$ rpki-client -vvf rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft File: kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft (raw, json) Hash identifier: izweOY27e1UWrdelgN3gSDFUdZtDxPyWHx822GXlCwM= Subject key identifier: 65:22:72:D5:21:7D:3C:38:C8:B5:F8:90:5B:C0:E7:94:8C:67:82:8E Authority key identifier: 90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 Certificate issuer: /CN=A9157378/serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Certificate serial: 0142 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft Manifest number: 013E Signing time: Mon 11 Aug 2025 04:36:08 +0000 Manifest this update: Mon 11 Aug 2025 04:36:08 +0000 Manifest next update: Mon 18 Aug 2025 04:36:08 +0000 Files and hashes: 1: kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl (hash: 2FD3/IOw6bpXaO8NeiNODohbjpmwjjWjJl+duIJ+jJI=) 2: 38F9C792948F11EEAE636E0FC4F9AE02.roa (hash: BrMg7LC27FVuPN/a8T84kbw3q38OJLbwQWRqwjiM6nk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 322 (0x142) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157378, serialNumber=90B9BABD742B275743FB715E135975638E9C2F25 Validity Not Before: Aug 11 04:36:08 2025 GMT Not After : Aug 18 04:36:08 2025 GMT Subject: CN=68997338-7b00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:34:59:7f:ff:23:c0:a1:db:09:4f:e0:0e:af: fe:45:20:99:96:12:56:72:94:a0:5b:da:28:52:00: 72:cd:c2:ab:62:c3:d4:26:3a:66:ef:8c:a9:09:9e: 8f:51:79:a3:37:ae:11:c4:34:d2:b1:34:6c:67:00: cb:be:58:52:69:ff:66:72:ce:1c:23:e2:0a:79:97: d3:63:d7:9b:00:f1:39:6d:08:a2:39:48:d6:c7:dc: cb:d0:be:1f:86:71:c4:3a:bf:cf:c4:c6:7d:f5:79: ac:1c:65:48:22:ca:0c:5d:c7:86:de:dd:b7:62:03: ed:5d:05:f3:42:5c:b2:73:92:a8:15:4f:e9:24:1b: 05:8c:bb:17:70:4b:d0:39:e6:e1:f5:5f:ff:22:ea: 80:f8:4a:2a:e3:4d:da:ec:66:5a:85:55:c1:7c:7a: fa:2a:33:b7:e4:d8:c9:d0:99:7c:71:e5:3e:0b:3c: 35:77:ce:1d:28:1d:dc:cd:6b:0e:f9:40:13:9f:e8: fc:9e:2f:74:43:77:33:61:f8:6e:9f:ac:f3:e8:30: 85:e5:8e:97:53:e6:4c:66:f3:15:61:b4:43:7d:6d: 5c:a6:eb:d5:2e:ca:eb:27:68:95:31:ea:19:f6:99: 78:d1:85:dc:f4:2c:b1:2c:6a:dc:94:c1:91:7c:91: 36:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:22:72:D5:21:7D:3C:38:C8:B5:F8:90:5B:C0:E7:94:8C:67:82:8E X509v3 Authority Key Identifier: keyid:90:B9:BA:BD:74:2B:27:57:43:FB:71:5E:13:59:75:63:8E:9C:2F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157378/0A88C7F293E311EE93C8E582C4F9AE02/kLm6vXQrJ1dD-3FeE1l1Y46cLyU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:72:0c:8a:ff:27:7c:ec:ee:74:04:8d:be:0b:e4:2a:c1:5e: 87:93:55:c7:06:ef:bf:36:43:69:81:8c:75:fb:ab:f6:d7:2c: db:75:a0:75:8e:bb:24:d2:8b:e3:e3:aa:09:99:44:e6:21:62: cb:89:14:79:ff:fb:cc:b5:00:a1:4e:9f:40:f9:5c:e5:90:62: 83:79:29:25:40:5d:f6:df:fe:e9:90:80:ba:90:bd:7f:64:dd: a9:74:5e:9e:9e:34:c3:7d:40:c9:fc:f5:ce:6a:ad:f1:3b:2b: 3b:dd:52:8f:e0:a9:ad:96:53:4c:f6:e6:a0:41:1e:24:51:af: 32:72:31:66:4d:c9:50:88:3e:89:d4:97:71:d6:2f:ca:fd:16: dd:7f:17:2f:9e:a4:ce:93:c9:a6:96:6e:77:22:28:29:c5:a2: 6c:bf:5e:cf:63:af:ed:df:8e:5b:84:ab:9f:d7:3e:37:27:c0: e7:2e:08:bd:d5:74:ea:e2:c9:c7:d0:16:df:7c:1b:33:bb:d3: 35:bb:44:51:9e:4c:3c:4a:d6:66:99:ac:f4:27:e4:37:b8:19: e9:c6:29:f1:40:ad:a8:90:bb:ca:f4:9f:79:58:f9:2b:c4:eb: 0e:35:1a:fa:98:6a:97:f2:ed:68:23:62:17:54:3d:a4:33:d3: f3:5f:1f:64 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTczNzgxMTAvBgNVBAUTKDkwQjlCQUJENzQyQjI3NTc0M0ZCNzE1RTEzNTk3NTYz OEU5QzJGMjUwHhcNMjUwODExMDQzNjA4WhcNMjUwODE4MDQzNjA4WjAYMRYwFAYD VQQDEw02ODk5NzMzOC03YjAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjRZf/8jwKHbCU/gDq/+RSCZlhJWcpSgW9ooUgByzcKrYsPUJjpm74ypCZ6P UXmjN64RxDTSsTRsZwDLvlhSaf9mcs4cI+IKeZfTY9ebAPE5bQiiOUjWx9zL0L4f hnHEOr/PxMZ99XmsHGVIIsoMXceG3t23YgPtXQXzQlyyc5KoFU/pJBsFjLsXcEvQ Oebh9V//IuqA+Eoq403a7GZahVXBfHr6KjO35NjJ0Jl8ceU+Czw1d84dKB3czWsO +UATn+j8ni90Q3czYfhun6zz6DCF5Y6XU+ZMZvMVYbRDfW1cpuvVLsrrJ2iVMeoZ 9pl40YXc9CyxLGrclMGRfJE2MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGUictUh fTw4yLX4kFvA55SMZ4KOMB8GA1UdIwQYMBaAFJC5ur10KydXQ/txXhNZdWOOnC8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzM3OC8wQTg4QzdGMjkz RTMxMUVFOTNDOEU1ODJDNEY5QUUwMi9rTG02dlhRckoxZEQtM0ZlRTFsMVk0NmNM eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMbTZ2WFFySjFkRC0zRmVFMWwxWTQ2Y0x5VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzM3OC8wQTg4QzdGMjkzRTMxMUVFOTNDOEU1ODJDNEY5QUUwMi9rTG02dlhRckox ZEQtM0ZlRTFsMVk0NmNMeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBEcgyK/yd87O50BI2+C+QqwV6Hk1XHBu+/NkNpgYx1+6v21yzbdaB1 jrsk0ovj46oJmUTmIWLLiRR5//vMtQChTp9A+VzlkGKDeSklQF323/7pkIC6kL1/ ZN2pdF6enjTDfUDJ/PXOaq3xOys73VKP4KmtllNM9uagQR4kUa8ycjFmTclQiD6J 1Jdx1i/K/RbdfxcvnqTOk8mmlm53IigpxaJsv17PY6/t345bhKuf1z43J8DnLgi9 1XTq4snH0BbffBszu9M1u0RRnkw8StZmmaz0J+Q3uBnpxinxQK2okLvK9J95WPkr xOsONRr6mGqX8u1oI2IXVD2kM9PzXx9k -----END CERTIFICATE-----Generated at Mon Aug 11 08:58:52 2025 by rpki-client