$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: 9F4sRL+/hD3GjpjxeBB3UcutScKDUtyFErflmS90GDk= Subject key identifier: B2:C6:8B:06:B0:8C:94:4A:72:7B:69:6E:7F:53:4A:F0:4D:44:74:28 Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: 96 Signing time: Sun 19 Oct 2025 09:38:39 +0000 Manifest this update: Sun 19 Oct 2025 09:38:38 +0000 Manifest next update: Sun 26 Oct 2025 09:38:38 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: P9oWZRZFLMn8hG6WiSqZW0PhK2WeHsq/mR9txwrk+00=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: McJ+hP8GUu/Ld5Rarq2qGp1xUtwodZVqiVkbBVRJzkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Oct 19 09:38:38 2025 GMT Not After : Oct 26 09:38:38 2025 GMT Subject: CN=68f4b19f-089e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:58:fa:b5:fe:95:63:22:1c:d1:8b:24:de:40: 5b:6c:28:b8:b7:8f:58:e8:12:4c:2b:35:95:d9:97: 86:32:9c:1c:80:66:54:5d:fc:8d:98:cd:dd:36:29: c1:84:66:27:9f:c5:fc:c7:8f:69:2d:57:8f:eb:b2: fb:74:c9:57:ad:a4:3c:da:ca:41:a1:81:af:c3:86: 32:07:a1:67:27:2c:2a:c8:25:58:04:27:43:a6:35: 6f:ea:09:b1:b8:2d:d6:64:b2:4a:86:db:3e:e0:7c: 79:cf:ff:da:d4:5e:12:f0:28:81:5e:13:9a:11:4d: 9a:63:fa:b7:db:e9:66:01:7c:40:b4:e1:e3:77:2a: ee:93:15:1a:97:2c:7f:5b:eb:1d:f5:ed:4a:4e:82: ff:49:c2:be:ff:0d:1d:a3:f8:9a:f6:d5:13:24:cf: 9b:96:a4:db:83:82:16:91:23:02:c5:11:b1:6d:ce: a3:f4:dd:25:cd:5f:a5:c4:ab:f7:11:e5:97:51:fb: c0:a1:dd:5a:28:e2:6b:63:67:9f:24:38:94:16:5b: 94:c0:dd:22:0b:fb:3b:5a:97:be:2f:68:33:14:f4: bd:d8:fb:a2:e8:83:e8:0d:54:a7:b7:a0:82:ac:f6: f1:d1:0c:67:39:11:6a:15:ce:b8:ca:b8:4c:9f:e3: c3:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C6:8B:06:B0:8C:94:4A:72:7B:69:6E:7F:53:4A:F0:4D:44:74:28 X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:46:5a:c8:56:44:b3:6d:0d:08:eb:d2:95:db:68:3a:31:1e: 59:c1:df:0c:1b:8b:2a:0d:76:62:99:68:95:07:b6:00:dd:3c: ed:40:8b:dd:07:83:31:e4:39:5d:2b:a5:82:89:39:56:43:7a: 17:db:40:a0:16:4c:41:07:2a:f9:0b:41:11:bb:36:44:86:b6: 09:8f:c8:b3:53:65:fc:f2:1f:b2:d2:ff:f9:1d:22:91:41:af: ea:db:94:19:a1:8a:2c:2f:5e:48:ec:9c:79:b7:31:46:8d:01: b2:15:b9:0e:b8:d1:51:4a:b2:08:23:c2:9e:97:14:74:b1:1b: 75:90:3b:ce:7b:f5:a9:bf:5d:33:2c:de:42:5e:93:cd:c1:65: a4:1f:99:e2:19:fd:9e:6b:4c:d5:86:a1:4a:d2:26:48:ca:d0: 34:3a:00:cf:0f:0d:db:90:d4:d7:5c:23:77:54:a7:fa:5f:6c: f5:8b:90:d4:c9:e4:21:8a:cb:6c:03:18:a1:63:d8:bf:be:25: d9:3b:b1:ba:b9:11:73:41:f5:f0:05:59:57:97:05:bb:7e:a2: eb:fc:98:e9:81:a4:85:63:e5:e9:28:a6:0b:9f:b2:53:d5:b9: 61:78:f3:78:e5:e2:b0:17:ed:91:66:0e:97:4a:12:cc:f0:25: fa:6d:db:46 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1MzYxMTAvBgNVBAUTKDJBRTk4NTgxNUExMERENkQwNDUyM0ZDODFEOERBRkQ3 MjZCRTc4MTYwHhcNMjUxMDE5MDkzODM4WhcNMjUxMDI2MDkzODM4WjAYMRYwFAYD VQQDEw02OGY0YjE5Zi0wODllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Fj6tf6VYyIc0Ysk3kBbbCi4t49Y6BJMKzWV2ZeGMpwcgGZUXfyNmM3dNinB hGYnn8X8x49pLVeP67L7dMlXraQ82spBoYGvw4YyB6FnJywqyCVYBCdDpjVv6gmx uC3WZLJKhts+4Hx5z//a1F4S8CiBXhOaEU2aY/q32+lmAXxAtOHjdyrukxUalyx/ W+sd9e1KToL/ScK+/w0do/ia9tUTJM+blqTbg4IWkSMCxRGxbc6j9N0lzV+lxKv3 EeWXUfvAod1aKOJrY2efJDiUFluUwN0iC/s7Wpe+L2gzFPS92Pui6IPoDVSnt6CC rPbx0QxnORFqFc64yrhMn+PDFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLLGiwaw jJRKcntpbn9TSvBNRHQoMB8GA1UdIwQYMBaAFCrphYFaEN1tBFI/yB2Nr9cmvngW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjUzNi85QTg2REJEMEM5 OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNXMEVVal9JSFkydjF5YS1l QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjUzNi85QTg2REJEMEM5OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNX MEVVal9JSFkydjF5YS1lQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBTRlrIVkSzbQ0I69KV22g6MR5Zwd8MG4sqDXZimWiVB7YA3TztQIvd B4Mx5DldK6WCiTlWQ3oX20CgFkxBByr5C0ERuzZEhrYJj8izU2X88h+y0v/5HSKR Qa/q25QZoYosL15I7Jx5tzFGjQGyFbkOuNFRSrIII8KelxR0sRt1kDvOe/Wpv10z LN5CXpPNwWWkH5niGf2ea0zVhqFK0iZIytA0OgDPDw3bkNTXXCN3VKf6X2z1i5DU yeQhistsAxihY9i/viXZO7G6uRFzQfXwBVlXlwW7fqLr/JjpgaSFY+XpKKYLn7JT 1blhePN45eKwF+2RZg6XShLM8CX6bdtG -----END CERTIFICATE-----Generated at Tue Oct 21 07:48:25 2025 by rpki-client