$ rpki-client -vvf rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft File: kakyPLNEJvPZyJDjl4Ag1BezWfU.mft (raw, json) Hash identifier: 7yiDU7zBCq4D6hq5UZvxZpxkmMBBFNclP4iDg/eDazg= Subject key identifier: D8:BC:C9:9A:58:28:1D:77:64:D8:30:59:07:A6:0B:63:DF:59:EE:8C Authority key identifier: 91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 Certificate issuer: /CN=A9151265/serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Certificate serial: 04AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft Manifest number: 04A6 Signing time: Sun 02 Nov 2025 23:55:08 +0000 Manifest this update: Sun 02 Nov 2025 23:55:07 +0000 Manifest next update: Sun 09 Nov 2025 23:55:07 +0000 Files and hashes: 1: kakyPLNEJvPZyJDjl4Ag1BezWfU.crl (hash: QumGnHfC8L79elH7S+yigdnmM/9f+fSd6P/46kJkr54=) 2: B1334FD4522011ECB0594C2BC4F9AE02.roa (hash: /FpsHXLPYXsoHcGNcebXfdYyitx9/IlpkTRLrZlFe1o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:55:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1195 (0x4ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151265, serialNumber=91A9323CB34426F3D9C890E3978020D417B359F5 Validity Not Before: Nov 2 23:55:07 2025 GMT Not After : Nov 9 23:55:07 2025 GMT Subject: CN=6907ef5b-2650 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5a:1a:49:92:c9:18:2a:75:47:93:00:cc:6a: 26:44:4b:50:d7:27:f8:ae:da:53:a6:23:db:86:04: 77:3f:7e:61:4f:c4:b5:e4:6c:d0:34:70:fe:c2:02: 66:4e:2f:84:92:51:81:e7:74:72:8f:da:d9:c2:fc: 50:ed:77:c9:a1:5a:f3:48:f2:10:fc:f9:e8:d8:69: a8:1a:7c:56:c4:a2:17:42:e5:18:89:25:23:cb:aa: 99:c2:12:d2:08:22:73:cb:41:d3:bd:17:b1:5c:00: 19:c8:71:d5:03:38:91:49:bc:57:6e:7f:a8:9b:99: 07:bf:af:6f:4e:bf:8b:12:f3:87:f2:08:0a:21:0d: c5:ad:bf:83:0e:39:da:4c:18:8f:6d:ca:47:50:fc: 1e:44:2d:fc:3a:ed:af:ed:fa:9e:7a:fb:9b:fa:d7: 20:94:88:36:02:1e:ee:88:72:63:14:51:29:af:cc: fd:f5:cb:91:05:68:ab:ed:ac:c2:50:75:10:a7:72: ed:d0:60:3e:09:ae:97:bd:d6:99:ea:48:ae:6f:8c: ca:62:21:62:46:5a:b2:0b:53:7f:f5:bb:ae:b1:e2: 9f:a7:ea:76:b0:48:c6:70:c9:2d:dd:ca:e2:f0:c3: f2:19:bc:09:56:96:f3:04:54:3b:2a:23:0d:2d:0e: 93:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:BC:C9:9A:58:28:1D:77:64:D8:30:59:07:A6:0B:63:DF:59:EE:8C X509v3 Authority Key Identifier: keyid:91:A9:32:3C:B3:44:26:F3:D9:C8:90:E3:97:80:20:D4:17:B3:59:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kakyPLNEJvPZyJDjl4Ag1BezWfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151265/05709AEA521F11ECB3D0192BC4F9AE02/kakyPLNEJvPZyJDjl4Ag1BezWfU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:71:1a:32:18:c5:76:03:cd:8f:ed:14:1c:a9:b3:fc:bb:69: 85:93:c8:16:6d:6c:7b:dc:ca:fa:67:db:b0:02:00:6e:92:ca: e5:62:20:6b:e5:4c:ae:8b:e1:76:df:a4:fc:16:34:cb:22:0c: e4:d4:30:f7:c7:a6:ff:77:4c:b2:6b:73:a9:94:fd:3e:73:9c: 0b:da:3f:0f:5a:ab:6e:c9:15:ac:75:e5:8a:ca:f6:11:36:8d: f4:8f:5a:f5:d2:1f:d0:4f:65:a5:59:79:3c:f1:dd:fe:82:40: 04:1c:b7:73:02:0f:2b:0c:5f:1d:fd:d4:f8:9c:50:56:26:6a: 87:22:96:f9:7f:8a:20:f3:ba:8a:04:8f:cf:cf:74:3c:a4:b7: a9:a6:04:ff:0e:c7:e0:66:ba:80:89:f8:d6:d3:d0:cc:7a:6e: da:30:8c:ce:23:36:fa:43:05:75:f8:c3:34:85:a3:a6:dc:2c: 55:b7:1f:0e:03:8e:94:61:0b:6f:7e:85:9b:57:f1:d4:9f:a0: ea:e7:37:64:6a:4a:88:fe:fb:2e:78:ac:9a:0f:94:ba:1f:c7: d8:44:62:87:e8:0c:e7:c2:a7:f8:4d:94:48:45:c1:7d:af:16: 98:a5:cc:34:55:5c:dc:43:c2:9d:e5:c7:61:37:18:db:8b:72: b9:e7:de:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBKswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEyNjUxMTAvBgNVBAUTKDkxQTkzMjNDQjM0NDI2RjNEOUM4OTBFMzk3ODAyMEQ0 MTdCMzU5RjUwHhcNMjUxMTAyMjM1NTA3WhcNMjUxMTA5MjM1NTA3WjAYMRYwFAYD VQQDEw02OTA3ZWY1Yi0yNjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvloaSZLJGCp1R5MAzGomREtQ1yf4rtpTpiPbhgR3P35hT8S15GzQNHD+wgJm Ti+EklGB53Ryj9rZwvxQ7XfJoVrzSPIQ/Pno2GmoGnxWxKIXQuUYiSUjy6qZwhLS CCJzy0HTvRexXAAZyHHVAziRSbxXbn+om5kHv69vTr+LEvOH8ggKIQ3Frb+DDjna TBiPbcpHUPweRC38Ou2v7fqeevub+tcglIg2Ah7uiHJjFFEpr8z99cuRBWir7azC UHUQp3Lt0GA+Ca6XvdaZ6kiub4zKYiFiRlqyC1N/9buuseKfp+p2sEjGcMkt3cri 8MPyGbwJVpbzBFQ7KiMNLQ6T7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNi8yZpY KB13ZNgwWQemC2PfWe6MMB8GA1UdIwQYMBaAFJGpMjyzRCbz2ciQ45eAINQXs1n1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTI2NS8wNTcwOUFFQTUy MUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2UFp5SkRqbDRBZzFCZXpX ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tha3lQTE5FSnZQWnlKRGpsNEFnMUJleldmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTI2NS8wNTcwOUFFQTUyMUYxMUVDQjNEMDE5MkJDNEY5QUUwMi9rYWt5UExORUp2 UFp5SkRqbDRBZzFCZXpXZlUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDcRoyGMV2A82P7RQcqbP8u2mFk8gWbWx73Mr6Z9uwAgBuksrlYiBr 5Uyui+F236T8FjTLIgzk1DD3x6b/d0yya3OplP0+c5wL2j8PWqtuyRWsdeWKyvYR No30j1r10h/QT2WlWXk88d3+gkAEHLdzAg8rDF8d/dT4nFBWJmqHIpb5f4og87qK BI/Pz3Q8pLeppgT/DsfgZrqAifjW09DMem7aMIzOIzb6QwV1+MM0haOm3CxVtx8O A46UYQtvfoWbV/HUn6Dq5zdkakqI/vsueKyaD5S6H8fYRGKH6Aznwqf4TZRIRcF9 rxaYpcw0VVzcQ8Kd5cdhNxjbi3K5596+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:46 2025 by rpki-client