$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft File: kJUWWXx2-jz_qxUgjArpiGY0qgM.mft (raw, json) Hash identifier: kkpSHC3LoMR2FVnoaxjGlNS8ElvajGv9ySTz5YnDpSI= Subject key identifier: 24:7A:30:59:A8:80:C7:0C:77:05:52:61:84:99:CC:34:3E:37:E4:CC Authority key identifier: 90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 Certificate issuer: /CN=A91847A2/serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Certificate serial: 0AF3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft Manifest number: 0AEB Signing time: Wed 22 Oct 2025 20:04:48 +0000 Manifest this update: Wed 22 Oct 2025 20:04:47 +0000 Manifest next update: Wed 29 Oct 2025 20:04:47 +0000 Files and hashes: 1: kJUWWXx2-jz_qxUgjArpiGY0qgM.crl (hash: gq3FkX/AEvk83YS/65pSoKniZZOAmHt47mAjfxEUar4=) 2: 54EDB8542E1811EBB4E80B1FC4F9AE02.roa (hash: 3V95dG8EwbjGC7EMndTVlVAHQWvt90W2HKQwUZ++P/E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:04:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2803 (0xaf3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2, serialNumber=909516597C76FA3CFFAB15208C0AE9886634AA03 Validity Not Before: Oct 22 20:04:47 2025 GMT Not After : Oct 29 20:04:47 2025 GMT Subject: CN=68f938df-2645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:45:0a:47:49:d4:7c:af:0b:2e:27:20:88:eb: 59:44:6f:b4:1a:d2:c0:f0:7b:35:0f:55:5d:7b:3e: c3:4b:dd:83:ee:60:7a:20:9f:41:d4:0e:4b:8d:a1: 8d:4d:fa:b9:1e:98:35:6e:e8:c9:cb:e8:79:c3:92: 9e:66:ab:40:9e:15:0f:5e:8c:2e:3e:34:46:94:e8: 11:83:50:05:fd:84:0b:8f:8f:82:ea:ee:23:8c:cf: 18:8d:0b:0e:4f:05:00:10:07:20:d8:0c:5a:89:b7: 19:56:4a:d7:43:bd:a7:ff:a8:c5:a6:fc:20:28:77: 37:80:2c:9e:56:de:57:b4:8e:99:ed:8a:ce:5b:a9: fe:85:13:97:51:03:71:27:3f:c9:05:6a:ec:59:c3: 0a:6a:23:31:34:ba:0e:73:22:c7:f8:5b:00:37:f2: 10:63:bb:86:65:18:bc:c4:a1:95:e2:ee:76:09:42: 91:95:20:b5:d7:47:c3:67:35:fb:f7:ce:26:55:df: 00:6c:a3:00:72:2d:b0:cc:c1:f2:d3:9a:ac:8a:29: 42:3c:63:fd:b8:c6:3b:58:92:2c:a0:bd:a8:b8:e5: e4:ba:33:34:f5:69:4e:81:08:aa:ab:18:21:91:2f: 00:d2:80:98:38:de:e4:8f:e4:1f:f5:eb:f1:23:15: 51:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:7A:30:59:A8:80:C7:0C:77:05:52:61:84:99:CC:34:3E:37:E4:CC X509v3 Authority Key Identifier: keyid:90:95:16:59:7C:76:FA:3C:FF:AB:15:20:8C:0A:E9:88:66:34:AA:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kJUWWXx2-jz_qxUgjArpiGY0qgM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/AED3D35E594211EA936FCE43C4F9AE02/kJUWWXx2-jz_qxUgjArpiGY0qgM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:36:2d:53:23:4d:04:e2:71:dc:0c:93:e4:93:e3:03:ba:17: 4f:a0:78:f2:c2:4d:fb:6e:cc:75:f9:fa:9e:a5:b1:b9:d5:17: 17:09:93:69:9d:f1:87:ad:75:f3:5b:3c:65:d9:d4:de:ed:25: 4a:ed:0f:97:c6:e8:26:bd:df:ca:9b:17:52:09:9b:e3:3d:e8: d5:82:b3:08:52:f9:85:fa:29:e6:25:59:2c:7e:1e:48:13:58: d2:47:07:82:b1:50:53:14:cc:ed:c5:21:12:e9:b0:2e:a1:a1: 70:3f:5d:06:dc:a4:1a:08:19:8d:c9:9e:46:4c:0e:8c:5f:0b: 7b:3a:59:09:32:ef:e0:13:bc:b7:52:c6:52:3f:40:b3:be:31: 37:fe:86:14:cc:ab:3a:9a:f8:c3:51:6f:f5:ef:05:46:d7:9a: 34:19:a7:31:14:ac:32:c8:c1:35:fb:13:ba:7b:28:79:31:ea: 77:85:60:8d:cd:92:af:ad:16:b6:90:2c:59:f4:94:04:b0:d6: 4b:8b:06:74:4c:6d:a7:bd:87:70:f7:cc:ea:45:95:71:30:22: fc:c4:54:c5:e7:42:21:47:21:bd:85:62:6d:ef:65:37:62:d6: 85:df:db:69:8f:87:72:a6:e6:3e:15:51:d4:24:67:ff:e7:f6: 13:71:d6:72 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkwOTUxNjU5N0M3NkZBM0NGRkFCMTUyMDhDMEFFOTg4 NjYzNEFBMDMwHhcNMjUxMDIyMjAwNDQ3WhcNMjUxMDI5MjAwNDQ3WjAYMRYwFAYD VQQDEw02OGY5MzhkZi0yNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6UUKR0nUfK8LLicgiOtZRG+0GtLA8Hs1D1Vdez7DS92D7mB6IJ9B1A5LjaGN Tfq5Hpg1bujJy+h5w5KeZqtAnhUPXowuPjRGlOgRg1AF/YQLj4+C6u4jjM8YjQsO TwUAEAcg2AxaibcZVkrXQ72n/6jFpvwgKHc3gCyeVt5XtI6Z7YrOW6n+hROXUQNx Jz/JBWrsWcMKaiMxNLoOcyLH+FsAN/IQY7uGZRi8xKGV4u52CUKRlSC110fDZzX7 984mVd8AbKMAci2wzMHy05qsiilCPGP9uMY7WJIsoL2ouOXkujM09WlOgQiqqxgh kS8A0oCYON7kj+Qf9evxIxVRfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCR6MFmo gMcMdwVSYYSZzDQ+N+TMMB8GA1UdIwQYMBaAFJCVFll8dvo8/6sVIIwK6YhmNKoD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9BRUQzRDM1RTU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1qel9xeFVnakFycGlHWTBx Z00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tKVVdXWHgyLWp6X3F4VWdqQXJwaUdZMHFnTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDdBMi9BRUQzRDM1RTU5NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rSlVXV1h4Mi1q el9xeFVnakFycGlHWTBxZ00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCONi1TI00E4nHcDJPkk+MDuhdPoHjywk37bsx1+fqepbG51RcXCZNp nfGHrXXzWzxl2dTe7SVK7Q+Xxugmvd/KmxdSCZvjPejVgrMIUvmF+inmJVksfh5I E1jSRweCsVBTFMztxSES6bAuoaFwP10G3KQaCBmNyZ5GTA6MXwt7OlkJMu/gE7y3 UsZSP0CzvjE3/oYUzKs6mvjDUW/17wVG15o0GacxFKwyyME1+xO6eyh5Mep3hWCN zZKvrRa2kCxZ9JQEsNZLiwZ0TG2nvYdw98zqRZVxMCL8xFTF50IhRyG9hWJt72U3 YtaF39tpj4dypuY+FVHUJGf/5/YTcdZy -----END CERTIFICATE-----Generated at Thu Oct 23 20:09:02 2025 by rpki-client