$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: 1PuDMkJN1SyMhIrE16dKfr18+3r8ZxoVChgrVWTrs64= Subject key identifier: D6:61:F1:1F:0C:9A:9F:E8:5F:B8:B1:02:8A:6D:70:B0:8D:08:8B:58 Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: C8 Signing time: Mon 03 Nov 2025 05:46:34 +0000 Manifest this update: Mon 03 Nov 2025 05:46:33 +0000 Manifest next update: Mon 10 Nov 2025 05:46:33 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: +F+i3C78l896q8PVSntN7Xund9WMZS1vV2+8NL9zy1c=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:46:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 201 (0xc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Nov 3 05:46:33 2025 GMT Not After : Nov 10 05:46:33 2025 GMT Subject: CN=690841b9-f819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:3c:b9:ff:db:5e:46:bc:d5:7e:71:d2:a9: 38:bd:89:fc:66:14:32:34:cc:bc:6d:cf:54:5b:8e: 29:e1:d4:ec:93:bb:d9:24:dc:ab:0a:f0:d3:25:65: f9:e7:72:f7:ad:66:b1:fd:b7:e2:95:54:3c:2e:5e: fb:ed:04:c7:18:a9:dd:32:b5:38:02:69:86:53:c4: c2:be:e1:46:85:ab:83:9e:bf:32:0b:c7:9c:18:65: aa:ce:81:9a:15:b9:05:af:48:2d:dc:50:26:77:26: 3d:af:a2:42:4d:dc:91:81:f6:f4:90:87:f3:e3:30: 56:65:aa:75:df:cc:9c:68:24:9d:d2:fa:7f:a1:e3: 6c:dd:f2:47:5d:32:ca:99:e6:d5:b2:e9:a4:cb:df: 15:e6:cf:ff:8d:88:12:8b:75:13:4a:52:30:98:da: 52:9d:79:ed:e0:0b:8a:4b:9b:58:6c:95:50:43:79: 5d:e3:0d:11:64:a0:fd:7e:89:ad:4c:75:42:63:2f: 9d:ee:76:3e:4f:b4:a5:90:4d:0f:92:51:51:ee:b9: 02:14:67:42:c5:ee:bb:09:86:9a:06:b9:f0:9c:75: 79:81:3b:74:72:e1:e4:92:06:e1:f1:ea:08:47:99: 63:76:0a:0b:fe:79:f6:a1:c2:b1:bc:4e:ed:c8:2e: 31:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:61:F1:1F:0C:9A:9F:E8:5F:B8:B1:02:8A:6D:70:B0:8D:08:8B:58 X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:a1:26:87:10:23:8a:75:0d:24:48:40:d7:75:c3:b9:68:1d: a4:66:6c:72:3d:f3:85:1e:83:80:d4:92:ad:a9:a1:25:50:96: e5:71:a8:65:65:36:e3:d9:69:61:c1:eb:2f:16:d0:38:c2:bf: e0:99:2e:c0:d8:4a:ae:09:3f:4e:db:69:43:fa:64:9c:76:55: 2c:a0:87:47:21:1c:4a:ae:57:d3:58:92:03:26:d2:92:ba:a0: 08:9b:58:ba:f3:29:40:5e:10:86:41:73:3f:0e:e8:69:61:22: 50:6a:73:59:fa:80:43:70:c1:08:7a:6a:eb:a2:f6:78:78:9f: 6f:a8:d7:9c:19:c8:14:a1:78:f1:33:68:aa:fc:cc:08:2e:0f: 05:c4:dd:9d:a5:53:96:79:92:d2:e9:e3:c9:24:ad:a3:09:45: c1:88:e4:50:19:fb:ca:b0:f2:14:de:ec:31:d5:29:96:82:31: d4:38:08:08:ee:cb:3e:05:6e:34:ee:bc:6c:5e:6f:c0:e7:9b: ae:cb:f7:03:9d:ef:e7:d2:57:e3:08:e9:2c:3d:f7:22:69:b3: 2b:31:5a:42:f5:55:2d:23:e0:a3:10:c1:52:ba:61:42:2f:00: 0d:d1:01:a3:40:18:27:41:a1:20:62:eb:57:ec:bc:ff:56:e3: f6:c8:de:14 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUxMTAzMDU0NjMzWhcNMjUxMTEwMDU0NjMzWjAYMRYwFAYD VQQDEw02OTA4NDFiOS1mODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtsU8uf/bXka81X5x0qk4vYn8ZhQyNMy8bc9UW44p4dTsk7vZJNyrCvDTJWX5 53L3rWax/bfilVQ8Ll777QTHGKndMrU4AmmGU8TCvuFGhauDnr8yC8ecGGWqzoGa FbkFr0gt3FAmdyY9r6JCTdyRgfb0kIfz4zBWZap138ycaCSd0vp/oeNs3fJHXTLK mebVsumky98V5s//jYgSi3UTSlIwmNpSnXnt4AuKS5tYbJVQQ3ld4w0RZKD9fomt THVCYy+d7nY+T7SlkE0PklFR7rkCFGdCxe67CYaaBrnwnHV5gTt0cuHkkgbh8eoI R5ljdgoL/nn2ocKxvE7tyC4xeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNZh8R8M mp/oX7ixAoptcLCNCItYMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQANoSaHECOKdQ0kSEDXdcO5aB2kZmxyPfOFHoOA1JKtqaElUJblcahl ZTbj2WlhwesvFtA4wr/gmS7A2EquCT9O22lD+mScdlUsoIdHIRxKrlfTWJIDJtKS uqAIm1i68ylAXhCGQXM/DuhpYSJQanNZ+oBDcMEIemrrovZ4eJ9vqNecGcgUoXjx M2iq/MwILg8FxN2dpVOWeZLS6ePJJK2jCUXBiORQGfvKsPIU3uwx1SmWgjHUOAgI 7ss+BW407rxsXm/A55uuy/cDne/n0lfjCOksPfciabMrMVpC9VUtI+CjEMFSumFC LwAN0QGjQBgnQaEgYutX7Lz/VuP2yN4U -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:05 2025 by rpki-client