$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft File: KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft (raw, json) Hash identifier: PSqEe45IR3Oz8lDCEN4Z0Ol6Uigzs/P4pel4kWL2ktU= Subject key identifier: 38:41:CB:38:81:19:B0:A4:93:E5:AF:D4:70:B7:9C:48:37:74:80:68 Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 0202 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft Manifest number: 01F5 Signing time: Sun 19 Oct 2025 04:56:58 +0000 Manifest this update: Sun 19 Oct 2025 04:56:58 +0000 Manifest next update: Sun 26 Oct 2025 04:56:58 +0000 Files and hashes: 1: KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl (hash: 5SXCZZ9WMTp7Xm2cwrlSyz6x4/b0zecXBs7GTQ20yDs=) 2: 6AA5FC16905211EE840DED1DC4F9AE02.roa (hash: 7Dqx51HWm5FHrY3yqH5za3wPDKkHA22oTIJYfgHsb38=) 3: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (hash: fXQJZHONbxHqV0/XhxdMVhavc2gV0JF7ZuHG+631NZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:56:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927, serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Oct 19 04:56:58 2025 GMT Not After : Oct 26 04:56:58 2025 GMT Subject: CN=68f46f9a-9a73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:37:66:41:5e:fb:71:86:96:7e:77:01:3b:51: 91:de:37:a2:f3:e5:c7:20:c7:c6:8c:02:2b:3b:6e: 3d:ac:9a:af:fd:6f:f1:13:b0:d8:a2:e2:03:03:32: 5c:6e:95:97:c4:2d:f0:f7:4c:3b:44:d1:4a:b8:1c: b6:f6:45:4c:c4:c5:85:80:19:3b:d2:17:48:08:23: a9:92:cf:10:c5:ec:66:55:ef:1f:35:3f:8a:46:c8: 99:36:cc:6c:db:da:8c:02:74:41:aa:a2:42:96:36: 29:43:14:24:2d:76:15:8f:57:98:5c:eb:82:45:1f: 10:51:28:6c:c1:d2:a3:f6:81:cd:22:e6:4c:1b:b7: 88:67:5b:54:1b:87:99:15:10:22:8b:a9:bc:da:f1: 65:6c:fc:c9:57:73:52:2a:9d:b4:77:06:ae:21:8a: c5:96:cc:52:e6:26:29:07:1c:16:36:3f:3b:49:7d: 5f:0b:5e:cc:77:2b:c0:df:d3:78:fb:d5:ce:31:4f: 24:48:a6:8a:c5:98:72:7e:d9:20:14:10:22:d0:a4: 66:25:b0:bf:f0:b4:3f:23:49:eb:c6:d7:c0:b9:ee: 7c:46:2e:6b:c1:67:18:35:aa:12:b3:1c:a7:56:c4: 49:59:f4:bb:26:a8:f1:86:d6:a0:81:11:a0:0a:22: e1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:41:CB:38:81:19:B0:A4:93:E5:AF:D4:70:B7:9C:48:37:74:80:68 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6e:e7:a9:1f:bd:9e:d0:37:ef:88:31:30:86:ee:4f:30:e8:82: 97:e5:ad:d9:22:f7:d4:de:d1:b9:39:38:61:63:13:02:84:78: 03:29:bc:44:01:d5:9b:4a:d6:88:6c:d7:70:cd:05:7f:0a:d4: 84:1c:e3:37:85:fc:48:92:f0:f2:4b:bd:87:45:dd:1f:6e:27: a1:64:65:f5:ee:1c:b7:7b:95:75:50:c4:99:49:5f:16:72:64: dc:7a:11:85:86:f2:fa:92:28:9b:7a:1c:ec:2a:e1:ff:62:7f: 46:1f:6b:15:88:7e:52:46:60:de:ff:35:a3:11:a6:bf:5a:e9: f7:c0:1d:9b:5d:70:34:a0:3d:8c:44:51:65:fb:aa:ea:2e:06: cf:8b:3f:aa:60:8e:b3:eb:f9:69:7b:ed:f0:f2:fd:28:2a:8c: 5c:04:20:50:ba:8f:b6:c1:ba:30:ad:0e:54:5f:79:50:59:56: df:01:85:09:2a:30:40:8b:2b:b8:01:2c:ab:1f:fc:ad:c9:5b: 8e:f4:0d:14:28:ae:72:05:0c:61:35:ad:dd:56:08:ec:91:b3: 4f:ab:2a:02:42:01:60:55:08:e6:7d:6c:9d:1a:61:a4:a2:4b: f3:85:29:43:9e:68:dd:c2:2d:4b:d8:75:fa:0c:3d:a1:eb:1b: 17:15:66:23 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjUxMDE5MDQ1NjU4WhcNMjUxMDI2MDQ1NjU4WjAYMRYwFAYD VQQDEw02OGY0NmY5YS05YTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DdmQV77cYaWfncBO1GR3jei8+XHIMfGjAIrO249rJqv/W/xE7DYouIDAzJc bpWXxC3w90w7RNFKuBy29kVMxMWFgBk70hdICCOpks8QxexmVe8fNT+KRsiZNsxs 29qMAnRBqqJCljYpQxQkLXYVj1eYXOuCRR8QUShswdKj9oHNIuZMG7eIZ1tUG4eZ FRAii6m82vFlbPzJV3NSKp20dwauIYrFlsxS5iYpBxwWNj87SX1fC17MdyvA39N4 +9XOMU8kSKaKxZhyftkgFBAi0KRmJbC/8LQ/I0nrxtfAue58Ri5rwWcYNaoSsxyn VsRJWfS7JqjxhtaggRGgCiLheQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhByziB GbCkk+Wv1HC3nEg3dIBoMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTkyNy9GRDhCMjJCMEJDMkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJC djlvOXFsZmlIX3F6eFQ3VjgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBu56kfvZ7QN++IMTCG7k8w6IKX5a3ZIvfU3tG5OThhYxMChHgDKbxE AdWbStaIbNdwzQV/CtSEHOM3hfxIkvDyS72HRd0fbiehZGX17hy3e5V1UMSZSV8W cmTcehGFhvL6kiibehzsKuH/Yn9GH2sViH5SRmDe/zWjEaa/Wun3wB2bXXA0oD2M RFFl+6rqLgbPiz+qYI6z6/lpe+3w8v0oKoxcBCBQuo+2wbowrQ5UX3lQWVbfAYUJ KjBAiyu4ASyrH/ytyVuO9A0UKK5yBQxhNa3dVgjskbNPqyoCQgFgVQjmfWydGmGk okvzhSlDnmjdwi1L2HX6DD2h6xsXFWYj -----END CERTIFICATE-----Generated at Tue Oct 21 02:00:14 2025 by rpki-client