$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: GCb4rt1ZgHVOKSZG3lhLF/ztE1r5DvgnRaiCDyr/reI= Subject key identifier: E9:1E:AD:C3:09:29:8B:12:C3:F5:EB:94:68:76:0A:41:4D:12:48:99 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: 89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: 88 Signing time: Sat 23 Aug 2025 06:49:51 +0000 Manifest this update: Sat 23 Aug 2025 06:49:51 +0000 Manifest next update: Sat 30 Aug 2025 06:49:51 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: FBXYv/z22EYUWhgJUG5MJteCFzuyVNOxceOmT55Uwlg=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: OnMDRT+B6RI2pySK/GT7zK6sSZU+o29fnWCK2xZrKx8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 137 (0x89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Aug 23 06:49:51 2025 GMT Not After : Aug 30 06:49:51 2025 GMT Subject: CN=68a9648f-72f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2e:ee:c0:3a:b2:57:40:24:4c:d7:ea:0c:79: 8a:60:60:c4:d1:8b:7c:c1:20:17:d5:dd:3d:c0:c6: ad:db:91:75:e4:a6:1a:a0:ed:e1:3e:d5:b3:be:7f: 4e:99:59:26:75:d5:b3:ea:d1:e8:39:21:b4:bb:7f: 55:5d:42:39:f5:ce:c2:a0:f2:fe:86:b0:76:be:e7: 39:a3:be:a9:35:0f:62:b9:91:eb:29:21:24:07:c0: 4e:c3:f7:9d:49:3f:e7:18:c8:fc:47:ab:74:88:7b: f1:3e:af:5d:c7:e8:62:9c:95:a8:28:86:47:00:e8: 54:fe:9d:cc:2f:7d:08:6a:99:ab:d4:c5:b4:ea:85: 16:c1:be:51:dc:80:86:0c:ad:39:12:8f:11:5e:a7: c3:79:bf:0d:e9:b3:51:16:a6:6b:ef:59:62:8e:fa: bd:c6:f0:ee:56:e3:09:b0:c1:55:de:f7:43:e4:59: bc:9f:ba:22:89:22:06:30:1a:e2:aa:62:79:4f:72: ce:55:92:c4:43:0b:90:ab:b9:6d:56:9d:b0:6d:f8: 3f:b3:d3:37:c1:25:7d:cc:10:f4:e7:40:18:c8:13: 14:25:bf:19:21:d6:82:98:aa:e6:56:a9:a1:70:60: 14:a1:ec:3b:f5:d8:f1:69:08:b8:54:06:27:41:41: 5e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:1E:AD:C3:09:29:8B:12:C3:F5:EB:94:68:76:0A:41:4D:12:48:99 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:12:8d:85:d8:25:6d:c8:8f:07:44:ac:d0:70:5b:3c:95:dc: a2:74:01:70:2b:ae:fa:5b:10:53:4e:2f:94:48:49:22:c1:9b: ee:32:9f:64:f6:1b:f5:39:9b:db:cf:60:e2:01:38:4f:78:75: 3f:17:74:94:47:17:30:74:bf:9c:ab:aa:b2:39:39:e4:01:7c: b1:b3:76:84:25:7c:46:ea:e1:ca:5c:f2:18:59:60:c0:25:a4: bb:84:6a:07:77:9f:66:14:9e:67:16:19:50:94:81:84:44:a4: 65:2c:23:c2:8e:7e:d2:e2:29:ff:b0:17:94:9a:94:f1:f5:2e: 6e:04:60:fa:05:ef:fa:bc:91:d0:32:9a:ae:85:ab:26:99:a2: 97:90:a7:fa:43:f4:86:9b:18:1b:3b:b9:b7:09:41:05:f8:e8: 81:3a:90:e6:b2:9e:91:76:68:15:33:1f:d5:fb:22:07:df:d4: 40:18:ad:c6:63:df:8a:3d:f5:da:cf:b8:8b:47:4b:73:b5:8f: 5a:9e:8e:4e:8f:1b:4d:22:67:a6:33:0f:e5:a0:93:b2:cd:61: 2e:28:2b:3b:1f:c6:3f:e7:15:80:18:35:0f:48:a1:19:e6:83: 62:24:92:3e:6c:2e:5d:fa:62:c0:3a:9f:7a:7e:32:16:3e:80: 23:8d:f1:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUwODIzMDY0OTUxWhcNMjUwODMwMDY0OTUxWjAYMRYwFAYD VQQDEw02OGE5NjQ4Zi03MmY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsi7uwDqyV0AkTNfqDHmKYGDE0Yt8wSAX1d09wMat25F15KYaoO3hPtWzvn9O mVkmddWz6tHoOSG0u39VXUI59c7CoPL+hrB2vuc5o76pNQ9iuZHrKSEkB8BOw/ed ST/nGMj8R6t0iHvxPq9dx+hinJWoKIZHAOhU/p3ML30Iapmr1MW06oUWwb5R3ICG DK05Eo8RXqfDeb8N6bNRFqZr71lijvq9xvDuVuMJsMFV3vdD5Fm8n7oiiSIGMBri qmJ5T3LOVZLEQwuQq7ltVp2wbfg/s9M3wSV9zBD050AYyBMUJb8ZIdaCmKrmVqmh cGAUoew79djxaQi4VAYnQUFeDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOkercMJ KYsSw/XrlGh2CkFNEkiZMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACEo2F2CVtyI8HRKzQcFs8ldyidAFwK676WxBTTi+USEkiwZvuMp9k 9hv1OZvbz2DiAThPeHU/F3SURxcwdL+cq6qyOTnkAXyxs3aEJXxG6uHKXPIYWWDA JaS7hGoHd59mFJ5nFhlQlIGERKRlLCPCjn7S4in/sBeUmpTx9S5uBGD6Be/6vJHQ MpquhasmmaKXkKf6Q/SGmxgbO7m3CUEF+OiBOpDmsp6RdmgVMx/V+yIH39RAGK3G Y9+KPfXaz7iLR0tztY9ano5OjxtNImemMw/loJOyzWEuKCs7H8Y/5xWAGDUPSKEZ 5oNiJJI+bC5d+mLAOp96fjIWPoAjjfGB -----END CERTIFICATE-----Generated at Sat Aug 23 12:16:08 2025 by rpki-client