJBMUM3ODVDQkVCRTdDRDdCQUI1M0ExMjNCNjA1NTg2 MEY2MDdGMTgwHhcNMjUwODIyMjA0ODE3WhcNMjUwODI5MjA0ODE3WjAYMRYwFAYD VQQDEw02OGE4ZDc5MS1jZmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1QUdiTYam8K24Lf534Hae6ENXFzUQgG2bnP48j8o3k1ReiEs8NzDv27Qct3 kNtrh64nD6niJru/I4cxwE6OIeMe9PucDDC7whJmrbJtsSeLh1OMXuhl9Ab9gImK azZvOcu8KVyGWJzglPuzbQjvpTIdi6waun4cSkbXo5jVQZ9KhMbcz1l2++tf9o/U IUukkV69OOPkhPh1kf8HvUmy/SWDtyHJIjrpjpjo1//z5rdsXSceZW5aibYAnllO evb/t31RtjzumS7vs+5NCIiIkzMWl2NV2pr6AaF90y5Qr7sS8Z+f1rxbJ2tKQWji 2ADm53pLD5S/nsTTNxS68aqYKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHO+30B4 u2awElOqVvnQSexlk2hvMB8GA1UdIwQYMBaAFCoceFy+vnzXurU6EjtgVYYPYH8Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkFCMi8wQUYyRUFBQUNG NzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZOZTZ0VG9TTzJCVmhnOWdm eGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0toeDRYTDYtZk5lNnRUb1NPMkJWaGc5Z2Z4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkFCMi8wQUYyRUFBQUNGNzAxMUVBOEFFNTVENDhDNEY5QUUwMi9LaHg0WEw2LWZO ZTZ0VG9TTzJCVmhnOWdmeGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBi1m40tk9YYQQUytwxxcB2uVS/v2gEfxOY/qSzZt6qXS1D2pTSCnvJ Uq8Tz2ZWAXKOYVT9rXFOT3yYeY6dDFMXy5gHE98fG3/9KK9FaaAQhYiF16zAPB7k ca/RifvYPoipEqyexoKERrU9A10FnDz8i+Zjk9HUjYRlfrdw15Ts7y4sQG0xA3ss yrtzXszRQxbOlHxZrYeiuzjaCulSpG8yr9bRyARWdrDl37PVPSghXpkON2cj/BFw gBOqudZpMOi2LNu9lo4R+PaeOukxYJuMthdFZMevKzNNPj7bxFg+USMPrU95QRMf 50fTw9Zr47FpF3OBlGys6JOGF4cAuEKu -----END CERTIFICATE-----Generated at Sat Aug 23 13:53:02 2025 by rpki-client