$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: W9Qk6T8dKRG0iKPmd8sIGUW/ELccC5XytY3KBh5UXcg= Subject key identifier: C0:03:3B:95:DF:B2:A9:0B:6E:DA:D4:E8:2B:C3:85:FF:9E:78:89:9E Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 028C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 0288 Signing time: Sat 25 Oct 2025 04:48:58 +0000 Manifest this update: Sat 25 Oct 2025 04:48:58 +0000 Manifest next update: Sat 01 Nov 2025 04:48:58 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: PpgkR7rMlMITMV5XU5arZ1R30BXWJHPhlKlza5XQU6U=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: wBqvUEdJXS+W4twJcgw0kDbGssoYll+0BYZGvLl67rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 04:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 652 (0x28c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Oct 25 04:48:58 2025 GMT Not After : Nov 1 04:48:58 2025 GMT Subject: CN=68fc56ba-6546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f3:5a:69:bf:c5:de:9c:75:c2:68:ec:11:ab: f3:dd:c9:7b:a5:24:e0:2c:a5:40:c1:59:89:a7:ee: 61:0b:e2:be:56:df:42:14:e6:74:15:67:ec:ba:55: 17:95:9c:13:df:d9:f1:07:f6:f1:34:b3:4c:bc:31: 5c:61:8c:8f:63:97:d7:29:ae:be:5c:bb:82:1a:c0: 96:ad:d2:2e:5d:e6:ca:1a:3a:3a:bd:6d:95:bd:03: 84:ea:39:18:55:34:f0:af:30:c5:9f:96:5f:48:6c: 10:c5:26:61:8f:f2:fc:00:e9:4b:8b:e0:2d:fa:c2: 62:7f:1c:c4:7e:02:ee:d4:61:e5:e9:86:ff:4d:cd: 8c:3b:d4:42:a4:21:95:3d:ba:a5:95:fd:1a:4a:b9: 93:81:d7:6e:28:c9:d5:c1:03:0e:ae:5c:73:75:16: 64:64:52:2d:98:fa:24:9b:af:19:5f:f8:1f:b9:d0: 55:95:49:24:b6:d7:dd:37:a7:e8:b5:a0:e3:3a:ef: ff:fe:cf:b5:08:63:98:5a:85:86:0d:20:f4:0c:f8: ba:18:32:82:96:15:4e:4f:9f:66:30:74:48:53:23: 56:24:06:81:f3:76:d2:21:14:9a:b4:82:c7:28:6a: 0d:c7:62:11:62:98:7c:d7:22:28:5b:99:85:76:64: cc:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:03:3B:95:DF:B2:A9:0B:6E:DA:D4:E8:2B:C3:85:FF:9E:78:89:9E X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:bd:cc:37:17:64:93:66:cb:df:2d:cb:19:37:e8:d5:eb:7b: f3:21:54:3f:c5:93:3f:84:9a:03:d6:cc:9d:28:75:19:4e:bd: ab:ec:10:3f:07:f5:61:97:08:e9:6b:ae:82:8f:f9:ac:eb:ff: f3:75:4c:b6:78:20:ac:89:eb:85:47:0e:ed:75:ea:d9:e3:89: 0b:e9:10:a5:00:a2:9e:0f:f6:38:e3:17:20:b0:05:6c:d1:6b: 74:5c:51:d4:58:54:aa:2a:5e:46:11:15:6c:68:59:15:7e:a9: 79:bf:2d:f1:19:96:48:a5:81:1e:03:29:87:31:c5:a0:57:f3: 5e:7b:e9:1e:66:38:3a:17:b9:fa:ba:12:76:2a:fa:12:a1:14: 14:63:9d:ae:a5:be:de:4f:4e:53:67:93:3e:6b:db:f3:d7:3e: f5:75:12:c0:0d:02:89:c1:74:65:02:fc:ce:51:07:7b:8d:df: c2:2b:c4:66:a6:82:9d:ce:b2:05:70:4c:41:a3:8c:95:b7:4f: 56:c4:26:8b:cd:c7:57:9d:ce:02:65:28:79:59:5d:61:9f:cd: 9d:3c:46:4d:a7:4c:39:3d:96:12:12:d1:f6:83:26:72:f2:65: 49:d6:4f:c1:2d:09:90:db:86:ed:a4:cc:b9:b3:e9:a7:ce:ae: 09:c0:33:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUxMDI1MDQ0ODU4WhcNMjUxMTAxMDQ0ODU4WjAYMRYwFAYD VQQDEw02OGZjNTZiYS02NTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvNaab/F3px1wmjsEavz3cl7pSTgLKVAwVmJp+5hC+K+Vt9CFOZ0FWfsulUX lZwT39nxB/bxNLNMvDFcYYyPY5fXKa6+XLuCGsCWrdIuXebKGjo6vW2VvQOE6jkY VTTwrzDFn5ZfSGwQxSZhj/L8AOlLi+At+sJifxzEfgLu1GHl6Yb/Tc2MO9RCpCGV Pbqllf0aSrmTgdduKMnVwQMOrlxzdRZkZFItmPokm68ZX/gfudBVlUkkttfdN6fo taDjOu///s+1CGOYWoWGDSD0DPi6GDKClhVOT59mMHRIUyNWJAaB83bSIRSatILH KGoNx2IRYph81yIoW5mFdmTM7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMADO5Xf sqkLbtrU6CvDhf+eeImeMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFvcw3F2STZsvfLcsZN+jV63vzIVQ/xZM/hJoD1sydKHUZTr2r7BA/ B/Vhlwjpa66Cj/ms6//zdUy2eCCsieuFRw7tderZ44kL6RClAKKeD/Y44xcgsAVs 0Wt0XFHUWFSqKl5GERVsaFkVfql5vy3xGZZIpYEeAymHMcWgV/Nee+keZjg6F7n6 uhJ2KvoSoRQUY52upb7eT05TZ5M+a9vz1z71dRLADQKJwXRlAvzOUQd7jd/CK8Rm poKdzrIFcExBo4yVt09WxCaLzcdXnc4CZSh5WV1hn82dPEZNp0w5PZYSEtH2gyZy 8mVJ1k/BLQmQ24btpMy5s+mnzq4JwDOu -----END CERTIFICATE-----Generated at Sat Oct 25 17:03:28 2025 by rpki-client