$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: 3c3797PBcXoJ6ln/o0c6q4Lr8lYXiofIPAKnssluZUc= Subject key identifier: 89:93:9B:8E:58:3E:FD:14:96:1E:AF:76:4B:F0:79:68:73:30:61:1C Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: 76 Signing time: Sat 19 Jul 2025 07:03:06 +0000 Manifest this update: Sat 19 Jul 2025 07:03:06 +0000 Manifest next update: Sat 26 Jul 2025 07:03:06 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: DdZU9FQ7Nd5xm1grn6yExdUBkEzgdnVHpZ7vz2SNRb8=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 07:03:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Jul 19 07:03:06 2025 GMT Not After : Jul 26 07:03:06 2025 GMT Subject: CN=687b432a-8aff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:ad:7a:1c:e8:d1:dd:4f:6d:69:a9:c1:e8:48: 3c:59:1b:e3:cb:44:8f:20:c6:52:b8:0a:17:ea:a1: dd:a1:76:3a:f8:dd:8b:96:99:aa:5d:7a:81:65:1c: 97:a8:85:d8:6e:9d:bc:df:b4:47:e3:c4:eb:d0:45: fa:e5:d1:70:41:17:c3:76:ba:2a:4a:c9:8e:b9:10: db:f0:be:f2:23:f7:1e:59:ad:ea:27:79:32:5c:7e: 5a:e8:fd:ed:1d:f3:c1:b5:f7:4a:45:cf:3c:7b:10: b1:fc:87:93:9d:0d:fa:fb:47:63:a6:bd:b7:23:e5: 5f:a3:f7:8e:1f:7e:3d:f2:78:5c:b0:f7:02:41:68: 34:b9:a3:13:52:9d:44:57:1b:90:8a:2d:4c:c0:4e: 95:85:da:26:d2:74:30:43:e8:66:4b:f1:92:00:6b: 08:0d:55:64:37:55:ce:62:ca:6b:67:23:d4:5d:ca: 5e:86:57:d6:84:4d:76:8d:5b:05:78:03:bb:c3:c6: 2b:49:e3:a4:1a:9e:45:c3:b0:b2:68:5b:b0:a8:d2: b4:cc:32:fb:5f:f5:d3:bb:0c:0d:ff:cd:a7:9a:ec: 29:df:06:4d:7b:b2:2e:c0:40:34:ad:04:7a:8c:0b: 94:af:22:a7:47:54:c1:20:19:44:ff:93:3e:ef:dd: d2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:93:9B:8E:58:3E:FD:14:96:1E:AF:76:4B:F0:79:68:73:30:61:1C X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4f:9d:fb:58:c9:1b:7b:7f:98:e0:1b:85:5c:59:df:ca:7e:27: bf:2e:6d:c0:43:fa:13:31:31:76:8e:d9:67:90:e2:a9:6a:06: ab:f3:7d:cb:0c:43:26:16:a7:b3:f9:a1:cf:1f:db:17:c5:48: 82:64:c6:74:2f:c4:18:97:ea:f3:2e:1f:d9:fb:0a:89:15:c8: d3:9b:ce:3c:dc:22:cf:fe:3a:31:3a:f1:9d:ee:1a:db:63:cc: 72:b2:25:88:f2:d7:e3:31:d7:51:3e:aa:4b:3c:71:55:f0:43: 35:e4:27:a8:8c:93:cd:af:95:ea:80:ee:5c:40:ac:9f:3f:cc: 5e:77:76:c7:26:37:2a:79:a2:46:c0:ac:1c:2d:3b:57:0b:93: 48:0a:76:f0:cd:85:9a:39:d9:73:f6:df:9e:d5:84:2c:c5:6c: ea:f1:00:3f:41:0b:e8:f6:2a:0c:4a:13:14:d4:c2:7e:b5:57: d8:72:95:3a:5f:91:94:b6:9f:95:7b:f9:97:5c:5b:b6:41:f3: 56:00:65:39:29:9b:48:f1:11:dd:8a:aa:15:ab:2c:a6:46:bf: eb:9c:d9:3c:97:ce:11:4f:cf:b4:82:c7:72:41:92:92:8d:20: 5f:f6:71:88:b0:19:64:d5:ab:2f:b1:03:b7:08:c4:e2:6a:9b: 82:9b:da:f7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTIzRjExMC8GA1UEBRMoMkE1OUI5NkMzMEE1NUZCRDYxRDIyMzAzNzNDRUI4OUQx REIwMUE4QjAeFw0yNTA3MTkwNzAzMDZaFw0yNTA3MjYwNzAzMDZaMBgxFjAUBgNV BAMTDTY4N2I0MzJhLThhZmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD2rXoc6NHdT21pqcHoSDxZG+PLRI8gxlK4Chfqod2hdjr43YuWmapdeoFlHJeo hdhunbzftEfjxOvQRfrl0XBBF8N2uipKyY65ENvwvvIj9x5ZreoneTJcflro/e0d 88G190pFzzx7ELH8h5OdDfr7R2Omvbcj5V+j944ffj3yeFyw9wJBaDS5oxNSnURX G5CKLUzATpWF2ibSdDBD6GZL8ZIAawgNVWQ3Vc5iymtnI9Rdyl6GV9aETXaNWwV4 A7vDxitJ46QankXDsLJoW7Co0rTMMvtf9dO7DA3/zaea7CnfBk17si7AQDStBHqM C5SvIqdHVMEgGUT/kz7v3dJLAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUiZObjlg+ /RSWHq92S/B5aHMwYRwwHwYDVR0jBBgwFoAUKlm5bDClX71h0iMDc864nR2wGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzRFQkE2QjMyQjA1 MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xtNWJEQ2xYNzFoMGlNRGM4NjRuUjJ3R29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 MjNGLzRFQkE2QjMyQjA1MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcx aDBpTURjODY0blIyd0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAE+d+1jJG3t/mOAbhVxZ38p+J78ubcBD+hMxMXaO2WeQ4qlqBqvzfcsM QyYWp7P5oc8f2xfFSIJkxnQvxBiX6vMuH9n7CokVyNObzjzcIs/+OjE68Z3uGttj zHKyJYjy1+Mx11E+qks8cVXwQzXkJ6iMk82vleqA7lxArJ8/zF53dscmNyp5okbA rBwtO1cLk0gKdvDNhZo52XP2357VhCzFbOrxAD9BC+j2KgxKExTUwn61V9hylTpf kZS2n5V7+ZdcW7ZB81YAZTkpm0jxEd2KqhWrLKZGv+uc2TyXzhFPz7SCx3JBkpKN IF/2cYiwGWTVqy+xA7cIxOJqm4Kb2vc= -----END CERTIFICATE-----Generated at Sun Jul 20 11:12:14 2025 by rpki-client