$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft File: km2a3G-4c9dlu0EicoDB8RhG7hc.mft (raw, json) Hash identifier: DxkJebu1FykTbWaSg2Xn67CNJFIXA9M4DR0rUWudGSM= Subject key identifier: 86:B5:26:A9:9B:4B:AB:C7:07:3C:A4:CB:31:D8:98:2E:18:BC:05:A5 Authority key identifier: 92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 Certificate issuer: /CN=A91EBA0E/serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Certificate serial: 0206 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft Manifest number: 01FC Signing time: Mon 03 Nov 2025 02:30:21 +0000 Manifest this update: Mon 03 Nov 2025 02:30:21 +0000 Manifest next update: Mon 10 Nov 2025 02:30:21 +0000 Files and hashes: 1: km2a3G-4c9dlu0EicoDB8RhG7hc.crl (hash: M/QXzMUDxYQjDmmFMqDq1Zo70k5oLaCeoGkRAzO+rEg=) 2: 1B5E26228FA911EF90043A7CC4F9AE02.roa (hash: Kf03AsTj/sjKaJ/vafb1jrYT0WQ+1IyxISSmBFOh+2M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:30:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA0E, serialNumber=926D9ADC6FB873D765BB41227280C1F11846EE17 Validity Not Before: Nov 3 02:30:21 2025 GMT Not After : Nov 10 02:30:21 2025 GMT Subject: CN=690813bd-45ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:40:cd:f9:44:51:7c:81:6f:84:86:04:37:64: 24:db:e1:86:85:6d:52:62:1c:d2:42:e2:ba:5b:2e: 1f:29:96:00:26:91:0f:35:a6:0e:3a:5c:b1:e0:e3: 28:86:9c:0f:71:2d:8c:1e:5a:05:2d:5c:fa:78:cc: a3:28:6d:fa:94:ab:70:10:e7:4c:b7:d0:72:e2:7f: 77:f8:a6:3e:f6:64:ed:b1:d6:f2:56:27:04:4c:41: a4:bb:5a:16:92:e5:6f:d4:ac:ec:a5:44:2d:ba:a3: 39:b2:fe:3c:a9:dd:f1:81:3f:1a:0f:ae:00:09:86: 41:e1:40:12:d9:3b:81:e9:b8:48:bc:06:29:d5:dc: 52:01:26:90:2a:2a:01:98:0f:3a:9c:9c:a2:d4:6c: 90:6a:04:8e:b5:7e:86:9e:73:67:99:0b:17:e5:08: 41:5a:6c:90:d5:e3:b4:77:28:d3:03:8f:74:62:fd: b4:5b:0b:33:5a:17:c4:79:f8:69:6a:eb:03:71:57: 98:9a:3d:bf:29:ac:ef:86:ae:89:d1:18:35:87:13: b5:c1:da:bf:4b:4d:ab:59:f4:ae:3d:73:c5:4d:3f: 61:ee:d2:de:c7:fd:00:a7:26:37:6e:df:4c:e5:92: cd:f6:0d:9e:a7:ed:26:6a:ab:1c:20:cf:f4:ab:fb: c6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:B5:26:A9:9B:4B:AB:C7:07:3C:A4:CB:31:D8:98:2E:18:BC:05:A5 X509v3 Authority Key Identifier: keyid:92:6D:9A:DC:6F:B8:73:D7:65:BB:41:22:72:80:C1:F1:18:46:EE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/km2a3G-4c9dlu0EicoDB8RhG7hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA0E/DBBED206C00511EDA255FA10C4F9AE02/km2a3G-4c9dlu0EicoDB8RhG7hc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:08:7d:ce:b6:96:e3:06:25:97:e8:a1:af:36:3d:b7:50:26: f5:5c:aa:ac:82:fc:fe:71:19:8f:6f:e0:3a:e9:10:5f:f9:4a: b7:dd:81:8e:5a:f3:98:3d:c9:ed:87:1a:b6:82:da:37:b9:5a: 48:2c:65:11:85:1d:e8:d8:db:f3:3e:35:bc:97:ed:3b:09:f2: a5:95:6c:b8:5f:ad:fc:e0:f0:70:7d:9b:ab:a5:91:36:49:33: df:ad:19:da:77:ab:55:7d:5e:ac:ca:46:9b:ae:53:ee:bb:9a: 3e:c8:35:9d:6b:1d:a6:cf:d3:9a:f5:b5:ac:a0:98:32:bd:37: a5:e8:a6:ad:73:66:cb:9e:06:37:5d:36:5e:0c:8b:a3:07:df: 94:b2:7c:35:34:86:fb:ea:39:7f:a1:49:56:33:52:a3:14:75: 1f:59:5b:6e:08:a6:24:79:ff:d8:07:d8:fa:1d:f6:c4:d7:54: a0:28:d1:d3:09:71:f4:d8:b6:c4:11:c0:d1:a7:98:15:44:b1: 0e:66:db:64:f5:73:d0:0e:6f:ac:08:14:4b:54:a6:0e:28:78: d5:ff:0f:e2:b2:ad:ae:00:93:23:7c:87:5a:d1:f1:2b:a6:c3: 6a:69:6c:4a:c2:df:8b:d1:db:88:e8:1d:22:f6:72:0a:af:c7: b5:20:d3:82 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBMEUxMTAvBgNVBAUTKDkyNkQ5QURDNkZCODczRDc2NUJCNDEyMjcyODBDMUYx MTg0NkVFMTcwHhcNMjUxMTAzMDIzMDIxWhcNMjUxMTEwMDIzMDIxWjAYMRYwFAYD VQQDEw02OTA4MTNiZC00NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsUDN+URRfIFvhIYEN2Qk2+GGhW1SYhzSQuK6Wy4fKZYAJpEPNaYOOlyx4OMo hpwPcS2MHloFLVz6eMyjKG36lKtwEOdMt9By4n93+KY+9mTtsdbyVicETEGku1oW kuVv1KzspUQtuqM5sv48qd3xgT8aD64ACYZB4UAS2TuB6bhIvAYp1dxSASaQKioB mA86nJyi1GyQagSOtX6GnnNnmQsX5QhBWmyQ1eO0dyjTA490Yv20WwszWhfEefhp ausDcVeYmj2/Kazvhq6J0Rg1hxO1wdq/S02rWfSuPXPFTT9h7tLex/0ApyY3bt9M 5ZLN9g2ep+0maqscIM/0q/vGTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIa1Jqmb S6vHBzykyzHYmC4YvAWlMB8GA1UdIwQYMBaAFJJtmtxvuHPXZbtBInKAwfEYRu4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkEwRS9EQkJFRDIwNkMw MDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5ZGx1MEVpY29EQjhSaEc3 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ttMmEzRy00YzlkbHUwRWljb0RCOFJoRzdoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QkEwRS9EQkJFRDIwNkMwMDUxMUVEQTI1NUZBMTBDNEY5QUUwMi9rbTJhM0ctNGM5 ZGx1MEVpY29EQjhSaEc3aGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJCH3OtpbjBiWX6KGvNj23UCb1XKqsgvz+cRmPb+A66RBf+Uq33YGO WvOYPcnthxq2gto3uVpILGURhR3o2NvzPjW8l+07CfKllWy4X6384PBwfZurpZE2 STPfrRnad6tVfV6sykabrlPuu5o+yDWdax2mz9Oa9bWsoJgyvTel6Katc2bLngY3 XTZeDIujB9+Usnw1NIb76jl/oUlWM1KjFHUfWVtuCKYkef/YB9j6HfbE11SgKNHT CXH02LbEEcDRp5gVRLEOZttk9XPQDm+sCBRLVKYOKHjV/w/isq2uAJMjfIda0fEr psNqaWxKwt+L0duI6B0i9nIKr8e1INOC -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:14 2025 by rpki-client