$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft File: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft (raw, json) Hash identifier: 46rcqe0DDhxFYjOXe++jkrfDYMgX8j21/+ebi89HI+c= Subject key identifier: FF:02:5F:BF:F2:9D:73:A9:84:68:46:C4:0A:B0:B4:1B:F9:4C:FE:6D Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: F4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft Manifest number: EE Signing time: Sun 19 Oct 2025 08:22:14 +0000 Manifest this update: Sun 19 Oct 2025 08:22:13 +0000 Manifest next update: Sun 26 Oct 2025 08:22:13 +0000 Files and hashes: 1: KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl (hash: hFIVVSBiN26LRAJrzYWhRAI0S1RZbmLpZmqRYl8hkxw=) 2: D91E3ADC498E11EF908FD222C4F9AE02.roa (hash: +ehd8KtxPwFaqFNVmOCKeYgOq8q50OL3e4iQXY+Px88=) 3: D9C5B55A498E11EF908FD222C4F9AE02.roa (hash: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:22:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 244 (0xf4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Oct 19 08:22:13 2025 GMT Not After : Oct 26 08:22:13 2025 GMT Subject: CN=68f49fb5-8b0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:b8:27:d3:29:ad:d4:cb:ca:c7:12:14:cc: ba:f2:fe:51:08:8b:f8:e7:0f:6d:39:af:ff:90:f0: eb:56:72:61:cd:12:d3:b5:53:7d:18:d4:2d:3b:fb: 22:4e:37:31:05:e9:c9:93:2c:fb:76:65:13:b8:a6: 72:4e:4b:f3:dd:38:e4:fd:4e:80:3a:4a:df:7f:be: ef:46:be:c4:34:0c:b4:ce:ef:f0:2a:ea:de:72:23: c2:7d:b5:3f:72:09:d2:d8:3a:25:08:2f:06:d8:fd: 3c:6e:d9:3b:d3:0d:4e:5d:13:7b:46:f6:56:89:be: 69:f8:21:65:ac:4e:7e:f1:47:67:63:3c:16:3b:3c: 00:4b:a4:d1:e4:35:f6:c4:f6:7a:bf:3e:b4:9e:f0: 59:82:4c:b2:88:05:59:64:ef:d0:26:68:df:be:fb: 27:a6:bf:29:85:09:0d:29:1c:51:9f:f6:24:19:6a: df:e7:3f:a1:3e:49:ee:f8:e2:71:14:05:7a:31:4a: 56:4c:97:ae:a7:1d:85:1c:b7:4b:08:c1:fc:60:e2: bd:e6:ae:c7:7f:01:bf:5d:e4:b5:29:3b:c1:91:72: 2c:9b:f3:a4:64:b5:8c:34:57:46:d9:11:ed:a3:80: 07:25:d0:12:79:e3:6b:7b:22:d3:68:77:88:ad:ad: ab:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:02:5F:BF:F2:9D:73:A9:84:68:46:C4:0A:B0:B4:1B:F9:4C:FE:6D X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:ed:77:28:c7:ba:aa:7b:eb:6c:11:c1:c7:34:55:66:00:82: d0:b2:ae:71:90:e0:47:9a:5f:20:5f:49:a0:bb:a4:3e:4b:06: d1:c6:60:09:3e:de:03:b8:67:26:7f:1c:61:10:ce:4e:ee:ce: 32:8b:7e:10:7f:cb:25:f2:27:af:21:e6:5a:51:d9:d4:0a:50: 60:42:92:1e:0d:7b:b9:0c:b4:64:07:a5:0b:86:73:19:50:4b: 9d:2b:99:eb:11:84:66:f0:73:2e:7d:2b:1f:35:2c:67:14:64: af:d8:0e:81:dc:62:01:5e:7a:ed:53:27:f7:ac:65:e0:fe:f8: 6a:e9:13:f9:af:5a:c1:de:c8:8d:37:7f:17:63:2a:1d:b3:f3: 49:07:85:51:2a:5c:0f:48:87:86:ef:a4:50:f3:b4:b6:92:64: 71:a9:aa:00:1c:9a:9b:90:89:9f:4b:8b:32:bb:b8:c8:a3:7a: 3a:09:63:5d:43:4d:f4:a4:ac:0c:5a:37:ac:2c:fb:ac:18:70: ad:69:9e:30:89:34:92:91:a2:ff:aa:3b:10:58:d9:ad:fe:c1: 93:e6:6e:83:a0:da:fd:b0:f7:f5:cb:f1:f4:87:08:8c:73:48: 97:c1:77:55:4f:ba:59:5f:4a:78:d9:60:3d:f1:0d:2c:a2:43: c5:d2:12:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUxMDE5MDgyMjEzWhcNMjUxMDI2MDgyMjEzWjAYMRYwFAYD VQQDEw02OGY0OWZiNS04YjBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygq4J9MprdTLyscSFMy68v5RCIv45w9tOa//kPDrVnJhzRLTtVN9GNQtO/si TjcxBenJkyz7dmUTuKZyTkvz3Tjk/U6AOkrff77vRr7ENAy0zu/wKureciPCfbU/ cgnS2DolCC8G2P08btk70w1OXRN7RvZWib5p+CFlrE5+8UdnYzwWOzwAS6TR5DX2 xPZ6vz60nvBZgkyyiAVZZO/QJmjfvvsnpr8phQkNKRxRn/YkGWrf5z+hPknu+OJx FAV6MUpWTJeupx2FHLdLCMH8YOK95q7HfwG/XeS1KTvBkXIsm/OkZLWMNFdG2RHt o4AHJdASeeNreyLTaHeIra2rzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP8CX7/y nXOphGhGxAqwtBv5TP5tMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFf NmpaLWdiYzlmOXNLd0IxbmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg7Xcox7qqe+tsEcHHNFVmAILQsq5xkOBHml8gX0mgu6Q+SwbRxmAJ Pt4DuGcmfxxhEM5O7s4yi34Qf8sl8ievIeZaUdnUClBgQpIeDXu5DLRkB6ULhnMZ UEudK5nrEYRm8HMufSsfNSxnFGSv2A6B3GIBXnrtUyf3rGXg/vhq6RP5r1rB3siN N38XYyods/NJB4VRKlwPSIeG76RQ87S2kmRxqaoAHJqbkImfS4syu7jIo3o6CWNd Q030pKwMWjesLPusGHCtaZ4wiTSSkaL/qjsQWNmt/sGT5m6DoNr9sPf1y/H0hwiM c0iXwXdVT7pZX0p42WA98Q0sokPF0hI4 -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:36 2025 by rpki-client