$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: SUwk8VJvjjs+joKx9UHsc0PKSc9/mkgx9p5PMw6DpEI= Subject key identifier: D6:97:C5:22:E1:5E:65:BE:99:FB:F5:90:C4:A1:36:D5:77:B6:02:E8 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 06BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 06B9 Signing time: Sat 18 Oct 2025 23:35:58 +0000 Manifest this update: Sat 18 Oct 2025 23:35:57 +0000 Manifest next update: Sat 25 Oct 2025 23:35:57 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: 9SscqkZdTFeitLLIxiLwM/v1L1I5TloU9ItMbKyKz0I=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Oct 18 23:35:57 2025 GMT Not After : Oct 25 23:35:57 2025 GMT Subject: CN=68f4245d-a18d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a4:e3:c0:31:c1:9d:4a:10:31:bd:a5:ef:e0: 3e:c9:f1:f9:0d:08:5a:69:47:65:74:87:89:e6:53: 5a:0e:16:e1:e1:46:82:f7:ef:cd:16:46:f4:6a:79: 3d:08:2f:f5:99:e2:25:f9:dc:a2:20:64:b8:dc:95: 43:e5:68:b6:07:b6:37:ca:4c:61:07:ae:ef:72:a2: 4a:e7:6c:67:9b:cf:47:e1:8b:d6:c8:0e:49:4d:87: 31:72:72:93:c4:bb:0c:5b:23:2f:58:91:4d:f4:d2: bc:4a:6b:ec:7c:ee:a5:f8:1d:d8:dc:fc:2a:f2:21: f9:02:fb:d6:bc:17:22:f4:d0:dc:02:15:d8:8a:ee: cb:a9:ba:de:e6:1e:57:c9:e6:41:17:a6:99:bc:8a: 83:b2:05:f9:83:1e:65:ba:1c:41:95:f6:32:b7:0f: a2:40:10:50:e3:ff:dc:ed:fd:ce:7e:70:eb:d5:16: 1f:b8:7b:f5:80:77:3f:dc:ed:41:64:e0:84:c1:81: 31:75:3e:29:01:8c:e7:3a:95:01:5c:29:6c:02:01: 5f:b8:47:87:e3:84:f1:8d:eb:14:ca:78:a3:52:61: 17:e3:80:6b:da:3c:67:0a:2c:d2:52:c0:57:12:13: 99:b1:ee:47:bc:f8:8a:c0:67:29:85:d8:59:24:81: c9:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:97:C5:22:E1:5E:65:BE:99:FB:F5:90:C4:A1:36:D5:77:B6:02:E8 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:a8:56:4c:8f:18:3e:f1:b7:54:2f:82:7c:03:60:7e:1f:8e: 50:0a:c2:07:78:4a:bf:e2:ea:b0:7c:45:36:43:04:52:bc:df: 66:54:aa:91:f8:34:ef:7d:13:93:da:49:d4:a0:c6:27:df:13: 27:ca:6c:77:d8:7c:85:77:eb:67:5f:84:42:6c:94:d8:0e:5a: a6:03:6e:17:1c:54:1c:1c:b5:43:dd:78:92:16:e4:fb:0f:dd: 0c:59:dc:0e:4c:61:42:fc:b5:1b:ce:b0:3c:41:c8:cd:b2:92: b1:0d:a2:c7:a3:e3:45:f9:0c:82:5c:28:eb:90:6a:64:57:30: 6e:b2:b2:36:93:e3:cb:5f:87:41:7d:d5:9f:2d:90:a6:27:9e: fd:fe:1c:0a:7a:7e:40:53:b7:76:10:cc:95:8d:4d:37:63:f4: 49:22:7c:0c:14:49:bf:68:a2:38:b9:5d:0d:a2:bb:f3:d9:b4: da:51:06:57:58:4b:02:93:6d:8f:8d:c3:8b:f0:0c:e4:95:e7: f3:3c:3e:2d:c6:db:0d:69:fd:55:9a:1a:8b:89:d6:11:6f:0f: ad:85:1e:c0:74:1a:3d:70:34:0a:ed:62:9f:6f:0a:9f:2a:a8: 4d:de:a7:aa:f2:28:52:50:a3:f4:6d:90:2e:86:0e:a7:ba:b6: da:09:1a:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjUxMDE4MjMzNTU3WhcNMjUxMDI1MjMzNTU3WjAYMRYwFAYD VQQDEw02OGY0MjQ1ZC1hMThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aTjwDHBnUoQMb2l7+A+yfH5DQhaaUdldIeJ5lNaDhbh4UaC9+/NFkb0ank9 CC/1meIl+dyiIGS43JVD5Wi2B7Y3ykxhB67vcqJK52xnm89H4YvWyA5JTYcxcnKT xLsMWyMvWJFN9NK8SmvsfO6l+B3Y3Pwq8iH5AvvWvBci9NDcAhXYiu7Lqbre5h5X yeZBF6aZvIqDsgX5gx5luhxBlfYytw+iQBBQ4//c7f3OfnDr1RYfuHv1gHc/3O1B ZOCEwYExdT4pAYznOpUBXClsAgFfuEeH44TxjesUynijUmEX44Br2jxnCizSUsBX EhOZse5HvPiKwGcphdhZJIHJAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNaXxSLh XmW+mfv1kMShNtV3tgLoMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqqFZMjxg+8bdUL4J8A2B+H45QCsIHeEq/4uqwfEU2QwRSvN9mVKqR +DTvfROT2knUoMYn3xMnymx32HyFd+tnX4RCbJTYDlqmA24XHFQcHLVD3XiSFuT7 D90MWdwOTGFC/LUbzrA8QcjNspKxDaLHo+NF+QyCXCjrkGpkVzBusrI2k+PLX4dB fdWfLZCmJ579/hwKen5AU7d2EMyVjU03Y/RJInwMFEm/aKI4uV0Norvz2bTaUQZX WEsCk22PjcOL8AzklefzPD4txtsNaf1VmhqLidYRbw+thR7AdBo9cDQK7WKfbwqf KqhN3qeq8ihSUKP0bZAuhg6nurbaCRq7 -----END CERTIFICATE-----Generated at Sun Oct 19 23:30:53 2025 by rpki-client