$ rpki-client -vvf rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft File: khdBhFmoypIuDWajy6pAZyDLSJA.mft (raw, json) Hash identifier: 2YocE2ft+zTvi3xhYWWLK1HG0pLcxbecOTGhAzbhXq0= Subject key identifier: 5F:BE:12:46:CE:9E:ED:16:79:98:5E:9E:2B:15:90:C4:A5:EB:16:7A Authority key identifier: 92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 Certificate issuer: /CN=A9137B39/serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Certificate serial: 03EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft Manifest number: 03E1 Signing time: Sun 19 Oct 2025 02:34:56 +0000 Manifest this update: Sun 19 Oct 2025 02:34:56 +0000 Manifest next update: Sun 26 Oct 2025 02:34:56 +0000 Files and hashes: 1: khdBhFmoypIuDWajy6pAZyDLSJA.crl (hash: dM5uo3NM+kdD15ks+zUDqXcD2at5k2yWCAreR5sXO8M=) 2: EA8F3FAE6F8611F0BA25F244C4F9AE02.roa (hash: YTSXljO/yVhvQBHJezR7ssdww+GXbQn8v2AKybIkw9k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:34:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137B39, serialNumber=9217418459A8CA922E0D66A3CBAA406720CB4890 Validity Not Before: Oct 19 02:34:56 2025 GMT Not After : Oct 26 02:34:56 2025 GMT Subject: CN=68f44e50-afa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:89:07:03:28:56:5c:16:2a:fe:37:99:b8:c0: 50:86:b0:62:71:59:f6:b2:d1:41:a0:1e:8d:26:c8: 69:75:2e:44:bb:c5:76:84:e8:23:06:86:38:e7:16: e6:ab:b7:d9:bf:17:5e:c6:89:0c:5d:8c:e8:48:40: 4d:47:b5:7e:d1:73:5c:c1:79:0a:bd:ad:3b:02:d9: ad:f9:ad:3e:52:49:0f:70:77:54:af:ba:8f:b3:30: e7:b5:32:0d:8f:80:f5:29:78:44:2a:84:9a:e2:e8: 3d:17:73:84:9a:ad:1a:cb:68:21:cc:59:16:89:8b: 04:c7:e3:74:09:86:f5:d9:f4:47:a7:d1:64:6a:a4: f6:57:63:1b:32:ec:73:46:19:22:25:a0:bf:09:35: 4e:3e:d1:40:08:7e:bd:6f:14:fd:62:28:82:9e:0e: ab:57:66:0e:93:97:a2:c1:09:14:c5:8d:14:41:7e: fe:f6:6e:3f:bd:7a:45:ba:af:c3:3b:ef:3e:7d:2f: 9c:60:df:e5:31:7b:d4:0e:78:f8:69:6d:b5:bf:6b: 66:ad:cc:9e:58:69:56:4c:a4:4a:21:b6:1d:94:b1: 03:e7:4e:d7:3f:89:9d:c5:26:bd:2c:49:aa:f4:a1: 99:2a:ed:dc:22:a8:59:8c:4b:60:45:0c:b9:7e:15: d7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:BE:12:46:CE:9E:ED:16:79:98:5E:9E:2B:15:90:C4:A5:EB:16:7A X509v3 Authority Key Identifier: keyid:92:17:41:84:59:A8:CA:92:2E:0D:66:A3:CB:AA:40:67:20:CB:48:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khdBhFmoypIuDWajy6pAZyDLSJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137B39/A7599D7AA03511EC82255D3AC4F9AE02/khdBhFmoypIuDWajy6pAZyDLSJA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:cf:6d:89:3c:11:6e:62:8c:ec:a4:b4:c9:12:e5:fa:be:b4: c0:a7:68:b4:63:a1:9f:f9:77:a0:d1:4c:c7:52:79:ef:b6:19: 6f:ba:78:1e:a9:c4:50:2a:bc:cc:c2:23:11:99:06:e1:53:ce: 34:6a:32:a0:42:71:06:a0:89:d0:36:fd:0b:fe:ea:e1:8b:71: 32:0d:15:48:e2:33:4a:5a:bc:8a:48:c2:99:33:bb:8d:93:91: ea:3d:4e:be:65:4a:7f:4d:5c:85:7e:12:74:d6:fe:36:f5:d6: 29:f5:23:08:51:f3:67:a5:16:d5:93:e6:79:3c:e1:f5:5f:fb: 12:4e:67:64:01:a0:6a:20:e2:eb:6c:e9:9f:46:2a:25:7c:94: d6:20:0c:41:a6:6d:22:be:4c:21:3d:a7:ee:a6:24:f1:af:4e: 51:7d:b4:8d:37:a3:e9:83:c5:3f:1b:9c:7f:cd:ca:15:83:60: 3c:8e:62:0f:57:b3:6c:06:14:b5:66:5f:b5:0f:c0:cf:1a:bd: 0d:15:75:7d:6f:c5:f6:0a:7e:e7:6f:ce:6d:aa:9e:86:b7:66: 6c:58:e4:3e:71:f3:3e:67:95:14:f3:86:81:30:14:c1:64:46: 55:8d:a4:04:a9:79:d9:58:56:bd:2c:75:21:62:10:16:7b:80: 74:9d:90:7a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdCMzkxMTAvBgNVBAUTKDkyMTc0MTg0NTlBOENBOTIyRTBENjZBM0NCQUE0MDY3 MjBDQjQ4OTAwHhcNMjUxMDE5MDIzNDU2WhcNMjUxMDI2MDIzNDU2WjAYMRYwFAYD VQQDEw02OGY0NGU1MC1hZmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIkHAyhWXBYq/jeZuMBQhrBicVn2stFBoB6NJshpdS5Eu8V2hOgjBoY45xbm q7fZvxdexokMXYzoSEBNR7V+0XNcwXkKva07Atmt+a0+UkkPcHdUr7qPszDntTIN j4D1KXhEKoSa4ug9F3OEmq0ay2ghzFkWiYsEx+N0CYb12fRHp9FkaqT2V2MbMuxz RhkiJaC/CTVOPtFACH69bxT9YiiCng6rV2YOk5eiwQkUxY0UQX7+9m4/vXpFuq/D O+8+fS+cYN/lMXvUDnj4aW21v2tmrcyeWGlWTKRKIbYdlLED507XP4mdxSa9LEmq 9KGZKu3cIqhZjEtgRQy5fhXXbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF++EkbO nu0WeZhenisVkMSl6xZ6MB8GA1UdIwQYMBaAFJIXQYRZqMqSLg1mo8uqQGcgy0iQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0IzOS9BNzU5OUQ3QUEw MzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lwSXVEV2FqeTZwQVp5RExT SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toZEJoRm1veXBJdURXYWp5NnBBWnlETFNKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0IzOS9BNzU5OUQ3QUEwMzUxMUVDODIyNTVEM0FDNEY5QUUwMi9raGRCaEZtb3lw SXVEV2FqeTZwQVp5RExTSkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArz22JPBFuYozspLTJEuX6vrTAp2i0Y6Gf+Xeg0UzHUnnvthlvunge qcRQKrzMwiMRmQbhU840ajKgQnEGoInQNv0L/urhi3EyDRVI4jNKWryKSMKZM7uN k5HqPU6+ZUp/TVyFfhJ01v429dYp9SMIUfNnpRbVk+Z5POH1X/sSTmdkAaBqIOLr bOmfRiolfJTWIAxBpm0ivkwhPafupiTxr05RfbSNN6Ppg8U/G5x/zcoVg2A8jmIP V7NsBhS1Zl+1D8DPGr0NFXV9b8X2Cn7nb85tqp6Gt2ZsWOQ+cfM+Z5UU84aBMBTB ZEZVjaQEqXnZWFa9LHUhYhAWe4B0nZB6 -----END CERTIFICATE-----Generated at Mon Oct 20 21:55:11 2025 by rpki-client