$ rpki-client -vvf rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft File: klUgH_qh5mcsBsLfbovhFYLML64.mft (raw, json) Hash identifier: 74FPWMfL8/Sji5Dikfh8aG8fd3BG79fZsAmBpHq/3XY= Subject key identifier: 01:84:B6:86:41:7F:25:DC:E4:34:26:B2:51:4A:96:DA:37:BA:DC:53 Authority key identifier: 92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE Certificate issuer: /CN=A9112A7D/serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft Manifest number: 028E Signing time: Wed 05 Nov 2025 01:41:27 +0000 Manifest this update: Wed 05 Nov 2025 01:41:26 +0000 Manifest next update: Wed 12 Nov 2025 01:41:26 +0000 Files and hashes: 1: klUgH_qh5mcsBsLfbovhFYLML64.crl (hash: xA+px/pgIom4LpKBU0pQfuugxRmcOmn6W+0+gZX3m30=) 2: 6DE1A436246811ED82556323C4F9AE02.roa (hash: wBqvUEdJXS+W4twJcgw0kDbGssoYll+0BYZGvLl67rM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:41:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112A7D, serialNumber=9255201FFAA1E6672C06C2DF6E8BE11582CC2FAE Validity Not Before: Nov 5 01:41:26 2025 GMT Not After : Nov 12 01:41:26 2025 GMT Subject: CN=690aab46-7f8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ff:92:ed:b5:0d:a7:97:46:86:27:18:7a:e3: 9f:96:11:a2:a7:80:f2:01:0d:f3:96:4b:81:b9:13: b6:91:8a:46:10:26:d3:cc:51:63:26:1f:f5:6e:04: 0f:52:4b:83:b8:a9:56:55:05:84:22:14:d2:20:42: 89:fe:63:fb:02:3a:81:ff:fc:6b:cb:0b:e9:9e:2c: 82:9d:2c:ae:19:84:fc:4c:79:49:81:82:af:47:5c: a9:10:86:d4:5a:4a:42:70:7b:3a:69:73:01:c8:f7: e0:e8:84:d5:f0:77:ce:37:d9:a9:06:fd:0d:85:ad: df:92:3a:3d:76:ef:b1:39:e4:1c:84:fb:7e:c8:6b: 1a:25:1a:ca:39:56:f0:f4:50:ef:9c:de:f2:de:f4: 78:b7:02:9a:73:05:e5:49:42:2c:d0:6c:f7:c3:a4: d8:61:47:c5:92:e6:14:58:03:86:aa:5e:a3:88:62: ec:22:ce:8a:ce:52:8d:21:f7:3e:b5:81:b6:64:17: 0c:10:10:d7:42:79:4e:b7:fc:99:ac:38:a5:35:f1: 9f:2d:3b:38:7f:a5:5e:16:f8:73:a2:33:3d:e4:2c: 94:ef:2b:0b:cc:f4:c8:51:37:73:a5:70:d0:ff:1e: 2e:74:f8:f5:83:c7:73:c9:25:c6:04:fd:d0:ea:30: 4f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:84:B6:86:41:7F:25:DC:E4:34:26:B2:51:4A:96:DA:37:BA:DC:53 X509v3 Authority Key Identifier: keyid:92:55:20:1F:FA:A1:E6:67:2C:06:C2:DF:6E:8B:E1:15:82:CC:2F:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/klUgH_qh5mcsBsLfbovhFYLML64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112A7D/A04A60B4246511EDB8D42021C4F9AE02/klUgH_qh5mcsBsLfbovhFYLML64.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:b8:ec:0b:f4:aa:e6:a7:54:5c:84:70:6e:e9:45:10:5a:28: aa:68:e2:01:30:a4:3b:eb:36:60:94:a9:a1:10:12:11:e9:a2: af:9f:9e:06:23:c4:aa:11:d9:08:17:35:5b:e6:53:c9:a6:f0: 6f:70:a2:94:43:6a:29:e9:9f:02:2f:6c:5e:c1:e8:0b:c6:aa: aa:ba:63:c3:b1:83:41:e3:35:20:d6:b3:8a:11:a5:a6:e0:e2: 43:c0:46:ca:e0:45:a3:44:0d:0d:e4:d4:e9:5c:fb:84:74:c8: 2a:5e:63:1b:42:b3:2a:82:82:c5:48:72:a4:ce:08:32:15:a0: 65:45:5b:85:6d:30:47:e5:c2:22:a7:4c:ed:fc:7f:d9:92:01: fc:8b:13:9e:dc:33:ec:5f:bc:6b:d8:bc:cb:24:1a:bf:b6:fd: cb:30:43:a9:13:4e:ba:fe:3d:55:bd:e9:73:3f:6b:0a:8b:56: 8d:7d:ae:54:3e:9a:2a:7a:cb:ed:b0:48:bc:f7:6a:b8:a3:c0: 73:3e:d1:57:01:ff:43:ed:9c:bf:d1:d9:75:b5:4a:87:d5:17: fc:7a:d7:23:dc:4a:8a:a4:a7:f0:5b:0a:ff:b7:1a:6e:bb:09: e4:c7:66:90:48:0e:ef:af:d9:f5:f9:04:e5:68:c3:33:41:02: 60:98:b0:e5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJBN0QxMTAvBgNVBAUTKDkyNTUyMDFGRkFBMUU2NjcyQzA2QzJERjZFOEJFMTE1 ODJDQzJGQUUwHhcNMjUxMTA1MDE0MTI2WhcNMjUxMTEyMDE0MTI2WjAYMRYwFAYD VQQDEw02OTBhYWI0Ni03ZjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1/+S7bUNp5dGhicYeuOflhGip4DyAQ3zlkuBuRO2kYpGECbTzFFjJh/1bgQP UkuDuKlWVQWEIhTSIEKJ/mP7AjqB//xrywvpniyCnSyuGYT8THlJgYKvR1ypEIbU WkpCcHs6aXMByPfg6ITV8HfON9mpBv0Nha3fkjo9du+xOeQchPt+yGsaJRrKOVbw 9FDvnN7y3vR4twKacwXlSUIs0Gz3w6TYYUfFkuYUWAOGql6jiGLsIs6KzlKNIfc+ tYG2ZBcMEBDXQnlOt/yZrDilNfGfLTs4f6VeFvhzojM95CyU7ysLzPTIUTdzpXDQ /x4udPj1g8dzySXGBP3Q6jBPEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAGEtoZB fyXc5DQmslFKlto3utxTMB8GA1UdIwQYMBaAFJJVIB/6oeZnLAbC326L4RWCzC+u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkE3RC9BMDRBNjBCNDI0 NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVtY3NCc0xmYm92aEZZTE1M NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tsVWdIX3FoNW1jc0JzTGZib3ZoRllMTUw2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MkE3RC9BMDRBNjBCNDI0NjUxMUVEQjhENDIwMjFDNEY5QUUwMi9rbFVnSF9xaDVt Y3NCc0xmYm92aEZZTE1MNjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJuOwL9Krmp1RchHBu6UUQWiiqaOIBMKQ76zZglKmhEBIR6aKvn54G I8SqEdkIFzVb5lPJpvBvcKKUQ2op6Z8CL2xewegLxqqqumPDsYNB4zUg1rOKEaWm 4OJDwEbK4EWjRA0N5NTpXPuEdMgqXmMbQrMqgoLFSHKkzggyFaBlRVuFbTBH5cIi p0zt/H/ZkgH8ixOe3DPsX7xr2LzLJBq/tv3LMEOpE066/j1VvelzP2sKi1aNfa5U PpoqesvtsEi892q4o8BzPtFXAf9D7Zy/0dl1tUqH1Rf8etcj3EqKpKfwWwr/txpu uwnkx2aQSA7vr9n1+QTlaMMzQQJgmLDl -----END CERTIFICATE-----Generated at Wed Nov 5 22:31:54 2025 by rpki-client