$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft File: kFj-3Oxfh289_hYZQxnBRcnAzLU.mft (raw, json) Hash identifier: OBHaZvBaVtMYNFCe9LrcPtVh4jzUVRUQ2hQGyYR8L/0= Subject key identifier: 20:FE:5D:D2:54:00:F9:8B:3A:A0:8A:51:8D:5C:CA:CB:B0:6B:AC:C7 Authority key identifier: 90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 Certificate issuer: /CN=A9185B0F/serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Certificate serial: 06A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft Manifest number: 069F Signing time: Sat 18 Oct 2025 23:45:44 +0000 Manifest this update: Sat 18 Oct 2025 23:45:43 +0000 Manifest next update: Sat 25 Oct 2025 23:45:43 +0000 Files and hashes: 1: kFj-3Oxfh289_hYZQxnBRcnAzLU.crl (hash: UWs/PPEXzci/hfEF+yLVHHLszS1BBGbso88ysuVk198=) 2: 25A7FE7E855211EB8DEDD812C4F9AE02.roa (hash: rH99d2UyS2BchbUPUbqFc9GOoYlWGp7hkjxEyr/ZGj0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:45:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B0F, serialNumber=9058FEDCEC5F876F3DFE16194319C145C9C0CCB5 Validity Not Before: Oct 18 23:45:43 2025 GMT Not After : Oct 25 23:45:43 2025 GMT Subject: CN=68f426a8-77d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:da:76:bf:f6:5e:6c:7b:88:73:f6:0a:d3:b7: 22:ee:23:74:68:0e:f9:64:1a:2a:ab:e5:e1:8e:a8: db:d8:c9:3b:20:a1:d2:fa:06:e1:37:69:34:fd:a8: 08:0f:1d:eb:4f:da:0e:1d:61:99:6c:cc:7f:04:2f: 9b:ca:1d:bb:53:2f:fb:e7:87:77:bc:3b:a9:e0:48: f3:5d:c2:26:d1:ce:63:69:77:28:ca:ff:d2:b3:a0: 36:f2:21:32:23:83:b5:70:4c:e0:ba:fa:80:5e:cd: c2:b5:ee:06:43:b5:c3:0d:94:e4:1c:65:6b:15:b3: a8:af:4f:7d:da:a9:ba:47:37:c7:fb:b3:2e:72:5b: 16:c8:12:4c:64:33:d2:23:5c:50:c0:ad:5d:a3:34: 4a:33:e1:11:a9:1d:1b:ca:17:70:95:45:4c:e4:b7: 04:cc:50:63:c2:c2:32:d4:80:37:b9:ab:a7:8b:2c: 74:85:07:c8:39:4a:31:0f:93:7b:70:fb:6e:d1:b9: 10:46:2a:89:bf:1c:9e:86:a0:9c:ee:93:3b:ca:97: e9:89:7c:7f:07:d2:df:2d:99:ad:40:08:30:8f:69: 1e:63:9f:ca:67:0a:00:6b:9f:77:ec:90:c9:d9:9d: 69:a6:3a:53:91:88:ec:6b:b7:b2:d8:54:f8:ed:34: f7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FE:5D:D2:54:00:F9:8B:3A:A0:8A:51:8D:5C:CA:CB:B0:6B:AC:C7 X509v3 Authority Key Identifier: keyid:90:58:FE:DC:EC:5F:87:6F:3D:FE:16:19:43:19:C1:45:C9:C0:CC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kFj-3Oxfh289_hYZQxnBRcnAzLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B0F/52D0A120854E11EBB75BB009C4F9AE02/kFj-3Oxfh289_hYZQxnBRcnAzLU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:9a:a1:df:ec:f0:0e:24:08:a9:c9:4f:26:53:30:23:68:3b: e1:4d:f1:0d:99:f3:97:8b:6b:45:bb:5f:42:fd:53:22:a3:34: 33:b8:74:66:ba:31:ec:23:5b:d8:d2:3c:14:92:1a:ed:86:7d: 06:f2:25:ff:8b:09:28:ef:9e:7f:1a:3e:22:75:09:0b:11:c1: dd:a2:0e:96:69:eb:c7:ac:ed:f7:9f:28:7b:2c:7b:b9:dc:63: f1:a8:d7:fd:4d:f4:a5:75:ae:5d:82:fd:cf:62:15:0d:da:b5: f4:f5:05:99:01:66:9e:a4:14:ce:2e:bf:01:01:8b:e0:84:1a: b5:a6:b2:3f:c7:0c:b4:30:c5:ca:17:75:00:6c:8d:d8:d5:20: a2:34:88:db:53:42:5e:47:11:c8:ce:ba:36:a5:14:e1:a0:1c: a8:48:67:f1:c8:2d:e7:fe:73:bc:ca:a1:30:9f:68:2c:89:b7: e6:d2:8e:5d:4b:b8:a6:cb:82:6a:6f:ac:f5:14:fe:b5:1d:38: 9d:78:40:d8:3a:0a:65:2a:c1:71:ac:b9:f5:99:3c:53:14:2c: 96:9e:86:cd:7e:df:55:70:26:f8:72:a7:71:e9:93:69:25:ca: 79:95:d5:6d:6f:86:24:bb:cf:c0:0d:e9:e7:e9:2c:b9:f1:bf: e1:bf:0e:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCMEYxMTAvBgNVBAUTKDkwNThGRURDRUM1Rjg3NkYzREZFMTYxOTQzMTlDMTQ1 QzlDMENDQjUwHhcNMjUxMDE4MjM0NTQzWhcNMjUxMDI1MjM0NTQzWjAYMRYwFAYD VQQDEw02OGY0MjZhOC03N2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNp2v/ZebHuIc/YK07ci7iN0aA75ZBoqq+Xhjqjb2Mk7IKHS+gbhN2k0/agI Dx3rT9oOHWGZbMx/BC+byh27Uy/754d3vDup4EjzXcIm0c5jaXcoyv/Ss6A28iEy I4O1cEzguvqAXs3Cte4GQ7XDDZTkHGVrFbOor0992qm6RzfH+7MuclsWyBJMZDPS I1xQwK1dozRKM+ERqR0byhdwlUVM5LcEzFBjwsIy1IA3uauniyx0hQfIOUoxD5N7 cPtu0bkQRiqJvxyehqCc7pM7ypfpiXx/B9LfLZmtQAgwj2keY5/KZwoAa5937JDJ 2Z1ppjpTkYjsa7ey2FT47TT3JwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCD+XdJU APmLOqCKUY1cysuwa6zHMB8GA1UdIwQYMBaAFJBY/tzsX4dvPf4WGUMZwUXJwMy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUIwRi81MkQwQTEyMDg1 NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094ZmgyODlfaFlaUXhuQlJjbkF6 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tGai0zT3hmaDI4OV9oWVpReG5CUmNuQXpMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NUIwRi81MkQwQTEyMDg1NEUxMUVCQjc1QkIwMDlDNEY5QUUwMi9rRmotM094Zmgy ODlfaFlaUXhuQlJjbkF6TFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBqmqHf7PAOJAipyU8mUzAjaDvhTfENmfOXi2tFu19C/VMiozQzuHRm ujHsI1vY0jwUkhrthn0G8iX/iwko755/Gj4idQkLEcHdog6WaevHrO33nyh7LHu5 3GPxqNf9TfSlda5dgv3PYhUN2rX09QWZAWaepBTOLr8BAYvghBq1prI/xwy0MMXK F3UAbI3Y1SCiNIjbU0JeRxHIzro2pRThoByoSGfxyC3n/nO8yqEwn2gsibfm0o5d S7imy4Jqb6z1FP61HTideEDYOgplKsFxrLn1mTxTFCyWnobNft9VcCb4cqdx6ZNp Jcp5ldVtb4Yku8/ADenn6Sy58b/hvw5P -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:57 2025 by rpki-client