$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft File: kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft (raw, json) Hash identifier: R2fmqXQmFkazzin8yPM1wbNx/yJ2a8EnJXMlRuVzG9w= Subject key identifier: 4D:F9:85:2C:10:85:02:B9:C7:BC:53:CB:A2:E9:4A:E7:F8:E9:14:79 Authority key identifier: 90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 Certificate issuer: /CN=A91C2875/serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Certificate serial: 03AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft Manifest number: 03A3 Signing time: Sun 19 Oct 2025 02:44:18 +0000 Manifest this update: Sun 19 Oct 2025 02:44:18 +0000 Manifest next update: Sun 26 Oct 2025 02:44:18 +0000 Files and hashes: 1: kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl (hash: Imx8NetJUgFxUy4h3vbq8Jtk7PXozC1R5wx94w/VYcY=) 2: ABB1EE64B4ED11ECBA3D016FC4F9AE02.roa (hash: xHLevAzZuis8NnrBHZLDJf2yx7IF05dGBA1riYkWutY=) 3: 0E9CF77EBA6811EC8058A213C4F9AE02.roa (hash: /NRpEcDAXrkS/YDBwDOng+rHtIrpT7sCWxlP3Tbbtb4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:44:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 941 (0x3ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2875, serialNumber=90D99AA8D7913140AFAE9EE2BFEBCDA37BA1CD28 Validity Not Before: Oct 19 02:44:18 2025 GMT Not After : Oct 26 02:44:18 2025 GMT Subject: CN=68f45082-c3b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d9:bc:3e:ec:70:15:8f:9f:af:8a:2d:7d:f8: da:7a:8f:35:ba:22:a4:0e:cc:d9:77:46:eb:eb:aa: 30:6d:91:d1:8f:eb:3f:d7:de:14:e6:2e:ac:28:43: 4a:25:5a:fb:50:30:c1:ff:1f:90:b4:91:24:21:d0: 08:3f:1e:91:6b:f2:ed:b5:76:c7:f3:23:72:a3:a0: 0d:85:e1:66:d7:ef:ea:d6:98:58:07:c2:ce:f3:0e: 60:e7:7b:ee:5b:b2:6a:4c:23:23:d3:ea:96:e5:c9: e2:42:1b:d1:ef:62:d0:89:e6:b2:3b:a7:c4:ee:bc: b1:3c:a0:93:c2:c9:9c:3d:0d:ed:77:97:72:85:85: 8d:7e:6d:0a:1e:27:95:3c:c6:f1:cb:f3:50:c4:08: 01:dd:0e:af:d2:2f:f9:09:63:1d:af:ed:1a:44:40: 64:c5:4f:85:3b:01:4f:1c:01:b4:f2:53:2d:93:bc: 96:df:2d:85:83:6a:32:ac:cf:01:b2:5f:4d:93:8b: 1a:cb:bc:c9:7b:eb:7b:9f:ad:ea:97:20:52:f6:1f: 70:0d:97:71:05:a1:9d:1d:9c:63:b5:46:1c:6b:84: bb:60:23:59:17:98:79:9e:6e:df:be:07:50:fb:11: a8:cc:11:0c:d4:0b:b5:21:35:c1:27:41:9f:42:8d: de:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F9:85:2C:10:85:02:B9:C7:BC:53:CB:A2:E9:4A:E7:F8:E9:14:79 X509v3 Authority Key Identifier: keyid:90:D9:9A:A8:D7:91:31:40:AF:AE:9E:E2:BF:EB:CD:A3:7B:A1:CD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kNmaqNeRMUCvrp7iv-vNo3uhzSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2875/C25DE0E6B4E811EC980C4471C4F9AE02/kNmaqNeRMUCvrp7iv-vNo3uhzSg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:32:03:0d:3c:5d:4f:f0:90:1f:4c:a6:29:8b:b3:79:6a:cc: 4c:7b:c6:ec:fa:c8:29:f0:7d:91:ec:72:f5:b1:88:38:e1:76: a7:4d:f3:79:d1:f6:c1:4a:22:42:5a:1c:cb:1c:0b:a3:34:52: a4:eb:94:a7:e4:d7:cf:85:57:b8:1b:1e:d1:6a:2b:88:a0:b8: 99:83:5f:d4:61:24:df:ff:ac:a6:c3:d6:5b:15:54:a3:f1:fe: 1c:96:61:a4:d5:66:60:36:b6:b1:d6:ff:fd:fe:23:cb:8f:5b: 84:8a:53:94:2b:d5:d0:e3:b0:a4:70:bc:7e:dc:96:99:d2:a1: 41:60:cd:5a:63:80:5f:96:0f:2e:b3:ff:cf:b0:57:bb:d0:f8: 5e:24:e0:19:b0:4c:b4:c5:b1:4e:a2:3c:10:96:36:85:9c:29: 6a:e3:5b:66:f7:0f:33:50:d5:a1:73:4b:c4:e9:79:ca:aa:7d: 60:1d:ee:89:c5:c1:49:0a:1c:2a:c4:e6:f8:63:37:3e:d4:93: fb:a3:1b:f2:4d:9f:b0:6b:c4:6f:a6:e2:14:7d:9a:d8:db:2d: f1:dc:31:c3:50:3e:f3:31:00:89:fe:3d:5d:49:b8:95:3c:44: a6:8c:8d:ff:21:09:66:90:0c:29:6c:90:2c:24:a3:18:bb:0a: b2:31:dc:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzI4NzUxMTAvBgNVBAUTKDkwRDk5QUE4RDc5MTMxNDBBRkFFOUVFMkJGRUJDREEz N0JBMUNEMjgwHhcNMjUxMDE5MDI0NDE4WhcNMjUxMDI2MDI0NDE4WjAYMRYwFAYD VQQDEw02OGY0NTA4Mi1jM2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq9m8PuxwFY+fr4otffjaeo81uiKkDszZd0br66owbZHRj+s/194U5i6sKENK JVr7UDDB/x+QtJEkIdAIPx6Ra/LttXbH8yNyo6ANheFm1+/q1phYB8LO8w5g53vu W7JqTCMj0+qW5cniQhvR72LQieayO6fE7ryxPKCTwsmcPQ3td5dyhYWNfm0KHieV PMbxy/NQxAgB3Q6v0i/5CWMdr+0aREBkxU+FOwFPHAG08lMtk7yW3y2Fg2oyrM8B sl9Nk4say7zJe+t7n63qlyBS9h9wDZdxBaGdHZxjtUYca4S7YCNZF5h5nm7fvgdQ +xGozBEM1Au1ITXBJ0GfQo3e1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFE35hSwQ hQK5x7xTy6LpSuf46RR5MB8GA1UdIwQYMBaAFJDZmqjXkTFAr66e4r/rzaN7oc0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjg3NS9DMjVERTBFNkI0 RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1VQ3ZycDdpdi12Tm8zdWh6 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tObWFxTmVSTVVDdnJwN2l2LXZObzN1aHpTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Mjg3NS9DMjVERTBFNkI0RTgxMUVDOTgwQzQ0NzFDNEY5QUUwMi9rTm1hcU5lUk1V Q3ZycDdpdi12Tm8zdWh6U2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtMgMNPF1P8JAfTKYpi7N5asxMe8bs+sgp8H2R7HL1sYg44XanTfN5 0fbBSiJCWhzLHAujNFKk65Sn5NfPhVe4Gx7RaiuIoLiZg1/UYSTf/6ymw9ZbFVSj 8f4clmGk1WZgNrax1v/9/iPLj1uEilOUK9XQ47CkcLx+3JaZ0qFBYM1aY4Bflg8u s//PsFe70PheJOAZsEy0xbFOojwQljaFnClq41tm9w8zUNWhc0vE6XnKqn1gHe6J xcFJChwqxOb4Yzc+1JP7oxvyTZ+wa8RvpuIUfZrY2y3x3DHDUD7zMQCJ/j1dSbiV PESmjI3/IQlmkAwpbJAsJKMYuwqyMdz6 -----END CERTIFICATE-----Generated at Mon Oct 20 15:40:52 2025 by rpki-client