$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: mAmQ7dyrC+NPSX/fwj6tS08vR54yFrX6SdTrv8SuGgY= Subject key identifier: F4:A2:9A:9B:F2:0E:27:6F:25:EC:6E:6B:64:EA:C1:6E:90:74:CF:CE Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 05A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 0597 Signing time: Sun 02 Nov 2025 23:10:43 +0000 Manifest this update: Sun 02 Nov 2025 23:10:42 +0000 Manifest next update: Sun 09 Nov 2025 23:10:42 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: uN3LuGin1iHLGGPzdjOzQBcHS0nH5yf200wajKMiGLA=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: jmBBk9G7I6kWRNtiv9uf3HqTLrY1UbUUMPlSvnBT+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1443 (0x5a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Nov 2 23:10:42 2025 GMT Not After : Nov 9 23:10:42 2025 GMT Subject: CN=6907e4f2-8e54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ec:6c:dc:14:70:db:ab:66:60:3d:75:72:2e: 6f:0a:cf:e5:2c:a4:88:03:58:1e:14:2f:66:83:7a: 8a:93:64:77:d9:1b:c0:62:2c:cd:4f:1c:0b:dd:c8: 42:35:2c:a3:41:c9:47:db:5d:ba:cc:61:ba:e0:9e: 22:ae:08:7f:e1:1a:dd:43:bc:5c:05:3c:b9:6a:71: 8f:0c:83:c3:d2:8c:13:11:2c:a3:ee:2c:08:66:f5: 6f:ce:b4:51:e6:86:a7:60:ba:79:13:05:99:1a:6b: 93:bf:a8:f2:3f:ea:26:d2:00:d7:43:64:ec:e9:15: d6:76:14:e0:e0:97:79:27:cc:a3:7f:1d:1e:32:1b: 49:f8:53:9a:a3:89:df:cf:8c:d1:d1:93:55:5a:94: 8b:f1:95:6c:28:13:bc:88:0a:ae:85:26:2d:4e:91: c2:39:ac:d4:98:95:3f:c0:36:18:8e:fd:b9:ca:c6: c3:ab:bd:6d:da:e3:9e:c1:a6:7f:1c:13:46:b6:de: a2:10:b2:99:33:fb:d6:c5:9b:12:df:7f:67:25:13: 98:0f:c1:16:ad:13:58:66:c8:ce:c2:dd:b0:1b:fc: d5:79:1d:2b:82:41:9d:41:a7:7e:a3:0e:81:14:71: 0e:86:4a:fc:26:43:a7:21:98:c1:9f:82:9d:1d:89: 75:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A2:9A:9B:F2:0E:27:6F:25:EC:6E:6B:64:EA:C1:6E:90:74:CF:CE X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:1c:bb:13:0f:47:fe:d2:41:f2:d5:86:77:7d:c9:e6:46:18: 58:d9:a4:82:a2:61:14:84:eb:8f:96:47:31:cf:f3:fe:dc:d1: c3:e1:98:b0:1c:4f:da:ea:bd:80:2c:2e:1a:d8:2c:73:f7:6b: e7:7e:39:3e:0c:eb:6a:a0:15:24:e5:e4:1d:01:6b:4b:4f:ac: 89:07:20:b7:7a:cb:29:7b:6b:53:56:0d:a1:4f:7e:73:7c:a7: ab:26:c2:c1:2f:04:61:25:88:9f:31:7b:7c:3d:8e:86:fb:e9: 6a:02:1a:68:cb:57:1c:44:ce:89:01:b2:35:0b:e6:15:91:b7: be:dc:78:96:72:74:a0:de:86:d8:96:7e:e6:8e:c7:72:ff:a6: 02:de:6b:f9:97:3d:2e:8e:5e:ef:a4:9f:50:7b:07:5e:07:23: 05:50:65:72:60:2f:27:45:66:c3:d4:92:49:0d:17:fc:a8:10: a2:fd:39:29:50:84:a6:e5:a5:0b:88:75:14:78:57:99:1c:d4: 3e:85:e2:72:44:8d:c2:67:78:4f:b1:56:98:f5:cb:56:d7:fa: fe:02:29:bf:bb:1e:0d:d1:6b:28:67:46:72:4a:ee:7a:6f:08: 41:27:42:58:3f:5f:4d:7c:73:81:71:02:12:d6:a3:7a:08:a3: 3d:0c:17:79 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUxMTAyMjMxMDQyWhcNMjUxMTA5MjMxMDQyWjAYMRYwFAYD VQQDEw02OTA3ZTRmMi04ZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+xs3BRw26tmYD11ci5vCs/lLKSIA1geFC9mg3qKk2R32RvAYizNTxwL3chC NSyjQclH2126zGG64J4irgh/4RrdQ7xcBTy5anGPDIPD0owTESyj7iwIZvVvzrRR 5oanYLp5EwWZGmuTv6jyP+om0gDXQ2Ts6RXWdhTg4Jd5J8yjfx0eMhtJ+FOao4nf z4zR0ZNVWpSL8ZVsKBO8iAquhSYtTpHCOazUmJU/wDYYjv25ysbDq71t2uOewaZ/ HBNGtt6iELKZM/vWxZsS339nJROYD8EWrRNYZsjOwt2wG/zVeR0rgkGdQad+ow6B FHEOhkr8JkOnIZjBn4KdHYl1HQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSimpvy DidvJexua2TqwW6QdM/OMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByHLsTD0f+0kHy1YZ3fcnmRhhY2aSComEUhOuPlkcxz/P+3NHD4Ziw HE/a6r2ALC4a2Cxz92vnfjk+DOtqoBUk5eQdAWtLT6yJByC3esspe2tTVg2hT35z fKerJsLBLwRhJYifMXt8PY6G++lqAhpoy1ccRM6JAbI1C+YVkbe+3HiWcnSg3obY ln7mjsdy/6YC3mv5lz0ujl7vpJ9QewdeByMFUGVyYC8nRWbD1JJJDRf8qBCi/Tkp UISm5aULiHUUeFeZHNQ+heJyRI3CZ3hPsVaY9ctW1/r+Aim/ux4N0WsoZ0ZySu56 bwhBJ0JYP19NfHOBcQIS1qN6CKM9DBd5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:07 2025 by rpki-client