$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft File: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft (raw, json) Hash identifier: t8qGgNPg0tnoZuIj+Fx5xhY+fZDgj2sX6XsqwxaesBA= Subject key identifier: 2C:F0:F2:47:BD:17:04:CA:06:37:28:45:41:96:91:59:FA:4F:50:14 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 110E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft Manifest number: 2466 Signing time: Sat 18 Oct 2025 17:28:53 +0000 Manifest this update: Sat 18 Oct 2025 17:28:52 +0000 Manifest next update: Sat 25 Oct 2025 17:28:52 +0000 Files and hashes: 1: KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl (hash: hFM9LVh23ZOwasyXsXPU4mUKCxOs89/TekIKlQRHMjI=) 2: DE0A75A605EB11EA94CD7287C4F9AE02.roa (hash: rQZ+LsPDuc4EXnC/GiBOmzFAxUE3pMz5tb4kdOhgWwA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4366 (0x110e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F, serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Oct 18 17:28:52 2025 GMT Not After : Oct 25 17:28:52 2025 GMT Subject: CN=68f3ce55-9e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:74:1a:8f:83:7d:94:8e:20:84:dc:62:7e:ef: 17:8c:cc:b8:c8:c1:68:30:44:cf:3a:eb:6e:72:8e: b6:7c:48:69:64:31:1d:bf:4d:c1:ad:1d:92:6d:cb: 3d:e6:37:38:2b:74:4b:46:2b:18:fb:19:c1:81:3d: 37:ab:cd:f9:e9:4b:14:30:11:c3:52:5f:b6:69:2d: 55:31:40:f0:f1:26:d0:e0:c4:12:ac:81:dc:ed:f5: 1b:f2:67:b4:c9:08:cf:3b:ca:4a:fe:67:a6:c3:80: b9:fb:67:17:06:82:ac:9d:4b:4a:19:1e:c0:8a:a8: 18:40:42:3c:9d:bc:95:10:22:1c:5a:06:5e:1a:2a: f6:71:46:9f:2e:88:6f:8f:4e:c8:a6:70:11:1d:1c: 17:8a:0a:da:f0:53:c1:3b:cc:9b:d3:47:7c:e2:77: 5d:d6:e8:ba:98:e0:75:b6:14:f6:d1:7b:7d:fd:a7: 88:ea:f8:c2:a0:f0:13:68:c6:39:75:30:2e:48:29: 17:bb:9e:98:62:33:a1:97:64:44:d1:9a:b6:e4:da: 3c:73:2b:03:3c:60:e7:62:9f:68:52:70:37:7d:e0: 86:a8:85:65:4a:80:bc:75:9c:e2:17:8d:02:c6:d3: 3e:15:10:dd:5e:3c:d9:95:3e:73:cc:0e:f1:45:80: f0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:F0:F2:47:BD:17:04:CA:06:37:28:45:41:96:91:59:FA:4F:50:14 X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:cc:94:1c:00:ab:d9:0e:b7:71:25:21:7f:66:2d:bb:b5:0e: 4a:f2:79:10:05:3a:32:37:7b:e0:c1:5c:08:23:e8:16:a5:07: dd:92:88:f1:df:e5:4f:5f:dd:43:d0:dc:91:7f:ac:3b:41:8f: 14:85:d0:29:ca:d9:67:9e:7d:5f:0c:a0:9a:48:5a:3c:06:8c: 52:08:ea:df:a9:da:4b:36:57:b3:78:82:7a:26:1d:26:9e:ed: 4b:48:c0:3d:c9:d1:70:85:50:7b:e2:03:09:2a:98:e7:78:7b: c3:e0:fb:b4:64:e9:7a:f9:77:91:13:a1:d0:d0:6f:26:2a:2c: de:dc:8e:96:b4:7c:a2:52:24:88:94:06:26:94:78:61:b1:a3: 14:cc:60:1e:c8:71:d2:a1:8f:89:57:94:ad:b1:84:b7:4f:5d: 96:f6:c6:7d:db:2a:be:5e:6d:e8:53:20:b8:ee:03:7c:d1:0d: 93:8c:ed:2c:9a:fc:c5:9f:9c:ed:77:3c:a9:fd:2d:85:c2:eb: c9:41:29:0c:18:fa:4d:0c:25:fe:2a:d8:3f:44:ee:c7:4b:25: 9b:2f:8f:c1:8d:5a:2f:c2:41:53:31:84:52:2d:fc:ed:0c:97: 0b:a1:02:e0:62:26:2a:ba:f4:24:8f:ed:61:37:77:e8:c4:b0: 8f:3c:b8:99 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjUxMDE4MTcyODUyWhcNMjUxMDI1MTcyODUyWjAYMRYwFAYD VQQDEw02OGYzY2U1NS05ZTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8nQaj4N9lI4ghNxifu8XjMy4yMFoMETPOutuco62fEhpZDEdv03BrR2Sbcs9 5jc4K3RLRisY+xnBgT03q8356UsUMBHDUl+2aS1VMUDw8SbQ4MQSrIHc7fUb8me0 yQjPO8pK/memw4C5+2cXBoKsnUtKGR7AiqgYQEI8nbyVECIcWgZeGir2cUafLohv j07IpnARHRwXigra8FPBO8yb00d84ndd1ui6mOB1thT20Xt9/aeI6vjCoPATaMY5 dTAuSCkXu56YYjOhl2RE0Zq25No8cysDPGDnYp9oUnA3feCGqIVlSoC8dZziF40C xtM+FRDdXjzZlT5zzA7xRYDwowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCzw8ke9 FwTKBjcoRUGWkVn6T1AUMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDIyRi85RUM3QUZCNEFBN0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdf WkxhNUlFd0pZQWhnelNsRkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/zJQcAKvZDrdxJSF/Zi27tQ5K8nkQBToyN3vgwVwII+gWpQfdkojx 3+VPX91D0NyRf6w7QY8UhdApytlnnn1fDKCaSFo8BoxSCOrfqdpLNlezeIJ6Jh0m nu1LSMA9ydFwhVB74gMJKpjneHvD4Pu0ZOl6+XeRE6HQ0G8mKize3I6WtHyiUiSI lAYmlHhhsaMUzGAeyHHSoY+JV5StsYS3T12W9sZ92yq+Xm3oUyC47gN80Q2TjO0s mvzFn5ztdzyp/S2FwuvJQSkMGPpNDCX+Ktg/RO7HSyWbL4/BjVovwkFTMYRSLfzt DJcLoQLgYiYquvQkj+1hN3foxLCPPLiZ -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:42 2025 by rpki-client