$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft File: 5KlM-o0vn1s570Y1BZHOMS5RT7M.mft (raw, json) Hash identifier: +8QX3PSu/xkk+/6ybbFK+hbFC8wMAB0STGlP951gqRk= Subject key identifier: 55:5D:64:0C:51:EB:C6:39:C3:1F:EA:2B:13:C9:2B:F8:F4:07:AB:B7 Authority key identifier: E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 Certificate issuer: /CN=A91A3AB3/serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Certificate serial: 02BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft Manifest number: 02A6 Signing time: Sun 07 Sep 2025 02:04:52 +0000 Manifest this update: Sun 07 Sep 2025 02:04:52 +0000 Manifest next update: Sun 14 Sep 2025 02:04:52 +0000 Files and hashes: 1: 5KlM-o0vn1s570Y1BZHOMS5RT7M.crl (hash: yzA9VGvK7EXEQRLai40UTBfllGUARQUcmu1fuPOxgMI=) 2: F3997FACE21D11EFA5819B7EC4F9AE02.roa (hash: YJknqh8T+qXW11AGQpkWixPSeb/oim2jtPvDZDC0Y5M=) 3: 5B69CE3A474A11EF8624EE6DC4F9AE02.roa (hash: 0d7okG44VFnG4nuLf3zjFz92ZcS33/9Y18izFVAiNWk=) 4: 3D331986E17211EFA5959B2FC4F9AE02.roa (hash: pOsL4nJKiT9Wc01cD2wPZO+WlYtBX9ZtStyQuOwRJu4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:04:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 700 (0x2bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3AB3, serialNumber=E4A94CFA8D2F9F5B39EF46350591CE312E514FB3 Validity Not Before: Sep 7 02:04:52 2025 GMT Not After : Sep 14 02:04:52 2025 GMT Subject: CN=68bce844-5924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0f:20:07:87:88:01:33:1a:d6:da:b5:7a:28: a5:99:35:d1:7d:84:96:e7:a2:da:86:d9:24:22:60: 77:e7:03:a4:5a:17:ee:6c:44:0c:bf:45:a9:37:de: df:06:0e:21:31:ef:b3:1b:d2:dd:b1:d6:72:e4:1e: 14:64:6d:11:f9:d8:41:ea:31:6c:c8:47:b6:70:94: 81:35:ab:2d:0a:fa:d8:4b:21:0e:84:96:8e:03:66: 69:11:0d:b1:73:93:39:65:95:14:63:cc:b6:00:1f: 31:ad:c5:96:e3:fd:8a:0f:fd:95:90:ec:54:c8:55: 89:48:13:a6:2d:c5:42:2d:63:49:7e:af:fa:44:40: 88:71:6f:e2:f8:d4:97:b3:fb:cf:93:5b:f4:87:cd: d3:69:df:9e:ca:67:57:bb:af:27:20:b5:3c:8a:10: 68:85:91:c8:b5:86:8e:10:11:70:7a:72:3b:a5:6a: b7:81:c9:bc:b6:98:4a:a4:ec:6c:ba:41:ff:9f:ba: e3:a9:32:78:31:49:17:9c:f4:dd:3f:aa:0c:11:ad: af:09:1d:24:1d:bb:19:89:59:2f:92:8c:5b:11:91: 7b:8c:35:64:36:6b:c4:28:2d:47:09:26:b9:0e:a7: 46:62:bf:81:73:b5:1f:61:d0:9a:db:9f:a4:c0:31: 54:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:5D:64:0C:51:EB:C6:39:C3:1F:EA:2B:13:C9:2B:F8:F4:07:AB:B7 X509v3 Authority Key Identifier: keyid:E4:A9:4C:FA:8D:2F:9F:5B:39:EF:46:35:05:91:CE:31:2E:51:4F:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5KlM-o0vn1s570Y1BZHOMS5RT7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3AB3/05ED94CE194C11EDAD38F22BC4F9AE02/5KlM-o0vn1s570Y1BZHOMS5RT7M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:f1:a6:39:7f:84:a4:34:92:e5:52:b6:fb:38:b0:e6:09:9d: 80:d7:fc:cd:f7:09:5a:2c:b9:77:e7:19:93:e3:98:7a:f9:66: 67:68:d8:ee:f8:46:fb:85:33:0e:e0:1b:20:26:6c:fd:66:8b: e3:0d:8f:18:7f:b3:d7:ac:0c:8f:86:df:25:0a:57:d8:4a:5b: a5:31:dd:ff:b3:08:8e:f8:fc:6b:32:94:99:39:d1:ad:5d:da: 53:4e:6d:c8:a7:9d:61:ad:96:af:b5:59:34:00:c1:1b:b8:ee: 1c:58:be:e6:77:31:22:a7:2e:51:cb:f3:12:64:65:6f:52:f4: 97:a8:87:a0:e5:1f:8c:5f:5f:cb:fc:ca:ce:d0:16:5f:29:2f: c3:e5:d7:ab:3f:6a:a9:c1:b3:d7:fa:4a:9c:dd:55:c3:f8:70: 81:c7:7f:b9:a8:10:0c:55:1a:ef:12:a8:1c:bc:0e:cc:e6:81: 76:ac:5b:c4:dd:f1:26:4f:99:34:02:18:c8:23:3e:42:12:7a: 59:1e:7e:bb:6c:08:df:71:27:30:1c:bd:d5:07:bd:a7:e5:51: 90:20:a7:88:9f:59:02:22:53:b4:68:a3:7a:2a:6d:1f:88:2e: 1d:7e:c1:70:6f:82:39:36:8b:35:e1:e6:c3:ca:43:92:21:37: 96:e0:e9:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNBQjMxMTAvBgNVBAUTKEU0QTk0Q0ZBOEQyRjlGNUIzOUVGNDYzNTA1OTFDRTMx MkU1MTRGQjMwHhcNMjUwOTA3MDIwNDUyWhcNMjUwOTE0MDIwNDUyWjAYMRYwFAYD VQQDEw02OGJjZTg0NC01OTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g8gB4eIATMa1tq1eiilmTXRfYSW56LahtkkImB35wOkWhfubEQMv0WpN97f Bg4hMe+zG9LdsdZy5B4UZG0R+dhB6jFsyEe2cJSBNastCvrYSyEOhJaOA2ZpEQ2x c5M5ZZUUY8y2AB8xrcWW4/2KD/2VkOxUyFWJSBOmLcVCLWNJfq/6RECIcW/i+NSX s/vPk1v0h83Tad+eymdXu68nILU8ihBohZHItYaOEBFwenI7pWq3gcm8tphKpOxs ukH/n7rjqTJ4MUkXnPTdP6oMEa2vCR0kHbsZiVkvkoxbEZF7jDVkNmvEKC1HCSa5 DqdGYr+Bc7UfYdCa25+kwDFUPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFVdZAxR 68Y5wx/qKxPJK/j0B6u3MB8GA1UdIwQYMBaAFOSpTPqNL59bOe9GNQWRzjEuUU+z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0FCMy8wNUVEOTRDRTE5 NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4xczU3MFkxQlpIT01TNVJU N00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVLbE0tbzB2bjFzNTcwWTFCWkhPTVM1UlQ3TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0FCMy8wNUVEOTRDRTE5NEMxMUVEQUQzOEYyMkJDNEY5QUUwMi81S2xNLW8wdm4x czU3MFkxQlpIT01TNVJUN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCK8aY5f4SkNJLlUrb7OLDmCZ2A1/zN9wlaLLl35xmT45h6+WZnaNju +Eb7hTMO4BsgJmz9ZovjDY8Yf7PXrAyPht8lClfYSlulMd3/swiO+PxrMpSZOdGt XdpTTm3Ip51hrZavtVk0AMEbuO4cWL7mdzEipy5Ry/MSZGVvUvSXqIeg5R+MX1/L /MrO0BZfKS/D5derP2qpwbPX+kqc3VXD+HCBx3+5qBAMVRrvEqgcvA7M5oF2rFvE 3fEmT5k0AhjIIz5CEnpZHn67bAjfcScwHL3VB72n5VGQIKeIn1kCIlO0aKN6Km0f iC4dfsFwb4I5Nos14ebDykOSITeW4Okt -----END CERTIFICATE-----Generated at Mon Sep 8 08:38:52 2025 by rpki-client