$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: mo8SZiLUGmWUh67G4/wPaoFx2D5+a1ClXvwyrHbaQuw= Subject key identifier: 65:89:38:95:EA:A6:B5:01:76:80:E2:67:96:FF:59:83:10:FE:3E:E2 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 0782 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 076B Signing time: Sat 18 Oct 2025 23:01:54 +0000 Manifest this update: Sat 18 Oct 2025 23:01:54 +0000 Manifest next update: Sat 25 Oct 2025 23:01:54 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: arVqIHeSpBOzl6RG+7+foXN4oqDL2g3PKhV0aPcbY0k=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:01:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1922 (0x782) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Oct 18 23:01:54 2025 GMT Not After : Oct 25 23:01:54 2025 GMT Subject: CN=68f41c62-793b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:27:83:10:2b:5b:b8:cc:1e:c2:07:15:00:90: 3e:d5:a3:6b:41:cc:7d:55:55:5f:ed:35:5b:47:23: 87:aa:34:d4:55:08:69:a6:de:e6:01:7e:e4:72:0f: a2:52:36:9f:89:3f:28:22:db:90:f1:2b:f2:f9:40: c8:6c:39:b8:ec:37:d0:d1:9a:f8:70:04:08:88:2b: 6e:e6:72:5d:6f:71:c3:95:37:6f:eb:02:9c:cf:e6: eb:91:ef:ad:c0:f3:f3:3f:3a:dc:ec:0a:5a:87:71: 7e:69:56:24:1c:c5:fa:45:f8:30:91:fd:83:1b:c6: 76:51:76:c4:fb:7a:ff:30:de:e3:ed:b2:21:e6:e5: 8f:ef:6c:0d:2e:fa:fd:ad:53:1d:47:b1:81:bd:55: 81:c1:ce:b1:4a:25:47:c7:db:6b:78:0b:92:0f:11: b7:e6:10:f1:f2:f0:58:79:bc:18:e3:93:a4:0b:6c: b1:b2:32:d6:01:67:0d:b4:80:fb:88:ed:cf:7f:46: 1f:08:11:42:8b:35:11:09:db:47:ed:9f:cc:b2:5c: c2:f8:31:fc:62:a1:e1:73:a5:43:18:4d:36:21:14: 1d:20:0b:b9:cc:56:ee:78:3d:6b:8d:b2:4f:30:03: cd:25:42:1f:81:16:cf:c2:b1:76:1e:35:05:55:ef: 62:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:89:38:95:EA:A6:B5:01:76:80:E2:67:96:FF:59:83:10:FE:3E:E2 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:04:79:bf:b8:fb:40:da:9d:ee:52:48:9c:66:b6:7e:81:66: b5:2f:c1:45:3c:10:a6:1e:f5:34:3c:6e:5e:22:f7:6b:43:70: 2e:c4:33:4e:f3:56:d7:5d:04:8b:a0:c0:d4:3a:63:8f:46:ca: d6:7e:5f:47:f2:78:ea:ec:61:01:ef:74:87:30:ef:b0:53:bf: 27:49:d2:a4:47:b8:9c:40:13:bb:b8:f8:54:15:74:63:9a:93: c0:0e:f0:9a:b7:20:3e:ca:4e:04:14:18:e6:2a:d1:8f:45:4f: 32:23:90:ac:1b:19:96:2c:57:bc:8d:b8:ea:ad:cf:a3:b9:75: c1:13:5c:52:98:e3:46:ce:77:c2:9f:98:f5:a9:fe:a1:fe:70: 1a:1b:f6:46:55:f8:53:f0:c2:80:f2:28:a0:22:b4:88:fb:d9: bd:0c:e5:7b:b3:4c:34:78:ae:ba:f5:ab:96:dc:88:90:90:77: ef:a5:fa:2e:cb:0f:1c:40:2b:4f:0f:69:19:d9:5a:44:4c:64: c3:8d:8f:74:16:ce:14:f9:52:bc:72:dd:8e:31:ac:7a:61:e6: e5:ab:c3:b7:d9:0d:4e:04:b3:49:e0:d7:da:3d:0d:02:c0:fb: 17:28:a8:11:d6:d0:86:6c:c9:38:fd:a7:3a:ea:a9:d4:2b:96: 20:00:62:5c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUxMDE4MjMwMTU0WhcNMjUxMDI1MjMwMTU0WjAYMRYwFAYD VQQDEw02OGY0MWM2Mi03OTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApSeDECtbuMwewgcVAJA+1aNrQcx9VVVf7TVbRyOHqjTUVQhppt7mAX7kcg+i UjafiT8oItuQ8Svy+UDIbDm47DfQ0Zr4cAQIiCtu5nJdb3HDlTdv6wKcz+brke+t wPPzPzrc7Apah3F+aVYkHMX6Rfgwkf2DG8Z2UXbE+3r/MN7j7bIh5uWP72wNLvr9 rVMdR7GBvVWBwc6xSiVHx9treAuSDxG35hDx8vBYebwY45OkC2yxsjLWAWcNtID7 iO3Pf0YfCBFCizURCdtH7Z/MslzC+DH8YqHhc6VDGE02IRQdIAu5zFbueD1rjbJP MAPNJUIfgRbPwrF2HjUFVe9i4QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGWJOJXq prUBdoDiZ5b/WYMQ/j7iMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYBHm/uPtA2p3uUkicZrZ+gWa1L8FFPBCmHvU0PG5eIvdrQ3AuxDNO 81bXXQSLoMDUOmOPRsrWfl9H8njq7GEB73SHMO+wU78nSdKkR7icQBO7uPhUFXRj mpPADvCatyA+yk4EFBjmKtGPRU8yI5CsGxmWLFe8jbjqrc+juXXBE1xSmONGznfC n5j1qf6h/nAaG/ZGVfhT8MKA8iigIrSI+9m9DOV7s0w0eK669auW3IiQkHfvpfou yw8cQCtPD2kZ2VpETGTDjY90Fs4U+VK8ct2OMax6Yeblq8O32Q1OBLNJ4NfaPQ0C wPsXKKgR1tCGbMk4/ac66qnUK5YgAGJc -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:31 2025 by rpki-client