$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: VD8DA1oFUQH95zamIK9v6USe0bgTUVHUx/9w6TBJ4tE= Subject key identifier: 24:9C:7A:46:9C:43:E4:4A:1C:12:03:8D:66:32:D0:40:88:1D:AB:72 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: A7 Signing time: Sun 19 Oct 2025 09:27:05 +0000 Manifest this update: Sun 19 Oct 2025 09:27:04 +0000 Manifest next update: Sun 26 Oct 2025 09:27:04 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: ZQiWefUt3e5xhhskiDovZePLTuBPW32rZWUq5llQgQM=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Oct 19 09:27:04 2025 GMT Not After : Oct 26 09:27:04 2025 GMT Subject: CN=68f4aee8-7379 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:ba:06:ec:66:a5:e9:50:07:2a:14:72:a8: 92:70:ad:fc:ca:12:24:0f:ee:d9:d3:8e:83:aa:41: f6:ce:49:ba:f2:b4:80:c5:c9:bc:0f:f5:cf:82:79: be:e9:b1:fa:7d:52:4b:d5:81:0e:43:85:c0:d8:8f: 7c:35:f5:a0:8e:b3:32:db:23:c0:e6:30:04:31:62: f6:80:86:72:94:8c:f6:38:19:73:a0:f7:d2:07:42: d1:58:d3:4a:cd:32:fd:73:da:e0:64:47:00:9f:0a: 2a:c2:23:41:22:07:b8:3f:c2:0f:14:25:da:b1:1f: a1:d1:b7:4c:24:f5:a6:6c:aa:92:f5:ea:38:76:ea: ab:9a:7e:41:63:fa:a8:22:51:57:3e:38:13:26:0f: 52:ce:ce:53:6e:35:93:f8:6f:8e:07:85:7e:80:f4: 95:98:42:19:68:40:8e:42:bc:41:55:30:16:a5:cd: da:40:e3:73:19:5f:f1:9d:68:f5:b9:23:91:79:ee: 2f:e6:f6:0b:75:48:f6:49:9b:6f:e6:35:bf:ba:ed: 2f:9d:45:6c:bb:fb:53:0a:a6:b3:14:71:f3:8f:c1: 3b:69:98:eb:83:e2:0d:06:a9:f1:ad:1d:d6:17:e3: de:e5:c4:8a:c0:dd:11:ee:e6:78:5e:45:38:2f:8b: 19:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:9C:7A:46:9C:43:E4:4A:1C:12:03:8D:66:32:D0:40:88:1D:AB:72 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:5b:c2:7a:bc:6d:b7:50:e8:36:d5:de:63:b7:5d:12:24:e4: 14:d5:40:ea:3c:87:6f:7d:6c:39:fc:75:48:b2:bf:f9:05:cf: 19:b9:36:2a:8c:94:c3:04:c2:ef:63:54:a3:85:43:fd:2c:ad: bd:1a:ba:81:08:4f:19:32:70:9b:a3:9c:ca:21:22:be:3b:4e: f0:e4:09:bb:af:97:b1:ed:e7:24:94:07:70:1b:ed:4c:c1:16: 7f:b7:55:b4:1a:00:f0:1e:71:f0:7c:95:ca:db:86:29:c4:b0: bd:45:0a:49:72:77:91:bd:d4:0d:f2:3c:6b:09:b9:9b:1e:74: ef:5d:eb:96:08:78:a0:ca:0d:af:c1:41:b5:90:ef:a8:d6:0f: 21:40:9c:22:c3:b8:5e:84:6a:e2:98:0d:be:ab:f7:35:f5:4e: c2:24:6a:3d:9a:f5:2d:0b:ac:c4:25:08:be:8a:3c:49:94:7e: 80:da:f3:7e:7b:b8:e0:96:36:71:c3:61:a0:36:47:a7:82:61: 98:f1:a1:4a:e2:ed:92:49:b3:b7:04:9e:8b:76:ab:e2:df:c7: 88:66:f4:5c:01:1f:51:8e:83:43:39:8f:50:e5:4e:14:92:94: f3:02:20:89:c3:72:7a:7d:21:5a:70:33:c0:bb:f1:d6:e9:a7: 1e:0a:c6:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUxMDE5MDkyNzA0WhcNMjUxMDI2MDkyNzA0WjAYMRYwFAYD VQQDEw02OGY0YWVlOC03Mzc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7C6BuxmpelQByoUcqiScK38yhIkD+7Z046DqkH2zkm68rSAxcm8D/XPgnm+ 6bH6fVJL1YEOQ4XA2I98NfWgjrMy2yPA5jAEMWL2gIZylIz2OBlzoPfSB0LRWNNK zTL9c9rgZEcAnwoqwiNBIge4P8IPFCXasR+h0bdMJPWmbKqS9eo4duqrmn5BY/qo IlFXPjgTJg9Szs5TbjWT+G+OB4V+gPSVmEIZaECOQrxBVTAWpc3aQONzGV/xnWj1 uSORee4v5vYLdUj2SZtv5jW/uu0vnUVsu/tTCqazFHHzj8E7aZjrg+INBqnxrR3W F+Pe5cSKwN0R7uZ4XkU4L4sZwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCScekac Q+RKHBIDjWYy0ECIHatyMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNW8J6vG23UOg21d5jt10SJOQU1UDqPIdvfWw5/HVIsr/5Bc8ZuTYq jJTDBMLvY1SjhUP9LK29GrqBCE8ZMnCbo5zKISK+O07w5Am7r5ex7ecklAdwG+1M wRZ/t1W0GgDwHnHwfJXK24YpxLC9RQpJcneRvdQN8jxrCbmbHnTvXeuWCHigyg2v wUG1kO+o1g8hQJwiw7hehGrimA2+q/c19U7CJGo9mvUtC6zEJQi+ijxJlH6A2vN+ e7jgljZxw2GgNkengmGY8aFK4u2SSbO3BJ6Ldqvi38eIZvRcAR9RjoNDOY9Q5U4U kpTzAiCJw3J6fSFacDPAu/HW6aceCsZK -----END CERTIFICATE-----Generated at Tue Oct 21 02:14:36 2025 by rpki-client