$ rpki-client -vvf rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft File: kl2pi04IXWgNFte6GD8OpUJqGgM.mft (raw, json) Hash identifier: k28uHxZzF8LDpbi8JlcIZBgRR2OMdCTOeIzAGJCBWBg= Subject key identifier: 40:24:D8:F6:1B:65:AD:56:69:74:F9:65:7E:6E:4E:CC:92:07:18:FD Authority key identifier: 92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 Certificate issuer: /CN=A9112320/serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Certificate serial: 0556 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft Manifest number: 0544 Signing time: Mon 30 Jun 2025 23:54:57 +0000 Manifest this update: Mon 30 Jun 2025 23:54:56 +0000 Manifest next update: Mon 07 Jul 2025 23:54:56 +0000 Files and hashes: 1: kl2pi04IXWgNFte6GD8OpUJqGgM.crl (hash: Fkieve0eGxqz468DdrBM+2wpAq5J/ddNZMMXXTZuTZ4=) 2: C7B754BEF85311ED8D59CA87C4F9AE02.roa (hash: M+wNfsm6YQmLCJcAzey1G7TcdY1od2Gihz4uSm0Idd0=) 3: A87AE518D2E011EDA1EF340FC4F9AE02.roa (hash: XeS+UNfddkVQ+DW6xIplHBmjPx6deLGv6cSwFbKYRAo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 23:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1366 (0x556) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112320, serialNumber=925DA98B4E085D680D16D7BA183F0EA5426A1A03 Validity Not Before: Jun 30 23:54:56 2025 GMT Not After : Jul 7 23:54:56 2025 GMT Subject: CN=686323d0-5eb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:86:80:42:e6:13:c1:5d:3c:87:aa:9a:2e:5e: 09:62:15:7e:5a:bf:3e:ef:f8:e0:75:c3:17:50:84: b4:41:43:e9:3b:d7:bc:7b:80:14:e2:19:61:e4:9c: 5c:fe:cd:f8:5f:f1:69:61:a0:47:d8:02:96:cb:9b: 1b:44:0d:47:24:3e:02:c7:95:b6:7a:87:dc:35:0b: af:fb:10:2e:78:6f:22:be:b5:2d:e5:c9:2f:52:61: 00:67:17:aa:f2:03:64:34:03:c8:71:e1:e1:2e:c4: 74:1e:97:a8:d5:eb:2b:c3:22:a9:bc:a5:1f:5f:68: 05:a4:cf:04:42:b4:57:9c:b3:38:4e:b0:21:66:81: 4a:ac:25:13:95:92:90:5c:9e:c4:1c:a1:b2:8e:68: fd:56:27:91:35:fb:89:be:c5:4d:bb:ad:78:c4:41: fd:ec:21:da:db:7a:9e:af:35:4e:e5:3a:5c:2e:c8: 33:59:7b:02:6b:f1:f3:cf:04:82:94:b0:81:c6:d7: b5:73:cd:a2:16:f2:68:f9:d6:72:27:d5:47:b4:90: f7:c6:e3:5b:64:f7:d8:bb:bf:5e:bb:25:3a:a2:c8: 45:3c:9f:2d:fd:67:b7:f6:d0:af:d0:50:52:0d:c0: 16:af:37:9a:83:48:61:40:3c:41:3b:17:a8:85:d8: f7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:24:D8:F6:1B:65:AD:56:69:74:F9:65:7E:6E:4E:CC:92:07:18:FD X509v3 Authority Key Identifier: keyid:92:5D:A9:8B:4E:08:5D:68:0D:16:D7:BA:18:3F:0E:A5:42:6A:1A:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kl2pi04IXWgNFte6GD8OpUJqGgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112320/6D705BCEFE7011EB9CFB9029C4F9AE02/kl2pi04IXWgNFte6GD8OpUJqGgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:44:bc:13:1f:6d:5e:f3:c3:4f:0e:c1:21:20:1a:55:22:fa: a4:02:41:71:b0:de:16:fa:d3:b8:8e:e1:89:2d:9f:6f:1d:0b: d2:2f:ef:41:81:6d:e7:15:3e:d0:08:f8:da:0d:91:1c:48:8f: 68:d7:1c:ad:d0:09:8c:ea:45:5b:12:be:f3:30:50:cc:e5:33: 79:db:b1:c0:c4:0d:ec:6d:9e:10:e7:95:c7:fc:ae:12:87:05: c8:04:38:0d:fb:a4:60:fe:1d:ad:83:47:a4:9f:d9:91:5e:54: b9:cb:b6:39:61:91:21:8a:b5:e8:ef:f5:db:18:3d:3b:db:6c: 65:38:a7:20:aa:e5:04:50:55:13:fa:61:05:ff:7f:63:c7:58: 98:9e:d9:86:f6:c3:06:14:95:45:73:e6:8c:de:65:d5:84:df: e4:28:d8:08:dd:0b:6d:69:3f:65:f2:48:f7:74:03:65:d4:64: 7b:1b:fc:bd:8a:d8:5a:d2:ad:d8:db:bd:7d:ad:ae:80:1d:36: 76:d4:c1:78:5d:64:19:b8:10:55:5e:20:00:36:53:2b:c7:68: 3e:fe:bd:33:80:93:57:b0:f4:88:33:14:f6:75:c8:97:ff:65: 81:88:50:67:e2:6d:53:fb:80:5a:ea:b9:30:63:b7:15:73:07: d1:37:cb:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBVYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTIzMjAxMTAvBgNVBAUTKDkyNURBOThCNEUwODVENjgwRDE2RDdCQTE4M0YwRUE1 NDI2QTFBMDMwHhcNMjUwNjMwMjM1NDU2WhcNMjUwNzA3MjM1NDU2WjAYMRYwFAYD VQQDEw02ODYzMjNkMC01ZWIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4aAQuYTwV08h6qaLl4JYhV+Wr8+7/jgdcMXUIS0QUPpO9e8e4AU4hlh5Jxc /s34X/FpYaBH2AKWy5sbRA1HJD4Cx5W2eofcNQuv+xAueG8ivrUt5ckvUmEAZxeq 8gNkNAPIceHhLsR0Hpeo1esrwyKpvKUfX2gFpM8EQrRXnLM4TrAhZoFKrCUTlZKQ XJ7EHKGyjmj9VieRNfuJvsVNu614xEH97CHa23qerzVO5TpcLsgzWXsCa/HzzwSC lLCBxte1c82iFvJo+dZyJ9VHtJD3xuNbZPfYu79euyU6oshFPJ8t/We39tCv0FBS DcAWrzeag0hhQDxBOxeohdj34QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEAk2PYb Za1WaXT5ZX5uTsySBxj9MB8GA1UdIwQYMBaAFJJdqYtOCF1oDRbXuhg/DqVCahoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjMyMC82RDcwNUJDRUZF NzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhXZ05GdGU2R0Q4T3BVSnFH Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsMnBpMDRJWFdnTkZ0ZTZHRDhPcFVKcUdnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjMyMC82RDcwNUJDRUZFNzAxMUVCOUNGQjkwMjlDNEY5QUUwMi9rbDJwaTA0SVhX Z05GdGU2R0Q4T3BVSnFHZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBRLwTH21e88NPDsEhIBpVIvqkAkFxsN4W+tO4juGJLZ9vHQvSL+9B gW3nFT7QCPjaDZEcSI9o1xyt0AmM6kVbEr7zMFDM5TN527HAxA3sbZ4Q55XH/K4S hwXIBDgN+6Rg/h2tg0ekn9mRXlS5y7Y5YZEhirXo7/XbGD0722xlOKcgquUEUFUT +mEF/39jx1iYntmG9sMGFJVFc+aM3mXVhN/kKNgI3QttaT9l8kj3dANl1GR7G/y9 itha0q3Y2719ra6AHTZ21MF4XWQZuBBVXiAANlMrx2g+/r0zgJNXsPSIMxT2dciX /2WBiFBn4m1T+4Ba6rkwY7cVcwfRN8sg -----END CERTIFICATE-----Generated at Tue Jul 1 09:10:11 2025 by rpki-client