$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: c+bKDRsEYNTpCzdFwi90p6Aa6pXrk626ytYt9//BKis= Subject key identifier: 24:0F:C3:46:87:92:CD:A2:79:A5:6C:0D:F2:4D:81:E8:F4:5A:DF:BC Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 0189 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 0186 Signing time: Wed 17 Sep 2025 04:07:05 +0000 Manifest this update: Wed 17 Sep 2025 04:07:04 +0000 Manifest next update: Wed 24 Sep 2025 04:07:04 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: CNMgIEQ26yVUVjg8wXwHA7xgP3pprXO37r8SIZkIqQg=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:07:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Sep 17 04:07:04 2025 GMT Not After : Sep 24 04:07:04 2025 GMT Subject: CN=68ca33e8-26d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:eb:7a:9c:c0:37:74:ca:61:f5:e3:49:cd:55: 16:52:60:6e:9b:5a:96:36:4b:d2:7d:a8:d1:13:d4: 59:91:2f:d0:82:fa:b5:25:42:8b:40:99:55:0e:76: 23:ca:67:c2:ac:b6:09:d5:05:84:1a:54:99:9c:00: ea:25:7f:ec:99:d8:10:b8:53:61:31:52:f5:b0:78: a3:27:15:06:62:cb:b5:c3:88:7b:a6:e3:34:80:d8: 96:e2:7d:37:67:56:c5:c5:cd:7e:67:60:26:b0:7d: 2e:46:3a:33:21:56:f1:2b:d8:0c:fa:88:7a:36:70: 97:2f:c3:93:6c:c0:bd:e6:11:27:c6:97:2d:fe:2f: 4d:c5:84:1e:d0:9c:5d:90:92:71:dd:d6:4f:24:16: f6:20:13:c7:f0:58:51:f4:ae:28:22:1f:d4:d2:0f: 51:57:1c:ff:4c:5b:e3:8e:dd:11:8b:2d:e9:19:e7: ac:bd:b9:b6:fe:08:93:7f:4b:07:aa:aa:a6:4a:0c: 2b:7b:c5:a5:a8:34:06:8f:ce:9d:1f:9f:a1:46:57: e0:24:39:07:e3:0e:8a:5a:4d:68:23:b7:f3:18:64: 61:c2:f7:c6:2e:a3:eb:18:04:a1:f1:78:0f:81:43: 1d:c3:75:10:d5:67:fb:94:04:82:81:58:6a:1c:1b: 59:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:0F:C3:46:87:92:CD:A2:79:A5:6C:0D:F2:4D:81:E8:F4:5A:DF:BC X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:21:4e:fc:7d:73:5d:13:64:d8:5d:3b:32:c2:32:ca:ff:00: 40:a1:5c:c4:df:f8:f9:db:36:80:6c:7f:ac:79:91:20:3f:c8: 22:21:39:18:c1:61:ca:3f:7f:d3:57:2b:7c:8a:53:78:0a:4c: 12:f1:2a:c1:9b:19:50:4c:7c:27:c5:5d:b3:87:f5:6a:87:fa: 70:20:dd:f5:2d:8c:f8:31:ed:23:3e:ba:30:b5:9f:8c:f4:f1: b9:54:33:55:6f:78:b9:80:75:e5:0e:46:85:8b:58:96:6f:92: a9:f3:e9:7b:e0:c2:c8:69:69:10:d4:7e:d8:10:a5:fc:d0:9c: 41:81:f5:4d:cc:af:dd:5d:6a:6e:54:c6:0a:2a:ce:22:1c:3c: 90:da:a6:bb:3e:ac:3a:78:4a:d1:35:64:b6:32:e4:f1:75:4f: 20:2c:9a:12:99:c5:75:e9:2a:cb:ba:c8:e5:07:75:f5:15:75: 71:7c:52:a1:fd:cc:f2:ca:cb:4b:1c:9c:c9:98:cd:d7:75:af: 02:14:26:b4:50:40:fd:10:9b:0d:80:f3:5b:27:a2:cd:6d:ff: 24:52:a4:7e:f7:c8:92:88:bb:8c:81:53:59:4d:6f:3e:40:0b: ec:41:8e:dc:05:df:47:66:a5:fe:38:16:95:3c:a2:f6:e1:15: e0:05:f8:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjUwOTE3MDQwNzA0WhcNMjUwOTI0MDQwNzA0WjAYMRYwFAYD VQQDEw02OGNhMzNlOC0yNmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmOt6nMA3dMph9eNJzVUWUmBum1qWNkvSfajRE9RZkS/Qgvq1JUKLQJlVDnYj ymfCrLYJ1QWEGlSZnADqJX/smdgQuFNhMVL1sHijJxUGYsu1w4h7puM0gNiW4n03 Z1bFxc1+Z2AmsH0uRjozIVbxK9gM+oh6NnCXL8OTbMC95hEnxpct/i9NxYQe0Jxd kJJx3dZPJBb2IBPH8FhR9K4oIh/U0g9RVxz/TFvjjt0Riy3pGeesvbm2/giTf0sH qqqmSgwre8WlqDQGj86dH5+hRlfgJDkH4w6KWk1oI7fzGGRhwvfGLqPrGASh8XgP gUMdw3UQ1Wf7lASCgVhqHBtZcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCQPw0aH ks2ieaVsDfJNgej0Wt+8MB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJIU78fXNdE2TYXTsywjLK/wBAoVzE3/j52zaAbH+seZEgP8giITkY wWHKP3/TVyt8ilN4CkwS8SrBmxlQTHwnxV2zh/Vqh/pwIN31LYz4Me0jProwtZ+M 9PG5VDNVb3i5gHXlDkaFi1iWb5Kp8+l74MLIaWkQ1H7YEKX80JxBgfVNzK/dXWpu VMYKKs4iHDyQ2qa7Pqw6eErRNWS2MuTxdU8gLJoSmcV16SrLusjlB3X1FXVxfFKh /czyystLHJzJmM3Xda8CFCa0UED9EJsNgPNbJ6LNbf8kUqR+98iSiLuMgVNZTW8+ QAvsQY7cBd9HZqX+OBaVPKL24RXgBfi7 -----END CERTIFICATE-----Generated at Fri Sep 19 05:31:47 2025 by rpki-client