$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: PLbkW8qS09Lia8Ih62NG0RW99OShHkXHIPfmv81oDX8= Subject key identifier: 1E:71:F8:06:4E:A2:D0:24:E5:6C:42:C6:54:65:4C:82:8C:40:16:9C Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0738 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 072F Signing time: Sun 02 Nov 2025 21:44:41 +0000 Manifest this update: Sun 02 Nov 2025 21:44:41 +0000 Manifest next update: Sun 09 Nov 2025 21:44:41 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: f/mWNKl620mu4CwuqA4ampAYp47O5h4giV5IcA6+b/w=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:44:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1848 (0x738) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Nov 2 21:44:41 2025 GMT Not After : Nov 9 21:44:41 2025 GMT Subject: CN=6907d0c9-5542 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:7a:d3:c6:42:20:88:55:e9:fe:aa:7c:19:f3: 28:96:92:e6:61:28:52:d5:22:cc:f8:d9:6b:6c:0f: e7:56:82:49:85:35:2b:00:49:f9:e5:67:0a:14:c8: 01:56:8c:44:eb:19:b8:99:15:63:89:63:cb:6e:aa: b1:9c:ff:15:35:4f:f6:39:fa:6f:31:a3:62:62:d8: 72:50:8e:36:51:28:a9:c8:90:4a:aa:4c:41:e2:81: 9f:eb:e0:7c:fa:cc:c1:ef:7c:3a:05:1a:24:b6:e1: 4d:8b:e2:01:da:cb:0c:21:e6:1e:e6:06:70:d5:a5: ad:8c:1c:5f:6f:77:fd:98:d7:7c:e5:bd:27:b3:33: 92:07:b7:0e:ea:b4:e4:88:6d:73:ff:c3:39:46:39: e3:a0:70:5a:7d:a2:eb:fb:13:a0:5b:07:ef:4c:69: 00:2b:b0:e5:b4:80:d3:3e:c4:cf:a9:0a:0b:dd:a4: f4:7a:b8:24:7d:b7:c1:60:4c:9a:75:c8:d6:97:5f: 7a:ee:9e:6e:62:36:02:48:b9:16:9f:e5:02:ff:8d: 6a:fd:4c:2a:a5:64:ff:4c:e3:a2:bb:56:d1:f8:79: 29:0d:ba:b9:74:50:4c:19:91:fd:d5:39:dc:d7:59: f5:c6:b4:90:fe:73:52:e4:36:c3:09:64:f5:83:05: e9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:71:F8:06:4E:A2:D0:24:E5:6C:42:C6:54:65:4C:82:8C:40:16:9C X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:1b:ba:3c:64:12:ce:71:df:b9:ed:e5:5b:bf:3a:f9:a4:51: 33:dd:74:40:07:1d:14:53:e2:9b:60:0b:b5:4b:9b:3b:57:cd: d8:ba:26:63:72:e2:8e:f6:fa:d1:1f:74:60:56:ec:0e:3b:2a: 31:74:1d:c0:fc:5d:b9:f8:6c:ee:1e:16:5b:ca:99:68:c4:10: 3b:4c:bc:c9:1a:69:f7:a6:e6:45:9b:c2:4b:58:3c:bc:88:4c: 5f:a1:32:04:18:ed:3f:92:c2:8b:3c:4d:7e:8a:f5:50:97:03: 58:ac:b1:a1:a2:dc:77:22:1f:e8:ae:6d:b9:57:50:89:fa:8d: dd:be:85:7c:da:66:d5:18:f6:dc:2a:84:d2:cc:43:b1:8a:71: 5b:9c:70:c4:1e:c0:f2:5f:22:a1:e5:17:c7:60:45:5d:ac:03: 9b:35:f0:18:61:0e:97:51:39:a4:25:9d:65:97:f2:70:fc:05: 28:a8:c6:88:5c:a3:44:f6:56:2e:35:e2:4c:e8:fa:d6:9f:72: c7:98:70:1b:90:af:b1:35:3f:6c:87:6b:7b:b4:26:25:98:88: ae:c3:7e:80:5d:53:29:a1:4e:74:d1:f9:f6:c8:93:73:35:78: 41:ec:b4:a3:a2:9e:e8:cf:06:f8:fa:c1:2c:d5:7a:22:7d:2a: de:c5:e8:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUxMTAyMjE0NDQxWhcNMjUxMTA5MjE0NDQxWjAYMRYwFAYD VQQDEw02OTA3ZDBjOS01NTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8HrTxkIgiFXp/qp8GfMolpLmYShS1SLM+NlrbA/nVoJJhTUrAEn55WcKFMgB VoxE6xm4mRVjiWPLbqqxnP8VNU/2OfpvMaNiYthyUI42USipyJBKqkxB4oGf6+B8 +szB73w6BRoktuFNi+IB2ssMIeYe5gZw1aWtjBxfb3f9mNd85b0nszOSB7cO6rTk iG1z/8M5RjnjoHBafaLr+xOgWwfvTGkAK7DltIDTPsTPqQoL3aT0ergkfbfBYEya dcjWl1967p5uYjYCSLkWn+UC/41q/UwqpWT/TOOiu1bR+HkpDbq5dFBMGZH91Tnc 11n1xrSQ/nNS5DbDCWT1gwXppQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB5x+AZO otAk5WxCxlRlTIKMQBacMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATG7o8ZBLOcd+57eVbvzr5pFEz3XRABx0UU+KbYAu1S5s7V83YuiZj cuKO9vrRH3RgVuwOOyoxdB3A/F25+GzuHhZbyploxBA7TLzJGmn3puZFm8JLWDy8 iExfoTIEGO0/ksKLPE1+ivVQlwNYrLGhotx3Ih/orm25V1CJ+o3dvoV82mbVGPbc KoTSzEOxinFbnHDEHsDyXyKh5RfHYEVdrAObNfAYYQ6XUTmkJZ1ll/Jw/AUoqMaI XKNE9lYuNeJM6PrWn3LHmHAbkK+xNT9sh2t7tCYlmIiuw36AXVMpoU500fn2yJNz NXhB7LSjop7ozwb4+sEs1XoifSrexeha -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:13 2025 by rpki-client