$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: dNMoSKPH8SO+0+A9mE7JzlSq15MmZKPM6JAhjU3tAbs= Subject key identifier: 59:F4:EE:90:B5:EB:A8:76:46:A8:F5:DF:B4:21:43:AE:B6:48:40:21 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 84 Signing time: Mon 03 Nov 2025 06:48:57 +0000 Manifest this update: Mon 03 Nov 2025 06:48:57 +0000 Manifest next update: Mon 10 Nov 2025 06:48:57 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: HjLxYlUOSd702aTB0Rw6Vvx6rSTqLAeOqkL7VYc94xM=) 2: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: ACjymaT82Ts20I3seIpJ3qFJasSA4FVf/+MM9Q+0Im8=) 3: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: RGGyK8DspBxTZffeC/YcsDxozPm/op0sIdvWa7dUrhw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 143 (0x8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Nov 3 06:48:57 2025 GMT Not After : Nov 10 06:48:57 2025 GMT Subject: CN=69085059-5319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:33:6e:24:65:31:f6:79:7c:4e:e4:da:77:69: a9:0a:0d:7d:0f:7d:8a:1b:e6:3d:3e:58:66:10:20: 66:d8:88:9d:a4:17:d5:c4:d2:ce:94:bc:73:44:f3: 1a:90:44:b4:ef:5d:f3:a2:23:b5:81:05:e4:67:14: 4e:51:89:c0:62:6f:a1:12:a3:77:cc:ae:f5:c9:86: 05:9f:8c:91:31:c0:6b:dd:c5:09:f7:f1:8e:14:38: 56:15:c3:93:b2:60:5d:ba:86:95:1e:f9:a9:d6:5b: 03:d0:da:8f:c0:71:27:f9:ff:32:ad:ba:47:d2:18: 15:0e:53:69:48:a4:25:ef:97:f0:1c:05:a5:cd:c7: 73:18:24:23:e3:a8:5f:92:1a:b6:0f:9c:33:81:69: b8:54:20:30:13:69:d2:3d:83:e5:2a:14:46:38:11: 00:f0:38:ec:14:1a:3f:38:1f:66:1c:dd:19:36:f5: 90:e8:84:b7:46:19:70:6a:79:f8:17:8f:f3:ae:6d: 1c:da:d2:49:0e:2b:d6:3e:8f:33:1e:15:9d:e7:a3: fa:c7:80:54:4d:64:08:bf:29:15:c8:fe:b4:37:75: 6b:6b:33:b9:88:40:d2:6b:c1:a8:8f:dc:fb:6c:00: 14:80:fa:fc:b0:4b:b5:8d:a6:3c:1f:b4:4c:35:4a: a8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F4:EE:90:B5:EB:A8:76:46:A8:F5:DF:B4:21:43:AE:B6:48:40:21 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 90:03:ea:57:31:2c:99:d1:05:48:44:81:f3:d1:83:11:30:11: ad:91:1b:e4:6d:dc:7b:cb:ff:c1:8b:21:3c:12:a9:b3:9d:73: e6:b7:9c:38:00:af:ff:90:1d:83:5d:7a:bb:c7:9b:34:fe:a0: 62:1c:a5:9c:1d:76:f8:e9:4f:a9:64:0c:7a:c8:96:db:80:31: ef:90:74:02:04:09:4a:84:50:f1:91:ff:b8:e7:89:ef:2e:5a: 54:cf:bb:95:31:a7:61:dd:39:12:d1:26:52:ea:79:84:03:fe: bb:a2:04:4e:cd:f2:ac:fb:96:8b:13:3f:71:f9:f4:24:3f:b4: 57:d3:3d:82:10:8f:ee:7e:13:ac:ca:e1:95:4a:c2:fc:b5:ab: 3a:1f:23:32:ba:54:30:50:5e:b8:97:92:94:db:5a:15:87:69: af:44:b4:29:48:77:9d:01:8f:7e:7d:87:f2:d0:0d:d4:e5:56: bd:d0:f4:ca:bb:58:b0:87:0b:c1:83:7b:ae:91:85:21:5e:45: bc:5e:50:ba:2a:26:b6:31:c1:8d:be:99:28:7e:68:d7:a8:75: 3f:4a:70:79:25:f3:fe:93:79:cf:0f:85:6c:38:bc:5b:52:a3: 00:bb:b9:47:b7:d8:de:ce:1c:bd:27:05:c5:5b:ec:5a:ac:ec: b5:97:f9:4c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjUxMTAzMDY0ODU3WhcNMjUxMTEwMDY0ODU3WjAYMRYwFAYD VQQDEw02OTA4NTA1OS01MzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjNuJGUx9nl8TuTad2mpCg19D32KG+Y9PlhmECBm2IidpBfVxNLOlLxzRPMa kES0713zoiO1gQXkZxROUYnAYm+hEqN3zK71yYYFn4yRMcBr3cUJ9/GOFDhWFcOT smBduoaVHvmp1lsD0NqPwHEn+f8yrbpH0hgVDlNpSKQl75fwHAWlzcdzGCQj46hf khq2D5wzgWm4VCAwE2nSPYPlKhRGOBEA8DjsFBo/OB9mHN0ZNvWQ6IS3Rhlwann4 F4/zrm0c2tJJDivWPo8zHhWd56P6x4BUTWQIvykVyP60N3VrazO5iEDSa8Goj9z7 bAAUgPr8sEu1jaY8H7RMNUqoawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFn07pC1 66h2Rqj137QhQ662SEAhMB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCQA+pXMSyZ0QVIRIHz0YMRMBGtkRvkbdx7y//BiyE8EqmznXPmt5w4 AK//kB2DXXq7x5s0/qBiHKWcHXb46U+pZAx6yJbbgDHvkHQCBAlKhFDxkf+454nv LlpUz7uVMadh3TkS0SZS6nmEA/67ogROzfKs+5aLEz9x+fQkP7RX0z2CEI/ufhOs yuGVSsL8tas6HyMyulQwUF64l5KU21oVh2mvRLQpSHedAY9+fYfy0A3U5Va90PTK u1iwhwvBg3uukYUhXkW8XlC6Kia2McGNvpkofmjXqHU/SnB5JfP+k3nPD4VsOLxb UqMAu7lHt9jezhy9JwXFW+xarOy1l/lM -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:38 2025 by rpki-client