$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: avuZWJ8nsgb+q4KRaC5hqBjUXdEMg+fmVvpGd3DKp7A= Subject key identifier: EC:B6:DE:E4:77:81:79:F8:7A:51:31:89:67:3E:36:57:BD:BD:E0:0B Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: 8F Signing time: Fri 05 Sep 2025 06:59:05 +0000 Manifest this update: Fri 05 Sep 2025 06:59:05 +0000 Manifest next update: Fri 12 Sep 2025 06:59:05 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: n7lxxbRErI5UAN3/6kvJ2a+ULCEhCW+kzy9KS7DTYQQ=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 06:59:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Sep 5 06:59:05 2025 GMT Not After : Sep 12 06:59:05 2025 GMT Subject: CN=68ba8a39-0e65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:d2:be:cd:97:1f:97:6e:a0:a4:27:e8:7f:1a: 1d:26:58:18:93:21:1d:c7:c8:a7:9b:f5:29:88:eb: 9c:1a:f8:aa:e8:b8:ed:20:74:a7:b9:c1:10:0b:17: e0:d5:aa:ce:86:6c:31:01:bd:bc:c4:33:24:9d:a4: 71:72:2d:10:0f:03:a1:f0:36:2a:95:18:85:99:0a: 47:c9:72:a7:f0:6e:96:0c:50:51:4a:fc:bf:a5:62: 12:e7:89:d9:2a:0b:b8:48:d7:bd:65:9e:a6:8a:a7: c2:5f:c0:e5:27:31:14:1d:aa:3b:a3:b5:4b:6a:c8: 45:c9:64:82:0d:10:3a:f2:11:24:39:43:9b:33:4c: a6:75:93:31:02:58:17:93:d9:c3:57:60:ab:3a:d5: 33:8e:05:c5:7e:95:67:30:b0:fd:05:c5:da:f8:e5: b4:4d:d4:33:05:44:ce:9c:d3:db:de:c6:6a:8f:a5: d1:a2:11:da:7c:c8:50:8a:32:d2:a6:24:c5:a5:6d: c9:3a:bd:3c:27:4c:c1:9a:78:c5:42:8d:4b:9d:32: fa:16:35:9e:74:48:5e:a4:bc:88:8b:02:37:c9:05: b3:27:a3:64:f9:f3:d1:b5:af:58:cb:e3:96:b4:67: ba:00:19:4a:f8:88:70:72:8b:26:b2:b7:62:4a:6e: b4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B6:DE:E4:77:81:79:F8:7A:51:31:89:67:3E:36:57:BD:BD:E0:0B X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:a3:6c:ad:98:6f:87:50:02:9f:8b:28:f2:59:10:1d:61:bc: 70:07:54:b8:29:d5:f1:c7:6b:f6:fc:8f:dc:72:3d:20:52:fe: 23:0b:79:04:56:a2:32:ad:58:33:fa:1d:4a:26:43:21:b8:f0: 36:98:14:48:a0:a2:c9:cb:ee:10:b4:86:c5:eb:ee:05:03:62: b8:79:28:c4:41:b0:97:7b:f0:7e:d9:22:0a:d0:b9:4b:ea:dd: c5:b5:31:e4:37:36:96:f9:f9:cb:80:92:5b:c0:19:9a:fe:c9: 33:91:ec:8b:b6:ac:ae:e0:da:5d:c6:0c:76:34:51:8d:04:c9: 3c:d8:ba:d6:aa:38:12:76:8a:17:7e:c1:6c:b3:6b:ec:49:71: 0e:03:f8:8e:b0:7d:b6:91:0f:e9:96:48:37:a8:04:d9:a8:10: 70:88:d4:04:3c:4b:50:c9:48:b9:b5:07:6c:4d:13:bf:09:85: 98:06:ad:3d:44:b3:9d:57:48:4d:28:1f:9d:92:b4:13:e4:ac: 44:f7:4e:00:c3:f6:7e:a0:5d:8d:f1:43:ff:50:73:43:85:0f: 7a:3f:e2:05:2d:a7:10:a2:51:79:87:25:17:a1:69:0b:5c:b6: 71:28:35:b1:cb:d7:6e:94:c8:2b:8a:5b:2e:6b:b8:89:24:b5: 18:c4:e6:04 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUwOTA1MDY1OTA1WhcNMjUwOTEyMDY1OTA1WjAYMRYwFAYD VQQDEw02OGJhOGEzOS0wZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7NK+zZcfl26gpCfofxodJlgYkyEdx8inm/UpiOucGviq6LjtIHSnucEQCxfg 1arOhmwxAb28xDMknaRxci0QDwOh8DYqlRiFmQpHyXKn8G6WDFBRSvy/pWIS54nZ Kgu4SNe9ZZ6miqfCX8DlJzEUHao7o7VLashFyWSCDRA68hEkOUObM0ymdZMxAlgX k9nDV2CrOtUzjgXFfpVnMLD9BcXa+OW0TdQzBUTOnNPb3sZqj6XRohHafMhQijLS piTFpW3JOr08J0zBmnjFQo1LnTL6FjWedEhepLyIiwI3yQWzJ6Nk+fPRta9Yy+OW tGe6ABlK+IhwcosmsrdiSm60hQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOy23uR3 gXn4elExiWc+Nle9veALMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJo2ytmG+HUAKfiyjyWRAdYbxwB1S4KdXxx2v2/I/ccj0gUv4jC3kE VqIyrVgz+h1KJkMhuPA2mBRIoKLJy+4QtIbF6+4FA2K4eSjEQbCXe/B+2SIK0LlL 6t3FtTHkNzaW+fnLgJJbwBma/skzkeyLtqyu4Npdxgx2NFGNBMk82LrWqjgSdooX fsFss2vsSXEOA/iOsH22kQ/plkg3qATZqBBwiNQEPEtQyUi5tQdsTRO/CYWYBq09 RLOdV0hNKB+dkrQT5KxE904Aw/Z+oF2N8UP/UHNDhQ96P+IFLacQolF5hyUXoWkL XLZxKDWxy9dulMgrilsua7iJJLUYxOYE -----END CERTIFICATE-----Generated at Sat Sep 6 21:01:22 2025 by rpki-client