$ rpki-client -vvf rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft File: KBiMFu7JB0JxcnjCic-C9QTyWqk.mft (raw, json) Hash identifier: DdpAH0Hxz/EuCKtBhauhARLc2P9uxKJG8F6OuhjiDEw= Subject key identifier: 56:9E:C4:C8:9F:9C:DE:B1:5F:BF:27:3F:36:8D:0B:BC:47:0B:86:90 Authority key identifier: 28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 Certificate issuer: /CN=A912F387/serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Certificate serial: 015C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft Manifest number: 0156 Signing time: Mon 03 Nov 2025 03:50:50 +0000 Manifest this update: Mon 03 Nov 2025 03:50:50 +0000 Manifest next update: Mon 10 Nov 2025 03:50:50 +0000 Files and hashes: 1: KBiMFu7JB0JxcnjCic-C9QTyWqk.crl (hash: VXvN9GKf7vGNSHapwFpGKQvTJNeEV+zPAP0o0ICUE3Y=) 2: FCA046066C8611EFBF35D221C4F9AE02.roa (hash: LLGlR1swQUGpHRHzrbzk96I6Zx3kb8thD/xfxQf3uHA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:50:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F387, serialNumber=28188C16EEC90742717278C289CF82F504F25AA9 Validity Not Before: Nov 3 03:50:50 2025 GMT Not After : Nov 10 03:50:50 2025 GMT Subject: CN=6908269a-2163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dc:21:46:86:69:09:aa:a9:ec:1a:ab:d5:97: 04:99:f0:cb:b6:b9:1f:85:b2:a5:5b:0d:0c:0b:53: d0:75:7d:58:c3:99:7f:ae:bb:cb:c4:a1:33:11:2b: ca:8e:98:e9:f9:1a:5f:09:a7:cc:1c:3b:66:dd:16: cf:23:7e:1f:c8:a7:ca:97:02:84:da:8e:12:57:51: 79:54:a2:2d:f1:5b:dc:f6:5d:b1:d2:ce:57:c4:e6: 56:4d:29:ee:94:48:de:05:c7:3b:36:03:80:91:4e: e9:60:82:6b:43:e8:aa:26:03:fc:e0:aa:35:0f:da: 2e:2d:ec:b5:87:86:0f:c1:34:b7:11:24:fd:26:93: a1:de:52:50:a7:14:ca:ab:a9:5e:8a:95:72:c5:01: df:96:94:4f:38:61:43:df:66:19:25:4a:7e:da:61: f6:75:8a:ef:22:fb:86:8a:8c:ad:37:e0:9c:b5:07: c2:7a:f4:65:67:8a:52:ea:74:00:d4:6b:f6:68:c8: aa:d1:96:a3:f9:13:af:23:10:1d:b2:a2:1a:77:60: be:ec:35:63:ed:ff:3f:53:cc:8a:39:43:da:76:88: 0d:5d:60:c5:82:8f:d4:10:a9:31:17:49:56:76:49: a1:82:94:6a:6c:79:57:8b:29:fc:16:85:5f:fb:59: 61:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:9E:C4:C8:9F:9C:DE:B1:5F:BF:27:3F:36:8D:0B:BC:47:0B:86:90 X509v3 Authority Key Identifier: keyid:28:18:8C:16:EE:C9:07:42:71:72:78:C2:89:CF:82:F5:04:F2:5A:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KBiMFu7JB0JxcnjCic-C9QTyWqk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F387/FE4D78E2B5C111EE95B58341C4F9AE02/KBiMFu7JB0JxcnjCic-C9QTyWqk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 02:12:3a:79:d5:3d:bf:f7:b6:a8:b6:a8:84:05:c0:b0:29:09: 71:cc:dd:5b:c3:84:53:76:8b:09:fc:7a:39:10:b6:0d:ce:03: 90:3d:1e:cf:3e:54:fc:0b:ba:36:b9:06:b0:28:8c:a5:55:ba: ca:8b:94:69:b0:40:fd:ec:66:51:3a:d0:78:56:90:90:89:b0: 2b:77:67:69:1a:af:78:8a:78:78:9f:ad:a4:85:7c:ac:1e:4f: 3e:76:7f:08:44:87:bc:f9:58:2d:38:bc:21:48:5c:a6:fe:8e: 27:54:34:b1:f1:fa:2c:1f:36:72:57:1c:ba:ab:7c:43:41:26: 71:43:02:7a:1f:35:7b:52:ea:4a:a0:92:7b:74:a9:73:42:cf: cd:6c:4c:e1:9e:ef:50:40:7f:33:d1:7e:00:59:3f:31:80:98: 82:5e:de:42:ca:f2:4f:f1:05:ff:5f:e8:60:39:df:c6:80:a6: 6d:eb:58:12:4c:7c:15:66:ee:0b:15:da:fa:c9:84:e5:e9:02: 10:96:bd:b4:fa:47:47:a5:af:92:5d:1d:dc:8b:9d:e4:4b:e8: cd:a3:d3:42:97:3c:06:2e:48:bb:29:e5:ee:79:05:6a:da:b7: 1b:f5:13:21:a5:49:b8:e1:55:96:c0:1c:e8:b4:ab:1f:45:5a: 96:05:07:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzODcxMTAvBgNVBAUTKDI4MTg4QzE2RUVDOTA3NDI3MTcyNzhDMjg5Q0Y4MkY1 MDRGMjVBQTkwHhcNMjUxMTAzMDM1MDUwWhcNMjUxMTEwMDM1MDUwWjAYMRYwFAYD VQQDEw02OTA4MjY5YS0yMTYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdwhRoZpCaqp7Bqr1ZcEmfDLtrkfhbKlWw0MC1PQdX1Yw5l/rrvLxKEzESvK jpjp+RpfCafMHDtm3RbPI34fyKfKlwKE2o4SV1F5VKIt8Vvc9l2x0s5XxOZWTSnu lEjeBcc7NgOAkU7pYIJrQ+iqJgP84Ko1D9ouLey1h4YPwTS3EST9JpOh3lJQpxTK q6leipVyxQHflpRPOGFD32YZJUp+2mH2dYrvIvuGioytN+CctQfCevRlZ4pS6nQA 1Gv2aMiq0Zaj+ROvIxAdsqIad2C+7DVj7f8/U8yKOUPadogNXWDFgo/UEKkxF0lW dkmhgpRqbHlXiyn8FoVf+1lhPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFaexMif nN6xX78nPzaNC7xHC4aQMB8GA1UdIwQYMBaAFCgYjBbuyQdCcXJ4wonPgvUE8lqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjM4Ny9GRTRENzhFMkI1 QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIwSnhjbmpDaWMtQzlRVHlX cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tCaU1GdTdKQjBKeGNuakNpYy1DOVFUeVdxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjM4Ny9GRTRENzhFMkI1QzExMUVFOTVCNTgzNDFDNEY5QUUwMi9LQmlNRnU3SkIw SnhjbmpDaWMtQzlRVHlXcWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQACEjp51T2/97aotqiEBcCwKQlxzN1bw4RTdosJ/Ho5ELYNzgOQPR7P PlT8C7o2uQawKIylVbrKi5RpsED97GZROtB4VpCQibArd2dpGq94inh4n62khXys Hk8+dn8IRIe8+VgtOLwhSFym/o4nVDSx8fosHzZyVxy6q3xDQSZxQwJ6HzV7UupK oJJ7dKlzQs/NbEzhnu9QQH8z0X4AWT8xgJiCXt5CyvJP8QX/X+hgOd/GgKZt61gS THwVZu4LFdr6yYTl6QIQlr20+kdHpa+SXR3ci53kS+jNo9NClzwGLki7KeXueQVq 2rcb9RMhpUm44VWWwBzotKsfRVqWBQdC -----END CERTIFICATE-----Generated at Tue Nov 4 23:26:02 2025 by rpki-client