$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: znFVfna9Wum3j6pErKjF4+VZohxzCCZI7ifK77zNVok= Subject key identifier: 71:F8:9E:44:CE:EC:94:2C:FC:F5:0C:2A:79:8A:0A:AC:4B:67:23:11 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 34B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 34AF Signing time: Fri 22 Aug 2025 14:27:34 +0000 Manifest this update: Fri 22 Aug 2025 14:27:33 +0000 Manifest next update: Fri 29 Aug 2025 14:27:33 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: TZFA2XD8UGeSX9zZreR55yR4UjyytrGcf9WwMFEEjN8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13488 (0x34b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33, serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Aug 22 14:27:33 2025 GMT Not After : Aug 29 14:27:33 2025 GMT Subject: CN=68a87e55-ff42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:bf:22:ac:fa:17:7a:88:f6:45:17:08:9a:74: 9c:2e:13:9f:16:34:ee:e2:56:37:60:ed:23:2c:68: 25:24:82:b5:a5:10:9b:a1:20:5b:e3:5c:07:35:61: f9:10:e0:f4:3d:c5:0d:e8:aa:48:7b:ea:d4:50:b6: fd:2c:0a:46:3d:f3:d8:e7:5b:6b:63:ee:bf:fa:26: de:f5:3e:fd:35:4c:cb:07:26:a9:24:53:e7:e5:86: e7:1f:7e:4c:3c:ae:0c:31:16:8b:49:70:9a:8b:22: 53:b5:4f:60:df:6e:5c:94:cb:97:f9:1b:af:f7:b3: 51:dd:16:f3:51:28:cc:58:8f:f6:62:a1:f2:07:26: 17:6d:7f:d7:3a:0d:88:c9:db:b0:23:34:36:5c:cc: 43:cd:c1:64:d9:d9:6c:b7:95:0b:3d:f3:ac:51:8d: d5:aa:d9:03:66:c4:ee:a3:6d:4e:95:a6:07:0b:f0: 14:c3:25:4b:0c:74:31:90:51:f3:aa:49:4a:7a:52: 7c:be:85:90:99:c1:c5:fd:64:59:ad:79:e5:05:29: ec:8e:67:29:ed:cb:2a:23:4e:90:4d:f0:6e:6e:0f: 84:1e:48:50:6c:1f:e8:33:8e:93:1c:78:57:9f:d8: e0:d7:3d:30:1d:53:52:3a:58:b0:f0:2e:36:b8:23: cd:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F8:9E:44:CE:EC:94:2C:FC:F5:0C:2A:79:8A:0A:AC:4B:67:23:11 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:d3:d9:e1:a4:3a:0e:cf:bf:5c:6f:43:50:ad:9b:86:44:f9: b6:b8:54:e8:88:e6:d3:ff:43:b2:cd:47:99:7f:75:5c:f3:2a: 01:fb:81:ec:6f:80:68:6c:8d:c4:3d:18:47:bb:0a:6c:53:0a: 22:ac:7e:67:8f:b9:41:f7:ac:c8:b8:27:16:03:e6:42:62:61: d0:9a:23:8c:09:81:5e:87:3c:ef:4d:46:38:e4:e7:1f:48:ea: ac:83:ae:c4:aa:21:a0:c9:13:f6:ee:db:b1:e6:29:f6:88:2d: 1e:cd:23:97:cc:af:79:5c:13:9c:c7:18:4f:c0:a0:24:b0:02: ab:c6:ae:a5:be:f9:c1:41:57:45:9f:4c:96:18:da:dc:41:02: d3:37:74:1b:03:a1:29:1b:46:4a:33:d0:80:df:bd:b5:0a:f5: c9:c6:e8:c1:4e:1f:9f:1a:a1:e6:fd:14:9a:a9:9b:b5:c6:30: bc:f2:7f:f2:cc:22:81:87:a6:aa:7b:6e:35:bc:33:23:d7:36: 96:1b:27:1d:07:c4:d0:20:f9:9d:61:e8:d2:3e:01:6d:0b:32: ee:a5:db:38:69:3a:a3:4c:85:2f:6f:c0:b7:c0:22:6e:17:84: b0:aa:aa:3e:b2:ee:c2:42:8f:9b:c8:98:2d:68:a2:71:ca:eb: 0b:cf:41:31 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjUwODIyMTQyNzMzWhcNMjUwODI5MTQyNzMzWjAYMRYwFAYD VQQDEw02OGE4N2U1NS1mZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlb8irPoXeoj2RRcImnScLhOfFjTu4lY3YO0jLGglJIK1pRCboSBb41wHNWH5 EOD0PcUN6KpIe+rUULb9LApGPfPY51trY+6/+ibe9T79NUzLByapJFPn5YbnH35M PK4MMRaLSXCaiyJTtU9g325clMuX+Ruv97NR3RbzUSjMWI/2YqHyByYXbX/XOg2I yduwIzQ2XMxDzcFk2dlst5ULPfOsUY3VqtkDZsTuo21OlaYHC/AUwyVLDHQxkFHz qklKelJ8voWQmcHF/WRZrXnlBSnsjmcp7csqI06QTfBubg+EHkhQbB/oM46THHhX n9jg1z0wHVNSOliw8C42uCPNtQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHH4nkTO 7JQs/PUMKnmKCqxLZyMRMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy09nhpDoOz79cb0NQrZuGRPm2uFToiObT/0OyzUeZf3Vc8yoB+4Hs b4BobI3EPRhHuwpsUwoirH5nj7lB96zIuCcWA+ZCYmHQmiOMCYFehzzvTUY45Ocf SOqsg67EqiGgyRP27tux5in2iC0ezSOXzK95XBOcxxhPwKAksAKrxq6lvvnBQVdF n0yWGNrcQQLTN3QbA6EpG0ZKM9CA3721CvXJxujBTh+fGqHm/RSaqZu1xjC88n/y zCKBh6aqe241vDMj1zaWGycdB8TQIPmdYejSPgFtCzLupds4aTqjTIUvb8C3wCJu F4Swqqo+su7CQo+byJgtaKJxyusLz0Ex -----END CERTIFICATE-----Generated at Sat Aug 23 22:08:38 2025 by rpki-client