$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: mgJu3q49IIQKYkrIeOezxxd2qutpluujOQvIuFrPbsw= Subject key identifier: 22:C1:BC:21:3D:8A:94:12:59:57:3A:DF:01:8C:AE:8A:59:A0:EF:D7 Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 016F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 016C Signing time: Fri 19 Sep 2025 04:25:52 +0000 Manifest this update: Fri 19 Sep 2025 04:25:52 +0000 Manifest next update: Fri 26 Sep 2025 04:25:52 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: fs20xw0NrxgkpTmsexdzku95TkBWaftufAKjuvMOez8=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 367 (0x16f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Sep 19 04:25:52 2025 GMT Not After : Sep 26 04:25:52 2025 GMT Subject: CN=68ccdb50-685d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:1c:18:b5:44:ec:9b:09:0e:3b:5f:64:2f:4c: 16:9d:a9:e1:aa:38:fc:99:ca:61:6b:a6:b0:39:b3: 0a:ef:ea:83:5c:ca:ee:7a:c8:54:b8:e0:53:7d:55: 60:54:76:99:65:a8:8a:fb:bd:4a:30:b8:09:a0:e2: c7:3d:61:6b:e4:c5:87:46:79:7b:72:0c:1f:f1:32: 12:71:11:90:72:fd:51:c7:e9:d3:18:c3:bb:06:d5: e9:a3:cd:c7:a5:16:a4:a4:7e:b8:c9:9b:3c:a2:84: 50:97:e1:4b:f6:90:91:ae:51:58:e3:65:88:da:98: 52:19:8a:41:b4:85:be:04:67:ab:ac:1f:e3:20:d1: 3e:4f:8f:b8:58:1b:87:bd:f6:9c:88:45:a8:0f:06: ee:b8:42:6e:38:64:86:9a:62:a7:61:70:54:b5:57: 7c:e5:09:ab:9f:32:3b:99:39:40:bf:45:c5:d1:73: 48:de:4f:62:e9:8c:9e:10:08:67:73:9e:ba:4e:bf: 26:6b:e7:8f:b4:7e:99:9f:f1:2c:63:f8:82:65:52: e3:30:e3:8c:18:a1:3a:f1:af:c7:35:cd:f1:ed:52: 0a:96:e8:c5:ba:c4:8a:3c:ac:7d:08:d4:6d:81:41: be:13:2d:07:a7:44:b7:98:23:e4:f1:cc:2d:42:98: 1c:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C1:BC:21:3D:8A:94:12:59:57:3A:DF:01:8C:AE:8A:59:A0:EF:D7 X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:17:52:f5:1e:07:93:50:be:9b:b3:14:3f:a5:54:e2:25:c7: 9d:49:2b:c0:9e:d5:5f:f8:45:82:87:68:43:b6:27:cf:98:54: d8:b9:97:47:0d:10:25:8c:33:5e:31:79:8e:0b:3e:33:c5:8d: 0c:e1:c1:44:84:46:7f:10:78:84:35:9f:2b:11:ab:6d:21:30: 37:bf:e3:cc:6c:cf:55:a1:08:e3:c6:90:c5:6a:22:f7:53:ed: 7d:92:44:55:e7:7f:fb:89:68:ae:8e:63:ac:4b:60:bc:df:88: 54:8a:52:8c:81:75:63:5f:56:5c:a1:f4:e3:49:b6:71:02:42: c1:ba:65:23:19:0d:8a:cb:13:47:d7:54:00:a0:08:85:79:68: 90:08:97:cd:b7:d9:9f:49:20:f5:42:31:9d:86:6d:dc:76:8a: 65:72:9e:ac:a3:8e:3a:7e:2c:bd:2b:e0:62:c9:fc:34:9d:98: f8:bc:77:85:f4:b3:9d:ec:43:a2:f6:29:b9:ca:4f:d1:52:af: c5:90:f1:c8:74:df:f9:47:c3:42:eb:55:40:cd:4e:59:8c:cc: 4f:b5:4d:a6:0f:68:11:0b:58:1c:ad:10:4c:0c:bd:be:3e:15: c5:13:6b:81:11:65:9e:6f:bc:d9:75:c4:c9:75:ef:63:56:67: 16:fc:b5:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUwOTE5MDQyNTUyWhcNMjUwOTI2MDQyNTUyWjAYMRYwFAYD VQQDEw02OGNjZGI1MC02ODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6RwYtUTsmwkOO19kL0wWnanhqjj8mcpha6awObMK7+qDXMrueshUuOBTfVVg VHaZZaiK+71KMLgJoOLHPWFr5MWHRnl7cgwf8TIScRGQcv1Rx+nTGMO7BtXpo83H pRakpH64yZs8ooRQl+FL9pCRrlFY42WI2phSGYpBtIW+BGerrB/jINE+T4+4WBuH vfaciEWoDwbuuEJuOGSGmmKnYXBUtVd85QmrnzI7mTlAv0XF0XNI3k9i6YyeEAhn c566Tr8ma+ePtH6Zn/EsY/iCZVLjMOOMGKE68a/HNc3x7VIKlujFusSKPKx9CNRt gUG+Ey0Hp0S3mCPk8cwtQpgcPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCLBvCE9 ipQSWVc63wGMropZoO/XMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA1F1L1HgeTUL6bsxQ/pVTiJcedSSvAntVf+EWCh2hDtifPmFTYuZdH DRAljDNeMXmOCz4zxY0M4cFEhEZ/EHiENZ8rEattITA3v+PMbM9VoQjjxpDFaiL3 U+19kkRV53/7iWiujmOsS2C834hUilKMgXVjX1ZcofTjSbZxAkLBumUjGQ2KyxNH 11QAoAiFeWiQCJfNt9mfSSD1QjGdhm3cdoplcp6so446fiy9K+Biyfw0nZj4vHeF 9LOd7EOi9im5yk/RUq/FkPHIdN/5R8NC61VAzU5ZjMxPtU2mD2gRC1gcrRBMDL2+ PhXFE2uBEWWeb7zZdcTJde9jVmcW/LUN -----END CERTIFICATE-----Generated at Fri Sep 19 07:34:59 2025 by rpki-client