$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: YHci8eORknJ7QYtRhOGeL9RaPmdd/KR4eFMODMMEO9c= Subject key identifier: 81:12:F7:11:60:99:A2:D0:5E:CB:B6:0E:A9:E8:AD:83:06:EC:3B:4C Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09EE Signing time: Sat 18 Oct 2025 20:55:03 +0000 Manifest this update: Sat 18 Oct 2025 20:55:02 +0000 Manifest next update: Sat 25 Oct 2025 20:55:02 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: o/4eWjeNkjXHkq7xktecrWGKHX3SPI6Hfn+sQKhE9Iw=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:55:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2548 (0x9f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Oct 18 20:55:02 2025 GMT Not After : Oct 25 20:55:02 2025 GMT Subject: CN=68f3fea6-4f17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fa:82:28:27:e7:37:44:04:20:4c:0c:c5:9f: e6:80:b8:4b:cd:53:61:68:dd:2f:5a:22:da:c4:76: 94:35:88:80:61:d6:09:7f:c3:70:bf:85:b2:ae:cb: 25:f6:2f:15:cd:39:60:23:32:c7:48:cd:04:58:db: fe:cb:56:f4:51:11:a9:cc:b1:80:64:51:48:72:b0: 3d:59:32:41:05:c8:0f:96:65:e4:91:92:3b:74:14: a1:25:c2:ae:05:45:58:e7:19:e2:03:6a:e9:8a:40: eb:06:de:9e:eb:bf:9f:8b:3b:7e:d1:9b:4a:7d:f9: 22:c7:27:ce:c0:6d:60:7e:98:c8:12:71:85:f5:ae: 11:fa:f9:8a:4b:20:2c:75:a6:53:69:11:7c:ee:b1: cf:61:c9:d6:1b:b7:82:f8:bd:69:9b:4c:64:95:53: 17:80:a2:6d:31:35:17:f0:f9:01:56:0e:60:a8:85: c3:29:4d:98:0a:b4:9d:b4:0f:be:f0:f1:63:b4:c7: de:f6:20:0d:b3:1c:0d:01:f6:9b:81:db:4e:6d:87: 13:64:51:65:4e:a0:7e:08:de:8f:d4:ff:11:23:b3: d7:a2:96:ba:3a:25:73:e4:81:0f:71:88:11:52:27: fa:72:b9:58:38:28:5b:80:79:db:c3:a8:f7:09:9f: 56:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:12:F7:11:60:99:A2:D0:5E:CB:B6:0E:A9:E8:AD:83:06:EC:3B:4C X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:3b:5e:64:7c:c6:d0:00:04:56:c1:d3:0d:78:34:0d:06:81: d9:83:a2:c7:f4:93:0c:56:4a:22:68:72:94:ee:ba:c6:61:45: 03:a8:c8:87:db:1b:db:98:2c:0f:10:02:33:cd:68:fa:01:49: 1f:89:25:4c:39:77:15:82:ac:06:97:9a:bf:ca:09:d0:52:9a: 84:02:89:79:85:8a:23:24:1a:c3:d8:a2:da:ad:7b:5f:3c:45: 43:9f:a0:8b:c2:62:30:34:fb:a3:a9:e9:30:ed:19:29:24:ac: 23:3f:f1:53:5e:9c:fa:38:51:29:9d:35:be:65:e3:92:b6:e6: e5:45:71:b8:55:89:01:28:87:2d:93:92:38:b7:79:52:c8:ad: 99:90:e3:54:8f:3c:44:d9:e8:96:95:a9:bc:fd:43:2b:8a:cb: 89:78:86:1a:80:25:48:25:1c:8c:dc:11:2a:28:50:b7:df:b9: ff:ae:54:13:98:03:fe:6c:50:ff:ea:5e:0a:ba:34:44:53:42: 10:80:f9:c9:3a:a2:85:ea:cc:59:e9:98:de:63:50:ca:de:cc: aa:b3:ad:45:1c:a3:23:15:70:5f:fc:40:65:e7:fa:33:fc:19: db:db:6a:b1:0c:f8:01:64:16:0c:e1:0f:5a:5e:ab:80:d2:dd: a8:84:48:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUxMDE4MjA1NTAyWhcNMjUxMDI1MjA1NTAyWjAYMRYwFAYD VQQDEw02OGYzZmVhNi00ZjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvqCKCfnN0QEIEwMxZ/mgLhLzVNhaN0vWiLaxHaUNYiAYdYJf8Nwv4Wyrssl 9i8VzTlgIzLHSM0EWNv+y1b0URGpzLGAZFFIcrA9WTJBBcgPlmXkkZI7dBShJcKu BUVY5xniA2rpikDrBt6e67+fizt+0ZtKffkixyfOwG1gfpjIEnGF9a4R+vmKSyAs daZTaRF87rHPYcnWG7eC+L1pm0xklVMXgKJtMTUX8PkBVg5gqIXDKU2YCrSdtA++ 8PFjtMfe9iANsxwNAfabgdtObYcTZFFlTqB+CN6P1P8RI7PXopa6OiVz5IEPcYgR Uif6crlYOChbgHnbw6j3CZ9WvQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIES9xFg maLQXsu2DqnorYMG7DtMMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6O15kfMbQAARWwdMNeDQNBoHZg6LH9JMMVkoiaHKU7rrGYUUDqMiH 2xvbmCwPEAIzzWj6AUkfiSVMOXcVgqwGl5q/ygnQUpqEAol5hYojJBrD2KLarXtf PEVDn6CLwmIwNPujqekw7RkpJKwjP/FTXpz6OFEpnTW+ZeOStublRXG4VYkBKIct k5I4t3lSyK2ZkONUjzxE2eiWlam8/UMrisuJeIYagCVIJRyM3BEqKFC337n/rlQT mAP+bFD/6l4KujREU0IQgPnJOqKF6sxZ6ZjeY1DK3syqs61FHKMjFXBf/EBl5/oz /Bnb22qxDPgBZBYM4Q9aXquA0t2ohEhl -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:16 2025 by rpki-client