$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: v7YjVbm37eqX5BlpZkNewqbpPAXgeJln36vqillzZuw= Subject key identifier: DB:A4:D6:6F:BF:97:AF:C8:72:0C:E8:27:AF:18:17:C3:25:5C:3E:43 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 6C Signing time: Sun 19 Oct 2025 10:18:23 +0000 Manifest this update: Sun 19 Oct 2025 10:18:22 +0000 Manifest next update: Sun 26 Oct 2025 10:18:22 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: A4mWkcPOXle/859sRmzRWQOtastkzxoti1g7c6Y7mYQ=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:18:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Oct 19 10:18:22 2025 GMT Not After : Oct 26 10:18:22 2025 GMT Subject: CN=68f4baef-00ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:13:92:5d:70:88:21:78:d5:5d:ea:71:63:35: 02:f6:6b:c2:fd:08:92:2b:d6:41:5e:61:42:0c:3c: 2f:89:f7:13:80:63:ce:17:1b:be:33:16:c1:df:56: 87:a2:a9:2c:c1:ad:76:a2:5b:32:08:09:7c:a7:9e: 74:e8:e7:d2:89:cf:5c:8b:f1:1c:a1:c7:5d:66:55: 2b:ce:63:54:18:18:00:dd:8f:39:58:36:84:b1:42: bd:c1:a0:7b:3d:62:49:39:14:6e:1a:47:5b:3d:c2: 7d:2b:69:72:42:07:1e:de:43:53:b9:d1:f9:ff:bd: 48:4e:c1:82:67:ab:84:85:30:a4:ed:68:06:81:61: 71:8e:c5:11:d8:f9:d6:22:ed:21:ed:39:8c:01:58: 96:2b:fc:dd:46:55:de:96:be:13:d1:53:e3:c9:62: e0:48:03:59:88:9c:45:1c:f2:18:8b:92:68:a0:1d: 74:59:80:60:ac:47:ca:76:fb:cc:cc:d5:90:44:2d: 73:65:af:6f:5d:c8:43:ee:18:24:8e:8a:00:8d:b7: 08:ab:17:b4:76:55:b1:5e:65:f7:6c:a4:e3:f9:da: 84:39:85:5b:1c:0b:ad:87:8e:65:8a:c1:cd:7c:d8: bf:a7:56:f3:87:42:c2:09:32:1e:5b:4d:8e:76:71: 9f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:A4:D6:6F:BF:97:AF:C8:72:0C:E8:27:AF:18:17:C3:25:5C:3E:43 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:f6:93:eb:4e:11:08:97:81:12:d2:b5:32:fe:d6:17:fc:33: d9:b3:95:72:0b:8c:5e:53:05:b3:cf:98:63:c9:7a:95:5d:0f: cd:c6:22:4c:fd:28:45:4f:49:b9:2b:b4:f4:d5:fd:d3:38:f7: b1:df:ba:84:dd:c1:1e:aa:72:b6:54:9b:ff:21:62:78:f0:4d: 45:19:f6:4c:17:ff:cd:63:f7:c2:31:90:71:6b:03:eb:24:5b: 3a:da:5a:5f:c5:64:91:ec:1e:d3:4f:55:00:79:3f:e8:12:0e: da:2d:8c:b6:7d:c4:9d:c7:23:1a:d5:e6:b4:b2:c9:47:35:b5: 92:48:1c:ab:b9:8c:1e:2e:d4:d0:5b:d7:07:5e:55:41:05:ff: c5:b0:9b:fd:32:dd:13:0f:e5:f2:8c:ea:87:8b:68:c3:75:fa: 92:1a:d2:80:9a:23:9b:85:43:64:63:73:e2:fa:a1:80:94:f0: 69:fa:49:ec:68:4b:1a:e5:3f:67:8b:69:14:5c:00:9d:b2:5a: 96:db:94:0e:a3:2e:ce:80:29:95:8d:2d:f9:b3:21:b0:d1:c8: e7:fe:fe:d5:20:33:db:ed:a7:51:fb:ea:88:e6:05:b9:7d:66: 61:d6:91:2a:c0:ca:73:47:15:55:b1:b5:ec:02:e0:1c:7b:16: 47:26:79:7f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTEwMTkxMDE4MjJaFw0yNTEwMjYxMDE4MjJaMBgxFjAUBgNV BAMTDTY4ZjRiYWVmLTAwZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDE5JdcIgheNVd6nFjNQL2a8L9CJIr1kFeYUIMPC+J9xOAY84XG74zFsHfVoei qSzBrXaiWzIICXynnnTo59KJz1yL8Ryhx11mVSvOY1QYGADdjzlYNoSxQr3BoHs9 Ykk5FG4aR1s9wn0raXJCBx7eQ1O50fn/vUhOwYJnq4SFMKTtaAaBYXGOxRHY+dYi 7SHtOYwBWJYr/N1GVd6WvhPRU+PJYuBIA1mInEUc8hiLkmigHXRZgGCsR8p2+8zM 1ZBELXNlr29dyEPuGCSOigCNtwirF7R2VbFeZfdspOP52oQ5hVscC62HjmWKwc18 2L+nVvOHQsIJMh5bTY52cZ/5AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU26TWb7+X r8hyDOgnrxgXwyVcPkMwHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAD32k+tOEQiXgRLStTL+1hf8M9mzlXILjF5TBbPPmGPJepVdD83GIkz9 KEVPSbkrtPTV/dM497HfuoTdwR6qcrZUm/8hYnjwTUUZ9kwX/81j98IxkHFrA+sk WzraWl/FZJHsHtNPVQB5P+gSDtotjLZ9xJ3HIxrV5rSyyUc1tZJIHKu5jB4u1NBb 1wdeVUEF/8Wwm/0y3RMP5fKM6oeLaMN1+pIa0oCaI5uFQ2Rjc+L6oYCU8Gn6Sexo SxrlP2eLaRRcAJ2yWpbblA6jLs6AKZWNLfmzIbDRyOf+/tUgM9vtp1H76ojmBbl9 ZmHWkSrAynNHFVWxtewC4Bx7FkcmeX8= -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:57 2025 by rpki-client