$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: PE70thtVl7bZ03g+ji46HhxrRG6A1oRs+DJLupbRWY4= Subject key identifier: A5:0D:E1:50:71:7C:2D:E4:46:5A:25:64:51:C9:04:6D:A0:D1:F8:6C Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 0571 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 055F Signing time: Fri 22 Aug 2025 23:35:45 +0000 Manifest this update: Fri 22 Aug 2025 23:35:45 +0000 Manifest next update: Fri 29 Aug 2025 23:35:45 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: rOWIKNOHKz+iZsh0/HaGxt00RVs7EWvMNy9q1NdPjUc=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1393 (0x571) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Aug 22 23:35:45 2025 GMT Not After : Aug 29 23:35:45 2025 GMT Subject: CN=68a8fed1-50ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:e9:37:1f:ab:b9:6c:7c:12:ce:70:8d:2c: 49:10:fb:07:63:c1:dc:57:b8:0e:d6:99:31:25:a2: 78:83:4d:5d:7a:ea:ce:30:a8:55:58:c0:68:64:ed: 22:98:93:51:b7:ab:7e:3f:e0:ba:f7:81:d8:5f:b4: 7c:e9:8b:2d:ac:83:c2:fa:3d:32:75:17:af:1a:c6: fa:81:6f:78:33:f1:52:47:b3:f9:e7:c6:f4:69:06: 99:24:00:d9:6b:27:00:4a:00:c7:1a:e4:af:e5:bf: b7:83:e8:0e:bf:84:23:91:3e:d6:9c:50:0f:d8:f1: d6:54:6b:b7:55:08:17:fd:0c:2d:3c:30:31:fb:f2: bb:a1:da:60:ed:0b:64:f4:b0:0d:29:7b:a6:37:01: 4f:ea:01:07:aa:b6:6a:1c:d0:bc:19:f6:a1:5d:dd: 08:dc:d2:06:9d:a2:74:7b:41:08:a7:fc:6e:95:22: b6:24:de:60:b1:03:91:d5:35:3d:24:ed:56:a6:d3: 2c:fa:17:bc:89:3a:7e:3b:a6:22:ab:d2:f4:86:66: 11:0d:19:7b:e7:14:5e:ca:42:d0:87:21:6b:a5:79: 63:f9:ce:3c:b3:32:d5:f9:8d:a6:36:36:22:43:ca: 3f:bd:8a:65:dc:dc:88:ce:03:e1:54:c0:3d:ae:51: fa:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:0D:E1:50:71:7C:2D:E4:46:5A:25:64:51:C9:04:6D:A0:D1:F8:6C X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:d4:10:2f:14:2b:79:2d:1a:ef:35:f3:e2:a7:0c:56:5e:fb: 91:ea:f5:c7:92:36:ea:df:31:84:98:a3:06:38:83:ac:03:e8: 1a:75:58:c0:27:ea:04:83:c7:7c:23:82:eb:9a:5a:39:93:15: de:4a:12:d5:9e:45:44:68:53:a9:7d:86:a5:88:2a:c7:25:3f: cc:df:d4:bc:c0:52:4f:e6:a6:88:fa:9c:41:5f:73:55:5f:c7: f4:ac:b8:d3:8e:2c:5a:5f:88:d2:ed:37:ce:99:0e:20:52:c0: c2:24:2d:0d:48:12:bc:30:59:c0:5e:5f:a9:dd:39:7b:e6:cb: eb:b5:24:b8:4b:a9:32:01:f3:dc:fe:ca:8b:ef:d1:d2:64:68: 8d:df:8a:26:d6:a8:bc:a0:6f:38:1b:08:da:50:cd:33:8f:29: f2:8a:f2:14:1a:28:df:dc:7b:75:2e:40:19:f4:ee:a1:29:93: 33:3f:31:27:aa:5b:d5:58:17:ac:30:2f:8c:bb:a8:55:9c:92: 63:07:da:02:f0:de:a9:48:ce:43:04:44:c1:d2:56:4d:e3:3b: 26:b2:15:60:7b:fc:53:54:da:b2:13:c1:e8:3e:80:40:53:ee: f6:25:e6:2f:1b:e9:89:c2:b1:9e:af:e0:82:fc:ca:5f:c0:6d: ef:8e:a8:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjUwODIyMjMzNTQ1WhcNMjUwODI5MjMzNTQ1WjAYMRYwFAYD VQQDEw02OGE4ZmVkMS01MGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulrpNx+ruWx8Es5wjSxJEPsHY8HcV7gO1pkxJaJ4g01deurOMKhVWMBoZO0i mJNRt6t+P+C694HYX7R86YstrIPC+j0ydRevGsb6gW94M/FSR7P558b0aQaZJADZ aycASgDHGuSv5b+3g+gOv4QjkT7WnFAP2PHWVGu3VQgX/QwtPDAx+/K7odpg7Qtk 9LANKXumNwFP6gEHqrZqHNC8GfahXd0I3NIGnaJ0e0EIp/xulSK2JN5gsQOR1TU9 JO1WptMs+he8iTp+O6Yiq9L0hmYRDRl75xReykLQhyFrpXlj+c48szLV+Y2mNjYi Q8o/vYpl3NyIzgPhVMA9rlH6nwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKUN4VBx fC3kRlolZFHJBG2g0fhsMB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBc1BAvFCt5LRrvNfPipwxWXvuR6vXHkjbq3zGEmKMGOIOsA+gadVjA J+oEg8d8I4Lrmlo5kxXeShLVnkVEaFOpfYaliCrHJT/M39S8wFJP5qaI+pxBX3NV X8f0rLjTjixaX4jS7TfOmQ4gUsDCJC0NSBK8MFnAXl+p3Tl75svrtSS4S6kyAfPc /sqL79HSZGiN34om1qi8oG84GwjaUM0zjynyivIUGijf3Ht1LkAZ9O6hKZMzPzEn qlvVWBesMC+Mu6hVnJJjB9oC8N6pSM5DBETB0lZN4zsmshVge/xTVNqyE8HoPoBA U+72JeYvG+mJwrGer+CC/MpfwG3vjqgk -----END CERTIFICATE-----Generated at Sun Aug 24 03:29:31 2025 by rpki-client