$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: s/UrTrKCxfDcPKaZVxJGsHoThDa+jWswjKbmPJj90LY= Subject key identifier: 73:91:C6:A6:78:E6:7C:CA:D7:C1:FE:4A:84:BC:51:01:3A:59:A8:62 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 0292 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 028E Signing time: Mon 03 Nov 2025 01:31:40 +0000 Manifest this update: Mon 03 Nov 2025 01:31:40 +0000 Manifest next update: Mon 10 Nov 2025 01:31:40 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: axH1oS1BaSZ/5+l3uYQwm1n9YmrdocGlg2rT2U9xgMQ=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:31:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Nov 3 01:31:40 2025 GMT Not After : Nov 10 01:31:40 2025 GMT Subject: CN=690805fc-5560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:25:17:b8:9c:cb:3b:2d:df:9b:11:a2:0d:d6: e1:d1:74:bb:d2:db:6c:72:fd:b3:3d:b1:1b:0b:48: ba:e2:db:3a:62:46:63:e4:0f:ca:eb:f3:b1:ff:26: 19:3e:2c:ef:26:1c:d3:25:f5:27:eb:63:d9:94:03: 5b:e5:13:44:12:c5:e7:31:c9:cb:3a:e9:cc:35:72: c1:f0:c4:29:9e:c9:06:48:02:fd:57:f1:ed:d2:58: f1:a7:86:c4:57:f8:53:2d:95:8f:d8:16:00:c2:6d: ac:f4:8c:d6:60:81:4e:ee:0c:1c:1e:bc:31:dc:02: 38:40:c4:85:70:e5:4e:dd:43:a8:4b:01:78:f1:35: a2:ec:0e:1e:8e:cc:ba:3f:0c:15:77:e1:b9:81:8d: dd:53:70:0f:e5:95:f8:63:e6:b3:5d:59:00:32:ee: 8e:d4:e3:b3:ed:a8:50:c6:83:c2:0d:5b:17:8c:a8: 94:71:7a:13:74:fe:76:4f:ba:58:4c:af:13:e1:60: 57:ac:81:12:d2:b1:5b:90:1e:be:9e:43:ae:45:cd: 48:67:46:4e:73:1a:22:e5:d6:a1:1d:fd:a3:71:a9: 90:eb:0d:1a:92:d9:30:94:00:54:ba:07:ee:00:ea: 23:c0:7a:d2:c8:ff:0a:aa:f6:bb:4d:d1:6d:6a:aa: d1:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:91:C6:A6:78:E6:7C:CA:D7:C1:FE:4A:84:BC:51:01:3A:59:A8:62 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:be:44:65:37:03:12:4f:0b:d7:51:54:41:4f:70:fb:5e:da: 50:74:98:37:c7:95:2e:3d:8a:94:22:84:a9:ed:58:a9:da:73: 26:77:23:d9:60:3b:dd:b6:c4:36:cc:d4:20:6e:d3:6a:42:b1: 3d:cd:35:60:f0:71:73:42:46:59:b0:6b:f0:75:e6:80:c6:9c: d1:7d:b6:c3:f8:4b:e2:98:a2:44:b8:90:a1:03:68:3a:61:45: 13:31:64:f7:05:11:a9:71:be:ee:44:c2:7f:7b:29:b1:a1:d6: 5e:92:e0:b6:1e:1b:e7:c1:4e:06:c5:3e:42:cf:77:f7:80:b3: ef:75:4e:ff:bc:e6:98:5c:08:35:ac:23:bf:7c:5a:2f:6c:40: b1:72:39:05:5b:80:25:a1:9d:2d:d9:4f:58:25:53:96:b2:b8: a5:c2:97:1b:bc:bc:72:77:46:68:19:2b:1d:3e:ef:e7:03:fc: 1a:9d:51:39:a9:a7:6e:31:cd:fb:a5:ef:30:9d:85:fa:79:2d: 6e:d0:d8:50:65:0b:1c:ad:bf:2e:71:a6:f9:67:ff:d6:86:50: bf:16:5a:e4:eb:b1:c7:c7:4c:18:8e:7d:64:f9:30:7c:34:d6: 45:0c:01:e2:d4:74:fe:93:cc:65:7c:e6:57:98:90:03:56:63: b6:17:4e:e9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUxMTAzMDEzMTQwWhcNMjUxMTEwMDEzMTQwWjAYMRYwFAYD VQQDEw02OTA4MDVmYy01NTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySUXuJzLOy3fmxGiDdbh0XS70ttscv2zPbEbC0i64ts6YkZj5A/K6/Ox/yYZ PizvJhzTJfUn62PZlANb5RNEEsXnMcnLOunMNXLB8MQpnskGSAL9V/Ht0ljxp4bE V/hTLZWP2BYAwm2s9IzWYIFO7gwcHrwx3AI4QMSFcOVO3UOoSwF48TWi7A4ejsy6 PwwVd+G5gY3dU3AP5ZX4Y+azXVkAMu6O1OOz7ahQxoPCDVsXjKiUcXoTdP52T7pY TK8T4WBXrIES0rFbkB6+nkOuRc1IZ0ZOcxoi5dahHf2jcamQ6w0aktkwlABUugfu AOojwHrSyP8Kqva7TdFtaqrRbQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHORxqZ4 5nzK18H+SoS8UQE6WahiMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAGvkRlNwMSTwvXUVRBT3D7XtpQdJg3x5UuPYqUIoSp7Vip2nMmdyPZ YDvdtsQ2zNQgbtNqQrE9zTVg8HFzQkZZsGvwdeaAxpzRfbbD+EvimKJEuJChA2g6 YUUTMWT3BRGpcb7uRMJ/eymxodZekuC2HhvnwU4GxT5Cz3f3gLPvdU7/vOaYXAg1 rCO/fFovbECxcjkFW4AloZ0t2U9YJVOWsrilwpcbvLxyd0ZoGSsdPu/nA/wanVE5 qaduMc37pe8wnYX6eS1u0NhQZQscrb8ucab5Z//WhlC/Flrk67HHx0wYjn1k+TB8 NNZFDAHi1HT+k8xlfOZXmJADVmO2F07p -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:36 2025 by rpki-client