$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: y0fX/wiCz8wDBU/vhPwMQAObjZ80VAS8fgMeufAZIRc= Subject key identifier: AA:9B:4D:94:AF:FA:00:44:C0:46:F3:A2:AB:39:72:D6:5D:C2:E7:F0 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BBA Signing time: Sat 18 Oct 2025 19:47:35 +0000 Manifest this update: Sat 18 Oct 2025 19:47:34 +0000 Manifest next update: Sat 25 Oct 2025 19:47:34 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: ggYSQZqTPY/G9D+wKAk8L/PNDeNBJIT1Ji803v9LzvI=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:47:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Oct 18 19:47:34 2025 GMT Not After : Oct 25 19:47:34 2025 GMT Subject: CN=68f3eed7-e127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:42:dd:27:d3:6c:a6:73:e7:54:4b:41:ab:88: ba:19:27:f9:15:62:cf:b2:8a:98:d7:f8:e2:57:af: 6b:77:5a:7d:27:8b:24:57:8c:aa:af:14:44:b4:c1: 1f:e4:7c:73:11:8f:4b:dd:89:7c:74:41:bb:ec:c0: 40:2e:b9:34:30:e2:a5:64:23:50:6c:be:fa:f3:87: c3:26:00:dd:7b:34:c6:98:89:e0:d8:df:b4:cf:53: 86:9f:57:e6:4f:ce:f8:ce:01:b9:2a:92:40:86:c3: f3:c6:f3:7d:16:70:68:3e:9c:3f:98:89:5c:51:45: 90:dd:b6:21:62:80:eb:3c:5c:9a:7e:e1:74:84:3c: 11:7c:f3:89:3e:6b:d5:0a:d7:6e:f8:3a:ce:b2:23: 22:85:1a:c3:6b:32:5a:63:fc:52:1d:54:1f:fd:0f: 6b:8e:77:9a:17:12:54:d7:8f:ae:35:22:bc:9d:5f: ea:02:4b:a0:89:e0:d3:38:75:5b:d2:61:a6:f9:fe: c2:e3:76:b8:5c:9c:94:03:b6:54:da:aa:8c:6b:8c: 99:ba:ee:72:ed:67:9b:5c:47:80:0e:a2:71:07:8e: 72:70:51:76:9b:a6:f6:20:21:d3:1f:26:73:eb:42: 3c:23:4f:f6:ed:ef:cf:88:67:45:ed:1d:ab:6a:b9: 9c:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:9B:4D:94:AF:FA:00:44:C0:46:F3:A2:AB:39:72:D6:5D:C2:E7:F0 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:a9:65:2b:b8:d4:d6:d3:06:c5:df:9f:d4:b1:8e:a7:03:6f: 9e:1d:81:be:55:12:12:80:b8:26:ca:15:6d:18:a5:22:cc:dc: f0:5e:13:0f:e6:6e:4c:55:b7:7b:69:b4:9b:64:f3:52:87:22: b3:69:ec:98:23:e7:08:14:81:1d:01:93:f4:9c:f6:60:cf:dd: 40:bc:85:aa:85:c9:3b:26:b2:3a:ea:cb:0c:06:6f:73:aa:09: aa:c4:e8:f2:14:05:0b:10:ea:22:e2:a3:91:08:d4:e9:01:df: 29:90:86:77:66:ac:44:78:a1:98:20:e3:27:59:57:e9:4b:97: ae:49:f9:9d:4d:8b:d3:b2:c1:d8:b5:57:05:85:72:50:66:06: fc:d3:d0:41:f5:7e:bf:95:d2:5b:19:46:82:bd:89:fc:08:e5: a3:9d:82:fe:af:79:8f:05:74:f5:cd:db:1e:e0:aa:d1:e9:28: e7:88:2c:de:ec:f7:85:9c:b5:e7:21:f4:3c:93:82:9b:91:b7: 0d:72:df:8f:68:73:b7:41:ed:f1:cb:5f:ac:98:f1:b2:06:5a: 91:d7:f4:93:47:a3:89:c5:28:ec:bf:36:e4:aa:4d:e7:d0:11: 8f:51:2e:5b:66:02:a8:4c:3c:dc:09:7c:1d:46:e6:05:9d:d4: d3:5c:e3:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUxMDE4MTk0NzM0WhcNMjUxMDI1MTk0NzM0WjAYMRYwFAYD VQQDEw02OGYzZWVkNy1lMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ULdJ9NspnPnVEtBq4i6GSf5FWLPsoqY1/jiV69rd1p9J4skV4yqrxREtMEf 5HxzEY9L3Yl8dEG77MBALrk0MOKlZCNQbL7684fDJgDdezTGmIng2N+0z1OGn1fm T874zgG5KpJAhsPzxvN9FnBoPpw/mIlcUUWQ3bYhYoDrPFyafuF0hDwRfPOJPmvV Ctdu+DrOsiMihRrDazJaY/xSHVQf/Q9rjneaFxJU14+uNSK8nV/qAkugieDTOHVb 0mGm+f7C43a4XJyUA7ZU2qqMa4yZuu5y7WebXEeADqJxB45ycFF2m6b2ICHTHyZz 60I8I0/27e/PiGdF7R2rarmcnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqbTZSv +gBEwEbzoqs5ctZdwufwMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8qWUruNTW0wbF35/UsY6nA2+eHYG+VRISgLgmyhVtGKUizNzwXhMP 5m5MVbd7abSbZPNShyKzaeyYI+cIFIEdAZP0nPZgz91AvIWqhck7JrI66ssMBm9z qgmqxOjyFAULEOoi4qORCNTpAd8pkIZ3ZqxEeKGYIOMnWVfpS5euSfmdTYvTssHY tVcFhXJQZgb809BB9X6/ldJbGUaCvYn8COWjnYL+r3mPBXT1zdse4KrR6SjniCze 7PeFnLXnIfQ8k4KbkbcNct+PaHO3Qe3xy1+smPGyBlqR1/STR6OJxSjsvzbkqk3n 0BGPUS5bZgKoTDzcCXwdRuYFndTTXOOc -----END CERTIFICATE-----Generated at Mon Oct 20 18:37:54 2025 by rpki-client