$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: NsuipIpjX+yZ6wiCtLtzO+gj3kEZyDEYMfj+EXmJjMY= Subject key identifier: 7D:98:AF:56:54:3F:07:B9:A8:3F:93:A4:BD:92:1E:3F:EC:81:17:56 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 3494 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 3493 Signing time: Sat 28 Jun 2025 14:26:35 +0000 Manifest this update: Sat 28 Jun 2025 14:26:34 +0000 Manifest next update: Sat 05 Jul 2025 14:26:34 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: nGzXpeIQU1AqHoC6XoA0MLi6kiPIzAAWi/jmV9uiilw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 14:26:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13460 (0x3494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33, serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Jun 28 14:26:34 2025 GMT Not After : Jul 5 14:26:34 2025 GMT Subject: CN=685ffb9b-3260 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ff:b6:3c:7c:e9:bf:04:dc:1c:02:ef:1e:74: c6:c6:b2:7d:c6:1b:d2:74:2c:21:de:d9:a1:41:35: 98:01:00:e4:8d:ff:d6:bd:02:17:39:80:06:b2:74: c0:6c:69:11:41:8f:03:db:a2:08:ed:2b:e7:57:7c: be:f0:3f:71:33:7d:8a:15:33:09:a3:b9:d6:5d:8e: 72:e8:79:a4:2e:54:29:2a:6f:40:27:a0:af:fb:5b: 9d:05:ee:49:61:b8:91:67:a3:d6:f5:5d:db:a3:ad: 86:18:9e:eb:ae:b1:7f:60:bd:54:67:c0:b8:ea:a7: 95:50:29:f3:75:b5:5e:4f:9a:83:b7:fa:24:e4:1d: b0:97:50:af:5b:64:ca:89:a8:c0:d7:08:0f:71:91: ed:fc:1f:d4:29:b7:e6:41:3d:9b:d6:5f:aa:39:ee: 4b:8f:e4:fa:54:6f:85:13:63:e8:4c:db:f2:39:21: aa:8d:f7:77:b1:d4:7b:8a:07:05:db:4d:96:d0:03: 50:3c:a2:0c:a1:51:37:52:6f:4e:7e:7f:68:0e:11: f4:10:ed:9a:e1:c6:71:ef:f3:e5:da:fa:a4:6b:51: 7b:2d:2c:27:1b:a9:dd:29:f2:55:d3:c4:94:44:ab: 98:cb:5f:b6:6e:4f:63:cf:40:93:3d:35:b9:a9:fe: 64:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:98:AF:56:54:3F:07:B9:A8:3F:93:A4:BD:92:1E:3F:EC:81:17:56 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b8:ec:f1:6c:2c:b8:e6:f9:02:61:57:07:be:d7:1f:c2:26:55: f2:7e:83:97:65:8e:8c:b2:35:0a:84:f6:71:6f:2d:cd:ab:7f: a8:87:4f:32:a2:d0:30:b2:91:69:68:fb:60:ad:85:f9:76:36: 04:ad:9a:37:83:b6:89:3a:2a:99:1f:a3:f9:77:ca:1d:4c:e9: a8:ab:95:b7:fd:66:6f:f2:be:41:39:ba:d4:17:aa:47:ec:c2: dd:db:68:b0:b1:34:5b:24:7f:85:b3:58:1a:71:dd:ac:22:03: 3f:fb:ad:5e:6f:d9:a7:84:4b:e2:dc:09:2f:6a:85:54:ed:0b: b7:44:60:9d:38:ed:91:0a:ca:f3:bf:92:1f:4c:84:0f:e8:5e: 8b:17:96:69:b1:5e:3a:23:11:5d:31:a2:1f:3b:a8:92:ad:8f: 7e:c4:db:f5:9f:db:7b:f6:23:1d:ef:5c:be:92:18:1f:47:12: e5:17:3e:ed:ad:d5:6f:64:e4:35:14:6b:04:5a:2b:58:f0:75: 2c:2f:15:7a:ce:36:24:98:1d:d8:d1:63:d9:9a:d6:3f:e3:b5: be:69:b7:58:ce:e4:01:c4:cd:2a:fb:72:84:06:24:d4:67:f1: 2e:fc:5c:0a:ae:08:ab:73:78:2a:69:c4:39:0d:99:b4:e3:29: 81:be:0a:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjUwNjI4MTQyNjM0WhcNMjUwNzA1MTQyNjM0WjAYMRYwFAYD VQQDEw02ODVmZmI5Yi0zMjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyf+2PHzpvwTcHALvHnTGxrJ9xhvSdCwh3tmhQTWYAQDkjf/WvQIXOYAGsnTA bGkRQY8D26II7SvnV3y+8D9xM32KFTMJo7nWXY5y6HmkLlQpKm9AJ6Cv+1udBe5J YbiRZ6PW9V3bo62GGJ7rrrF/YL1UZ8C46qeVUCnzdbVeT5qDt/ok5B2wl1CvW2TK iajA1wgPcZHt/B/UKbfmQT2b1l+qOe5Lj+T6VG+FE2PoTNvyOSGqjfd3sdR7igcF 202W0ANQPKIMoVE3Um9Ofn9oDhH0EO2a4cZx7/Pl2vqka1F7LSwnG6ndKfJV08SU RKuYy1+2bk9jz0CTPTW5qf5k4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2Yr1ZU Pwe5qD+TpL2SHj/sgRdWMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC47PFsLLjm+QJhVwe+1x/CJlXyfoOXZY6MsjUKhPZxby3Nq3+oh08y otAwspFpaPtgrYX5djYErZo3g7aJOiqZH6P5d8odTOmoq5W3/WZv8r5BObrUF6pH 7MLd22iwsTRbJH+Fs1gacd2sIgM/+61eb9mnhEvi3AkvaoVU7Qu3RGCdOO2RCsrz v5IfTIQP6F6LF5ZpsV46IxFdMaIfO6iSrY9+xNv1n9t79iMd71y+khgfRxLlFz7t rdVvZOQ1FGsEWitY8HUsLxV6zjYkmB3Y0WPZmtY/47W+abdYzuQBxM0q+3KEBiTU Z/Eu/FwKrgirc3gqacQ5DZm04ymBvgp0 -----END CERTIFICATE-----Generated at Sun Jun 29 16:35:53 2025 by rpki-client