$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft File: kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft (raw, json) Hash identifier: YT/uCN6x/5D/lhMCaOKr5Uu52z6ABfY7LhE3UaNzZwU= Subject key identifier: FE:BA:A6:16:89:8D:2C:60:8C:84:6E:8C:E5:AA:58:DC:CC:B4:EB:26 Authority key identifier: 92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 Certificate issuer: /CN=A91C6A35/serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Certificate serial: 95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft Manifest number: 94 Signing time: Mon 03 Nov 2025 06:27:27 +0000 Manifest this update: Mon 03 Nov 2025 06:27:26 +0000 Manifest next update: Mon 10 Nov 2025 06:27:26 +0000 Files and hashes: 1: kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl (hash: +2xVva2twc3BWP9nGvjMnu6K/LCx4BEg81289vGs3vg=) 2: 06522672D49411EFA8DF5E69C4F9AE02.roa (hash: xnlYEk4KW2VhWwSazH9YyKPxeFaHVTp0cHWmf0iyBnI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:27:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 149 (0x95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A35, serialNumber=924866B40C30442D696F2477015475C5F0702AC8 Validity Not Before: Nov 3 06:27:26 2025 GMT Not After : Nov 10 06:27:26 2025 GMT Subject: CN=69084b4e-d007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5b:2a:da:e8:8b:cc:ca:5a:3f:9a:45:eb:5a: 4a:b3:5c:40:24:a5:2c:23:0d:ab:88:2d:30:40:8e: d8:9b:d4:95:74:9e:d1:71:c2:39:ac:af:cb:6d:b0: d9:cb:5c:2a:f9:1b:99:ce:95:0f:38:b2:94:c3:47: c5:cb:3e:40:3b:05:5d:68:8c:16:a8:c5:fe:32:e7: 4e:d1:58:39:2a:69:32:e9:b1:36:23:84:21:6a:62: f9:28:16:20:75:f8:a9:c6:21:5a:1e:12:d1:d7:4d: fa:9d:0f:10:98:bd:94:98:32:89:3c:8f:b9:00:cf: 89:5d:c1:22:4b:73:df:06:78:05:53:97:ba:53:c1: 85:66:3c:15:cf:a8:00:af:cb:38:b3:2b:56:7a:46: b2:06:2b:b5:83:de:27:19:db:d5:51:8c:68:a4:a4: f0:76:38:cb:77:98:a2:2d:3a:04:2a:e0:45:a9:0a: f5:b9:39:78:06:33:10:ec:a6:92:6b:9b:ee:bf:66: 07:0a:ce:4b:63:3a:13:83:6e:76:9b:e6:7f:df:2f: ad:95:0a:1a:6b:7f:bd:1b:33:50:f2:79:74:a5:a6: b8:ed:41:2b:5c:47:e9:6d:e0:3b:d6:21:69:0d:48: dd:30:39:a6:bd:c2:1a:07:cb:42:74:4f:87:df:0f: 2c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BA:A6:16:89:8D:2C:60:8C:84:6E:8C:E5:AA:58:DC:CC:B4:EB:26 X509v3 Authority Key Identifier: keyid:92:48:66:B4:0C:30:44:2D:69:6F:24:77:01:54:75:C5:F0:70:2A:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kkhmtAwwRC1pbyR3AVR1xfBwKsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A35/99277846D49211EFB564DE62C4F9AE02/kkhmtAwwRC1pbyR3AVR1xfBwKsg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0c:41:e5:99:83:c2:ff:49:5e:27:56:d8:c9:90:42:76:06: eb:db:ee:09:db:4b:aa:cb:6d:60:81:91:d2:40:d5:bf:57:3d: a1:bf:e8:4f:40:75:6c:11:cf:f2:9c:6b:ba:b2:17:9f:be:2b: 27:a6:34:cf:47:6a:d3:9f:10:8e:0c:28:34:95:6c:a9:77:a1: 03:c4:42:a7:d7:8e:2a:58:c7:de:c0:d8:8f:d1:b2:a4:42:ff: bc:b5:a8:9c:83:59:da:b8:ff:8a:0b:63:11:f7:27:ae:30:31: c9:b7:77:ca:4e:5d:b2:15:ad:f9:05:c3:e3:d3:1c:6d:3d:6d: a9:df:30:4f:75:de:7e:f1:17:e1:b0:eb:c9:a0:bf:05:f5:a4: d0:50:bc:e8:7c:f6:ed:74:96:02:f4:34:5d:db:37:4a:b2:bf: b1:52:2f:48:0e:88:15:4b:1b:aa:d1:e2:49:fa:15:ac:61:fb: 75:98:70:cb:61:a3:57:b3:d1:4d:60:5d:62:c4:83:5a:13:67: e9:91:f0:39:6b:b4:b5:e0:9a:24:c9:3e:be:97:37:ce:98:2e: 5f:da:f4:8f:95:a8:64:45:aa:3a:c7:a8:8e:e2:b8:0a:b3:f6: 7f:e9:a6:6f:7e:29:e7:4f:d2:6b:cc:39:df:a5:ed:bc:82:74: c4:64:ef:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZBMzUxMTAvBgNVBAUTKDkyNDg2NkI0MEMzMDQ0MkQ2OTZGMjQ3NzAxNTQ3NUM1 RjA3MDJBQzgwHhcNMjUxMTAzMDYyNzI2WhcNMjUxMTEwMDYyNzI2WjAYMRYwFAYD VQQDEw02OTA4NGI0ZS1kMDA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1sq2uiLzMpaP5pF61pKs1xAJKUsIw2riC0wQI7Ym9SVdJ7RccI5rK/LbbDZ y1wq+RuZzpUPOLKUw0fFyz5AOwVdaIwWqMX+MudO0Vg5Kmky6bE2I4QhamL5KBYg dfipxiFaHhLR1036nQ8QmL2UmDKJPI+5AM+JXcEiS3PfBngFU5e6U8GFZjwVz6gA r8s4sytWekayBiu1g94nGdvVUYxopKTwdjjLd5iiLToEKuBFqQr1uTl4BjMQ7KaS a5vuv2YHCs5LYzoTg252m+Z/3y+tlQoaa3+9GzNQ8nl0paa47UErXEfpbeA71iFp DUjdMDmmvcIaB8tCdE+H3w8sUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP66phaJ jSxgjIRujOWqWNzMtOsmMB8GA1UdIwQYMBaAFJJIZrQMMEQtaW8kdwFUdcXwcCrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkEzNS85OTI3Nzg0NkQ0 OTIxMUVGQjU2NERFNjJDNEY5QUUwMi9ra2htdEF3d1JDMXBieVIzQVZSMXhmQndL c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2traG10QXd3UkMxcGJ5UjNBVlIxeGZCd0tzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkEzNS85OTI3Nzg0NkQ0OTIxMUVGQjU2NERFNjJDNEY5QUUwMi9ra2htdEF3d1JD MXBieVIzQVZSMXhmQndLc2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAlDEHlmYPC/0leJ1bYyZBCdgbr2+4J20uqy21ggZHSQNW/Vz2hv+hP QHVsEc/ynGu6shefvisnpjTPR2rTnxCODCg0lWypd6EDxEKn144qWMfewNiP0bKk Qv+8taicg1nauP+KC2MR9yeuMDHJt3fKTl2yFa35BcPj0xxtPW2p3zBPdd5+8Rfh sOvJoL8F9aTQULzofPbtdJYC9DRd2zdKsr+xUi9IDogVSxuq0eJJ+hWsYft1mHDL YaNXs9FNYF1ixINaE2fpkfA5a7S14JokyT6+lzfOmC5f2vSPlahkRao6x6iO4rgK s/Z/6aZvfinnT9JrzDnfpe28gnTEZO/R -----END CERTIFICATE-----Generated at Tue Nov 4 19:04:56 2025 by rpki-client