$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: VjL/UDH7bqGEWtQ2Y7tUMXpJZ8EJiTdXHX6QIN/Xns4= Subject key identifier: 4A:10:3F:E7:F2:05:AF:0C:64:3F:DF:0C:90:13:32:ED:57:95:89:99 Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 0272 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 026F Signing time: Sun 07 Sep 2025 02:08:55 +0000 Manifest this update: Sun 07 Sep 2025 02:08:55 +0000 Manifest next update: Sun 14 Sep 2025 02:08:55 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: LNOaM/5DwUeWR2ROVTv3ggX2sRHwmbcjt9e4auRiJB0=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: 6xgX7RCx1jR+s1bDY/KUKo4N6DkkwUVmskiN+xXDBfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:08:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Sep 7 02:08:55 2025 GMT Not After : Sep 14 02:08:55 2025 GMT Subject: CN=68bce937-e208 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:e9:35:01:d9:21:42:23:7b:95:8a:93:ad:bf: 90:5f:f6:15:cf:38:28:d4:2b:7c:56:f6:b1:ea:84: f3:84:58:44:3e:30:2a:b8:61:1a:16:e4:ad:3d:e3: b9:43:cd:ef:6d:1a:b1:29:5d:14:ac:b2:3e:4e:0f: e7:dd:af:80:0c:54:10:1c:63:02:25:f8:b3:f6:00: 64:b1:70:15:24:3b:3c:27:0c:b2:66:2e:6c:ed:9a: 0f:20:8b:cb:1f:1a:00:b1:1d:52:2c:97:25:14:4c: 75:1c:8c:e6:ba:f6:86:0a:88:2e:98:74:0b:dd:76: 59:04:c1:dc:55:e0:8c:53:8e:33:3c:02:4d:19:32: 0e:ed:d0:c8:a7:61:72:52:9a:d7:e1:10:a5:a1:ec: 5e:41:c1:f7:8f:fb:48:1f:57:29:17:24:5c:a8:c6: 93:c8:7c:83:86:50:83:77:b6:3e:ca:49:b2:0a:df: df:2f:9b:28:34:a0:75:fe:32:6d:cc:2c:91:18:d4: 22:b0:d8:8a:91:47:aa:3f:78:2c:9c:e2:16:72:31: 9c:6b:49:10:a5:80:78:bd:de:a9:6a:74:37:87:9a: ef:a0:aa:5e:1d:12:f3:c4:e5:a1:38:32:51:67:03: 00:35:38:f3:99:2e:4d:30:30:7a:3c:cf:6d:ee:db: 7b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:10:3F:E7:F2:05:AF:0C:64:3F:DF:0C:90:13:32:ED:57:95:89:99 X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:a4:3d:fc:14:50:4d:a6:3e:03:bc:79:68:8d:f7:4c:d2:59: 2f:5f:4b:17:4c:d2:3f:6c:f9:67:11:56:8a:14:b3:99:9e:e0: 2d:2d:89:4f:a9:84:4d:29:97:40:77:d3:46:28:f5:4d:f8:43: 20:a9:e5:fd:4e:31:a3:94:72:90:48:d6:da:73:bc:7c:8f:3b: af:9b:7f:08:bb:5d:2e:4d:4d:99:62:95:76:42:61:62:19:20: 10:4c:85:3a:e3:93:b3:5e:09:05:88:1d:f5:2b:c8:ce:2c:87: 40:43:9c:b5:09:35:bf:1c:10:b8:1f:8c:14:43:23:c7:a4:74: 32:e6:59:2d:e2:f8:bf:0b:ea:fd:e6:10:c8:36:c0:93:97:74: eb:e3:a0:a8:ca:96:c4:13:f1:b4:81:bc:9d:60:ba:2e:39:18: d6:c8:52:c6:17:ee:14:e6:2e:6d:db:65:ff:7e:ec:73:f9:44: 41:03:e5:35:13:49:de:f1:60:9c:4c:6e:85:ac:8f:71:b9:a7: 7e:40:02:f4:d6:02:e0:9e:fe:03:e3:70:65:fc:61:d5:4e:74: 84:5b:f8:bc:bf:e7:55:e9:a6:46:da:33:a3:c6:03:7b:6b:b2: 55:76:be:85:24:10:e0:9d:04:59:ba:46:1c:20:ca:67:8b:96: 58:c5:13:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUwOTA3MDIwODU1WhcNMjUwOTE0MDIwODU1WjAYMRYwFAYD VQQDEw02OGJjZTkzNy1lMjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8uk1AdkhQiN7lYqTrb+QX/YVzzgo1Ct8Vvax6oTzhFhEPjAquGEaFuStPeO5 Q83vbRqxKV0UrLI+Tg/n3a+ADFQQHGMCJfiz9gBksXAVJDs8JwyyZi5s7ZoPIIvL HxoAsR1SLJclFEx1HIzmuvaGCogumHQL3XZZBMHcVeCMU44zPAJNGTIO7dDIp2Fy UprX4RCloexeQcH3j/tIH1cpFyRcqMaTyHyDhlCDd7Y+ykmyCt/fL5soNKB1/jJt zCyRGNQisNiKkUeqP3gsnOIWcjGca0kQpYB4vd6panQ3h5rvoKpeHRLzxOWhODJR ZwMANTjzmS5NMDB6PM9t7tt7OwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEoQP+fy Ba8MZD/fDJATMu1XlYmZMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnpD38FFBNpj4DvHlojfdM0lkvX0sXTNI/bPlnEVaKFLOZnuAtLYlP qYRNKZdAd9NGKPVN+EMgqeX9TjGjlHKQSNbac7x8jzuvm38Iu10uTU2ZYpV2QmFi GSAQTIU645OzXgkFiB31K8jOLIdAQ5y1CTW/HBC4H4wUQyPHpHQy5lkt4vi/C+r9 5hDINsCTl3Tr46CoypbEE/G0gbydYLouORjWyFLGF+4U5i5t22X/fuxz+URBA+U1 E0ne8WCcTG6FrI9xuad+QAL01gLgnv4D43Bl/GHVTnSEW/i8v+dV6aZG2jOjxgN7 a7JVdr6FJBDgnQRZukYcIMpni5ZYxRNZ -----END CERTIFICATE-----Generated at Mon Sep 8 21:13:01 2025 by rpki-client