$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: 5LaSlQNG3bWOaw8MNBOxwafvHScnhfMvCHmo/THiN2Q= Subject key identifier: CF:C0:EE:E8:E2:39:32:41:6F:1A:74:2B:B0:08:3C:FD:07:79:39:D3 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C58 Signing time: Sat 18 Oct 2025 19:24:27 +0000 Manifest this update: Sat 18 Oct 2025 19:24:27 +0000 Manifest next update: Sat 25 Oct 2025 19:24:27 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: yfpsPBub7AkiWLdBHSZq0dCCQAqcv4T5IrK7pdo9xUM=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: J1Y3R18xnrLrxVnTd6dnJAcJxU9kFVJTgj8vMihGb8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:24:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3182 (0xc6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Oct 18 19:24:27 2025 GMT Not After : Oct 25 19:24:27 2025 GMT Subject: CN=68f3e96b-5738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e5:7c:0b:00:f6:19:6d:a8:a0:ba:17:13:1f: 97:24:ba:a5:a0:73:a0:c7:c3:12:ba:8c:65:dd:6a: c0:1e:79:a4:55:8e:3e:6a:c9:b0:67:5e:56:db:f5: a9:db:f6:41:9f:28:a1:12:f3:d3:4f:6c:97:e3:c0: d8:2f:c1:b5:06:83:c1:87:4d:a2:f0:1c:c7:50:23: f9:bb:ed:0d:39:bf:d9:c1:08:e1:9c:b4:ff:dc:07: 1a:8f:fe:30:cd:e7:63:33:79:9d:43:b3:55:0a:a3: 41:63:f1:25:6e:cd:51:0e:f5:e3:b6:84:28:6f:53: 95:38:58:ce:c4:31:80:85:a6:a2:74:1d:25:26:96: 6e:96:ce:7d:be:3f:b0:9f:db:26:53:b3:dd:e8:7b: bd:f0:eb:50:39:6d:70:48:b2:10:5e:b4:2d:61:a7: 14:09:ba:0a:be:ce:2d:01:cb:f8:14:ed:40:f1:1f: a4:72:6e:f1:6b:14:c4:1c:a2:d6:69:12:59:34:55: f5:ce:26:c8:5c:9d:9c:f8:b6:0f:59:a7:d6:71:7b: 64:f5:94:ee:c8:7a:3d:d0:52:45:a5:2f:1e:b4:2d: 31:b3:bd:47:77:72:f4:cb:56:51:5c:02:68:0d:a2: 55:0c:ce:f1:67:6f:67:95:bd:5f:b8:8d:2d:3e:5e: b9:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C0:EE:E8:E2:39:32:41:6F:1A:74:2B:B0:08:3C:FD:07:79:39:D3 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:2a:21:1b:ee:7f:88:f1:43:f3:7b:6d:7c:63:25:5e:39:f5: 73:7b:4a:a0:b7:f4:e9:94:ef:e6:7a:4e:f6:fc:b3:e6:52:06: aa:89:db:1c:90:44:ca:85:f8:d7:50:e9:bf:d5:17:64:09:a9: 2a:3c:dc:26:80:2a:48:32:c3:d8:e6:25:47:79:f3:8d:48:df: 17:8e:f1:e2:53:f1:04:46:09:37:87:30:c9:2d:e6:0f:2f:33: be:58:d2:d3:24:fb:57:db:73:73:4c:a6:c9:98:cc:80:ad:1e: 11:4b:ae:27:7a:5c:09:a4:d2:cf:f5:31:4a:f8:08:2b:84:b1: 69:74:bf:05:c7:8c:89:0e:32:81:4f:d1:a3:64:b7:1b:b0:02: 2a:87:b7:b4:c0:98:a1:71:af:4b:76:55:c4:12:9b:39:12:ad: 59:d7:27:1e:c0:e4:26:fb:1b:66:f8:ad:a6:36:81:d2:ef:56: 51:cb:30:e3:ca:26:49:2e:6a:4e:9c:17:0a:74:b2:1c:07:2f: 7a:35:8a:07:4e:e8:af:61:16:3a:a3:81:2c:51:0e:36:0b:f3: a5:56:6e:1e:dd:ea:6a:a6:f7:ac:a4:cf:47:62:25:b2:3a:66: fb:c7:6b:ad:d0:54:1c:74:05:dd:b1:74:18:ee:3c:bb:aa:22: 75:8a:11:54 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUxMDE4MTkyNDI3WhcNMjUxMDI1MTkyNDI3WjAYMRYwFAYD VQQDEw02OGYzZTk2Yi01NzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw+V8CwD2GW2ooLoXEx+XJLqloHOgx8MSuoxl3WrAHnmkVY4+asmwZ15W2/Wp 2/ZBnyihEvPTT2yX48DYL8G1BoPBh02i8BzHUCP5u+0NOb/ZwQjhnLT/3Acaj/4w zedjM3mdQ7NVCqNBY/Elbs1RDvXjtoQob1OVOFjOxDGAhaaidB0lJpZuls59vj+w n9smU7Pd6Hu98OtQOW1wSLIQXrQtYacUCboKvs4tAcv4FO1A8R+kcm7xaxTEHKLW aRJZNFX1zibIXJ2c+LYPWafWcXtk9ZTuyHo90FJFpS8etC0xs71Hd3L0y1ZRXAJo DaJVDM7xZ29nlb1fuI0tPl65cQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM/A7uji OTJBbxp0K7AIPP0HeTnTMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFKiEb7n+I8UPze218YyVeOfVze0qgt/TplO/mek72/LPmUgaqidsc kETKhfjXUOm/1RdkCakqPNwmgCpIMsPY5iVHefONSN8XjvHiU/EERgk3hzDJLeYP LzO+WNLTJPtX23NzTKbJmMyArR4RS64nelwJpNLP9TFK+AgrhLFpdL8Fx4yJDjKB T9GjZLcbsAIqh7e0wJihca9LdlXEEps5Eq1Z1ycewOQm+xtm+K2mNoHS71ZRyzDj yiZJLmpOnBcKdLIcBy96NYoHTuivYRY6o4EsUQ42C/OlVm4e3epqpvespM9HYiWy Omb7x2ut0FQcdAXdsXQY7jy7qiJ1ihFU -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:36 2025 by rpki-client