$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: Y7RJHWpUJ0Lz3hAsyuFLkVQa8JdiSfey+PPjxfSdDiU= Subject key identifier: C7:D3:33:9A:C2:3E:D3:B3:C7:D5:7C:DE:C8:83:A8:04:62:09:DD:B9 Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 0561 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 054F Signing time: Tue 22 Jul 2025 23:49:30 +0000 Manifest this update: Tue 22 Jul 2025 23:49:29 +0000 Manifest next update: Tue 29 Jul 2025 23:49:29 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: AgF4SscvOQdZuRGOZDUnvH6mLgC1fXmQVwOp/EOh7w4=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 23:49:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1377 (0x561) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Jul 22 23:49:29 2025 GMT Not After : Jul 29 23:49:29 2025 GMT Subject: CN=68802389-26e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:4e:09:2a:06:12:d5:74:b0:59:e1:ac:69: b9:37:73:7e:6a:b5:f2:ee:01:77:20:2c:16:4b:7c: 4a:0a:a3:80:e7:7f:ee:f6:7d:42:0e:36:c7:7d:83: be:57:00:1b:7f:f6:58:70:95:57:a5:22:6d:33:3f: 37:46:18:25:9a:4b:16:dc:81:d4:74:ec:b3:4d:77: 28:b0:83:9f:8d:0b:1b:07:a1:14:34:57:6c:4a:a3: e2:35:92:85:c9:16:2a:d6:41:10:24:0e:1e:39:60: c0:b3:21:58:3a:dc:3c:a5:6e:e7:fb:ed:83:0a:05: d8:90:df:31:1d:bc:fa:d4:3b:74:52:42:11:51:69: 88:66:99:be:d2:4f:52:7c:65:26:ae:6d:5e:05:81: 7d:2d:73:0b:c8:a6:53:b0:23:ba:7d:b4:41:3f:3b: 3f:5a:8b:7b:0b:76:f5:9f:3e:bd:05:d9:85:0f:93: d5:77:e9:44:7e:96:8b:f0:be:42:08:53:e6:60:86: 8b:1f:ce:50:30:45:19:50:48:e5:c7:a2:2a:d5:31: a3:48:ed:36:96:b1:53:c0:2a:c7:a2:e6:23:73:ea: f4:38:cf:bb:02:17:97:ce:df:5f:5e:b5:11:03:13: 4b:07:29:8a:35:70:ad:d5:ee:63:48:94:fd:02:0a: 04:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D3:33:9A:C2:3E:D3:B3:C7:D5:7C:DE:C8:83:A8:04:62:09:DD:B9 X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:23:b3:0e:83:3e:a7:89:ec:5e:94:5b:2b:a1:0b:66:70:bf: 86:96:35:22:70:8a:90:14:d0:d2:b5:e3:47:85:fc:27:cb:75: 8c:5a:07:a9:69:f9:b8:35:dc:93:85:c9:ba:26:14:0f:d8:76: 71:e2:24:4e:03:ff:57:38:51:32:a0:2d:ad:31:34:47:51:38: 6b:87:7e:31:ed:91:59:64:83:ac:e6:8c:6c:87:ce:b0:24:a4: 9a:32:74:fe:28:09:2f:85:b1:5c:b0:1c:0c:e3:3d:8e:39:75: e5:e6:07:ba:45:8b:bc:d5:0b:c1:c1:19:93:7b:ff:de:9f:be: 6b:33:ba:61:ea:3b:cb:1b:72:a2:51:08:ea:5f:0f:f5:03:c4: 5e:65:cb:ea:f8:47:fe:c5:48:cb:96:50:58:53:c7:31:2e:d5: 2f:25:a3:81:fd:3e:d4:9a:c2:d6:e4:64:cb:94:6d:89:75:de: fd:6a:a0:a6:ba:a6:83:f2:b6:21:9a:66:4c:75:68:94:12:6f: b6:60:3c:75:c2:1a:2f:f9:5d:3e:c4:28:87:74:01:f1:f2:e4: 53:75:f5:99:09:39:11:59:8c:75:7a:27:ce:3e:00:0e:15:d8: 14:b7:12:a0:af:0b:12:e4:bd:18:25:7e:f9:34:1f:12:a3:3a: 24:65:f4:28 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBWEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjUwNzIyMjM0OTI5WhcNMjUwNzI5MjM0OTI5WjAYMRYwFAYD VQQDEw02ODgwMjM4OS0yNmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dVOCSoGEtV0sFnhrGm5N3N+arXy7gF3ICwWS3xKCqOA53/u9n1CDjbHfYO+ VwAbf/ZYcJVXpSJtMz83RhglmksW3IHUdOyzTXcosIOfjQsbB6EUNFdsSqPiNZKF yRYq1kEQJA4eOWDAsyFYOtw8pW7n++2DCgXYkN8xHbz61Dt0UkIRUWmIZpm+0k9S fGUmrm1eBYF9LXMLyKZTsCO6fbRBPzs/Wot7C3b1nz69BdmFD5PVd+lEfpaL8L5C CFPmYIaLH85QMEUZUEjlx6Iq1TGjSO02lrFTwCrHouYjc+r0OM+7AheXzt9fXrUR AxNLBymKNXCt1e5jSJT9AgoE4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMfTM5rC PtOzx9V83siDqARiCd25MB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgI7MOgz6niexelFsroQtmcL+GljUicIqQFNDSteNHhfwny3WMWgep afm4NdyThcm6JhQP2HZx4iROA/9XOFEyoC2tMTRHUThrh34x7ZFZZIOs5oxsh86w JKSaMnT+KAkvhbFcsBwM4z2OOXXl5ge6RYu81QvBwRmTe//en75rM7ph6jvLG3Ki UQjqXw/1A8ReZcvq+Ef+xUjLllBYU8cxLtUvJaOB/T7UmsLW5GTLlG2Jdd79aqCm uqaD8rYhmmZMdWiUEm+2YDx1whov+V0+xCiHdAHx8uRTdfWZCTkRWYx1eifOPgAO FdgUtxKgrwsS5L0YJX75NB8SozokZfQo -----END CERTIFICATE-----Generated at Wed Jul 23 19:21:18 2025 by rpki-client