$ rpki-client -vvf rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft File: KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft (raw, json) Hash identifier: lWMguYhEfd6qy9QEL0ODHUa+7kKzVmTkBpcdLJQqkTQ= Subject key identifier: E6:1C:CA:97:5B:DE:AB:95:95:EC:34:87:AC:8D:41:4D:6A:62:80:5D Authority key identifier: 2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 Certificate issuer: /CN=A911F536/serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Certificate serial: A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft Manifest number: 9E Signing time: Wed 05 Nov 2025 06:31:07 +0000 Manifest this update: Wed 05 Nov 2025 06:31:06 +0000 Manifest next update: Wed 12 Nov 2025 06:31:06 +0000 Files and hashes: 1: KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl (hash: w50jT9DQ+X+BlA/Jxzz+3tyz81iiwGT0gBvGqbXxABE=) 2: F51AC6A6C99A11EFB5D4B020C4F9AE02.roa (hash: McJ+hP8GUu/Ld5Rarq2qGp1xUtwodZVqiVkbBVRJzkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 160 (0xa0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F536, serialNumber=2AE985815A10DD6D04523FC81D8DAFD726BE7816 Validity Not Before: Nov 5 06:31:06 2025 GMT Not After : Nov 12 06:31:06 2025 GMT Subject: CN=690aef2a-76f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2c:c4:d6:9d:7f:a7:9c:47:30:ac:4c:6a:00: 2d:2b:3d:0d:e1:cb:ef:d1:31:60:c9:7a:6f:71:0e: 00:ba:80:84:d0:7c:bb:dc:ba:cd:50:b1:87:77:47: f7:07:23:b4:70:80:73:b4:72:4a:8a:a3:e3:bf:ee: c0:7f:e8:a5:35:0e:c2:5a:07:d0:96:5c:a7:7b:fc: 0b:52:7e:5c:41:52:db:79:e1:23:87:3c:80:40:18: 8b:6f:26:53:05:ed:8a:17:12:8d:a3:41:e7:ed:f3: 6f:2e:68:01:f4:aa:f9:c5:af:45:15:07:3b:98:87: 3c:3a:2a:dd:a5:80:96:47:20:ad:ba:34:21:d2:84: 10:40:14:d6:34:ba:0f:50:c5:bf:a8:97:5d:7d:31: d1:29:6b:2a:d8:5a:31:ca:dc:51:8b:11:b1:10:33: fa:c9:a1:66:5a:e3:4a:4d:1e:ef:cc:b8:4a:fd:e3: 7a:a3:fa:e8:cf:02:93:45:4c:65:a7:58:6c:84:19: 53:19:c7:e5:ef:7a:76:9a:69:f0:3a:00:6d:bf:36: 0a:41:18:b5:79:e8:ec:be:8a:18:8e:e7:32:46:3c: fe:75:2a:a3:64:65:dc:15:db:68:87:d4:c2:07:ce: a3:9c:9b:f4:3d:fc:45:eb:36:10:ea:14:ca:31:84: c1:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1C:CA:97:5B:DE:AB:95:95:EC:34:87:AC:8D:41:4D:6A:62:80:5D X509v3 Authority Key Identifier: keyid:2A:E9:85:81:5A:10:DD:6D:04:52:3F:C8:1D:8D:AF:D7:26:BE:78:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KumFgVoQ3W0EUj_IHY2v1ya-eBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F536/9A86DBD0C99A11EFB4CEEF1EC4F9AE02/KumFgVoQ3W0EUj_IHY2v1ya-eBY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:53:2b:e1:14:49:fa:30:8e:9f:f0:c8:5b:9e:d6:52:50:99: f3:69:f8:e7:0f:6e:fd:3a:93:33:20:9f:9d:a6:a2:de:ca:a2: 22:f6:a9:c3:37:97:4c:83:92:66:12:90:5d:04:98:10:6c:b6: 16:d2:b2:77:77:23:f9:b3:63:21:3c:5c:89:80:36:cd:07:f0: c9:eb:50:ba:a3:97:a1:a8:61:6f:b0:44:49:6e:9f:ed:9b:96: bf:13:38:e8:9b:d3:d2:24:72:b0:cb:76:9d:74:43:c2:a5:b7: 66:8f:b7:10:d7:78:3c:d7:ef:c7:b7:59:fc:26:5b:0f:87:bd: 69:28:19:a4:1a:c8:20:26:0c:f7:11:5e:b3:95:32:84:96:e8: 77:f5:69:a4:9e:a1:8d:ba:08:f2:f8:c9:a4:e7:7a:b4:e8:29: 16:c2:59:97:05:0a:79:73:d7:61:de:5c:b5:6f:27:8d:fe:1e: 37:82:72:9e:c4:d0:0c:a0:20:e8:fc:a7:83:bd:7b:19:78:5a: 6d:9a:54:ab:83:ab:4b:38:56:5a:28:6e:67:72:14:ca:bd:d8: 6d:77:dd:1d:6b:65:a5:9e:7c:ef:21:b9:28:f2:6f:dd:7e:db: da:71:bf:15:61:9d:96:37:25:18:d9:72:55:df:76:08:f9:1d: 9d:5d:73:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1MzYxMTAvBgNVBAUTKDJBRTk4NTgxNUExMERENkQwNDUyM0ZDODFEOERBRkQ3 MjZCRTc4MTYwHhcNMjUxMTA1MDYzMTA2WhcNMjUxMTEyMDYzMTA2WjAYMRYwFAYD VQQDEw02OTBhZWYyYS03NmYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCzE1p1/p5xHMKxMagAtKz0N4cvv0TFgyXpvcQ4AuoCE0Hy73LrNULGHd0f3 ByO0cIBztHJKiqPjv+7Af+ilNQ7CWgfQllyne/wLUn5cQVLbeeEjhzyAQBiLbyZT Be2KFxKNo0Hn7fNvLmgB9Kr5xa9FFQc7mIc8OirdpYCWRyCtujQh0oQQQBTWNLoP UMW/qJddfTHRKWsq2FoxytxRixGxEDP6yaFmWuNKTR7vzLhK/eN6o/rozwKTRUxl p1hshBlTGcfl73p2mmnwOgBtvzYKQRi1eejsvooYjucyRjz+dSqjZGXcFdtoh9TC B86jnJv0PfxF6zYQ6hTKMYTBwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOYcypdb 3quVlew0h6yNQU1qYoBdMB8GA1UdIwQYMBaAFCrphYFaEN1tBFI/yB2Nr9cmvngW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjUzNi85QTg2REJEMEM5 OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNXMEVVal9JSFkydjF5YS1l QlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t1bUZnVm9RM1cwRVVqX0lIWTJ2MXlhLWVCWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RjUzNi85QTg2REJEMEM5OUExMUVGQjRDRUVGMUVDNEY5QUUwMi9LdW1GZ1ZvUTNX MEVVal9JSFkydjF5YS1lQlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkUyvhFEn6MI6f8MhbntZSUJnzafjnD279OpMzIJ+dpqLeyqIi9qnD N5dMg5JmEpBdBJgQbLYW0rJ3dyP5s2MhPFyJgDbNB/DJ61C6o5ehqGFvsERJbp/t m5a/Ezjom9PSJHKwy3addEPCpbdmj7cQ13g81+/Ht1n8JlsPh71pKBmkGsggJgz3 EV6zlTKEluh39WmknqGNugjy+Mmk53q06CkWwlmXBQp5c9dh3ly1byeN/h43gnKe xNAMoCDo/KeDvXsZeFptmlSrg6tLOFZaKG5nchTKvdhtd90da2WlnnzvIbko8m/d ftvacb8VYZ2WNyUY2XJV33YI+R2dXXP+ -----END CERTIFICATE-----Generated at Wed Nov 5 12:24:54 2025 by rpki-client