$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft File: Klbs8PH_OfsVFWANEgo0cr4UtzI.mft (raw, json) Hash identifier: ZMKZlxQ4y2TlhjiR1/bmdDRCAJUCrsltZRdGCvL/tiA= Subject key identifier: FF:73:FE:70:91:BB:F4:14:4C:E9:D1:9A:28:56:CE:CF:72:3E:AF:CC Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft Manifest number: 0175 Signing time: Sat 23 Aug 2025 03:54:28 +0000 Manifest this update: Sat 23 Aug 2025 03:54:28 +0000 Manifest next update: Sat 30 Aug 2025 03:54:28 +0000 Files and hashes: 1: Klbs8PH_OfsVFWANEgo0cr4UtzI.crl (hash: OX6rgaXsh6iEDHtNccevCgv0OaeTjMkfStPPGA5i6UU=) 2: EF31E31847CE11EEB588375DC4F9AE02.roa (hash: kILGmUlpt7DdHWZSLztcZSmK4D+q9rXXCv0iWxnKi6I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485, serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Aug 23 03:54:28 2025 GMT Not After : Aug 30 03:54:28 2025 GMT Subject: CN=68a93b74-e1c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:44:d1:93:50:95:b6:82:cf:c7:79:63:c2:34: d8:fb:5e:cd:d4:1b:3a:d6:52:ef:8d:cd:7c:f3:a4: 80:b9:90:5e:5c:f0:bd:a8:8a:63:b0:fb:0b:d9:8d: e2:db:49:24:f4:67:eb:2f:4b:19:1b:7e:72:b6:22: 72:8a:d0:93:3c:9f:fb:80:ab:68:7e:11:c7:42:05: 4d:e2:3d:48:2b:58:34:23:bd:d6:cb:d0:d6:d7:6a: 90:cb:00:a5:7c:14:40:9c:43:4e:3d:1f:cd:bb:f0: 41:dc:4f:46:b9:1c:4f:38:93:52:0a:ad:e6:fa:2e: 20:84:b2:ce:69:e2:a0:40:0d:2c:46:fe:00:20:2c: 1b:df:56:67:b1:12:3d:f4:75:14:f0:d3:af:b8:10: a6:0b:10:c7:2a:aa:9b:80:df:fb:19:d5:93:ab:7c: 4f:62:55:0d:da:a2:4f:34:1d:f5:75:71:c5:29:5d: ed:f5:75:3d:2a:80:61:bc:fe:58:71:6e:72:15:d6: 20:d2:39:66:ea:d8:51:b8:d9:58:dd:c2:b2:0b:88: c6:f2:36:5f:27:70:34:d3:af:a1:84:b0:f4:e2:31: df:fd:12:b6:db:c3:7e:36:d1:3e:74:3c:61:ae:55: 50:a9:ff:26:95:d3:f0:03:c3:b3:06:7f:bf:71:fa: 55:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:73:FE:70:91:BB:F4:14:4C:E9:D1:9A:28:56:CE:CF:72:3E:AF:CC X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:30:de:32:7a:33:d4:8d:ec:d6:e6:6f:fe:f4:c4:d0:a2:4e: d9:0b:50:dd:1f:98:0b:d6:bb:12:a2:27:b8:8f:2e:cb:96:bc: 45:20:5f:0d:bb:25:f9:40:8c:2f:91:ca:7f:0f:f6:2b:8e:53: 7c:3f:7a:00:82:77:75:89:e5:a7:72:1f:a0:12:24:dc:73:b8: f1:0e:59:99:3e:ee:9f:fd:89:51:2f:ae:7c:b3:95:f7:b8:11: c7:f2:3e:67:d5:25:9b:56:19:57:06:37:33:a3:39:f9:0d:b3: 67:43:ed:fa:2a:58:dc:1e:e8:23:12:54:31:05:a2:00:e3:46: 6f:ac:c9:66:0d:6e:45:db:94:86:90:74:49:5f:3a:72:1c:c8: 95:98:2d:f1:46:ea:63:15:f1:c9:fe:74:10:57:33:5b:2a:03: e3:58:71:62:c4:a0:d8:a0:80:17:8e:2e:58:68:bb:1f:d7:66: 26:b6:5c:47:ce:16:34:fb:5b:c5:94:fc:19:ad:42:a7:64:52: 6d:b8:a4:ff:52:77:47:1f:8b:bd:70:12:8f:b0:5a:2c:30:01: c5:8d:f5:75:90:e6:f8:83:9a:b7:c6:93:32:20:9e:5a:1a:10: 36:d5:5f:f7:05:d8:89:8c:36:72:f6:d2:48:15:4a:2e:c0:a2: be:6b:6a:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0ODUxMTAvBgNVBAUTKDJBNTZFQ0YwRjFGRjM5RkIxNTE1NjAwRDEyMEEzNDcy QkUxNEI3MzIwHhcNMjUwODIzMDM1NDI4WhcNMjUwODMwMDM1NDI4WjAYMRYwFAYD VQQDEw02OGE5M2I3NC1lMWM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsETRk1CVtoLPx3ljwjTY+17N1Bs61lLvjc1886SAuZBeXPC9qIpjsPsL2Y3i 20kk9GfrL0sZG35ytiJyitCTPJ/7gKtofhHHQgVN4j1IK1g0I73Wy9DW12qQywCl fBRAnENOPR/Nu/BB3E9GuRxPOJNSCq3m+i4ghLLOaeKgQA0sRv4AICwb31ZnsRI9 9HUU8NOvuBCmCxDHKqqbgN/7GdWTq3xPYlUN2qJPNB31dXHFKV3t9XU9KoBhvP5Y cW5yFdYg0jlm6thRuNlY3cKyC4jG8jZfJ3A006+hhLD04jHf/RK228N+NtE+dDxh rlVQqf8mldPwA8OzBn+/cfpVPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP9z/nCR u/QUTOnRmihWzs9yPq/MMB8GA1UdIwQYMBaAFCpW7PDx/zn7FRVgDRIKNHK+FLcy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ4NS82MkE5Mjg2NjQ3 Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09mc1ZGV0FORWdvMGNyNFV0 ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9LbGJzOFBIX09m c1ZGV0FORWdvMGNyNFV0ekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJMN4yejPUjezW5m/+9MTQok7ZC1DdH5gL1rsSoie4jy7LlrxFIF8N uyX5QIwvkcp/D/YrjlN8P3oAgnd1ieWnch+gEiTcc7jxDlmZPu6f/YlRL658s5X3 uBHH8j5n1SWbVhlXBjczozn5DbNnQ+36KljcHugjElQxBaIA40ZvrMlmDW5F25SG kHRJXzpyHMiVmC3xRupjFfHJ/nQQVzNbKgPjWHFixKDYoIAXji5YaLsf12YmtlxH zhY0+1vFlPwZrUKnZFJtuKT/UndHH4u9cBKPsFosMAHFjfV1kOb4g5q3xpMyIJ5a GhA21V/3BdiJjDZy9tJIFUouwKK+a2ol -----END CERTIFICATE-----Generated at Sun Aug 24 00:06:43 2025 by rpki-client