$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft File: KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft (raw, json) Hash identifier: RwaMjr3vqwo+q3UDeW9FKVi+HiMGI959Q5kqG9aaxO0= Subject key identifier: D7:AB:2A:2C:47:9D:9F:52:F8:B3:7C:84:54:4C:A6:68:21:B1:DB:42 Authority key identifier: 28:BA:6E:68:7F:1F:BD:83:3B:9A:13:AA:D8:C1:42:AD:8F:AF:BC:A8 Certificate issuer: /CN=A91ED469/serialNumber=28BA6E687F1FBD833B9A13AAD8C142AD8FAFBCA8 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KLpuaH8fvYM7mhOq2MFCrY-vvKg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft Manifest number: 012C Signing time: Sat 19 Jul 2025 04:51:27 +0000 Manifest this update: Sat 19 Jul 2025 04:51:27 +0000 Manifest next update: Sat 26 Jul 2025 04:51:27 +0000 Files and hashes: 1: KLpuaH8fvYM7mhOq2MFCrY-vvKg.crl (hash: +NcnKB3pvjUsEqqAtH4FH7qvGOfDUp17fRcSP2oTtGo=) 2: F259393A9CC211EEA3A14563C4F9AE02.roa (hash: H8jOBdWZy3BflOdKi2IUHX/jDGy3Qp76HCrr86p/kow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.crl rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KLpuaH8fvYM7mhOq2MFCrY-vvKg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:51:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED469, serialNumber=28BA6E687F1FBD833B9A13AAD8C142AD8FAFBCA8 Validity Not Before: Jul 19 04:51:27 2025 GMT Not After : Jul 26 04:51:27 2025 GMT Subject: CN=687b244f-d987 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:51:57:75:15:de:17:7c:b9:56:17:c0:fb:82: fc:c3:9c:00:b6:ae:97:d7:d5:d0:b9:94:c5:20:87: 85:8d:1e:b5:3e:06:8e:18:87:7d:cf:8c:70:5f:52: 8f:22:ec:97:42:3c:4a:88:ba:eb:b6:c9:12:39:e6: 39:f1:a7:44:b6:fe:1a:ec:65:5c:ef:c1:35:62:cd: a3:4f:55:a1:7c:29:ad:be:09:20:86:ab:3f:96:c2: b9:68:14:de:db:00:b5:76:f2:f9:87:36:41:58:91: ae:3c:b6:00:6c:b0:ff:80:7b:45:c3:85:5e:13:b7: 5d:34:d1:39:c6:09:5d:fb:ac:6f:41:d7:1d:29:65: 35:e5:41:83:a2:b5:37:06:18:d6:b2:bf:50:b9:e6: f5:02:0d:85:9a:af:4d:a2:4d:c6:76:b2:ea:bb:2a: c3:4c:d5:82:4c:70:dc:a6:6b:fc:46:f2:d3:f9:09: 85:28:74:16:58:74:77:3a:06:c6:f9:67:73:f9:d3: 48:d5:02:9e:55:4c:80:4a:ad:be:42:5a:64:d7:e9: d1:80:a0:ec:b7:4a:db:5b:15:92:4c:7f:45:1d:b8: 51:75:e1:5f:ac:9e:f4:16:e1:a5:a8:66:87:3a:f5: 25:fe:e9:f4:c9:5c:0e:c4:67:86:79:e1:7b:08:94: 6b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:AB:2A:2C:47:9D:9F:52:F8:B3:7C:84:54:4C:A6:68:21:B1:DB:42 X509v3 Authority Key Identifier: keyid:28:BA:6E:68:7F:1F:BD:83:3B:9A:13:AA:D8:C1:42:AD:8F:AF:BC:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KLpuaH8fvYM7mhOq2MFCrY-vvKg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED469/97DE7A7E9CC211EEB302E061C4F9AE02/KLpuaH8fvYM7mhOq2MFCrY-vvKg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:67:55:53:e2:37:82:d3:77:6f:f8:b8:b5:c3:78:a0:2f:42: 78:cf:8b:b7:f6:af:53:dd:1e:49:a5:5c:b8:4c:b6:b0:f9:a8: 37:c9:f0:f9:e9:d2:b7:9b:99:1b:25:fb:38:fb:d7:0c:5d:cd: 6e:2b:cc:33:79:6f:3d:50:3a:8a:1d:0a:e0:5d:5d:0f:7a:23: 6c:ab:15:30:b6:29:ba:5f:da:35:a9:ee:cd:e3:97:54:15:77: 61:f0:f5:60:5b:e3:b4:00:75:22:bd:a3:4d:49:81:a2:ee:40: e3:fc:0e:5d:a8:12:89:ca:c4:97:12:c7:81:9c:eb:2f:03:31: 3f:9c:3e:eb:2a:22:1a:54:7e:a6:60:6a:9d:a7:30:5c:04:ae: f5:66:81:97:a9:0e:82:dd:5c:bb:ee:c8:0e:03:a0:83:85:25: 58:23:1a:d8:94:7f:aa:3c:a6:38:d3:9b:ec:97:22:93:7f:3a: 61:1a:cd:27:89:7a:01:f4:0f:98:d0:27:3d:91:5d:0b:6a:46: b5:41:f6:18:9c:c2:23:1a:10:00:00:54:20:b0:5f:13:14:d7: ca:1d:7d:c4:5f:cf:c4:66:38:ca:37:f0:56:f7:49:c7:28:1b: 5b:2a:76:9c:fb:8a:2a:fb:ba:e0:96:36:e2:22:ae:37:b8:b1: 1f:49:c5:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ0NjkxMTAvBgNVBAUTKDI4QkE2RTY4N0YxRkJEODMzQjlBMTNBQUQ4QzE0MkFE OEZBRkJDQTgwHhcNMjUwNzE5MDQ1MTI3WhcNMjUwNzI2MDQ1MTI3WjAYMRYwFAYD VQQDEw02ODdiMjQ0Zi1kOTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA01FXdRXeF3y5VhfA+4L8w5wAtq6X19XQuZTFIIeFjR61PgaOGId9z4xwX1KP IuyXQjxKiLrrtskSOeY58adEtv4a7GVc78E1Ys2jT1WhfCmtvgkghqs/lsK5aBTe 2wC1dvL5hzZBWJGuPLYAbLD/gHtFw4VeE7ddNNE5xgld+6xvQdcdKWU15UGDorU3 BhjWsr9Queb1Ag2Fmq9Nok3GdrLquyrDTNWCTHDcpmv8RvLT+QmFKHQWWHR3OgbG +Wdz+dNI1QKeVUyASq2+Qlpk1+nRgKDst0rbWxWSTH9FHbhRdeFfrJ70FuGlqGaH OvUl/un0yVwOxGeGeeF7CJRrkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNerKixH nZ9S+LN8hFRMpmghsdtCMB8GA1UdIwQYMBaAFCi6bmh/H72DO5oTqtjBQq2Pr7yo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDQ2OS85N0RFN0E3RTlD QzIxMUVFQjMwMkUwNjFDNEY5QUUwMi9LTHB1YUg4ZnZZTTdtaE9xMk1GQ3JZLXZ2 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tMcHVhSDhmdllNN21oT3EyTUZDclktdnZLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RDQ2OS85N0RFN0E3RTlDQzIxMUVFQjMwMkUwNjFDNEY5QUUwMi9LTHB1YUg4ZnZZ TTdtaE9xMk1GQ3JZLXZ2S2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkZ1VT4jeC03dv+Li1w3igL0J4z4u39q9T3R5JpVy4TLaw+ag3yfD5 6dK3m5kbJfs4+9cMXc1uK8wzeW89UDqKHQrgXV0PeiNsqxUwtim6X9o1qe7N45dU FXdh8PVgW+O0AHUivaNNSYGi7kDj/A5dqBKJysSXEseBnOsvAzE/nD7rKiIaVH6m YGqdpzBcBK71ZoGXqQ6C3Vy77sgOA6CDhSVYIxrYlH+qPKY405vslyKTfzphGs0n iXoB9A+Y0Cc9kV0Laka1QfYYnMIjGhAAAFQgsF8TFNfKHX3EX8/EZjjKN/BW90nH KBtbKnac+4oq+7rgljbiIq43uLEfScWN -----END CERTIFICATE-----Generated at Sun Jul 20 16:30:37 2025 by rpki-client