$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: gq7iLOfGK33RwvhNKnnb5LacEwDhPtwpf7ANfHbRsII= Subject key identifier: 2B:73:18:F2:AD:8F:93:90:BE:CE:98:64:58:D5:FE:74:56:9D:DB:DC Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 018C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 0189 Signing time: Sun 19 Oct 2025 06:08:27 +0000 Manifest this update: Sun 19 Oct 2025 06:08:27 +0000 Manifest next update: Sun 26 Oct 2025 06:08:27 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: +mCkpjSWN3ZS0DTlqUNcp7DLy/ecqQ+BPxvWXyrYLhQ=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: BXgvpIKBLGyFXlTbrcn5D97Cd/AVN/R0856bn7qg3E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:08:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Oct 19 06:08:27 2025 GMT Not After : Oct 26 06:08:27 2025 GMT Subject: CN=68f4805b-6808 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ae:ec:6c:df:cf:2d:5e:0a:2c:50:dd:71:c9: ba:ad:5f:b8:fc:9b:b7:6b:00:16:61:1c:61:2a:80: d8:7d:d0:84:90:6e:d7:ca:28:2f:f0:46:81:a3:ed: 0b:66:10:2c:0f:d0:a2:f1:d2:27:ab:4e:66:21:db: fe:d5:c8:c5:a5:0c:9d:d3:55:4f:20:28:c3:49:c4: fc:e8:78:12:14:77:89:29:03:fb:13:6e:e5:ce:02: d1:b7:75:68:98:12:18:ed:59:4a:18:43:80:fc:a4: 16:fe:5f:4b:4e:ca:72:d1:b8:15:e6:b7:30:bf:cd: 1c:3c:5b:10:18:d6:b3:68:43:9b:97:26:63:20:fa: a4:3e:87:16:10:f3:3e:1d:d3:8d:fc:cc:04:52:6e: 88:56:07:d1:83:71:bd:61:51:bb:95:fa:03:4e:2d: ce:ba:16:86:13:e5:c1:5e:a2:17:57:13:33:23:a9: f9:c1:f8:62:3e:30:63:95:d5:7e:dc:6d:17:f0:25: a8:0a:d5:b5:aa:5a:61:1d:c0:66:33:ee:28:e8:f2: 24:24:29:f7:fa:79:01:2f:6c:1e:96:b9:b4:d8:d0: 48:b3:0f:35:b6:0e:77:29:5e:65:56:f9:a9:93:48: ba:3a:ea:99:3b:92:3a:69:78:cf:b7:56:f2:db:7e: 6c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:73:18:F2:AD:8F:93:90:BE:CE:98:64:58:D5:FE:74:56:9D:DB:DC X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:d1:5f:7b:ba:c9:a2:97:22:53:c7:8d:02:0d:e2:2a:6b:80: 5f:6e:ac:6c:5b:d9:68:aa:b8:fe:e0:c5:2d:70:05:06:16:c8: bd:26:19:f5:a5:d6:2e:a6:b6:2f:fd:63:83:0f:81:e0:50:49: b3:0c:ef:10:ec:20:68:f1:6f:c7:d1:80:8f:0e:5c:b8:21:9d: e5:dd:a7:8a:e1:d6:a7:e5:11:b8:46:9e:9a:39:ba:5b:ff:41: f6:6c:14:0a:6d:53:16:90:09:01:30:38:39:04:e7:d7:18:60: 79:96:5c:39:6d:9c:44:13:f0:f8:d8:96:62:e7:e1:99:85:af: 99:ec:95:d9:b2:06:48:5b:e0:4c:32:ac:2d:94:9e:57:f8:cf: 9a:8b:2f:5d:1a:49:20:47:19:b3:f0:3c:0c:bf:e3:a8:00:88: 2d:8f:68:3a:9d:29:41:5d:9f:08:ae:06:a8:04:c8:4c:24:13: a5:f1:3d:a0:d4:49:98:ed:2e:7b:0f:57:a3:14:09:9b:7e:58: e5:e6:c1:70:08:e0:1b:c9:ac:c9:20:56:45:35:37:83:01:47: 6b:0a:d3:d2:b2:fe:14:03:ee:65:a9:91:bc:5b:05:81:a8:b1: 29:cf:da:1b:f8:b4:f1:66:84:0d:6b:4f:a3:5b:57:3e:c3:75: 59:75:fe:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUxMDE5MDYwODI3WhcNMjUxMDI2MDYwODI3WjAYMRYwFAYD VQQDEw02OGY0ODA1Yi02ODA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq7sbN/PLV4KLFDdccm6rV+4/Ju3awAWYRxhKoDYfdCEkG7Xyigv8EaBo+0L ZhAsD9Ci8dInq05mIdv+1cjFpQyd01VPICjDScT86HgSFHeJKQP7E27lzgLRt3Vo mBIY7VlKGEOA/KQW/l9LTspy0bgV5rcwv80cPFsQGNazaEOblyZjIPqkPocWEPM+ HdON/MwEUm6IVgfRg3G9YVG7lfoDTi3OuhaGE+XBXqIXVxMzI6n5wfhiPjBjldV+ 3G0X8CWoCtW1qlphHcBmM+4o6PIkJCn3+nkBL2welrm02NBIsw81tg53KV5lVvmp k0i6OuqZO5I6aXjPt1by235sHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtzGPKt j5OQvs6YZFjV/nRWndvcMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCY0V97usmilyJTx40CDeIqa4BfbqxsW9loqrj+4MUtcAUGFsi9Jhn1 pdYuprYv/WODD4HgUEmzDO8Q7CBo8W/H0YCPDly4IZ3l3aeK4dan5RG4Rp6aObpb /0H2bBQKbVMWkAkBMDg5BOfXGGB5llw5bZxEE/D42JZi5+GZha+Z7JXZsgZIW+BM MqwtlJ5X+M+aiy9dGkkgRxmz8DwMv+OoAIgtj2g6nSlBXZ8IrgaoBMhMJBOl8T2g 1EmY7S57D1ejFAmbfljl5sFwCOAbyazJIFZFNTeDAUdrCtPSsv4UA+5lqZG8WwWB qLEpz9ob+LTxZoQNa0+jW1c+w3VZdf5u -----END CERTIFICATE-----Generated at Mon Oct 20 07:15:38 2025 by rpki-client