$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: Zu/PKdtxcGO80GO0+dwzAejg3qoCvgNxridu8Td7Z/s= Subject key identifier: F7:E8:B0:D6:84:1D:D3:DF:12:FB:BC:30:A7:05:88:1D:65:99:CF:05 Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 0248 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 0245 Signing time: Tue 17 Jun 2025 01:24:52 +0000 Manifest this update: Tue 17 Jun 2025 01:24:51 +0000 Manifest next update: Tue 24 Jun 2025 01:24:51 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: D8YwPEqLNLHXcS68zED8iMUJu372cuIXjl0u9fBzGPI=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: 6xgX7RCx1jR+s1bDY/KUKo4N6DkkwUVmskiN+xXDBfc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 01:24:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 584 (0x248) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Jun 17 01:24:51 2025 GMT Not After : Jun 24 01:24:51 2025 GMT Subject: CN=6850c3e4-0d34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6d:58:76:14:9b:3b:3a:2e:6b:73:02:02:6c: ce:f5:21:e0:30:92:c0:9e:ca:de:ee:af:30:11:70: 4e:45:6c:6e:c9:79:7b:b5:bc:44:fd:4f:b2:b9:90: 05:e8:21:42:84:b2:19:ab:12:22:2f:88:ca:a4:1c: 5f:a3:27:77:38:c4:20:20:cf:81:91:c0:d1:90:a1: bb:40:b7:1c:7d:76:dc:e6:e8:8c:4b:a6:86:c1:61: 17:1a:50:1d:80:ef:b3:fd:67:7f:0c:21:e4:48:af: 6a:d6:fc:4f:db:ff:09:97:2d:a2:3e:7e:da:d1:50: 79:f0:70:62:69:99:17:58:19:69:d2:b8:a4:7d:9b: 0f:5a:b6:fd:78:6b:5c:48:4f:1d:2c:07:7b:5a:21: f1:62:5a:54:14:23:fe:e7:c7:77:11:6c:30:f2:93: 59:4e:3c:1d:05:f9:0f:b9:69:3a:4a:f5:5b:42:f7: 82:d1:d3:46:7a:26:2f:00:8a:88:64:bc:bb:19:11: 9d:a4:93:e6:6f:b1:e2:01:1a:e4:cd:97:37:16:8a: a8:ac:5c:47:4c:c4:3d:68:da:5b:36:5f:d1:e3:ad: fd:79:30:ca:2d:f3:48:09:06:52:43:c3:44:b8:4c: 6e:75:d6:19:cf:bd:1e:a9:2b:58:5f:a2:cd:17:f7: 0d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:E8:B0:D6:84:1D:D3:DF:12:FB:BC:30:A7:05:88:1D:65:99:CF:05 X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:fd:36:e2:5f:5e:71:aa:4e:2e:53:68:a3:9c:fc:f7:cb:0a: 50:c6:c3:4b:8c:d8:fa:9c:dd:e4:c7:94:be:24:63:74:51:be: b8:99:97:c7:b3:ec:8f:1a:a1:a4:88:09:b6:9b:7f:21:f0:7f: 99:94:94:1e:1c:98:2d:9a:02:ac:da:bf:f3:f9:11:f2:18:64: 4e:33:15:6b:4c:18:9b:67:24:1d:19:cb:dc:b6:c9:92:76:04: f4:4a:b9:58:bb:d9:b6:34:a6:ea:b4:89:fc:f9:58:78:c2:28: 19:b7:38:75:6b:3c:96:b4:dc:87:ec:bc:44:19:ed:0f:3f:05: 25:02:34:68:2d:99:7d:b9:8a:05:dd:e4:c7:1a:d3:6c:cf:52: ae:27:b2:ef:09:b5:40:7e:05:fb:24:e3:c8:99:aa:c5:d3:e3: df:32:23:21:79:81:1f:9c:d4:ad:d8:9f:fe:7f:57:34:74:a4: ee:59:af:38:b0:47:21:9e:63:4f:2f:22:83:ec:34:bd:76:cf: 37:56:0e:7f:02:1a:61:64:f8:a3:d7:38:ff:10:66:52:8a:c2: c8:37:d7:52:65:2d:4c:a3:a3:01:63:18:c8:4e:84:1a:89:e5: 1e:f5:4c:64:2e:bf:f9:76:dd:94:a9:09:62:b8:70:33:37:51: a8:ae:a8:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUwNjE3MDEyNDUxWhcNMjUwNjI0MDEyNDUxWjAYMRYwFAYD VQQDEw02ODUwYzNlNC0wZDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm1YdhSbOzoua3MCAmzO9SHgMJLAnsre7q8wEXBORWxuyXl7tbxE/U+yuZAF 6CFChLIZqxIiL4jKpBxfoyd3OMQgIM+BkcDRkKG7QLccfXbc5uiMS6aGwWEXGlAd gO+z/Wd/DCHkSK9q1vxP2/8Jly2iPn7a0VB58HBiaZkXWBlp0rikfZsPWrb9eGtc SE8dLAd7WiHxYlpUFCP+58d3EWww8pNZTjwdBfkPuWk6SvVbQveC0dNGeiYvAIqI ZLy7GRGdpJPmb7HiARrkzZc3FoqorFxHTMQ9aNpbNl/R4639eTDKLfNICQZSQ8NE uExuddYZz70eqStYX6LNF/cNXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPfosNaE HdPfEvu8MKcFiB1lmc8FMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBp/TbiX15xqk4uU2ijnPz3ywpQxsNLjNj6nN3kx5S+JGN0Ub64mZfH s+yPGqGkiAm2m38h8H+ZlJQeHJgtmgKs2r/z+RHyGGROMxVrTBibZyQdGcvctsmS dgT0SrlYu9m2NKbqtIn8+Vh4wigZtzh1azyWtNyH7LxEGe0PPwUlAjRoLZl9uYoF 3eTHGtNsz1KuJ7LvCbVAfgX7JOPImarF0+PfMiMheYEfnNSt2J/+f1c0dKTuWa84 sEchnmNPLyKD7DS9ds83Vg5/AhphZPij1zj/EGZSisLIN9dSZS1Mo6MBYxjIToQa ieUe9UxkLr/5dt2UqQliuHAzN1Gorqic -----END CERTIFICATE-----Generated at Tue Jun 17 15:02:36 2025 by rpki-client