$ rpki-client -vvf rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft File: KbnmrAGSmMyglt6Jcancj3144dk.mft (raw, json) Hash identifier: J58zAlp5nBMfSqvULjVzjJPyknpEYiLY4T5OwdTJfHI= Subject key identifier: 67:48:FB:BB:E5:73:66:8D:C0:F6:F9:61:F9:CE:61:F8:A3:54:5C:96 Authority key identifier: 29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 Certificate issuer: /CN=A91371E4/serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Certificate serial: 121A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft Manifest number: 120F Signing time: Tue 04 Nov 2025 17:14:10 +0000 Manifest this update: Tue 04 Nov 2025 17:14:10 +0000 Manifest next update: Tue 11 Nov 2025 17:14:10 +0000 Files and hashes: 1: KbnmrAGSmMyglt6Jcancj3144dk.crl (hash: w6dE4zaBomO6HA6UVCty6K7gei6y7WR/P6xpHi/jpqM=) 2: B6C2A27AF16A11E89550B621C4F9AE02.roa (hash: rYGwlaz3R02z4ql3MvAUj9rg5+gxsDR/Fvqrh9TzcP8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:14:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4634 (0x121a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91371E4, serialNumber=29B9E6AC019298CCA096DE8971A9DC8F7D78E1D9 Validity Not Before: Nov 4 17:14:10 2025 GMT Not After : Nov 11 17:14:10 2025 GMT Subject: CN=690a3462-d3a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:6b:fa:c6:d7:98:e3:dc:cc:65:24:78:6f:d1: 95:1b:c2:6f:f8:cb:38:ce:b1:f0:fa:dd:3b:c5:e2: 20:97:94:e8:35:e1:b0:22:d5:99:b8:e1:23:39:8c: 60:24:f3:e6:ae:32:79:cc:cd:c6:c1:05:1e:bc:14: 4b:8c:5e:da:5b:09:de:95:4d:a3:c8:16:6b:35:62: e1:f0:34:3a:8c:03:cf:ad:42:52:bf:78:31:f9:f4: ab:49:64:b7:2c:b9:2b:d6:25:58:e7:a9:6a:62:ca: c8:96:02:f1:a8:50:98:68:cc:a6:78:85:9c:d9:7d: 00:8c:67:38:51:f7:9a:6f:c2:03:c7:61:af:10:e7: 03:1f:53:1c:35:3f:0b:24:7e:25:a7:a4:9b:d0:a8: a3:00:26:fd:7d:50:64:70:84:1f:0f:77:2f:97:b9: 7d:23:85:05:d1:ba:e1:4f:e8:2c:ec:1b:b7:49:3d: 48:db:f8:30:94:79:29:73:13:76:49:56:8c:6b:2a: c9:52:27:fd:19:40:53:ed:8a:f0:8a:8c:38:09:98: 22:4e:24:d2:83:4a:02:d0:02:31:3d:f5:d7:ef:1a: 92:75:7a:a0:c7:15:24:67:b4:23:cc:9d:55:c6:bb: 63:12:6a:0a:20:34:e4:19:ea:ab:71:55:a8:20:ae: 57:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:48:FB:BB:E5:73:66:8D:C0:F6:F9:61:F9:CE:61:F8:A3:54:5C:96 X509v3 Authority Key Identifier: keyid:29:B9:E6:AC:01:92:98:CC:A0:96:DE:89:71:A9:DC:8F:7D:78:E1:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KbnmrAGSmMyglt6Jcancj3144dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91371E4/38247A70F16911E8B3A79D1EC4F9AE02/KbnmrAGSmMyglt6Jcancj3144dk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:39:1d:48:d1:4c:d8:53:77:74:ea:87:f5:b3:5d:8c:ef:25: 01:c5:61:d6:86:24:7a:21:5f:f6:18:69:7c:52:6a:8f:d9:5b: 92:78:68:be:f8:57:43:17:00:39:a8:91:fc:fa:7c:1b:00:29: 8c:6e:e3:c4:73:07:a3:66:32:bd:f3:ce:66:00:35:dd:d9:f3: dc:a0:c6:cb:2f:90:cd:55:9c:e9:36:aa:ed:e8:bc:49:6d:c0: 2e:4a:63:07:11:1a:5b:8b:06:7f:cb:b6:47:3a:82:fe:36:ad: 31:49:da:5c:41:77:98:32:c2:78:ca:93:95:cc:73:0a:27:cd: be:51:f5:2d:b4:f3:9d:a3:39:4c:74:69:a3:47:5f:85:4c:e1: 30:76:b4:56:1d:57:fd:99:af:23:1c:63:8c:40:9c:f2:f9:e7: 08:b4:9a:8f:f9:a0:98:ae:19:96:83:78:3b:30:b2:d4:35:f5: 16:51:aa:cd:3f:b3:6c:ee:da:94:1b:69:be:29:e8:64:63:64: 3e:60:62:e2:53:42:ac:e1:66:04:07:2f:c8:c2:ec:09:e2:45: c0:77:20:40:6a:b4:82:1e:5e:24:0b:4f:4d:d5:18:7f:b9:e9: 8c:24:95:e4:1d:33:a3:46:5a:d3:b9:30:35:bb:82:e7:84:8b: 0a:8a:6f:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcxRTQxMTAvBgNVBAUTKDI5QjlFNkFDMDE5Mjk4Q0NBMDk2REU4OTcxQTlEQzhG N0Q3OEUxRDkwHhcNMjUxMTA0MTcxNDEwWhcNMjUxMTExMTcxNDEwWjAYMRYwFAYD VQQDEw02OTBhMzQ2Mi1kM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2v6xteY49zMZSR4b9GVG8Jv+Ms4zrHw+t07xeIgl5ToNeGwItWZuOEjOYxg JPPmrjJ5zM3GwQUevBRLjF7aWwnelU2jyBZrNWLh8DQ6jAPPrUJSv3gx+fSrSWS3 LLkr1iVY56lqYsrIlgLxqFCYaMymeIWc2X0AjGc4Ufeab8IDx2GvEOcDH1McNT8L JH4lp6Sb0KijACb9fVBkcIQfD3cvl7l9I4UF0brhT+gs7Bu3ST1I2/gwlHkpcxN2 SVaMayrJUif9GUBT7Yrwiow4CZgiTiTSg0oC0AIxPfXX7xqSdXqgxxUkZ7QjzJ1V xrtjEmoKIDTkGeqrcVWoIK5XnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGdI+7vl c2aNwPb5YfnOYfijVFyWMB8GA1UdIwQYMBaAFCm55qwBkpjMoJbeiXGp3I99eOHZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzFFNC8zODI0N0E3MEYx NjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21NeWdsdDZKY2FuY2ozMTQ0 ZGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tibm1yQUdTbU15Z2x0NkpjYW5jajMxNDRkay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzFFNC8zODI0N0E3MEYxNjkxMUU4QjNBNzlEMUVDNEY5QUUwMi9LYm5tckFHU21N eWdsdDZKY2FuY2ozMTQ0ZGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeOR1I0UzYU3d06of1s12M7yUBxWHWhiR6IV/2GGl8UmqP2VuSeGi+ +FdDFwA5qJH8+nwbACmMbuPEcwejZjK9885mADXd2fPcoMbLL5DNVZzpNqrt6LxJ bcAuSmMHERpbiwZ/y7ZHOoL+Nq0xSdpcQXeYMsJ4ypOVzHMKJ82+UfUttPOdozlM dGmjR1+FTOEwdrRWHVf9ma8jHGOMQJzy+ecItJqP+aCYrhmWg3g7MLLUNfUWUarN P7Ns7tqUG2m+KehkY2Q+YGLiU0Ks4WYEBy/IwuwJ4kXAdyBAarSCHl4kC09N1Rh/ uemMJJXkHTOjRlrTuTA1u4LnhIsKim8A -----END CERTIFICATE-----Generated at Wed Nov 5 12:28:09 2025 by rpki-client