$ rpki-client -vvf rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft File: K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft (raw, json) Hash identifier: KHz+4QoGB8lqs0eXtWc9fF77S6bxmw6ezGduSOw+5pU= Subject key identifier: 20:5B:91:6C:26:8D:6D:B4:65:48:28:22:F3:8E:2C:81:1D:9B:33:24 Authority key identifier: 2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 Certificate issuer: /CN=A9140E40/serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Certificate serial: 21EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft Manifest number: 21EA Signing time: Tue 04 Nov 2025 15:58:38 +0000 Manifest this update: Tue 04 Nov 2025 15:58:38 +0000 Manifest next update: Tue 11 Nov 2025 15:58:38 +0000 Files and hashes: 1: K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl (hash: 88Ez9E4bH0IA0VReL8udoVCGt0i9qcccRJAqoaA9kh4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8682 (0x21ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140E40, serialNumber=2B94EBA478E9D112B1E50A0DE330D2AD858E1CD0 Validity Not Before: Nov 4 15:58:38 2025 GMT Not After : Nov 11 15:58:38 2025 GMT Subject: CN=690a22ae-4a25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:6a:81:3d:72:ff:c4:a2:61:7e:01:1e:a6:e5: 6b:fe:a1:17:da:1f:38:fd:c4:f8:8d:2f:b3:18:2f: 8d:52:78:4c:e0:9b:09:d2:a4:d4:43:89:a7:29:70: 4f:57:98:18:3d:96:d8:68:19:1c:2e:f5:cf:f1:22: bb:b8:4d:d4:2e:9e:33:53:2b:28:33:f9:b9:18:6f: 4c:7b:bf:77:a5:8c:82:17:20:c1:9e:96:d1:e5:af: d5:31:b4:54:86:d8:a6:0e:b8:ae:0c:f0:7c:3a:5d: 95:a9:de:03:48:eb:69:9f:0f:62:77:ec:5e:09:de: f8:f6:fe:d0:8e:5f:4a:55:10:39:7d:25:b4:bc:11: a2:96:4c:7b:c9:77:8c:d3:9b:7f:ed:f2:04:a7:ec: cf:49:4f:cf:c5:87:04:90:f6:5b:80:4a:88:1a:e0: c5:06:0c:69:ef:20:5b:12:bf:bb:7f:7c:dc:61:ac: 2b:5f:4a:86:0c:0d:84:dc:20:b8:d8:4f:cd:04:2a: 45:6f:e3:56:cf:85:c5:b8:66:fc:ee:a9:31:1f:68: 11:f0:77:b3:e9:a8:84:02:75:15:72:5a:cd:c2:8a: f3:48:9f:2f:1e:7a:b5:3d:b9:de:85:d1:62:04:53: 97:b1:5c:08:a8:e5:68:5d:34:e3:e7:d8:45:b8:ea: 3f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:5B:91:6C:26:8D:6D:B4:65:48:28:22:F3:8E:2C:81:1D:9B:33:24 X509v3 Authority Key Identifier: keyid:2B:94:EB:A4:78:E9:D1:12:B1:E5:0A:0D:E3:30:D2:AD:85:8E:1C:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K5TrpHjp0RKx5QoN4zDSrYWOHNA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140E40/E3611BD6D38B11E58392F54DC4F9AE02/K5TrpHjp0RKx5QoN4zDSrYWOHNA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:a5:56:6e:38:98:53:1e:56:93:12:bb:b5:cd:aa:a0:b9:a8: 04:bd:ee:f1:5e:25:ef:0b:05:24:33:65:31:85:11:94:a1:90: a1:cf:21:13:68:f4:51:32:c8:09:35:a6:bf:8c:aa:30:5b:1f: d8:ae:65:f6:08:d5:65:b6:9d:d0:81:35:82:f8:59:1c:a7:fc: d2:5f:ae:c8:82:aa:94:17:16:70:d2:50:2c:2b:f9:c8:1d:bc: d5:3b:0e:20:f3:20:f5:2d:e0:1a:99:7c:d6:69:87:75:81:0d: b6:34:f6:b0:27:b8:e9:cf:ae:de:69:54:91:d0:f7:50:23:62: d6:b6:87:1b:b4:60:ab:75:a5:a4:b7:2b:49:0f:88:93:cc:d2: b0:54:3a:ed:dc:9f:b2:6e:eb:41:34:f2:f3:af:8c:55:8c:eb: 7c:c8:4a:b5:c8:a4:26:9d:c3:38:51:ad:35:8b:31:f3:e3:0b: af:f1:94:16:74:51:90:25:dc:5b:a1:a9:30:03:28:d0:c5:9f: 28:54:7f:95:a3:19:70:eb:f0:fa:79:85:e9:3b:e7:25:eb:43: 87:2a:9f:a4:3e:d0:39:9e:88:2a:5e:c4:08:8d:cf:e4:e5:9f: 6d:7a:5c:5d:92:3e:51:96:8a:94:d2:84:90:62:9b:55:9d:a6: d9:4e:a5:76 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICIeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFNDAxMTAvBgNVBAUTKDJCOTRFQkE0NzhFOUQxMTJCMUU1MEEwREUzMzBEMkFE ODU4RTFDRDAwHhcNMjUxMTA0MTU1ODM4WhcNMjUxMTExMTU1ODM4WjAYMRYwFAYD VQQDEw02OTBhMjJhZS00YTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3GqBPXL/xKJhfgEepuVr/qEX2h84/cT4jS+zGC+NUnhM4JsJ0qTUQ4mnKXBP V5gYPZbYaBkcLvXP8SK7uE3ULp4zUysoM/m5GG9Me793pYyCFyDBnpbR5a/VMbRU htimDriuDPB8Ol2Vqd4DSOtpnw9id+xeCd749v7Qjl9KVRA5fSW0vBGilkx7yXeM 05t/7fIEp+zPSU/PxYcEkPZbgEqIGuDFBgxp7yBbEr+7f3zcYawrX0qGDA2E3CC4 2E/NBCpFb+NWz4XFuGb87qkxH2gR8Hez6aiEAnUVclrNworzSJ8vHnq1PbnehdFi BFOXsVwIqOVoXTTj59hFuOo/KQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCBbkWwm jW20ZUgoIvOOLIEdmzMkMB8GA1UdIwQYMBaAFCuU66R46dESseUKDeMw0q2FjhzQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEU0MC9FMzYxMUJENkQz OEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBSS3g1UW9ONHpEU3JZV09I TkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s1VHJwSGpwMFJLeDVRb040ekRTcllXT0hOQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEU0MC9FMzYxMUJENkQzOEIxMUU1ODM5MkY1NERDNEY5QUUwMi9LNVRycEhqcDBS S3g1UW9ONHpEU3JZV09ITkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOpVZuOJhTHlaTEru1zaqguagEve7xXiXvCwUkM2UxhRGUoZChzyET aPRRMsgJNaa/jKowWx/YrmX2CNVltp3QgTWC+Fkcp/zSX67IgqqUFxZw0lAsK/nI HbzVOw4g8yD1LeAamXzWaYd1gQ22NPawJ7jpz67eaVSR0PdQI2LWtocbtGCrdaWk tytJD4iTzNKwVDrt3J+ybutBNPLzr4xVjOt8yEq1yKQmncM4Ua01izHz4wuv8ZQW dFGQJdxboakwAyjQxZ8oVH+Voxlw6/D6eYXpO+cl60OHKp+kPtA5nogqXsQIjc/k 5Z9telxdkj5RloqU0oSQYptVnabZTqV2 -----END CERTIFICATE-----Generated at Wed Nov 5 05:22:51 2025 by rpki-client