$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: QgBx08EX22AOWOwgpEfRfz+FCSwJIvOkXYE1nvdQ/Sk= Subject key identifier: C1:59:23:27:28:B2:5D:D4:E8:0E:A9:F4:A9:21:23:25:37:4B:91:39 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 1211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 1206 Signing time: Sat 18 Oct 2025 17:40:14 +0000 Manifest this update: Sat 18 Oct 2025 17:40:14 +0000 Manifest next update: Sat 25 Oct 2025 17:40:14 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: RzfL6322/xt286s2WMf0B5+RdPYKckSRfKjIMFiWtoo=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4625 (0x1211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Oct 18 17:40:14 2025 GMT Not After : Oct 25 17:40:14 2025 GMT Subject: CN=68f3d0fe-489c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:50:eb:a5:47:53:fc:7f:78:ce:bd:05:cd:1d: 97:8d:86:30:07:05:4e:b5:de:57:cc:a0:8f:cb:76: 3b:4d:b9:96:a9:74:5c:5a:a3:cb:e4:c6:e9:41:71: b7:5a:b8:01:ae:0f:d2:21:cf:7e:db:19:12:85:3a: e0:d3:db:e2:13:29:59:68:b3:15:4d:be:a1:99:95: 86:22:ce:04:7b:53:c7:73:f1:c6:9d:cb:19:b2:4d: ff:4c:cc:52:27:28:a6:17:5e:bf:dc:8d:40:57:6e: 1a:64:6e:10:0a:3e:56:e7:15:3d:36:a5:f5:d0:25: 99:7b:2f:6f:eb:a4:f0:17:37:4b:66:82:bf:ff:47: cf:18:93:77:54:3c:9a:96:6e:66:cf:39:0b:c7:b4: d6:79:d2:32:a2:bc:83:01:8b:0d:33:62:be:18:87: 02:db:62:1b:1c:61:44:ef:26:4f:f0:ec:43:0a:06: 20:ba:2e:c0:62:cf:c5:38:a8:79:a8:28:60:25:4a: 01:24:a8:07:30:15:6b:e9:8e:5d:e4:ca:a1:76:9b: ea:7b:36:22:82:6f:f0:88:a9:9a:f7:d2:95:f6:e2: d1:db:6b:b1:3e:b4:63:4b:e1:7b:2f:46:c8:74:44: d4:c3:34:01:a1:a1:f1:1f:d5:ad:23:78:db:92:e7: 56:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:59:23:27:28:B2:5D:D4:E8:0E:A9:F4:A9:21:23:25:37:4B:91:39 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:81:b7:c1:3f:fc:17:11:e8:e0:b5:f7:07:42:25:09:08:47: d5:6f:8f:b1:c5:bc:a7:d4:0a:6f:3c:84:50:11:a9:00:86:fa: 1f:3c:d7:b8:74:61:c9:70:00:df:9c:14:77:49:c6:4e:a4:ca: ae:bb:9c:e2:c3:8d:17:0f:da:67:02:41:91:56:15:62:0a:a2: d2:db:ec:e8:d0:40:79:64:6e:55:01:c5:11:10:36:32:2f:15: 3f:81:7c:7e:81:30:bd:ca:fa:f5:d8:4c:18:04:b8:08:a6:cc: f5:fa:1d:92:60:33:b4:cd:18:6a:50:14:fc:0c:89:78:20:17: ac:09:5f:84:4a:73:e3:a2:f6:ef:e0:b3:98:c5:18:3a:92:ad: 04:9b:cc:ec:eb:e4:24:c0:6d:4e:ba:29:12:d5:83:50:7d:4e: 8c:97:77:90:0a:30:5c:7d:2f:83:f6:1d:6a:c5:28:ba:94:55: 18:ce:d9:02:89:cd:7a:7f:7c:9f:5a:84:8f:8a:d9:22:c3:42: 9f:7a:13:7c:da:fe:10:58:1c:4f:f3:e8:e1:49:f8:43:97:da: e2:dc:ef:fb:59:da:b4:22:3c:ca:1c:28:73:36:0a:17:5c:f4: 5e:8b:86:af:de:a4:fc:ec:98:c6:95:12:ff:d3:c3:4f:56:1e: c8:fe:f7:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUxMDE4MTc0MDE0WhcNMjUxMDI1MTc0MDE0WjAYMRYwFAYD VQQDEw02OGYzZDBmZS00ODljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvFDrpUdT/H94zr0FzR2XjYYwBwVOtd5XzKCPy3Y7TbmWqXRcWqPL5MbpQXG3 WrgBrg/SIc9+2xkShTrg09viEylZaLMVTb6hmZWGIs4Ee1PHc/HGncsZsk3/TMxS JyimF16/3I1AV24aZG4QCj5W5xU9NqX10CWZey9v66TwFzdLZoK//0fPGJN3VDya lm5mzzkLx7TWedIyoryDAYsNM2K+GIcC22IbHGFE7yZP8OxDCgYgui7AYs/FOKh5 qChgJUoBJKgHMBVr6Y5d5MqhdpvqezYigm/wiKma99KV9uLR22uxPrRjS+F7L0bI dETUwzQBoaHxH9WtI3jbkudWhQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMFZIyco sl3U6A6p9KkhIyU3S5E5MB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA5gbfBP/wXEejgtfcHQiUJCEfVb4+xxbyn1ApvPIRQEakAhvofPNe4 dGHJcADfnBR3ScZOpMquu5ziw40XD9pnAkGRVhViCqLS2+zo0EB5ZG5VAcUREDYy LxU/gXx+gTC9yvr12EwYBLgIpsz1+h2SYDO0zRhqUBT8DIl4IBesCV+ESnPjovbv 4LOYxRg6kq0Em8zs6+QkwG1OuikS1YNQfU6Ml3eQCjBcfS+D9h1qxSi6lFUYztkC ic16f3yfWoSPitkiw0KfehN82v4QWBxP8+jhSfhDl9ri3O/7Wdq0IjzKHChzNgoX XPRei4av3qT87JjGlRL/08NPVh7I/vfD -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:43 2025 by rpki-client