$ rpki-client -vvf rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft File: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft (raw, json) Hash identifier: n86lMwebPSs91p8kkg/BqbDFYC7uzl08/e8t4Xztxdw= Subject key identifier: F9:C1:0A:4A:9D:CA:AD:18:CF:82:31:AA:45:51:77:0F:BD:55:F5:E7 Authority key identifier: 28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B Certificate issuer: /CN=A9158650/serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Certificate serial: 01F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft Manifest number: 01ED Signing time: Sun 19 Oct 2025 04:58:29 +0000 Manifest this update: Sun 19 Oct 2025 04:58:29 +0000 Manifest next update: Sun 26 Oct 2025 04:58:28 +0000 Files and hashes: 1: KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl (hash: K1IXGHKwQ2rvF/Fxfc6J8aRx2aW6ogXObL86V+AdsxU=) 2: EA5A9A32BDAA11ED92995562C4F9AE02.roa (hash: /EEXvT665opKL7OI/mui0sN2NqpuGn4U8tvIvrJ8aw8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158650, serialNumber=2817D4A8644AEC419ADCCEE30C4E87A24D2FF57B Validity Not Before: Oct 19 04:58:29 2025 GMT Not After : Oct 26 04:58:28 2025 GMT Subject: CN=68f46ff5-89a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:a9:fb:1d:09:a7:25:aa:06:6b:5a:9e:7e: 9c:0b:fe:b8:7c:22:c3:4b:81:4f:60:75:8e:29:9c: b6:ad:70:9d:c3:f9:ed:dd:dd:79:a7:5d:77:ed:50: 22:a1:18:f0:09:25:56:d1:71:25:19:ba:70:b4:be: f0:03:f6:c2:cd:3f:f7:66:9e:18:ea:b6:fd:6a:d3: 49:de:a6:14:fc:98:50:11:a1:f3:02:4f:49:9a:84: 88:60:65:8e:0c:28:68:5b:a6:7e:91:65:54:a0:a2: ea:3e:13:a8:92:ec:f3:56:bd:8b:11:89:8b:10:53: ff:21:97:72:0e:6c:70:da:65:41:a0:b2:4a:b5:95: ef:17:aa:f7:0b:4d:52:46:68:10:80:53:2a:65:c3: a7:14:31:6f:1f:ae:97:e0:1d:84:49:3a:74:f5:8a: df:4e:30:9b:20:f6:b5:f0:b6:f5:c9:a3:1d:50:a0: 5e:fe:9c:12:61:d7:c5:fa:58:aa:8e:24:14:88:04: ab:d1:c1:f6:0a:7d:b3:ea:55:ce:78:77:04:83:87: 07:84:53:27:8c:a4:63:06:8b:ab:12:4c:86:9d:fd: 02:82:45:de:27:09:df:c8:9a:71:2d:28:7e:50:b6: ea:20:29:18:c0:32:ec:54:a1:c2:5f:ce:e0:81:c7: 3c:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:C1:0A:4A:9D:CA:AD:18:CF:82:31:AA:45:51:77:0F:BD:55:F5:E7 X509v3 Authority Key Identifier: keyid:28:17:D4:A8:64:4A:EC:41:9A:DC:CE:E3:0C:4E:87:A2:4D:2F:F5:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158650/7758D2C2BDA711EDAECD4A5DC4F9AE02/KBfUqGRK7EGa3M7jDE6Hok0v9Xs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:98:56:71:ee:cf:24:38:ac:a5:1d:8f:05:8a:fe:f2:0f:b4: ff:f6:93:db:81:0f:95:9e:1a:79:15:f2:a3:4f:c8:34:26:a9: 90:be:cc:67:b1:13:89:66:0b:dc:7b:89:cc:80:2f:49:93:22: 00:e7:06:fd:b1:5a:a8:21:6c:cb:d8:52:ab:a3:ee:f7:bc:16: f0:03:fd:69:db:09:b5:b8:14:70:27:5b:27:62:c5:af:4e:18: 42:89:24:4a:f1:61:f4:e3:03:ba:7a:8a:84:19:16:0c:9f:cf: 8e:97:97:e5:ed:51:ec:7a:43:b5:29:21:81:c8:e4:39:29:a4: a2:68:a9:3f:0c:ce:5d:fb:ba:81:f1:64:b4:32:6d:2e:6e:c9: cd:d0:b4:0f:08:2b:2d:7e:d8:ee:ef:b8:83:08:f2:29:31:05: d9:d7:a4:5f:84:2d:2a:0b:9f:14:59:f8:f5:dd:06:9f:9f:51: 8b:97:e4:43:61:7d:10:1f:7c:35:59:3f:23:86:98:c0:a0:07: 49:81:2c:ad:b8:97:22:6d:d3:15:79:bb:8f:6c:0d:0b:d8:2b: 36:c5:d0:9c:5a:f0:ba:48:38:e0:ee:f8:0a:9c:a7:56:2b:00: 21:8e:e0:95:39:69:68:5b:44:be:75:48:10:69:56:97:bb:dd: 8d:33:f1:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2NTAxMTAvBgNVBAUTKDI4MTdENEE4NjQ0QUVDNDE5QURDQ0VFMzBDNEU4N0Ey NEQyRkY1N0IwHhcNMjUxMDE5MDQ1ODI5WhcNMjUxMDI2MDQ1ODI4WjAYMRYwFAYD VQQDEw02OGY0NmZmNS04OWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4yp+x0JpyWqBmtann6cC/64fCLDS4FPYHWOKZy2rXCdw/nt3d15p1137VAi oRjwCSVW0XElGbpwtL7wA/bCzT/3Zp4Y6rb9atNJ3qYU/JhQEaHzAk9JmoSIYGWO DChoW6Z+kWVUoKLqPhOokuzzVr2LEYmLEFP/IZdyDmxw2mVBoLJKtZXvF6r3C01S RmgQgFMqZcOnFDFvH66X4B2ESTp09YrfTjCbIPa18Lb1yaMdUKBe/pwSYdfF+liq jiQUiASr0cH2Cn2z6lXOeHcEg4cHhFMnjKRjBourEkyGnf0CgkXeJwnfyJpxLSh+ ULbqICkYwDLsVKHCX87ggcc8TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPnBCkqd yq0Yz4IxqkVRdw+9VfXnMB8GA1UdIwQYMBaAFCgX1KhkSuxBmtzO4wxOh6JNL/V7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODY1MC83NzU4RDJDMkJE QTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdFR2EzTTdqREU2SG9rMHY5 WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCZlVxR1JLN0VHYTNNN2pERTZIb2swdjlYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODY1MC83NzU4RDJDMkJEQTcxMUVEQUVDRDRBNURDNEY5QUUwMi9LQmZVcUdSSzdF R2EzTTdqREU2SG9rMHY5WHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXmFZx7s8kOKylHY8Fiv7yD7T/9pPbgQ+Vnhp5FfKjT8g0JqmQvsxn sROJZgvce4nMgC9JkyIA5wb9sVqoIWzL2FKro+73vBbwA/1p2wm1uBRwJ1snYsWv ThhCiSRK8WH04wO6eoqEGRYMn8+Ol5fl7VHsekO1KSGByOQ5KaSiaKk/DM5d+7qB 8WS0Mm0ubsnN0LQPCCstftju77iDCPIpMQXZ16RfhC0qC58UWfj13Qafn1GLl+RD YX0QH3w1WT8jhpjAoAdJgSytuJcibdMVebuPbA0L2Cs2xdCcWvC6SDjg7vgKnKdW KwAhjuCVOWloW0S+dUgQaVaXu92NM/GW -----END CERTIFICATE-----Generated at Mon Oct 20 07:46:26 2025 by rpki-client