$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: PtGDj2RNRZKQFIh/EvRtJxgWDi0kIIW0eZ6Uk5zK2ws= Subject key identifier: F1:F4:D2:25:18:81:90:59:55:68:F4:75:59:DA:28:E8:E1:4E:7C:75 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 0773 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 075C Signing time: Thu 18 Sep 2025 21:57:46 +0000 Manifest this update: Thu 18 Sep 2025 21:57:45 +0000 Manifest next update: Thu 25 Sep 2025 21:57:45 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: zQnuRamp2+Svr6O4+MjnuGEVsGAolXSEa2p7f3owZ34=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:57:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1907 (0x773) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Sep 18 21:57:45 2025 GMT Not After : Sep 25 21:57:45 2025 GMT Subject: CN=68cc8059-a545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:be:a7:96:17:07:83:1d:19:7b:85:0b:81:c8: 83:09:07:29:cc:b5:ec:11:8b:55:b4:d0:ba:5d:31: 94:5c:7e:bf:7f:2d:80:04:04:0b:12:9e:04:c9:48: 18:95:2b:25:25:9b:0d:e2:3e:54:ce:3b:31:ab:87: 47:1f:86:23:44:36:e8:e6:71:7a:b6:45:b9:a0:3f: 6b:dd:4a:03:0f:38:59:30:f7:0a:01:45:9f:01:ad: fa:7a:5e:40:b8:68:4e:72:11:fe:82:a8:01:43:ed: c3:e1:0a:8d:ae:37:02:98:77:04:34:05:fb:b7:31: 47:5e:b0:33:fc:f0:27:db:9e:02:40:e7:a0:b0:59: e0:2e:0b:1a:2f:31:e4:ba:db:a0:32:2f:6c:24:25: e0:da:36:2a:f5:fd:4e:e9:04:dd:8f:6c:09:35:b1: 83:8a:ca:ae:38:3a:a8:5b:7b:c5:0d:91:b1:88:77: ef:04:5c:b0:89:dc:93:98:01:e6:8e:a9:33:1e:40: 95:d5:2b:32:a0:b9:bb:53:bc:15:1c:df:0f:51:3b: 98:e4:57:9f:38:63:4e:14:b8:b6:33:d1:af:33:7a: dd:81:ce:d3:b0:8c:74:4f:f5:c8:fd:45:43:a4:01: 3c:7e:a8:5f:46:fc:cd:96:ce:9e:40:84:33:40:ff: 0e:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:F4:D2:25:18:81:90:59:55:68:F4:75:59:DA:28:E8:E1:4E:7C:75 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:0d:13:32:e4:52:3b:67:8c:df:28:47:23:e8:a2:dc:eb:7d: e9:e5:f2:a2:10:de:8f:9d:b0:bb:51:49:ea:fb:01:62:a8:23: 84:76:70:16:16:62:68:88:8a:e6:ff:36:1b:4d:1a:6e:d6:91: 1b:9c:ed:fe:76:ae:ba:db:a6:30:09:5f:1e:23:a9:20:5e:1d: 15:61:99:74:13:37:2e:0d:d9:76:4a:8c:58:9a:9a:dc:6c:6b: b9:46:5b:65:cf:9a:f5:b2:f1:70:b3:d1:16:3f:db:80:87:76: 9c:1b:00:60:ba:c3:14:dd:83:d7:3d:56:e3:d4:ce:f5:60:14: 17:1b:f3:3f:58:f9:04:ef:08:d4:be:62:d0:32:04:a4:45:5f: 40:f3:52:57:62:80:9c:a3:bc:a0:ef:05:74:26:63:de:d4:21: 00:4b:d0:b1:7a:b7:32:b2:94:e9:e1:a0:fe:9b:2c:ee:39:40: f5:b9:7d:7f:15:b2:ef:0c:db:ee:4e:ec:eb:4a:e6:65:ad:81: e0:67:66:17:90:5d:44:42:8d:55:ea:58:65:9f:8d:f6:cb:0c: 69:98:57:6b:5b:53:88:9a:46:02:e8:c2:0d:7e:74:f9:4e:ac: d2:49:51:46:45:54:2c:f3:44:35:d7:6a:9d:42:09:76:d9:46: 4e:ec:55:81 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUwOTE4MjE1NzQ1WhcNMjUwOTI1MjE1NzQ1WjAYMRYwFAYD VQQDEw02OGNjODA1OS1hNTQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA876nlhcHgx0Ze4ULgciDCQcpzLXsEYtVtNC6XTGUXH6/fy2ABAQLEp4EyUgY lSslJZsN4j5Uzjsxq4dHH4YjRDbo5nF6tkW5oD9r3UoDDzhZMPcKAUWfAa36el5A uGhOchH+gqgBQ+3D4QqNrjcCmHcENAX7tzFHXrAz/PAn254CQOegsFngLgsaLzHk utugMi9sJCXg2jYq9f1O6QTdj2wJNbGDisquODqoW3vFDZGxiHfvBFywidyTmAHm jqkzHkCV1SsyoLm7U7wVHN8PUTuY5FefOGNOFLi2M9GvM3rdgc7TsIx0T/XI/UVD pAE8fqhfRvzNls6eQIQzQP8OpQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPH00iUY gZBZVWj0dVnaKOjhTnx1MB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqDRMy5FI7Z4zfKEcj6KLc633p5fKiEN6PnbC7UUnq+wFiqCOEdnAW FmJoiIrm/zYbTRpu1pEbnO3+dq6626YwCV8eI6kgXh0VYZl0EzcuDdl2SoxYmprc bGu5Rltlz5r1svFws9EWP9uAh3acGwBgusMU3YPXPVbj1M71YBQXG/M/WPkE7wjU vmLQMgSkRV9A81JXYoCco7yg7wV0JmPe1CEAS9CxercyspTp4aD+myzuOUD1uX1/ FbLvDNvuTuzrSuZlrYHgZ2YXkF1EQo1V6lhln432ywxpmFdrW1OImkYC6MINfnT5 TqzSSVFGRVQs80Q112qdQgl22UZO7FWB -----END CERTIFICATE-----Generated at Fri Sep 19 00:46:57 2025 by rpki-client