$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft File: KgD9XV6u-B8ysAsuXILF7NrBJpM.mft (raw, json) Hash identifier: KaNfJNeCFYAlF5k1AiyRzwcjH2wFMV8jAn+lvWpZN0o= Subject key identifier: 55:38:F9:2D:F1:37:04:48:20:2B:32:36:AE:3F:2E:B7:BB:41:46:4B Authority key identifier: 2A:00:FD:5D:5E:AE:F8:1F:32:B0:0B:2E:5C:82:C5:EC:DA:C1:26:93 Certificate issuer: /CN=A91B6B4B/serialNumber=2A00FD5D5EAEF81F32B00B2E5C82C5ECDAC12693 Certificate serial: 59 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KgD9XV6u-B8ysAsuXILF7NrBJpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft Manifest number: 58 Signing time: Sun 19 Oct 2025 10:32:53 +0000 Manifest this update: Sun 19 Oct 2025 10:32:53 +0000 Manifest next update: Sun 26 Oct 2025 10:32:53 +0000 Files and hashes: 1: KgD9XV6u-B8ysAsuXILF7NrBJpM.crl (hash: s3jg42fN8yLM4oYB9IhWXXQ3/mCHjijfoBIyGw5Qr2Q=) 2: B3F95F9A24C411F0A4C45287C4F9AE02.roa (hash: SpbPHZ/krAG/WpD65rr9pmBtHMuwVfhmB9bAKCP8oRU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.crl rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KgD9XV6u-B8ysAsuXILF7NrBJpM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:32:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6B4B, serialNumber=2A00FD5D5EAEF81F32B00B2E5C82C5ECDAC12693 Validity Not Before: Oct 19 10:32:53 2025 GMT Not After : Oct 26 10:32:53 2025 GMT Subject: CN=68f4be55-ec47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cf:9e:02:fc:52:e4:a4:0c:d9:de:b1:5c:af: 3c:53:32:8f:42:51:f4:e9:35:34:89:91:c3:1b:2f: 05:86:e3:34:11:56:dd:3a:72:96:09:f7:b7:70:4c: 96:72:dc:54:de:2b:c5:f3:57:62:ac:6a:e4:93:f1: 11:bb:08:77:8e:ff:bb:76:cf:f8:3c:26:df:33:b4: ea:d3:eb:06:7b:d0:76:e7:61:95:d0:c7:29:35:1b: 10:ae:72:00:b9:01:78:aa:13:30:2c:34:c5:0b:5b: bf:08:ec:00:50:84:15:bc:0e:44:48:77:ea:30:9e: 78:10:1f:56:7c:0f:f6:71:8b:8f:83:dc:7c:25:d9: 48:4e:dd:47:50:b4:66:19:44:28:44:16:19:81:1d: 48:fa:38:65:b4:b0:67:24:77:b2:08:a6:ef:a2:49: 36:36:89:2c:d4:c9:22:74:7c:4a:aa:24:9d:b0:47: 87:b0:31:f1:7b:55:17:d4:b9:de:8a:34:b8:6a:7e: 83:45:ad:fc:1e:81:9b:82:e3:aa:11:93:74:24:96: 25:a8:bf:23:ff:64:50:21:15:93:12:d5:56:fe:cc: 42:9b:e7:cd:10:cf:38:b3:30:b1:76:7d:46:51:4d: 44:11:f1:db:a0:61:9e:89:31:ee:3f:64:d1:8c:c1: b1:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:38:F9:2D:F1:37:04:48:20:2B:32:36:AE:3F:2E:B7:BB:41:46:4B X509v3 Authority Key Identifier: keyid:2A:00:FD:5D:5E:AE:F8:1F:32:B0:0B:2E:5C:82:C5:EC:DA:C1:26:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KgD9XV6u-B8ysAsuXILF7NrBJpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6B4B/BB42C1DE24C311F096C68481C4F9AE02/KgD9XV6u-B8ysAsuXILF7NrBJpM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:3d:c0:96:cf:c8:de:54:ab:91:b6:fa:60:54:66:6d:34:cf: 64:be:39:04:5e:6b:e8:9f:31:1c:53:b3:d3:01:78:cb:2d:c6: d8:87:3c:c6:f4:2f:35:7a:c2:d7:1e:f0:90:6f:bb:9e:3e:9b: 20:b3:45:a1:a3:f5:6f:fb:1c:ad:49:32:74:30:f4:19:5c:25: 2f:2e:87:b1:99:d0:4c:84:c3:66:be:24:dd:f9:3c:be:ea:f2: 2d:39:79:52:e4:0c:52:5b:85:d3:82:e8:db:e9:11:d1:cc:ce: 76:78:0f:a0:59:e2:f6:13:49:15:cf:8d:58:79:02:1d:25:3a: 52:12:88:d7:d2:dd:fe:01:d7:58:4b:84:8e:34:6a:6c:72:60: 2a:2c:a2:8e:7c:ee:d6:14:ba:60:5a:7e:ce:2a:26:50:86:7b: 78:e8:8a:b3:18:2d:fa:e3:c5:ed:5a:8c:d8:4e:3c:b6:87:22: 41:fc:45:c6:e3:62:fe:86:a0:63:07:ea:14:86:15:c4:34:cf: 99:d8:42:52:af:f4:a2:a5:15:25:c3:ed:2e:d3:ee:b0:5f:49: a9:e9:1e:9f:7a:8f:2f:f4:5c:48:59:d0:06:07:0c:1d:11:82: a3:52:0d:66:ac:27:e9:05:9a:8d:96:51:4f:0e:31:dd:82:5f: 02:55:ae:a1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NkI0QjExMC8GA1UEBRMoMkEwMEZENUQ1RUFFRjgxRjMyQjAwQjJFNUM4MkM1RUNE QUMxMjY5MzAeFw0yNTEwMTkxMDMyNTNaFw0yNTEwMjYxMDMyNTNaMBgxFjAUBgNV BAMTDTY4ZjRiZTU1LWVjNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvz54C/FLkpAzZ3rFcrzxTMo9CUfTpNTSJkcMbLwWG4zQRVt06cpYJ97dwTJZy 3FTeK8XzV2KsauST8RG7CHeO/7t2z/g8Jt8ztOrT6wZ70HbnYZXQxyk1GxCucgC5 AXiqEzAsNMULW78I7ABQhBW8DkRId+ownngQH1Z8D/Zxi4+D3Hwl2UhO3UdQtGYZ RChEFhmBHUj6OGW0sGckd7IIpu+iSTY2iSzUySJ0fEqqJJ2wR4ewMfF7VRfUud6K NLhqfoNFrfwegZuC46oRk3QkliWovyP/ZFAhFZMS1Vb+zEKb580QzzizMLF2fUZR TUQR8dugYZ6JMe4/ZNGMwbFbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUVTj5LfE3 BEggKzI2rj8ut7tBRkswHwYDVR0jBBgwFoAUKgD9XV6u+B8ysAsuXILF7NrBJpMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2QjRCL0JCNDJDMURFMjRD MzExRjA5NkM2ODQ4MUM0RjlBRTAyL0tnRDlYVjZ1LUI4eXNBc3VYSUxGN05yQkpw TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS2dEOVhWNnUtQjh5c0FzdVhJTEY3TnJCSnBNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI2 QjRCL0JCNDJDMURFMjRDMzExRjA5NkM2ODQ4MUM0RjlBRTAyL0tnRDlYVjZ1LUI4 eXNBc3VYSUxGN05yQkpwTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGA9wJbPyN5Uq5G2+mBUZm00z2S+OQRea+ifMRxTs9MBeMstxtiHPMb0 LzV6wtce8JBvu54+myCzRaGj9W/7HK1JMnQw9BlcJS8uh7GZ0EyEw2a+JN35PL7q 8i05eVLkDFJbhdOC6NvpEdHMznZ4D6BZ4vYTSRXPjVh5Ah0lOlISiNfS3f4B11hL hI40amxyYCosoo587tYUumBafs4qJlCGe3joirMYLfrjxe1ajNhOPLaHIkH8Rcbj Yv6GoGMH6hSGFcQ0z5nYQlKv9KKlFSXD7S7T7rBfSanpHp96jy/0XEhZ0AYHDB0R gqNSDWasJ+kFmo2WUU8OMd2CXwJVrqE= -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:37 2025 by rpki-client