$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft File: KtUm39nH6QyjDDH8pOGCUBtwB1M.mft (raw, json) Hash identifier: NI0LRQchhwwHXIPULEheGStz0xh+HxIcXsuu2lLMhGc= Subject key identifier: 2A:51:6C:8B:38:27:C5:12:53:B8:56:C0:01:6B:DE:89:D4:8A:91:6C Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 06A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft Manifest number: 0686 Signing time: Sun 19 Oct 2025 00:00:46 +0000 Manifest this update: Sun 19 Oct 2025 00:00:46 +0000 Manifest next update: Sun 26 Oct 2025 00:00:46 +0000 Files and hashes: 1: KtUm39nH6QyjDDH8pOGCUBtwB1M.crl (hash: ZLWNcI67qGRvZsRmycLQ1A/2LYpHmCg7dwVTtFuc0ws=) 2: 4092F17AE64811EFA0F37560C4F9AE02.roa (hash: MuDOs+UNP3qWV7q9sz+FoRMoZ33SC0+8rektpH4Ht5s=) 3: 698130FEE60411EFA2DC3057C4F9AE02.roa (hash: Vt5tMPro7Yd+AkFJe3Cnn+BsDTWCkJWM0XoIlmggi2I=) 4: 5C75E87C95F511EBA6D31767C4F9AE02.roa (hash: lfQZb+Cu5k1P9aIBAVZr1VIcUuyX72bxEGl/rtrTc0A=) 5: 176E1D3E961411EB80BD4E1DC4F9AE02.roa (hash: guMsQztHXJe0nHYo+3sRzxnbrPq9rNiGro7Edp8V/SQ=) 6: 6CFB0FFCF65711EB8988A924C4F9AE02.roa (hash: 0e9NIIe4Eh6DQ3FvIOOg4nTVMnHbYlzq1N/yU/4pzQY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1698 (0x6a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0, serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Oct 19 00:00:46 2025 GMT Not After : Oct 26 00:00:46 2025 GMT Subject: CN=68f42a2e-4963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:63:c8:e9:42:dc:58:fa:63:11:44:b2:88:62: 09:c3:fc:0f:ea:8e:e9:95:c9:7d:23:d7:ab:f2:fd: 50:f0:70:b9:91:63:f2:08:8f:1e:e5:62:a1:ec:63: 2b:0c:90:b8:f0:d1:5d:d8:be:d4:be:93:7b:d6:96: 40:e7:af:14:12:af:cd:e4:9e:ef:d1:23:c3:05:a4: ea:ac:75:20:35:5e:5e:28:cc:a0:74:b9:7d:9c:a3: 67:88:2a:0b:52:b6:91:43:2c:1e:e5:2c:32:26:ed: 53:c9:01:18:16:19:58:13:14:e9:8a:cd:6b:83:92: 81:ef:bf:27:6c:9f:10:c4:c7:e6:d8:86:87:c2:7d: 27:69:55:fc:fc:5b:f2:98:0f:8f:b5:f9:df:59:ce: 27:1b:fc:db:f0:9d:e1:66:83:85:33:c6:7b:e1:de: a1:0d:b1:0a:5b:83:39:06:06:70:50:84:ca:c3:e9: 0b:5e:f8:0a:45:5a:72:ce:e8:87:a2:f0:5f:2f:31: eb:26:a3:3a:c3:55:1c:e5:b2:db:aa:f1:6c:70:d5: 93:b3:a1:17:a8:89:cf:5b:e3:8f:37:dc:6c:46:ae: 89:d5:71:96:d3:3e:46:3a:f8:fa:80:1a:19:37:b1: 14:3f:e8:f8:9e:cf:e6:e8:0a:b9:70:dd:ef:44:9c: 8a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:51:6C:8B:38:27:C5:12:53:B8:56:C0:01:6B:DE:89:D4:8A:91:6C X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:55:4a:7c:96:0a:5a:8b:45:f9:31:fa:b6:9b:47:af:d9:b3: df:58:d8:82:ad:a3:d5:27:50:dc:0c:ff:06:f9:46:3c:76:2e: 03:36:ff:d3:27:dd:42:ed:95:dc:88:2b:f7:c5:6f:af:22:15: 2b:d2:9f:bf:14:d4:a4:49:e2:d2:b3:79:27:9e:df:b8:3c:ae: b5:22:09:e4:c8:39:bf:b1:a5:68:90:29:de:01:d8:2b:1a:18: cc:28:2f:42:b5:dd:38:b0:36:c5:9c:f6:8d:f4:53:78:4f:98: f1:95:73:0c:88:9e:c0:0f:22:c7:bd:d3:37:10:48:ed:5c:ac: d8:f3:54:02:bd:3d:eb:b7:94:13:57:c8:b0:dd:fa:ac:3a:da: 16:ce:a1:08:d6:e0:ac:c0:2f:87:05:aa:d6:6e:a0:9b:2e:17: 57:e2:55:b2:13:6c:b5:fd:da:16:f9:57:0e:5d:12:5c:c5:53: 29:36:48:75:4b:f8:58:5c:5c:3b:9d:63:c3:4d:60:ba:bf:aa: cf:da:cb:53:0c:8f:f6:a4:97:61:02:18:a8:6d:5d:14:d0:6a: 2c:10:69:ef:77:78:c8:4f:73:cf:f3:cc:d5:ed:b3:e3:9f:8f: b1:c0:ab:be:70:88:c8:c2:75:9b:4e:53:a3:d0:e9:d0:e1:de: 01:cf:d6:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBqIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjUxMDE5MDAwMDQ2WhcNMjUxMDI2MDAwMDQ2WjAYMRYwFAYD VQQDEw02OGY0MmEyZS00OTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2PI6ULcWPpjEUSyiGIJw/wP6o7plcl9I9er8v1Q8HC5kWPyCI8e5WKh7GMr DJC48NFd2L7UvpN71pZA568UEq/N5J7v0SPDBaTqrHUgNV5eKMygdLl9nKNniCoL UraRQywe5SwyJu1TyQEYFhlYExTpis1rg5KB778nbJ8QxMfm2IaHwn0naVX8/Fvy mA+PtfnfWc4nG/zb8J3hZoOFM8Z74d6hDbEKW4M5BgZwUITKw+kLXvgKRVpyzuiH ovBfLzHrJqM6w1Uc5bLbqvFscNWTs6EXqInPW+OPN9xsRq6J1XGW0z5GOvj6gBoZ N7EUP+j4ns/m6Aq5cN3vRJyKEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCpRbIs4 J8USU7hWwAFr3onUipFsMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QUFBMC8yMjgzOTZCQTk1RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZR eWpEREg4cE9HQ1VCdHdCMU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8VUp8lgpai0X5Mfq2m0ev2bPfWNiCraPVJ1DcDP8G+UY8di4DNv/T J91C7ZXciCv3xW+vIhUr0p+/FNSkSeLSs3knnt+4PK61IgnkyDm/saVokCneAdgr GhjMKC9Ctd04sDbFnPaN9FN4T5jxlXMMiJ7ADyLHvdM3EEjtXKzY81QCvT3rt5QT V8iw3fqsOtoWzqEI1uCswC+HBarWbqCbLhdX4lWyE2y1/doW+VcOXRJcxVMpNkh1 S/hYXFw7nWPDTWC6v6rP2stTDI/2pJdhAhiobV0U0GosEGnvd3jIT3PP88zV7bPj n4+xwKu+cIjIwnWbTlOj0OnQ4d4Bz9Zh -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:01 2025 by rpki-client