$ rpki-client -vvf rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft File: 4klmeNb9TiLorA6f9s1YENb7eU0.mft (raw, json) Hash identifier: J2HIiIvNuDN3L6+qxaH1xRI18TnrUc7Lh1bmAeiEVzE= Subject key identifier: 30:0A:21:30:08:2F:6D:8A:BF:DC:0D:62:5F:0C:BB:BA:FE:49:E3:D7 Authority key identifier: E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D Certificate issuer: /CN=A9177E33/serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Certificate serial: 34D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft Manifest number: 34D6 Signing time: Tue 04 Nov 2025 14:28:47 +0000 Manifest this update: Tue 04 Nov 2025 14:28:46 +0000 Manifest next update: Tue 11 Nov 2025 14:28:46 +0000 Files and hashes: 1: 4klmeNb9TiLorA6f9s1YENb7eU0.crl (hash: aruR5NqgG0XQt23fKcj1hlufi2Ti8r4tSSj7NG9f32g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:28:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9177E33, serialNumber=E2496678D6FD4E22E8AC0E9FF6CD5810D6FB794D Validity Not Before: Nov 4 14:28:46 2025 GMT Not After : Nov 11 14:28:46 2025 GMT Subject: CN=690a0d9e-ba81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:bf:7a:1a:17:1f:db:10:7c:a5:0e:41:04:62: 08:1e:b2:86:b8:62:ac:e0:d4:45:20:63:c2:11:df: d7:89:a8:4c:97:b2:94:7f:af:a7:28:d2:4b:eb:fe: 2f:16:c6:88:30:c4:69:5a:31:1a:61:8d:20:84:45: 08:68:6c:fe:f2:d2:c7:cc:50:dc:b0:4c:c6:8e:24: 8e:3a:84:28:77:b5:74:bb:16:3a:86:26:ad:1e:fb: 22:c1:5f:46:99:89:c6:1f:42:27:80:6f:78:10:a2: 39:35:26:74:d8:56:e7:f2:0d:88:e2:ff:b7:70:7c: ab:71:e4:d5:f7:f7:91:d7:12:7e:a5:d2:d1:df:a8: b2:4f:fa:f9:f5:9c:5c:b8:ff:8f:62:e2:af:15:1f: ea:53:2a:69:0a:84:60:2e:3e:54:d1:21:e3:0e:d8: d6:3b:95:c9:17:a4:6c:d0:d1:95:3d:ed:1b:f5:2e: ba:2e:44:83:4e:fe:53:fa:61:f5:55:84:ca:19:e5: 7f:72:27:0f:55:a3:72:70:91:3c:9a:11:00:9a:a4: 3b:7d:e9:d5:d2:03:13:07:0c:33:2b:d4:de:d5:50: 10:57:43:08:c9:53:83:de:6c:ac:61:49:7c:b2:d2: 63:33:84:6b:04:89:f3:aa:37:b9:cc:f9:a6:d6:47: 5f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:0A:21:30:08:2F:6D:8A:BF:DC:0D:62:5F:0C:BB:BA:FE:49:E3:D7 X509v3 Authority Key Identifier: keyid:E2:49:66:78:D6:FD:4E:22:E8:AC:0E:9F:F6:CD:58:10:D6:FB:79:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4klmeNb9TiLorA6f9s1YENb7eU0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9177E33/A80ECE481D8611E2BE930ADE08B02CD2/4klmeNb9TiLorA6f9s1YENb7eU0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:4f:77:7d:a3:db:23:63:d4:c9:31:83:9a:af:27:c6:66:c5: eb:ff:d2:26:53:49:40:6f:fc:ca:8d:99:1e:9e:2a:6c:87:0a: 34:96:fe:a9:3d:83:cb:c3:69:6b:f4:74:78:90:ca:7b:6e:db: 64:d0:ec:7b:d7:27:69:8b:ae:a4:72:ff:9a:de:4d:61:c4:a4: 85:71:86:78:21:de:5d:af:b0:4b:e3:d2:fa:b9:a5:bb:94:93: 02:81:a4:53:93:b0:06:ca:5e:37:b0:29:22:1d:82:23:6b:62: 1e:78:9c:ce:08:ea:b1:27:e1:b2:e5:bd:d7:26:3b:aa:c3:db: 4d:f2:1a:b8:22:f9:b5:31:58:55:6c:d0:2b:aa:95:88:ee:97: 0f:a6:8c:a5:54:5a:79:32:f2:d0:d7:f6:26:ef:67:4e:7c:1f: dc:62:b7:96:8c:75:07:4a:81:87:0b:e4:8b:ec:5b:9c:bf:1a: aa:90:b0:aa:93:48:d3:6c:65:82:ad:7e:6a:53:c5:d0:1c:96: 5d:73:93:2b:a0:b8:19:25:bf:c2:eb:61:6c:0a:79:b4:35:d9: ac:77:eb:23:fc:49:3b:6d:fe:3b:5c:25:1b:6b:60:c3:bc:53: 31:b6:2f:02:ae:b3:56:31:f9:6e:22:cb:ee:65:58:4a:d0:4f: ac:98:a9:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzdFMzMxMTAvBgNVBAUTKEUyNDk2Njc4RDZGRDRFMjJFOEFDMEU5RkY2Q0Q1ODEw RDZGQjc5NEQwHhcNMjUxMTA0MTQyODQ2WhcNMjUxMTExMTQyODQ2WjAYMRYwFAYD VQQDEw02OTBhMGQ5ZS1iYTgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0b96Ghcf2xB8pQ5BBGIIHrKGuGKs4NRFIGPCEd/XiahMl7KUf6+nKNJL6/4v FsaIMMRpWjEaYY0ghEUIaGz+8tLHzFDcsEzGjiSOOoQod7V0uxY6hiatHvsiwV9G mYnGH0IngG94EKI5NSZ02Fbn8g2I4v+3cHyrceTV9/eR1xJ+pdLR36iyT/r59Zxc uP+PYuKvFR/qUyppCoRgLj5U0SHjDtjWO5XJF6Rs0NGVPe0b9S66LkSDTv5T+mH1 VYTKGeV/cicPVaNycJE8mhEAmqQ7fenV0gMTBwwzK9Te1VAQV0MIyVOD3mysYUl8 stJjM4RrBInzqje5zPmm1kdfVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDAKITAI L22Kv9wNYl8Mu7r+SePXMB8GA1UdIwQYMBaAFOJJZnjW/U4i6KwOn/bNWBDW+3lN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3N0UzMy9BODBFQ0U0ODFE ODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRpTG9yQTZmOXMxWUVOYjdl VTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRrbG1lTmI5VGlMb3JBNmY5czFZRU5iN2VVMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 N0UzMy9BODBFQ0U0ODFEODYxMUUyQkU5MzBBREUwOEIwMkNEMi80a2xtZU5iOVRp TG9yQTZmOXMxWUVOYjdlVTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbT3d9o9sjY9TJMYOaryfGZsXr/9ImU0lAb/zKjZkenipshwo0lv6p PYPLw2lr9HR4kMp7bttk0Ox71ydpi66kcv+a3k1hxKSFcYZ4Id5dr7BL49L6uaW7 lJMCgaRTk7AGyl43sCkiHYIja2IeeJzOCOqxJ+Gy5b3XJjuqw9tN8hq4Ivm1MVhV bNArqpWI7pcPpoylVFp5MvLQ1/Ym72dOfB/cYreWjHUHSoGHC+SL7FucvxqqkLCq k0jTbGWCrX5qU8XQHJZdc5MroLgZJb/C62FsCnm0Ndmsd+sj/Ek7bf47XCUba2DD vFMxti8CrrNWMfluIsvuZVhK0E+smKkk -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:53 2025 by rpki-client