$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: nH0GjA9ChBReg/KQ9DhL1QG4G9kTAa1LUyTrBoZpZ3A= Subject key identifier: 4E:B7:72:86:26:DA:0E:2D:DF:2E:BE:19:4C:24:3E:9F:50:16:A7:EA Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: 6E Signing time: Thu 03 Jul 2025 07:08:47 +0000 Manifest this update: Thu 03 Jul 2025 07:08:46 +0000 Manifest next update: Thu 10 Jul 2025 07:08:46 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: ZeFhX0dLMZes8GLdAZ/l9nQC5h5jKU24ZgfHbH5YCco=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Jul 3 07:08:46 2025 GMT Not After : Jul 10 07:08:46 2025 GMT Subject: CN=68662c7f-7c83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:87:3d:52:d2:02:de:16:6c:e4:1a:b4:54:46: 4e:a0:75:9f:93:fe:31:4b:1a:b6:0a:9c:9c:fc:d8: f8:e2:b3:cd:c3:23:a1:71:19:a1:f8:d2:3d:5f:0b: 85:a6:83:c5:27:65:d3:f9:b4:52:bb:b6:fa:bd:ef: b6:b7:6d:ae:25:10:b7:69:cf:40:94:21:b0:c6:07: 8a:1a:f6:30:e0:54:16:2c:8e:20:99:f4:a4:d7:41: 44:05:f6:d5:c8:4f:50:3a:eb:b4:37:9e:d1:6c:9a: 6e:90:5f:15:e2:5a:9b:bb:23:b7:90:da:dd:2c:be: fc:6a:d8:8f:56:77:5f:e6:14:41:76:bc:70:eb:81: d2:11:0a:22:4e:c1:a4:3f:57:b1:06:cf:b7:4f:31: 1b:d5:db:5e:b2:44:d5:12:98:78:bf:97:73:c4:01: 0b:7d:8d:f2:df:40:82:69:e8:ed:db:6c:c9:f2:b0: 9a:3b:4a:59:16:7f:e7:fa:fc:d3:e6:e2:41:0f:f4: 89:8e:84:00:1f:33:a6:2a:ab:30:ef:80:80:48:51: 9e:95:02:62:48:86:47:d8:09:91:16:c6:8c:f9:d4: 14:42:ef:d2:2d:97:bf:be:cc:d5:10:67:79:31:ec: 5d:5b:6d:e3:39:17:a7:43:5f:50:a5:74:d3:dc:52: b0:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B7:72:86:26:DA:0E:2D:DF:2E:BE:19:4C:24:3E:9F:50:16:A7:EA X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:a5:b1:c2:88:fe:10:9e:8e:a7:02:87:e2:00:6e:1a:4d:73: 22:51:39:94:29:29:74:98:c1:c7:67:ac:10:00:ba:5f:cf:c0: 9a:ae:f7:ea:c5:e1:ed:a6:27:fd:a1:01:98:0c:e7:ed:f2:54: 35:06:ab:fd:ea:ba:0f:44:38:9f:db:97:8d:c8:8e:7f:68:f5: 39:38:f5:63:bb:b3:03:69:98:6c:81:fb:55:64:75:13:01:a9: 9f:36:4b:d4:75:d8:78:ab:aa:48:1f:31:30:a3:76:99:dc:3a: bb:13:41:e7:19:62:dc:fd:d7:1c:ca:4d:aa:2a:5b:82:cc:16: 25:e3:6d:76:6f:2c:4e:82:ec:95:10:35:39:0b:d3:d9:ee:b7: 18:8d:a9:31:13:1a:a2:d5:8b:13:03:b7:9a:ea:0b:cc:70:64: 15:d6:78:69:5f:03:e2:38:68:5c:c0:bd:ce:c2:5e:90:bb:17: 52:59:0d:15:67:56:2e:37:1d:c1:ff:3b:44:18:68:0c:23:aa: fb:d5:e4:db:32:1e:0c:9a:9b:78:0e:4a:19:80:7a:16:58:8f: 1e:b7:0c:f5:18:cd:6c:27:c7:55:65:7d:20:7e:4f:f0:b8:e2: f1:17:bd:e7:b2:bf:1b:09:31:cd:eb:40:6c:23:10:9e:a7:bc: ca:46:4b:f6 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTIzRjExMC8GA1UEBRMoMkE1OUI5NkMzMEE1NUZCRDYxRDIyMzAzNzNDRUI4OUQx REIwMUE4QjAeFw0yNTA3MDMwNzA4NDZaFw0yNTA3MTAwNzA4NDZaMBgxFjAUBgNV BAMTDTY4NjYyYzdmLTdjODMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMhz1S0gLeFmzkGrRURk6gdZ+T/jFLGrYKnJz82Pjis83DI6FxGaH40j1fC4Wm g8UnZdP5tFK7tvq977a3ba4lELdpz0CUIbDGB4oa9jDgVBYsjiCZ9KTXQUQF9tXI T1A667Q3ntFsmm6QXxXiWpu7I7eQ2t0svvxq2I9Wd1/mFEF2vHDrgdIRCiJOwaQ/ V7EGz7dPMRvV216yRNUSmHi/l3PEAQt9jfLfQIJp6O3bbMnysJo7SlkWf+f6/NPm 4kEP9ImOhAAfM6YqqzDvgIBIUZ6VAmJIhkfYCZEWxoz51BRC79Itl7++zNUQZ3kx 7F1bbeM5F6dDX1CldNPcUrD7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTrdyhiba Di3fLr4ZTCQ+n1AWp+owHwYDVR0jBBgwFoAUKlm5bDClX71h0iMDc864nR2wGosw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjNGLzRFQkE2QjMyQjA1 MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2xtNWJEQ2xYNzFoMGlNRGM4NjRuUjJ3R29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1 MjNGLzRFQkE2QjMyQjA1MzExRUY5QzJCOEQzRkM0RjlBRTAyL0tsbTViRENsWDcx aDBpTURjODY0blIyd0dvcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAulscKI/hCejqcCh+IAbhpNcyJROZQpKXSYwcdnrBAAul/PwJqu9+rF 4e2mJ/2hAZgM5+3yVDUGq/3qug9EOJ/bl43Ijn9o9Tk49WO7swNpmGyB+1VkdRMB qZ82S9R12HirqkgfMTCjdpncOrsTQecZYtz91xzKTaoqW4LMFiXjbXZvLE6C7JUQ NTkL09nutxiNqTETGqLVixMDt5rqC8xwZBXWeGlfA+I4aFzAvc7CXpC7F1JZDRVn Vi43HcH/O0QYaAwjqvvV5NsyHgyam3gOShmAehZYjx63DPUYzWwnx1VlfSB+T/C4 4vEXveeyvxsJMc3rQGwjEJ6nvMpGS/Y= -----END CERTIFICATE-----Generated at Thu Jul 3 22:49:42 2025 by rpki-client