$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: Qdsnn2EqmA2dDsQmSXBID8kIEkgYAf6ZPIllW3l+Q4M= Subject key identifier: F1:4C:7E:F4:0C:F0:25:12:4E:38:FE:4E:81:35:14:17:54:4C:86:36 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 34A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 34A5 Signing time: Sat 02 Aug 2025 14:28:15 +0000 Manifest this update: Sat 02 Aug 2025 14:28:15 +0000 Manifest next update: Sat 09 Aug 2025 14:28:15 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: cDRPOUPVt7Ocn6z39A1IJai8fnKm76uBKzlk3uajX3Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 09 Aug 2025 14:28:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13478 (0x34a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33, serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Aug 2 14:28:15 2025 GMT Not After : Aug 9 14:28:15 2025 GMT Subject: CN=688e207f-b0de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:14:39:18:a5:b4:f9:f8:fc:8c:4e:65:2c:3f: 65:f9:be:46:f6:14:b3:50:46:ee:ce:89:3d:09:4d: 12:0b:06:ea:3f:3d:80:9f:b2:82:13:ab:b9:c7:ef: 1b:63:32:83:22:88:f1:23:60:e7:dd:00:fb:76:47: c5:ed:07:5d:74:a2:14:c0:bb:a9:f1:e0:fd:48:cc: cf:ab:b7:a3:6d:84:0b:12:e7:5e:5a:d4:68:29:ee: 3f:c4:b8:8a:c9:16:ef:cc:ac:ee:ed:f9:9e:21:2d: 18:12:9e:c4:d1:81:c8:7e:c5:6b:83:23:a8:8e:eb: d2:85:84:36:e8:61:74:34:99:62:5d:e2:49:ad:03: 3a:a4:ee:db:d0:20:1b:80:b1:0f:f1:1e:00:56:ac: df:cc:00:f2:b4:50:e7:40:cf:54:c6:f9:ec:c9:90: 92:3e:ba:60:c8:47:3f:27:63:bf:0f:d7:eb:ca:55: 36:03:be:b2:0d:60:4a:bd:51:24:f9:25:b4:11:87: 0b:28:88:85:d6:33:c1:a7:24:af:d5:55:38:17:c9: 36:04:48:00:f0:79:0b:e1:67:fd:9b:23:63:71:cd: e4:5f:0a:52:75:35:08:cc:b2:35:f1:e5:23:89:6a: 4e:16:ef:b5:42:39:54:fc:6c:71:c8:1e:89:04:8b: 6c:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:4C:7E:F4:0C:F0:25:12:4E:38:FE:4E:81:35:14:17:54:4C:86:36 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:1f:9b:88:bd:35:2b:02:bf:5e:3d:2f:26:b8:b2:cb:d5:e0: 3f:77:05:c2:13:df:53:64:58:5f:dc:ad:ab:07:99:f4:63:0a: 0f:a8:59:96:34:1e:a6:d8:75:c4:ac:0d:93:18:4b:e0:79:a0: bc:13:6c:29:88:ee:1a:46:dc:40:a8:47:35:89:0e:f6:6b:56: 73:bc:40:79:8b:2e:40:b1:da:9a:64:ba:bd:4b:f2:6c:ba:e4: 8e:ed:16:c8:9e:18:77:c0:59:ed:8b:86:9b:4a:38:ed:42:ed: 94:fb:8c:7e:bc:64:2f:36:cb:a6:5e:1c:16:21:d1:8a:56:c1: 99:85:1e:ad:6e:3f:cf:bf:8e:14:c1:c5:24:32:7c:04:b3:36: fb:ad:8e:0f:17:6e:6b:a5:f6:8f:70:75:c4:00:96:27:15:53: cf:22:da:a6:ec:54:30:ca:08:33:ff:c9:59:06:aa:fa:a3:a0: 6b:7c:98:4a:dd:b6:91:a2:a3:d0:6d:f9:5d:fb:47:64:67:19: 46:48:1a:80:b3:bf:e0:db:78:38:77:9c:bb:2c:2c:b2:5c:28: 97:5e:b1:f1:e1:ac:6d:ff:58:21:a7:b9:4d:45:dd:55:c2:40: be:fd:a4:46:d5:e6:35:56:c4:0d:9a:32:f8:ce:66:ad:1f:08: 95:51:1b:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjUwODAyMTQyODE1WhcNMjUwODA5MTQyODE1WjAYMRYwFAYD VQQDEw02ODhlMjA3Zi1iMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhQ5GKW0+fj8jE5lLD9l+b5G9hSzUEbuzok9CU0SCwbqPz2An7KCE6u5x+8b YzKDIojxI2Dn3QD7dkfF7QdddKIUwLup8eD9SMzPq7ejbYQLEudeWtRoKe4/xLiK yRbvzKzu7fmeIS0YEp7E0YHIfsVrgyOojuvShYQ26GF0NJliXeJJrQM6pO7b0CAb gLEP8R4AVqzfzADytFDnQM9UxvnsyZCSPrpgyEc/J2O/D9frylU2A76yDWBKvVEk +SW0EYcLKIiF1jPBpySv1VU4F8k2BEgA8HkL4Wf9myNjcc3kXwpSdTUIzLI18eUj iWpOFu+1QjlU/GxxyB6JBIts7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFMfvQM 8CUSTjj+ToE1FBdUTIY2MB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQABH5uIvTUrAr9ePS8muLLL1eA/dwXCE99TZFhf3K2rB5n0YwoPqFmW NB6m2HXErA2TGEvgeaC8E2wpiO4aRtxAqEc1iQ72a1ZzvEB5iy5AsdqaZLq9S/Js uuSO7RbInhh3wFnti4abSjjtQu2U+4x+vGQvNsumXhwWIdGKVsGZhR6tbj/Pv44U wcUkMnwEszb7rY4PF25rpfaPcHXEAJYnFVPPItqm7FQwyggz/8lZBqr6o6BrfJhK 3baRoqPQbfld+0dkZxlGSBqAs7/g23g4d5y7LCyyXCiXXrHx4axt/1ghp7lNRd1V wkC+/aRG1eY1VsQNmjL4zmatHwiVURv6 -----END CERTIFICATE-----Generated at Mon Aug 4 11:24:29 2025 by rpki-client