$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: hMP1Db83boOtiKMwoDFRAXqOPTSP9XcpEGQXdxxTSVI= Subject key identifier: B5:40:02:EB:9B:66:83:3A:B9:DE:EB:E6:14:09:E7:32:F5:5A:9D:7E Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 0185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 0182 Signing time: Mon 03 Nov 2025 03:38:39 +0000 Manifest this update: Mon 03 Nov 2025 03:38:39 +0000 Manifest next update: Mon 10 Nov 2025 03:38:39 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: tWIovFFuZHhKEXuips+2QNMRCFURAq9QseqAS7T/43U=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Nov 3 03:38:39 2025 GMT Not After : Nov 10 03:38:39 2025 GMT Subject: CN=690823bf-fe9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d4:e7:4f:6c:9f:77:92:4f:58:85:2a:17:fe: a9:6c:14:91:64:a6:c7:62:ab:c7:fc:33:1f:8c:be: 2d:5e:51:1f:d4:77:15:2a:e2:01:f1:c6:e6:d0:81: 00:1f:1c:e0:e3:a2:dc:7d:c7:0f:1a:3d:8c:a0:b0: 5c:bf:49:28:0e:29:0e:7f:1c:45:28:b5:43:27:6f: 75:a3:54:c7:b8:9b:6e:38:a1:89:d9:21:9e:69:d8: 7c:e2:fc:60:f7:b8:ad:f3:4d:53:1c:a5:59:2e:7a: 27:21:11:f0:05:c2:f3:12:2b:8a:cd:df:67:91:4e: e2:6f:e0:19:5b:8f:9c:89:dd:03:ee:e0:5d:6e:68: d4:72:33:4d:c3:d8:a4:2b:c6:3b:c8:cf:5c:62:d0: cd:6a:22:39:f3:78:0d:e3:42:5f:a9:ab:1f:e2:f3: 82:66:07:1b:ee:97:73:92:8c:31:21:46:85:cf:53: 7a:59:e6:8a:cc:ef:fa:6e:5b:27:0e:ee:92:02:c2: 84:ed:92:c3:94:8a:5e:ef:e7:7f:97:07:56:65:65: 5d:58:80:ab:4f:f0:9f:95:40:d4:13:20:35:ee:fb: d7:b9:c8:71:ef:c1:3a:e1:33:d2:93:72:1e:98:e9: fa:fb:d7:30:07:a6:ea:0b:15:ac:be:0d:22:8b:7c: 8c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:40:02:EB:9B:66:83:3A:B9:DE:EB:E6:14:09:E7:32:F5:5A:9D:7E X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:db:37:dc:aa:c2:6e:4e:f8:07:5c:67:7a:22:e2:b5:d6:b5: 71:e9:23:46:7c:60:b7:46:49:1d:ae:49:fc:d6:ce:99:39:d3: b9:42:df:86:47:e8:63:e6:3c:a0:d1:cb:5b:7a:ae:38:4b:5a: ae:7a:a5:55:09:c7:14:25:25:53:ef:74:a8:43:aa:61:05:96: a5:54:e4:01:2c:d8:9d:90:f9:46:a5:c3:88:73:72:86:61:91: 23:da:11:fd:a0:e3:ae:7c:ca:8a:6d:83:11:f7:db:a0:a7:5b: 38:07:e0:5b:15:3b:a1:9b:6a:07:ea:40:17:98:0b:d0:ce:e6: 87:c4:cc:71:dd:7c:02:4f:1c:97:7b:a2:60:c1:44:3b:89:f7: ce:32:eb:76:b4:63:44:c2:c0:f8:84:e8:ee:32:bb:54:c3:5e: 57:02:82:ac:ad:c6:d2:77:ba:49:b1:21:c1:2f:2d:7e:dd:2b: 0c:65:4f:7c:71:c6:f8:35:bc:85:38:d9:77:4f:bf:37:a9:ad: 85:d3:e2:fa:75:ff:f1:3e:ff:50:88:d8:63:c5:e9:c1:28:3f: bc:70:d2:b4:57:d5:eb:df:6a:49:f2:e4:0d:5a:78:59:2e:e0: 6e:be:74:a6:b9:86:92:75:6e:43:09:fe:83:e7:19:88:99:47: d9:81:a1:bb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUxMTAzMDMzODM5WhcNMjUxMTEwMDMzODM5WjAYMRYwFAYD VQQDEw02OTA4MjNiZi1mZTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAttTnT2yfd5JPWIUqF/6pbBSRZKbHYqvH/DMfjL4tXlEf1HcVKuIB8cbm0IEA Hxzg46LcfccPGj2MoLBcv0koDikOfxxFKLVDJ291o1THuJtuOKGJ2SGeadh84vxg 97it801THKVZLnonIRHwBcLzEiuKzd9nkU7ib+AZW4+cid0D7uBdbmjUcjNNw9ik K8Y7yM9cYtDNaiI583gN40Jfqasf4vOCZgcb7pdzkowxIUaFz1N6WeaKzO/6blsn Du6SAsKE7ZLDlIpe7+d/lwdWZWVdWICrT/CflUDUEyA17vvXuchx78E64TPSk3Ie mOn6+9cwB6bqCxWsvg0ii3yMgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLVAAuub ZoM6ud7r5hQJ5zL1Wp1+MB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB92zfcqsJuTvgHXGd6IuK11rVx6SNGfGC3Rkkdrkn81s6ZOdO5Qt+G R+hj5jyg0ctbeq44S1queqVVCccUJSVT73SoQ6phBZalVOQBLNidkPlGpcOIc3KG YZEj2hH9oOOufMqKbYMR99ugp1s4B+BbFTuhm2oH6kAXmAvQzuaHxMxx3XwCTxyX e6JgwUQ7iffOMut2tGNEwsD4hOjuMrtUw15XAoKsrcbSd7pJsSHBLy1+3SsMZU98 ccb4NbyFONl3T783qa2F0+L6df/xPv9QiNhjxenBKD+8cNK0V9Xr32pJ8uQNWnhZ LuBuvnSmuYaSdW5DCf6D5xmImUfZgaG7 -----END CERTIFICATE-----Generated at Tue Nov 4 01:05:26 2025 by rpki-client