$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: DpGdvU2rJIzllP6UuWr400hsCtKIpNu9KlieP/dmyaE= Subject key identifier: 15:98:21:25:79:0C:08:E2:35:4D:F4:FE:24:E9:83:4C:18:51:3D:46 Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 058E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 057C Signing time: Sun 19 Oct 2025 01:01:11 +0000 Manifest this update: Sun 19 Oct 2025 01:01:11 +0000 Manifest next update: Sun 26 Oct 2025 01:01:11 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: smjrn1m794kEkiQ5aBVMjscs/Wk0GtRT7CkITo2Dka4=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1422 (0x58e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Oct 19 01:01:11 2025 GMT Not After : Oct 26 01:01:11 2025 GMT Subject: CN=68f43857-e56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:c9:d2:39:3d:0c:8d:4e:e9:cd:e2:67:22:42: 1b:5c:31:05:1b:9f:83:18:57:a8:57:ee:40:d5:53: 5f:1a:ca:95:56:a3:fc:10:37:78:80:68:a7:4f:cb: cb:a5:13:17:26:c7:69:b2:00:83:cd:e7:8f:f0:75: d6:38:f9:05:e5:92:9d:bb:7a:ea:14:85:c9:fd:29: 3c:fc:3d:2a:e0:67:62:e1:bf:2e:0c:c0:9b:de:56: c7:07:3b:be:06:f9:d2:d4:50:35:b6:52:85:5b:2e: 62:69:0b:d8:46:a3:54:1a:a6:b2:28:4c:fc:7d:22: ae:be:af:ba:b4:ec:0b:e9:6e:71:e5:47:be:9e:c8: 7e:04:53:2f:8b:80:be:fa:78:8e:39:58:6f:88:e1: a5:26:f1:8b:54:21:8a:be:1e:fe:6d:03:21:a6:66: ae:54:42:4c:0b:a2:3d:e9:7f:5c:14:67:a1:fb:04: 01:dc:9e:b2:ae:8a:b5:e6:cf:62:8f:23:d4:e8:1a: a8:51:ea:49:3e:d5:61:8a:e0:f9:e1:1e:0a:89:6c: 8c:2e:73:d8:a9:05:b6:3b:08:e2:9b:3b:94:3f:38: be:d7:43:fc:26:c4:71:3b:7b:ac:77:cd:fc:85:7d: 79:25:fd:5f:c4:4b:9a:25:a0:c6:e3:a7:cd:31:05: be:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:98:21:25:79:0C:08:E2:35:4D:F4:FE:24:E9:83:4C:18:51:3D:46 X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:30:bc:2a:56:80:5f:4d:7f:6d:58:05:ca:12:f8:6f:81:c2: e1:bd:3c:8f:80:76:0f:e3:cc:a2:1c:c7:15:44:aa:54:db:31: 98:e7:ba:95:d4:bc:a9:1f:6b:f7:37:fb:cd:42:97:10:6e:46: 89:1b:2b:f3:61:c9:0b:61:04:22:c3:9c:8b:93:50:5a:cd:7b: 27:00:39:7e:2e:e0:27:5a:89:27:3c:a2:00:bf:fb:11:1b:ea: 2b:69:ce:da:e7:fc:08:65:b4:d6:2c:01:4a:ec:69:a7:0a:a2: 18:7b:45:6d:e6:7e:df:97:f6:3e:24:bb:89:8a:6c:de:15:7c: cf:1f:2f:82:13:00:a0:fa:61:5d:eb:bb:34:03:1e:a7:30:b0: 19:34:85:08:26:e2:4b:ad:13:d8:ec:bc:2c:12:f8:a7:c4:81: 3a:c0:ec:8e:72:fe:13:a8:f9:ed:4d:b6:77:dc:71:61:e8:da: a8:68:45:f3:89:63:63:af:29:7c:c1:94:e4:ef:4b:92:1f:44: b9:93:f1:ce:f3:4c:7d:32:55:15:82:ea:4a:ed:18:0a:8e:0a: d3:41:6a:b9:e3:5d:f5:ef:59:50:e7:1d:61:dd:01:53:c6:39: 66:b1:b1:84:c3:24:6e:e3:99:64:18:53:1e:14:97:46:76:86: 08:44:33:ab -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjUxMDE5MDEwMTExWhcNMjUxMDI2MDEwMTExWjAYMRYwFAYD VQQDEw02OGY0Mzg1Ny1lNTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAysnSOT0MjU7pzeJnIkIbXDEFG5+DGFeoV+5A1VNfGsqVVqP8EDd4gGinT8vL pRMXJsdpsgCDzeeP8HXWOPkF5ZKdu3rqFIXJ/Sk8/D0q4Gdi4b8uDMCb3lbHBzu+ BvnS1FA1tlKFWy5iaQvYRqNUGqayKEz8fSKuvq+6tOwL6W5x5Ue+nsh+BFMvi4C+ +niOOVhviOGlJvGLVCGKvh7+bQMhpmauVEJMC6I96X9cFGeh+wQB3J6yroq15s9i jyPU6BqoUepJPtVhiuD54R4KiWyMLnPYqQW2OwjimzuUPzi+10P8JsRxO3usd838 hX15Jf1fxEuaJaDG46fNMQW+xwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBWYISV5 DAjiNU30/iTpg0wYUT1GMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCOMLwqVoBfTX9tWAXKEvhvgcLhvTyPgHYP48yiHMcVRKpU2zGY57qV 1LypH2v3N/vNQpcQbkaJGyvzYckLYQQiw5yLk1BazXsnADl+LuAnWoknPKIAv/sR G+orac7a5/wIZbTWLAFK7GmnCqIYe0Vt5n7fl/Y+JLuJimzeFXzPHy+CEwCg+mFd 67s0Ax6nMLAZNIUIJuJLrRPY7LwsEvinxIE6wOyOcv4TqPntTbZ33HFh6NqoaEXz iWNjryl8wZTk70uSH0S5k/HO80x9MlUVgupK7RgKjgrTQWq5413171lQ5x1h3QFT xjlmsbGEwyRu45lkGFMeFJdGdoYIRDOr -----END CERTIFICATE-----Generated at Mon Oct 20 15:22:03 2025 by rpki-client