$ rpki-client -vvf rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft File: Km8SBBLYIPn_JM0F1ez0nmYtmco.mft (raw, json) Hash identifier: AwoHNeFpG4D5o6/f2yX6cvbYkWwqzzkDliKx3qgMP8U= Subject key identifier: 75:18:2F:EF:F4:BC:74:67:CB:4F:BF:D0:84:CF:66:E8:35:35:25:C8 Authority key identifier: 2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA Certificate issuer: /CN=A91F240B/serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Certificate serial: 1FCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft Manifest number: 1FC1 Signing time: Sun 02 Nov 2025 15:59:35 +0000 Manifest this update: Sun 02 Nov 2025 15:59:35 +0000 Manifest next update: Sun 09 Nov 2025 15:59:35 +0000 Files and hashes: 1: Km8SBBLYIPn_JM0F1ez0nmYtmco.crl (hash: 0HDFUX96naT4VDymYCEB3mO0jhxgad4c1PhsFUIeZoM=) 2: E352E0A2896F11E7BBF2923CC4F9AE02.roa (hash: bpwG3qWkZqt3c9e2parZM85DcFLWLncfBgOv3ugwly0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:59:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8143 (0x1fcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F240B, serialNumber=2A6F120412D820F9FF24CD05D5ECF49E662D99CA Validity Not Before: Nov 2 15:59:35 2025 GMT Not After : Nov 9 15:59:35 2025 GMT Subject: CN=69077fe7-f1fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:fe:02:67:aa:60:0a:61:8a:c6:29:42:b8:81: 42:77:9f:2f:74:d5:90:d3:9e:af:2d:58:76:5e:0f: f2:e3:7d:01:6e:8d:2d:fe:10:f6:d4:60:12:f0:75: 4c:91:e3:a8:ac:65:85:7a:4d:9e:ab:78:b1:02:98: 2c:3b:49:19:54:59:0c:cc:23:1e:1d:a8:e2:e3:cf: 94:4c:b2:57:5b:02:ab:2d:8c:05:d5:64:be:78:30: cd:c1:c1:e6:e1:e8:30:8d:da:4b:08:ec:15:70:33: a4:1e:a2:d0:f9:29:32:eb:de:eb:72:85:77:f7:2d: b5:3d:d4:d2:e0:d6:5b:a8:3e:43:4e:0b:dd:31:19: d6:67:98:56:df:5f:7b:a5:ec:97:be:73:ce:44:d0: 16:b7:fa:b4:ff:56:cc:92:9a:f2:87:89:16:8d:bd: 28:03:c3:d3:d8:5f:83:e0:bf:90:db:41:93:ab:95: f3:b5:a3:72:a7:c8:9f:a8:c6:7f:f2:7e:5f:78:dd: 8d:3b:05:b3:d2:71:77:bc:64:bd:dd:a3:b6:b2:69: 57:d8:62:ac:80:0b:47:2b:b9:7e:13:21:99:35:b5: 63:3b:8b:f0:c1:fd:fe:50:43:99:37:85:6f:be:dd: 79:23:b5:52:68:53:d6:9e:37:1d:4a:6c:37:f4:f7: d4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:18:2F:EF:F4:BC:74:67:CB:4F:BF:D0:84:CF:66:E8:35:35:25:C8 X509v3 Authority Key Identifier: keyid:2A:6F:12:04:12:D8:20:F9:FF:24:CD:05:D5:EC:F4:9E:66:2D:99:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Km8SBBLYIPn_JM0F1ez0nmYtmco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F240B/5B736D92433311E6959A7815C4F9AE02/Km8SBBLYIPn_JM0F1ez0nmYtmco.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:a5:b5:ee:b0:6a:4a:cf:da:fd:68:82:c0:7d:14:8e:15:a5: 53:2c:67:ad:54:c4:4b:6b:2e:ee:03:99:29:9c:fb:bf:6d:85: b7:d3:d4:24:7e:df:85:de:b5:ea:d0:f8:e6:60:a7:d1:5e:3d: 16:90:c4:c5:94:3d:54:f2:0e:99:f2:0e:73:7d:bf:69:ca:32: d2:65:96:9c:cf:cc:f8:d4:b1:c7:03:4a:03:e6:11:c5:39:0a: a5:0e:13:a5:ea:c6:a4:95:52:e3:35:64:43:c2:5b:cd:12:67: 7b:11:b1:c5:ce:05:54:df:0a:eb:51:b9:f2:69:ce:91:b3:7d: 31:c6:72:48:87:fe:c5:eb:ba:1c:a2:71:7b:32:26:19:32:18: 2b:a8:a0:38:7a:e2:7a:75:a2:65:6b:fc:3c:a1:b7:b0:a6:d0: 59:ac:97:12:4b:aa:3e:0d:60:bf:26:4a:ea:98:8f:30:8c:d8: 1c:6e:2f:1d:32:d2:7e:23:55:93:70:47:ec:dd:9c:a4:0d:30: 72:d8:25:32:c7:5f:ff:34:f6:51:a5:5e:7a:21:92:18:8f:8c: 68:fe:22:3f:46:33:2c:72:d4:ba:77:1a:d0:9c:bc:26:72:05: a6:23:98:38:3a:04:fd:13:41:71:24:a4:0f:84:62:12:7c:84: c9:36:0e:21 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICH88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI0MEIxMTAvBgNVBAUTKDJBNkYxMjA0MTJEODIwRjlGRjI0Q0QwNUQ1RUNGNDlF NjYyRDk5Q0EwHhcNMjUxMTAyMTU1OTM1WhcNMjUxMTA5MTU1OTM1WjAYMRYwFAYD VQQDEw02OTA3N2ZlNy1mMWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwf4CZ6pgCmGKxilCuIFCd58vdNWQ056vLVh2Xg/y430Bbo0t/hD21GAS8HVM keOorGWFek2eq3ixApgsO0kZVFkMzCMeHaji48+UTLJXWwKrLYwF1WS+eDDNwcHm 4egwjdpLCOwVcDOkHqLQ+Sky697rcoV39y21PdTS4NZbqD5DTgvdMRnWZ5hW3197 peyXvnPORNAWt/q0/1bMkpryh4kWjb0oA8PT2F+D4L+Q20GTq5XztaNyp8ifqMZ/ 8n5feN2NOwWz0nF3vGS93aO2smlX2GKsgAtHK7l+EyGZNbVjO4vwwf3+UEOZN4Vv vt15I7VSaFPWnjcdSmw39PfUEwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHUYL+/0 vHRny0+/0ITPZug1NSXIMB8GA1UdIwQYMBaAFCpvEgQS2CD5/yTNBdXs9J5mLZnK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjQwQi81QjczNkQ5MjQz MzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQbl9KTTBGMWV6MG5tWXRt Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttOFNCQkxZSVBuX0pNMEYxZXowbm1ZdG1jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MjQwQi81QjczNkQ5MjQzMzMxMUU2OTU5QTc4MTVDNEY5QUUwMi9LbThTQkJMWUlQ bl9KTTBGMWV6MG5tWXRtY28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkpbXusGpKz9r9aILAfRSOFaVTLGetVMRLay7uA5kpnPu/bYW309Qk ft+F3rXq0PjmYKfRXj0WkMTFlD1U8g6Z8g5zfb9pyjLSZZacz8z41LHHA0oD5hHF OQqlDhOl6saklVLjNWRDwlvNEmd7EbHFzgVU3wrrUbnyac6Rs30xxnJIh/7F67oc onF7MiYZMhgrqKA4euJ6daJla/w8obewptBZrJcSS6o+DWC/JkrqmI8wjNgcbi8d MtJ+I1WTcEfs3ZykDTBy2CUyx1//NPZRpV56IZIYj4xo/iI/RjMsctS6dxrQnLwm cgWmI5g4OgT9E0FxJKQPhGISfITJNg4h -----END CERTIFICATE-----Generated at Mon Nov 3 10:17:58 2025 by rpki-client