$ rpki-client -vvf rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft File: KmvwVK0j6tLbOVMbZGcmypRaxJI.mft (raw, json) Hash identifier: OH8cgYy7CyOQADMkztDY1d8MaVTmz+Tu3IqZ627gNOc= Subject key identifier: 37:A2:C0:85:65:EF:8C:B8:E7:6D:2B:A0:87:A0:91:44:C6:18:55:09 Authority key identifier: 2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 Certificate issuer: /CN=A918AB7E/serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Certificate serial: 5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft Manifest number: 5D Signing time: Fri 19 Sep 2025 07:52:51 +0000 Manifest this update: Fri 19 Sep 2025 07:52:50 +0000 Manifest next update: Fri 26 Sep 2025 07:52:50 +0000 Files and hashes: 1: KmvwVK0j6tLbOVMbZGcmypRaxJI.crl (hash: uxs38rgSJ2x323RVhXqpbghvA3uxvhSKxl631Y8Mn94=) 2: 3CF5A86C088211F0BB90C23EC4F9AE02.roa (hash: WjhNkxKHghzjWbpSoIkFccSDxcFZFh5y2Re0ypkmeM8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AB7E, serialNumber=2A6BF054AD23EAD2DB39531B646726CA945AC492 Validity Not Before: Sep 19 07:52:50 2025 GMT Not After : Sep 26 07:52:50 2025 GMT Subject: CN=68cd0bd2-7948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b0:e1:ac:2b:60:a3:97:9f:ee:d0:49:c5:51: 05:7e:40:32:2e:10:f5:af:d8:3a:3d:73:86:f4:fe: e2:a5:67:22:73:98:7a:dd:f8:e0:51:ae:57:05:de: 4b:fd:46:9a:71:15:40:36:93:fb:a0:3b:07:2b:81: b4:38:f6:61:b8:0e:2a:54:13:03:40:a9:59:d9:78: d4:f7:d8:5a:88:74:8f:f4:48:a8:5b:76:7a:4d:fa: f6:d2:31:5d:07:6c:c6:ce:c2:eb:0c:c4:fe:26:e4: 72:18:27:ff:72:bf:92:a9:3e:7c:20:0a:71:d9:0e: fd:7b:79:55:b4:d7:5e:3e:a1:f9:e0:1e:73:db:58: e3:b7:b1:7d:dc:a9:b0:a8:de:bd:6d:a7:e3:da:72: 4f:35:8d:ee:f0:35:7f:cf:ea:ba:b4:80:22:f0:fb: 4a:ef:e7:43:6f:f9:a0:bb:90:14:0b:46:56:15:6e: 0f:ef:25:bb:33:f6:c9:37:a8:b6:ae:58:05:e2:0a: 8a:f4:c6:61:2d:0e:00:0f:a7:56:cc:11:aa:a5:18: f8:d1:4f:f7:fd:f1:06:71:b1:fa:30:d5:e9:91:14: 8f:47:c2:f8:43:3d:48:68:b2:e0:1b:34:00:8e:07: 21:7a:02:71:ae:66:b2:d7:1d:aa:b9:3e:b6:66:d2: 1d:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A2:C0:85:65:EF:8C:B8:E7:6D:2B:A0:87:A0:91:44:C6:18:55:09 X509v3 Authority Key Identifier: keyid:2A:6B:F0:54:AD:23:EA:D2:DB:39:53:1B:64:67:26:CA:94:5A:C4:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmvwVK0j6tLbOVMbZGcmypRaxJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AB7E/F759796E088111F0BAC3413EC4F9AE02/KmvwVK0j6tLbOVMbZGcmypRaxJI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:a1:fb:07:0a:eb:05:e0:0b:d8:0c:ea:11:d0:59:25:7d:fc: 4a:3d:51:ed:4d:11:af:5f:3a:6e:f0:78:d7:74:7d:f4:fb:d3: 6e:ae:4c:48:46:65:89:69:70:34:51:da:b9:a0:20:73:fd:26: 92:7d:e1:87:ed:38:e3:a0:2f:bc:a4:f1:93:80:d2:17:7b:98: 8c:56:d2:47:82:e9:5d:01:ea:c1:b2:1a:fd:68:98:04:5b:5c: c8:01:82:90:8f:0d:02:c4:ca:ee:2a:52:59:38:94:e6:a8:a8: 7a:ca:a2:70:9a:46:a8:09:73:36:e9:c1:d8:91:16:d4:f1:b8: e7:fa:11:f2:72:b7:de:6a:9e:b2:9a:f2:b5:12:ef:d8:d9:84: 6c:26:5e:cc:61:42:01:e5:de:b4:8a:6d:4a:e4:ae:c5:f2:58: 63:4d:f5:bb:3a:e2:8d:03:5b:41:c9:71:df:fa:35:da:5a:ea: 85:c6:60:68:03:5f:56:ea:c1:c9:f1:d9:78:d0:6c:96:e1:dd: 43:39:df:d6:b3:62:05:c1:f4:50:5b:52:85:b0:76:17:15:2f: 05:54:31:4f:78:ee:ce:6b:07:c7:2b:84:39:d1:63:a9:63:5b: 22:d5:d2:5a:03:72:f5:7d:00:6d:9f:01:be:27:df:00:95:b7: a6:7d:b8:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QUI3RTExMC8GA1UEBRMoMkE2QkYwNTRBRDIzRUFEMkRCMzk1MzFCNjQ2NzI2Q0E5 NDVBQzQ5MjAeFw0yNTA5MTkwNzUyNTBaFw0yNTA5MjYwNzUyNTBaMBgxFjAUBgNV BAMTDTY4Y2QwYmQyLTc5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCasOGsK2Cjl5/u0EnFUQV+QDIuEPWv2Do9c4b0/uKlZyJzmHrd+OBRrlcF3kv9 RppxFUA2k/ugOwcrgbQ49mG4DipUEwNAqVnZeNT32FqIdI/0SKhbdnpN+vbSMV0H bMbOwusMxP4m5HIYJ/9yv5KpPnwgCnHZDv17eVW0114+ofngHnPbWOO3sX3cqbCo 3r1tp+Pack81je7wNX/P6rq0gCLw+0rv50Nv+aC7kBQLRlYVbg/vJbsz9sk3qLau WAXiCor0xmEtDgAPp1bMEaqlGPjRT/f98QZxsfow1emRFI9HwvhDPUhosuAbNACO ByF6AnGuZrLXHaq5PrZm0h1ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUN6LAhWXv jLjnbSugh6CRRMYYVQkwHwYDVR0jBBgwFoAUKmvwVK0j6tLbOVMbZGcmypRaxJIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBQjdFL0Y3NTk3OTZFMDg4 MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRMYk9WTWJaR2NteXBSYXhK SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS212d1ZLMGo2dExiT1ZNYlpHY215cFJheEpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThB QjdFL0Y3NTk3OTZFMDg4MTExRjBCQUMzNDEzRUM0RjlBRTAyL0ttdndWSzBqNnRM Yk9WTWJaR2NteXBSYXhKSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAIih+wcK6wXgC9gM6hHQWSV9/Eo9Ue1NEa9fOm7weNd0ffT7026uTEhG ZYlpcDRR2rmgIHP9JpJ94YftOOOgL7yk8ZOA0hd7mIxW0keC6V0B6sGyGv1omARb XMgBgpCPDQLEyu4qUlk4lOaoqHrKonCaRqgJczbpwdiRFtTxuOf6EfJyt95qnrKa 8rUS79jZhGwmXsxhQgHl3rSKbUrkrsXyWGNN9bs64o0DW0HJcd/6Ndpa6oXGYGgD X1bqwcnx2XjQbJbh3UM539azYgXB9FBbUoWwdhcVLwVUMU947s5rB8crhDnRY6lj WyLV0loDcvV9AG2fAb4n3wCVt6Z9uA4= -----END CERTIFICATE-----Generated at Fri Sep 19 10:20:23 2025 by rpki-client