$ rpki-client -vvf rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft File: KgHI_pZ5aUR4MewBwCvE6cuaziw.mft (raw, json) Hash identifier: GQR1sV/1IopwQROOWiTlzkvlrYdAe1GGegS63VVh9t4= Subject key identifier: 50:65:20:77:D8:CB:A9:21:D6:C9:03:E6:41:FA:74:17:F6:C5:7C:9E Authority key identifier: 2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C Certificate issuer: /CN=A9158F8D/serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Certificate serial: E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft Manifest number: E0 Signing time: Sun 19 Oct 2025 08:39:15 +0000 Manifest this update: Sun 19 Oct 2025 08:39:14 +0000 Manifest next update: Sun 26 Oct 2025 08:39:14 +0000 Files and hashes: 1: KgHI_pZ5aUR4MewBwCvE6cuaziw.crl (hash: rzJLt5z/xLk7CmgxvdFgqSbAapKD0J8Tl3ozGnruYKA=) 2: B9574A322C1311F0B642882AC4F9AE02.roa (hash: QN8v9t5P0QTRBsYg+U9O7T5DHQfpoMuEMEImQ353CzQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158F8D, serialNumber=2A01C8FE967969447831EC01C02BC4E9CB9ACE2C Validity Not Before: Oct 19 08:39:14 2025 GMT Not After : Oct 26 08:39:14 2025 GMT Subject: CN=68f4a3b3-64a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:55:d0:40:1a:72:81:cc:2b:68:42:54:6c:b7: 5d:63:4a:36:88:c1:e0:c5:d2:54:77:21:c5:5d:64: cc:10:56:da:19:82:4c:5c:3a:f8:22:af:cd:57:31: cc:b3:42:de:b6:26:a6:97:e4:f3:6a:60:30:ac:b7: 8c:f3:bf:6f:2f:24:c6:2a:45:1d:e3:65:e4:ce:6a: 40:53:c3:c7:58:3b:c2:92:cc:54:54:cd:22:60:b4: 47:ec:82:7c:96:42:f6:fd:df:4b:56:ee:45:da:e5: 05:3d:3f:35:db:57:dd:d4:37:5b:a9:77:1c:ee:6d: b8:53:41:95:a3:73:5b:00:e3:9a:ac:88:db:ae:c4: 8c:67:dd:25:4a:40:0c:ad:17:88:4b:64:9f:f8:72: 7c:5a:52:d6:57:29:36:1f:2b:af:45:ff:fb:3c:5e: c4:e5:33:51:7b:34:fe:d6:29:ea:b0:15:fe:4d:50: af:7f:e4:63:72:7a:83:5d:53:c3:eb:a6:d5:35:6c: fa:2c:a2:62:7b:56:b1:f3:48:e5:5e:57:3e:db:5b: b7:d9:bb:26:ff:17:ed:15:51:a8:09:3c:08:2a:94: 98:b4:14:6d:d6:8a:d3:ef:e5:6d:62:99:fa:4f:af: a9:2a:8d:dd:e8:05:d6:af:9b:4b:b2:ec:97:c1:e9: 73:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:65:20:77:D8:CB:A9:21:D6:C9:03:E6:41:FA:74:17:F6:C5:7C:9E X509v3 Authority Key Identifier: keyid:2A:01:C8:FE:96:79:69:44:78:31:EC:01:C0:2B:C4:E9:CB:9A:CE:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KgHI_pZ5aUR4MewBwCvE6cuaziw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158F8D/A179E53C647711EFA82DE93DC4F9AE02/KgHI_pZ5aUR4MewBwCvE6cuaziw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:82:8a:b0:9a:3f:b0:14:b4:23:53:45:14:6e:f8:dd:1b:00: f9:a9:cb:4f:15:84:f3:29:bf:d3:ed:63:eb:47:b4:b7:dd:4c: cc:0f:0d:2b:3e:b1:5c:27:a8:48:13:92:fe:c9:e0:91:8f:d5: d9:d8:46:12:65:36:9e:20:bc:a0:63:2e:4c:0b:20:03:36:e8: 2c:06:f7:38:40:dd:ab:74:28:84:4d:1f:65:5a:91:fb:5f:c0: 74:dd:8e:47:d7:6b:54:b2:e7:38:f1:fb:9c:11:dc:7d:12:44: a4:8b:03:e6:37:b9:a7:c0:f2:9c:fc:f8:82:cd:88:4b:ab:4e: 4c:c4:1b:21:5c:95:0b:54:89:d6:11:85:d8:b9:98:67:28:ea: 6b:2e:ba:9d:4b:6e:c5:14:9c:de:7e:07:0c:45:ad:21:00:79: 31:6c:dc:5c:1f:2a:07:e1:ad:e0:7e:8f:d8:b3:03:23:e3:ec: ed:4d:e5:a6:25:61:92:a2:b2:d9:4d:de:ae:2d:be:bb:ea:fd: 36:b1:fa:0a:d2:5f:1e:a7:17:41:d8:09:6f:3d:a3:70:2b:86: 1f:86:d6:fb:d5:2c:97:ab:7d:62:54:db:d9:69:66:f9:7c:4b: ca:ba:5b:02:83:dc:c3:7d:93:08:6e:13:87:c3:93:0b:58:92: 17:2d:3d:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThGOEQxMTAvBgNVBAUTKDJBMDFDOEZFOTY3OTY5NDQ3ODMxRUMwMUMwMkJDNEU5 Q0I5QUNFMkMwHhcNMjUxMDE5MDgzOTE0WhcNMjUxMDI2MDgzOTE0WjAYMRYwFAYD VQQDEw02OGY0YTNiMy02NGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVXQQBpygcwraEJUbLddY0o2iMHgxdJUdyHFXWTMEFbaGYJMXDr4Iq/NVzHM s0Letiaml+TzamAwrLeM879vLyTGKkUd42XkzmpAU8PHWDvCksxUVM0iYLRH7IJ8 lkL2/d9LVu5F2uUFPT8121fd1DdbqXcc7m24U0GVo3NbAOOarIjbrsSMZ90lSkAM rReIS2Sf+HJ8WlLWVyk2HyuvRf/7PF7E5TNRezT+1inqsBX+TVCvf+RjcnqDXVPD 66bVNWz6LKJie1ax80jlXlc+21u32bsm/xftFVGoCTwIKpSYtBRt1orT7+VtYpn6 T6+pKo3d6AXWr5tLsuyXwelzxQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFBlIHfY y6kh1skD5kH6dBf2xXyeMB8GA1UdIwQYMBaAFCoByP6WeWlEeDHsAcArxOnLms4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEY4RC9BMTc5RTUzQzY0 NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFVUjRNZXdCd0N2RTZjdWF6 aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tnSElfcFo1YVVSNE1ld0J3Q3ZFNmN1YXppdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OEY4RC9BMTc5RTUzQzY0NzcxMUVGQTgyREU5M0RDNEY5QUUwMi9LZ0hJX3BaNWFV UjRNZXdCd0N2RTZjdWF6aXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXgoqwmj+wFLQjU0UUbvjdGwD5qctPFYTzKb/T7WPrR7S33UzMDw0r PrFcJ6hIE5L+yeCRj9XZ2EYSZTaeILygYy5MCyADNugsBvc4QN2rdCiETR9lWpH7 X8B03Y5H12tUsuc48fucEdx9EkSkiwPmN7mnwPKc/PiCzYhLq05MxBshXJULVInW EYXYuZhnKOprLrqdS27FFJzefgcMRa0hAHkxbNxcHyoH4a3gfo/YswMj4+ztTeWm JWGSorLZTd6uLb676v02sfoK0l8epxdB2AlvPaNwK4Yfhtb71SyXq31iVNvZaWb5 fEvKulsCg9zDfZMIbhOHw5MLWJIXLT0O -----END CERTIFICATE-----Generated at Tue Oct 21 01:02:45 2025 by rpki-client