$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: Ju1iN6mibCwosQHqflIYkx3MZ4/cCQl+lUm/nxaD+iw= Subject key identifier: 2D:DC:D3:4E:7E:E5:A3:15:AB:A1:38:EC:07:09:8A:00:AF:13:9C:62 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 73 Signing time: Mon 03 Nov 2025 06:52:30 +0000 Manifest this update: Mon 03 Nov 2025 06:52:30 +0000 Manifest next update: Mon 10 Nov 2025 06:52:30 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: nTrkbk2A61UVphRpaX2ccycBD2j6u/0kP16BJXnJSpE=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:52:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Nov 3 06:52:30 2025 GMT Not After : Nov 10 06:52:30 2025 GMT Subject: CN=6908512e-d426 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:9b:95:09:c7:b6:72:ef:3a:d6:35:42:ba:83: 13:da:b0:f2:1f:0b:87:2c:56:1a:55:09:56:19:89: dc:79:cf:9d:31:31:c8:15:3a:82:8d:37:7b:d3:5a: 5d:9f:e5:5c:97:04:4c:41:1c:70:a4:5e:66:d3:28: dd:20:a5:9b:77:2b:29:4a:71:dc:c1:88:dd:a0:bc: 10:c4:78:f9:d8:7d:f6:68:93:5f:ce:45:16:4e:7b: 7e:21:b9:d9:5e:26:3a:68:75:62:10:9a:eb:90:d1: b1:97:b6:8f:ad:45:5d:eb:0c:f4:35:dd:82:13:3e: a7:43:e5:08:15:5c:b6:65:b0:24:38:c7:ef:c0:35: e0:06:41:be:ca:23:8d:9a:44:f9:56:0c:3a:02:37: 2a:d7:18:59:55:06:45:35:36:c9:0d:c6:64:d7:55: a1:8c:77:65:52:82:36:a0:6d:28:28:fd:22:0d:c6: 79:26:ab:30:8e:ab:38:77:9a:cc:41:cc:87:68:ac: 97:e7:50:3b:ef:2d:44:70:e1:2d:d8:2b:43:1d:d0: 59:ec:4c:de:23:56:36:4b:59:17:22:3e:9d:7d:63: 36:5c:b4:a0:83:44:e7:f5:69:4b:88:3d:97:f9:e0: e7:cd:4b:10:bb:af:21:9d:aa:e3:2b:b3:63:96:5e: f1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:DC:D3:4E:7E:E5:A3:15:AB:A1:38:EC:07:09:8A:00:AF:13:9C:62 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:8e:89:9e:54:2d:65:53:cc:43:2b:45:62:29:47:fc:f7:55: 59:f2:bf:94:f4:61:88:55:67:c9:27:82:4c:41:ee:57:22:9d: 44:77:1e:37:ea:07:ab:7d:b1:7e:ec:40:94:55:d2:da:1c:61: eb:39:87:fe:a9:b3:35:8e:d3:a8:52:e8:83:a0:8b:e5:9c:20: bb:6f:d0:e4:0d:cd:63:ef:2a:09:68:b4:43:bb:55:49:09:1c: b4:dd:65:41:2f:bf:6a:32:79:c1:e3:59:1d:c3:59:bc:9d:fc: a4:0e:bb:1d:6b:ab:ac:53:61:04:31:5e:2c:d0:41:b2:fe:b4: ad:cb:3b:1f:7e:4d:83:2a:25:8b:34:6a:75:9d:57:4c:86:b2: 0d:d4:d1:8f:6d:f6:ac:58:09:4b:f5:d6:0a:b6:d9:f5:df:87: ea:72:3c:76:d2:f0:c9:37:e9:9e:a4:9e:47:fe:4d:40:26:16: 66:09:cc:53:49:d7:b3:11:a3:22:3e:1c:1f:7b:5e:be:7f:cd: 91:b4:f0:57:40:3e:db:1f:58:af:f5:82:2b:22:15:48:50:64: 00:67:72:68:58:d4:d4:69:9f:fd:a9:62:e7:c3:14:14:c2:cd: 9d:61:b5:be:51:b4:b4:1e:86:a5:47:c0:02:26:b7:cd:9a:8a: a2:6b:2c:34 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTExMDMwNjUyMzBaFw0yNTExMTAwNjUyMzBaMBgxFjAUBgNV BAMTDTY5MDg1MTJlLWQ0MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGm5UJx7Zy7zrWNUK6gxPasPIfC4csVhpVCVYZidx5z50xMcgVOoKNN3vTWl2f 5VyXBExBHHCkXmbTKN0gpZt3KylKcdzBiN2gvBDEePnYffZok1/ORRZOe34hudle JjpodWIQmuuQ0bGXto+tRV3rDPQ13YITPqdD5QgVXLZlsCQ4x+/ANeAGQb7KI42a RPlWDDoCNyrXGFlVBkU1NskNxmTXVaGMd2VSgjagbSgo/SINxnkmqzCOqzh3msxB zIdorJfnUDvvLURw4S3YK0Md0FnsTN4jVjZLWRciPp19YzZctKCDROf1aUuIPZf5 4OfNSxC7ryGdquMrs2OWXvE9AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULdzTTn7l oxWroTjsBwmKAK8TnGIwHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMSOiZ5ULWVTzEMrRWIpR/z3VVnyv5T0YYhVZ8kngkxB7lcinUR3Hjfq B6t9sX7sQJRV0tocYes5h/6pszWO06hS6IOgi+WcILtv0OQNzWPvKglotEO7VUkJ HLTdZUEvv2oyecHjWR3DWbyd/KQOux1rq6xTYQQxXizQQbL+tK3LOx9+TYMqJYs0 anWdV0yGsg3U0Y9t9qxYCUv11gq22fXfh+pyPHbS8Mk36Z6knkf+TUAmFmYJzFNJ 17MRoyI+HB97Xr5/zZG08FdAPtsfWK/1gisiFUhQZABncmhY1NRpn/2pYufDFBTC zZ1htb5RtLQehqVHwAImt82aiqJrLDQ= -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:43 2025 by rpki-client