$ rpki-client -vvf rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft File: Klc5bc5w61bAc94adgtipyKwR44.mft (raw, json) Hash identifier: t0E09vTzVj1KfF7uOOm9GNKwatEZhJPLamZecbuk5jc= Subject key identifier: 45:AB:CD:CC:9D:38:E0:C0:8D:95:93:83:95:F1:3C:40:47:D2:01:7D Authority key identifier: 2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E Certificate issuer: /CN=A9193B94/serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E Certificate serial: 8B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft Manifest number: 89 Signing time: Fri 05 Sep 2025 07:05:33 +0000 Manifest this update: Fri 05 Sep 2025 07:05:32 +0000 Manifest next update: Fri 12 Sep 2025 07:05:32 +0000 Files and hashes: 1: Klc5bc5w61bAc94adgtipyKwR44.crl (hash: UnR44SXNvfVxAOpVvnyKm5A+bDN+S4PrAUo8p7/bg6c=) 2: 329C17E6BCDA11EFA2D81814C4F9AE02.roa (hash: jqm9AvgV4FxQG5X3y3xKe8muOycM02nLSK2i0VaGmmM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:05:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193B94, serialNumber=2A57396DCE70EB56C073DE1A760B62A722B0478E Validity Not Before: Sep 5 07:05:32 2025 GMT Not After : Sep 12 07:05:32 2025 GMT Subject: CN=68ba8bbd-5acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:5f:f7:9d:99:d5:cd:7a:ca:f9:b2:d3:eb:c4: bf:c0:f3:90:e1:ca:c6:a9:e0:9b:db:5b:21:21:bc: 7c:35:f2:e8:73:79:b2:17:e4:aa:35:58:5a:19:8c: d9:a8:a9:b1:31:b8:7f:0e:d5:e1:23:73:e2:46:36: 83:e2:c4:ad:68:f0:92:61:36:fd:7d:cf:c5:5e:71: 14:dd:11:7c:9a:18:cc:0c:75:e7:b9:52:28:44:ca: 11:ec:f6:5f:f4:39:6b:93:25:94:6e:b1:bd:0c:18: 94:33:81:0d:71:94:ea:9a:fe:aa:1d:e8:cb:28:13: 13:88:e3:a3:fd:9b:3b:ed:06:0c:ec:f4:4f:71:79: ad:ec:3d:dc:f2:4e:3e:1d:f8:b0:4e:78:d1:65:35: fc:9d:9a:ca:45:38:14:02:2f:69:0b:c1:00:0e:05: 46:78:7d:af:1f:9b:95:d9:4a:ff:f7:99:11:b5:a2: b1:22:3e:5c:46:89:1b:5b:81:27:72:c2:0a:15:33: c2:53:34:0f:6b:6b:b5:84:c6:17:2a:5b:e7:61:f7: 39:f8:df:9a:01:a4:52:01:2b:5f:8f:7f:0a:20:07: 99:37:dc:d4:96:a7:03:07:c2:d5:f0:75:b8:e6:5f: 72:89:ce:70:c1:cc:a1:4e:cd:82:1d:dc:cc:16:8b: 92:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:AB:CD:CC:9D:38:E0:C0:8D:95:93:83:95:F1:3C:40:47:D2:01:7D X509v3 Authority Key Identifier: keyid:2A:57:39:6D:CE:70:EB:56:C0:73:DE:1A:76:0B:62:A7:22:B0:47:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klc5bc5w61bAc94adgtipyKwR44.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193B94/AF41BD10BCD911EF92AB3313C4F9AE02/Klc5bc5w61bAc94adgtipyKwR44.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b9:e1:3a:88:b9:9d:24:e7:a8:06:6a:81:79:dc:f2:1c:cc: a8:a2:c7:e0:83:bf:21:ac:93:a4:d7:2d:54:6c:c5:a0:41:18: f7:f6:c7:0a:f2:84:c0:e0:16:95:d6:ef:18:f6:3c:e6:65:de: ec:1a:7a:3d:31:1a:c2:6d:75:d2:42:10:dc:26:b0:45:93:88: 9f:7e:57:a4:0b:06:70:5f:10:6f:7e:a7:72:00:f0:d3:b1:cb: 32:03:ff:c4:48:40:27:6a:cb:13:92:c3:98:d6:16:84:63:1e: b8:c5:c3:ca:a8:e5:d1:ca:b0:4c:be:c5:b7:63:e9:07:31:3d: 94:83:34:be:de:a6:da:7f:9e:2c:44:2e:12:93:39:20:bd:55: ba:74:d3:80:c1:13:2d:df:f1:39:da:b3:da:94:7c:30:2e:f3: 12:b8:da:9e:04:db:5c:40:ef:aa:48:15:b9:ed:7c:6e:0e:9f: 1b:9a:c3:a0:82:46:43:cc:49:12:77:ae:c6:9a:2f:1a:8d:42: 0a:53:7b:77:5e:e6:b6:5b:4b:16:b9:ae:7b:8a:eb:cd:4e:ec: 95:d5:f9:ef:eb:01:6a:0c:29:13:19:06:26:1e:16:ad:2b:ea: d0:20:08:74:9b:58:9b:34:fa:db:46:b2:8b:26:f9:07:eb:8d: c4:38:0f:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCOTQxMTAvBgNVBAUTKDJBNTczOTZEQ0U3MEVCNTZDMDczREUxQTc2MEI2MkE3 MjJCMDQ3OEUwHhcNMjUwOTA1MDcwNTMyWhcNMjUwOTEyMDcwNTMyWjAYMRYwFAYD VQQDEw02OGJhOGJiZC01YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqV/3nZnVzXrK+bLT68S/wPOQ4crGqeCb21shIbx8NfLoc3myF+SqNVhaGYzZ qKmxMbh/DtXhI3PiRjaD4sStaPCSYTb9fc/FXnEU3RF8mhjMDHXnuVIoRMoR7PZf 9DlrkyWUbrG9DBiUM4ENcZTqmv6qHejLKBMTiOOj/Zs77QYM7PRPcXmt7D3c8k4+ HfiwTnjRZTX8nZrKRTgUAi9pC8EADgVGeH2vH5uV2Ur/95kRtaKxIj5cRokbW4En csIKFTPCUzQPa2u1hMYXKlvnYfc5+N+aAaRSAStfj38KIAeZN9zUlqcDB8LV8HW4 5l9yic5wwcyhTs2CHdzMFouSNQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWrzcyd OODAjZWTg5XxPEBH0gF9MB8GA1UdIwQYMBaAFCpXOW3OcOtWwHPeGnYLYqcisEeO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0I5NC9BRjQxQkQxMEJD RDkxMUVGOTJBQjMzMTNDNEY5QUUwMi9LbGM1YmM1dzYxYkFjOTRhZGd0aXB5S3dS NDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsYzViYzV3NjFiQWM5NGFkZ3RpcHlLd1I0NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0I5NC9BRjQxQkQxMEJDRDkxMUVGOTJBQjMzMTNDNEY5QUUwMi9LbGM1YmM1dzYx YkFjOTRhZGd0aXB5S3dSNDQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNueE6iLmdJOeoBmqBedzyHMyoosfgg78hrJOk1y1UbMWgQRj39scK 8oTA4BaV1u8Y9jzmZd7sGno9MRrCbXXSQhDcJrBFk4ifflekCwZwXxBvfqdyAPDT scsyA//ESEAnassTksOY1haEYx64xcPKqOXRyrBMvsW3Y+kHMT2UgzS+3qbaf54s RC4SkzkgvVW6dNOAwRMt3/E52rPalHwwLvMSuNqeBNtcQO+qSBW57XxuDp8bmsOg gkZDzEkSd67Gmi8ajUIKU3t3Xua2W0sWua57iuvNTuyV1fnv6wFqDCkTGQYmHhat K+rQIAh0m1ibNPrbRrKLJvkH643EOA8W -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:52 2025 by rpki-client