$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft File: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft (raw, json) Hash identifier: py/lT4RdL3/ohippVVrQcTdBkfytSIGsoHMBCRMI2Io= Subject key identifier: 2C:15:A8:77:47:30:DE:9D:48:71:23:9A:1E:CD:86:77:5F:AE:5E:66 Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft Manifest number: 0186 Signing time: Sun 19 Oct 2025 06:11:40 +0000 Manifest this update: Sun 19 Oct 2025 06:11:39 +0000 Manifest next update: Sun 26 Oct 2025 06:11:39 +0000 Files and hashes: 1: KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl (hash: UQlFggivhDxUxwP+3vG73FlUPh34I/ulo0aoW2NW0DQ=) 2: 759C16DC577711EE96F5F775C4F9AE02.roa (hash: Pojppps22r3xRUUOYA4Lq5WqJQ1e2Svo0KKFdlUH1VY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:11:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677, serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Oct 19 06:11:39 2025 GMT Not After : Oct 26 06:11:39 2025 GMT Subject: CN=68f4811c-cc5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ce:52:b7:3b:ff:6b:33:8a:0b:d9:36:cb:9e: 17:64:1e:40:dc:79:5d:73:3d:eb:37:87:60:61:a8: cd:57:0c:fe:33:26:fc:d3:41:81:b6:a0:1c:93:47: d5:d3:da:5e:38:85:44:d9:92:35:75:f5:b1:90:0a: c7:74:56:79:03:19:9a:dd:ce:45:00:40:d5:3a:97: 4b:86:09:81:b2:f9:e1:8e:9f:f7:a2:ec:73:8b:ea: e2:ad:7e:06:a5:35:cd:68:30:f0:9d:ed:2d:1f:17: b9:ec:ce:df:49:9a:8d:22:95:83:65:ed:59:87:de: b8:a8:5c:a8:62:42:95:c7:93:a9:f7:b6:60:f2:43: c1:67:22:53:53:e8:65:25:19:25:31:97:4e:cf:79: 1e:68:0b:12:6c:12:a4:ff:2d:ce:67:c7:88:d6:e9: 90:03:53:c2:58:77:ac:26:f0:3c:70:83:c3:17:dd: 7a:75:a5:5b:30:10:98:73:e9:dc:6b:8a:77:1f:4b: a2:be:24:01:54:08:0d:be:53:22:33:ea:c6:d3:dd: 7e:2e:51:d1:bd:b6:86:4f:45:8f:d5:f3:1d:be:47: a3:51:67:dd:24:4b:51:76:f9:16:e1:80:d5:62:b1: 01:73:52:78:ae:e7:74:14:80:28:25:26:4f:15:b5: 68:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:15:A8:77:47:30:DE:9D:48:71:23:9A:1E:CD:86:77:5F:AE:5E:66 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:85:99:a0:f1:92:48:52:ee:33:4d:29:17:ed:c9:81:77:b0: 13:0f:23:68:4f:a8:82:fd:13:5b:78:24:c3:5b:e5:ad:f9:4d: 87:c5:34:8a:73:66:8b:34:85:de:16:7b:ad:a7:7f:d5:1a:3e: 99:03:37:b9:0a:39:ad:99:06:ea:09:80:fe:a8:34:d4:f2:d6: a4:9c:69:48:d3:b5:48:22:2d:eb:6a:8b:5d:98:53:39:95:a7: 31:f4:9a:7c:9a:4c:f1:73:f9:9f:c4:a9:02:6c:09:f3:7a:61: 41:99:d6:49:df:c6:e8:ad:cd:98:3b:73:01:de:37:5f:17:33: cf:ed:bd:c8:c8:ac:0c:65:cc:14:ae:5e:17:1d:7a:57:a6:4a: 42:01:d1:5e:fa:67:45:a2:52:72:bf:ed:0e:c3:e7:62:4f:43: ec:fa:5d:22:94:52:f0:7c:40:dc:c4:c7:9b:a6:4b:6f:90:b1: 79:77:3d:5d:55:55:24:47:ee:17:7e:77:b2:5b:f8:66:cb:f6: b8:68:09:8d:7a:f4:0d:29:2c:13:47:fd:65:8a:ce:82:42:30: 79:4b:5c:08:f8:0e:13:5f:f1:1b:19:b6:1f:e8:3f:7a:49:ab: a9:63:42:bf:4a:d1:15:40:8b:90:fd:5d:35:5c:53:ea:7e:3c: 82:99:b5:dd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjUxMDE5MDYxMTM5WhcNMjUxMDI2MDYxMTM5WjAYMRYwFAYD VQQDEw02OGY0ODExYy1jYzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuc5Stzv/azOKC9k2y54XZB5A3Hldcz3rN4dgYajNVwz+Myb800GBtqAck0fV 09peOIVE2ZI1dfWxkArHdFZ5Axma3c5FAEDVOpdLhgmBsvnhjp/3ouxzi+rirX4G pTXNaDDwne0tHxe57M7fSZqNIpWDZe1Zh964qFyoYkKVx5Op97Zg8kPBZyJTU+hl JRklMZdOz3keaAsSbBKk/y3OZ8eI1umQA1PCWHesJvA8cIPDF916daVbMBCYc+nc a4p3H0uiviQBVAgNvlMiM+rG091+LlHRvbaGT0WP1fMdvkejUWfdJEtRdvkW4YDV YrEBc1J4rud0FIAoJSZPFbVohQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCwVqHdH MN6dSHEjmh7Nhndfrl5mMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NDY3Ny8wMjI3Rjc4NjU3NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1No Wjl4QklWTlE5b2g1S1lHbWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAhZmg8ZJIUu4zTSkX7cmBd7ATDyNoT6iC/RNbeCTDW+Wt+U2HxTSK c2aLNIXeFnutp3/VGj6ZAze5CjmtmQbqCYD+qDTU8taknGlI07VIIi3raotdmFM5 lacx9Jp8mkzxc/mfxKkCbAnzemFBmdZJ38borc2YO3MB3jdfFzPP7b3IyKwMZcwU rl4XHXpXpkpCAdFe+mdFolJyv+0Ow+diT0Ps+l0ilFLwfEDcxMebpktvkLF5dz1d VVUkR+4XfneyW/hmy/a4aAmNevQNKSwTR/1lis6CQjB5S1wI+A4TX/EbGbYf6D96 SaupY0K/StEVQIuQ/V01XFPqfjyCmbXd -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:19 2025 by rpki-client