$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft File: KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft (raw, json) Hash identifier: Hw3lcY2zzssq8xqFbmwHrWrFhqN1IPSxKHtavVyRn8o= Subject key identifier: 11:AA:51:73:ED:1D:23:C5:22:FF:8C:4F:FB:12:9C:56:09:EC:7D:8C Authority key identifier: 28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 Certificate issuer: /CN=A91C5AEE/serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Certificate serial: 0193 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft Manifest number: 0190 Signing time: Mon 03 Nov 2025 03:27:33 +0000 Manifest this update: Mon 03 Nov 2025 03:27:33 +0000 Manifest next update: Mon 10 Nov 2025 03:27:32 +0000 Files and hashes: 1: KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl (hash: mtOcpBrqzRwfmAkJXpeBBPBJe6rFZZtrv2MaPps2O0k=) 2: 21525A1C520B11EE8B79021AC4F9AE02.roa (hash: BXgvpIKBLGyFXlTbrcn5D97Cd/AVN/R0856bn7qg3E8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 403 (0x193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5AEE, serialNumber=28C0607D96831A3D18093345B37258EE3BD7F3E7 Validity Not Before: Nov 3 03:27:33 2025 GMT Not After : Nov 10 03:27:32 2025 GMT Subject: CN=69082125-60a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:dc:e9:8e:e5:11:96:65:ab:fd:37:ad:c4:d8: 56:a2:28:b2:25:01:e7:8c:ed:95:4f:d3:cf:3d:a1: f1:27:34:55:78:f9:d6:df:21:dd:29:3a:54:7f:b8: ea:94:b4:5e:9f:2d:fe:8d:cf:bd:12:c8:e4:aa:7f: 19:49:1f:09:24:fc:33:ec:99:73:04:e8:10:43:4c: 30:d5:7a:5e:f9:b8:13:f3:05:55:44:87:fe:1d:11: 5f:d0:c8:2d:15:0a:67:7b:a5:98:f0:3b:fd:f8:86: 3b:65:09:e2:cb:24:99:a9:0f:b2:7b:72:98:1b:fd: 26:15:c5:e2:92:f0:04:de:78:67:47:cf:1d:3a:34: 1c:08:20:79:ca:77:02:e9:ee:77:67:83:43:69:eb: 21:46:c5:c9:18:b5:25:22:38:0e:ec:3d:cf:e6:f9: fe:1b:e7:e7:e7:ff:31:9c:b5:d1:40:fd:86:f8:2d: 6e:03:cf:47:35:ce:95:c4:cd:c4:39:df:9e:31:3f: 7d:8b:5f:d7:11:c5:4a:ff:71:c8:4d:e8:be:4d:11: 7d:be:bb:c7:a9:f9:29:3b:94:32:a1:94:f0:d0:f7: 99:e0:2d:47:d6:32:21:46:09:9f:91:d1:98:8d:88: 05:c3:ee:9c:70:40:03:81:86:4b:75:a2:b9:e9:0a: 22:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:AA:51:73:ED:1D:23:C5:22:FF:8C:4F:FB:12:9C:56:09:EC:7D:8C X509v3 Authority Key Identifier: keyid:28:C0:60:7D:96:83:1A:3D:18:09:33:45:B3:72:58:EE:3B:D7:F3:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KMBgfZaDGj0YCTNFs3JY7jvX8-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5AEE/3E3901F2520711EEB57B5877C4F9AE02/KMBgfZaDGj0YCTNFs3JY7jvX8-c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:11:05:14:b3:bf:6e:f8:6f:3f:c6:52:e8:5f:f4:9e:94:ab: 36:27:ed:50:b7:67:59:d8:70:46:e2:1a:97:90:26:b9:93:8e: f3:27:b8:54:6d:fc:0e:94:c2:3b:59:30:62:89:2a:ae:bb:36: fe:f5:93:5b:ed:c6:a2:ba:8a:35:c7:d3:54:59:b0:0e:e2:8c: d7:4e:31:7b:92:4d:3c:f3:d5:41:34:c8:3f:30:fe:27:67:89: b1:b3:8b:62:1a:e9:8c:a5:fb:d6:75:1d:44:db:39:6f:ca:4a: df:c5:c9:c9:84:ad:bf:a1:25:72:6b:3b:5d:2e:f1:3f:95:34: 15:dc:f8:ea:4e:7c:c5:dc:07:13:68:06:8a:e6:d1:5b:6f:8d: 45:54:2a:0c:67:b0:e1:21:73:bb:ee:3a:cb:4f:33:cc:14:77: b1:3e:b7:bb:e5:73:65:44:08:cd:5b:3d:fe:8f:47:83:9f:aa: 2c:cf:99:0d:7d:cc:75:35:82:9d:bc:bd:99:52:df:0c:8b:bd: 5c:fb:62:c3:d5:52:06:3b:2b:fe:5b:d7:35:53:bb:8a:2f:5d: 20:ee:04:4b:72:77:10:96:77:05:99:1a:95:d4:50:d1:a4:ff: 99:65:92:bd:52:73:0a:fb:db:a2:e8:24:2a:0b:70:be:87:15: a9:78:e0:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzVBRUUxMTAvBgNVBAUTKDI4QzA2MDdEOTY4MzFBM0QxODA5MzM0NUIzNzI1OEVF M0JEN0YzRTcwHhcNMjUxMTAzMDMyNzMzWhcNMjUxMTEwMDMyNzMyWjAYMRYwFAYD VQQDEw02OTA4MjEyNS02MGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmNzpjuURlmWr/TetxNhWoiiyJQHnjO2VT9PPPaHxJzRVePnW3yHdKTpUf7jq lLReny3+jc+9Esjkqn8ZSR8JJPwz7JlzBOgQQ0ww1Xpe+bgT8wVVRIf+HRFf0Mgt FQpne6WY8Dv9+IY7ZQniyySZqQ+ye3KYG/0mFcXikvAE3nhnR88dOjQcCCB5yncC 6e53Z4NDaeshRsXJGLUlIjgO7D3P5vn+G+fn5/8xnLXRQP2G+C1uA89HNc6VxM3E Od+eMT99i1/XEcVK/3HITei+TRF9vrvHqfkpO5QyoZTw0PeZ4C1H1jIhRgmfkdGY jYgFw+6ccEADgYZLdaK56QoiUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGqUXPt HSPFIv+MT/sSnFYJ7H2MMB8GA1UdIwQYMBaAFCjAYH2Wgxo9GAkzRbNyWO471/Pn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNUFFRS8zRTM5MDFGMjUy MDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdqMFlDVE5GczNKWTdqdlg4 LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tNQmdmWmFER2owWUNUTkZzM0pZN2p2WDgtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUFFRS8zRTM5MDFGMjUyMDcxMUVFQjU3QjU4NzdDNEY5QUUwMi9LTUJnZlphREdq MFlDVE5GczNKWTdqdlg4LWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwEQUUs79u+G8/xlLoX/SelKs2J+1Qt2dZ2HBG4hqXkCa5k47zJ7hU bfwOlMI7WTBiiSquuzb+9ZNb7caiuoo1x9NUWbAO4ozXTjF7kk0889VBNMg/MP4n Z4mxs4tiGumMpfvWdR1E2zlvykrfxcnJhK2/oSVyaztdLvE/lTQV3PjqTnzF3AcT aAaK5tFbb41FVCoMZ7DhIXO77jrLTzPMFHexPre75XNlRAjNWz3+j0eDn6osz5kN fcx1NYKdvL2ZUt8Mi71c+2LD1VIGOyv+W9c1U7uKL10g7gRLcncQlncFmRqV1FDR pP+ZZZK9UnMK+9ui6CQqC3C+hxWpeODS -----END CERTIFICATE-----Generated at Tue Nov 4 18:59:06 2025 by rpki-client