$ rpki-client -vvf rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft File: keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft (raw, json) Hash identifier: Fu5aRcRIabRHixoqvAkgdFHXFvbZOJLOsJjDRBnUqIA= Subject key identifier: 37:3A:65:73:41:77:79:E8:E7:7C:77:7F:F1:A7:26:D0:61:32:8C:39 Authority key identifier: 91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF Certificate issuer: /CN=A91876D9/serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Certificate serial: 056E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft Manifest number: 0567 Signing time: Tue 04 Nov 2025 23:26:52 +0000 Manifest this update: Tue 04 Nov 2025 23:26:52 +0000 Manifest next update: Tue 11 Nov 2025 23:26:52 +0000 Files and hashes: 1: keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl (hash: br9ZOR9PWBGzaKeAAbCzD90lpMrd8r3Ee/WMDVUuwrY=) 2: 5C759146B9D211F0A4846C41C4F9AE02.roa (hash: magF5fHTmiSsewDpIaJLfFLa4fslr0l7IIyluckSvII=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:26:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91876D9, serialNumber=91E669CE0215097BD4D477A1A7446B0D9D0248FF Validity Not Before: Nov 4 23:26:52 2025 GMT Not After : Nov 11 23:26:52 2025 GMT Subject: CN=690a8bbc-16de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:ad:79:e4:f4:ca:0f:b9:07:ce:d7:34:81:40: dc:cc:cd:59:f1:b8:b7:3c:98:17:51:9e:1d:ff:d6: 3a:9a:f9:01:9b:d4:ad:df:06:69:79:0c:b2:25:0b: 40:d3:5f:ba:48:0a:90:c6:4a:31:18:ee:87:af:ad: 68:02:4d:b5:89:87:43:ac:7c:84:1a:0c:6c:1f:be: 3a:f2:09:1a:98:59:ab:75:23:e6:89:1f:01:c8:91: 54:af:25:2c:22:3e:c5:2a:af:56:33:19:f3:ee:72: 2c:b7:16:e6:99:d8:bf:89:78:16:89:cc:a0:a8:e1: 3d:b1:39:76:8b:c0:ef:dc:29:4e:09:1f:45:a9:2d: 7d:12:dd:4e:f0:45:d1:39:bb:ab:d6:3d:c3:b6:4b: 34:1d:d5:8f:23:75:0c:ae:f2:cb:ed:ad:63:ff:47: 2d:de:25:9e:fe:6c:2e:77:be:35:52:71:c9:d6:24: fd:4b:14:ba:bd:fd:fc:ba:2d:15:c4:7e:c3:26:56: c3:54:c5:f6:6b:ee:90:61:26:6e:f9:3e:c9:7e:cf: 30:c1:0d:b3:ca:8c:15:d8:eb:73:2c:25:ce:59:9b: 6a:74:57:a3:5b:d3:aa:87:d2:63:d1:14:ef:95:6c: 20:f9:f8:f6:99:f4:b8:38:c5:82:19:34:76:a3:0f: 6b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:3A:65:73:41:77:79:E8:E7:7C:77:7F:F1:A7:26:D0:61:32:8C:39 X509v3 Authority Key Identifier: keyid:91:E6:69:CE:02:15:09:7B:D4:D4:77:A1:A7:44:6B:0D:9D:02:48:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keZpzgIVCXvU1Hehp0RrDZ0CSP8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91876D9/9260C658061811ECBB262C5EC4F9AE02/keZpzgIVCXvU1Hehp0RrDZ0CSP8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:2d:bd:5b:1e:6a:72:79:53:43:4f:09:c0:bd:d0:ce:c6:87: 5d:f2:23:fb:a2:7e:d6:eb:18:20:49:f1:2a:53:0a:b8:6e:47: 0a:32:ac:0f:91:01:9a:31:78:54:da:f5:53:11:03:2e:f7:74: f4:a6:e5:4d:92:c0:d6:b7:cd:5b:ab:13:b2:b9:50:2f:96:34: d0:c6:84:5f:71:22:15:d2:40:a0:43:66:3b:56:e2:4a:20:62: 2b:c4:35:5a:58:27:0d:e4:cc:72:60:05:9b:1b:17:b3:4e:05: 18:b6:82:24:5f:d7:27:b3:df:bb:69:b0:51:9d:6e:fd:69:28: b4:13:d7:9d:44:46:d8:47:24:59:6a:b6:a9:45:a6:80:0e:96: e6:89:a5:8b:c2:8c:b7:8c:f3:84:7a:36:5b:c3:63:2f:97:5f: 5f:3a:b2:6f:c0:88:40:fd:39:e2:75:5c:40:2c:93:16:2e:f6: 1e:39:60:e1:97:db:6f:43:8c:14:c9:d9:d0:43:88:32:9d:83: 25:33:a1:71:b0:c6:d8:0f:1a:9c:82:49:e7:6e:d3:ad:5b:41: cf:0e:54:7a:7d:38:be:46:3b:5a:c8:02:5c:66:e2:f1:6e:ea: 32:57:53:d2:7a:fc:34:1a:1e:e2:9a:1a:34:0b:57:92:89:bc: 0c:d6:25:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2RDkxMTAvBgNVBAUTKDkxRTY2OUNFMDIxNTA5N0JENEQ0NzdBMUE3NDQ2QjBE OUQwMjQ4RkYwHhcNMjUxMTA0MjMyNjUyWhcNMjUxMTExMjMyNjUyWjAYMRYwFAYD VQQDEw02OTBhOGJiYy0xNmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6155PTKD7kHztc0gUDczM1Z8bi3PJgXUZ4d/9Y6mvkBm9St3wZpeQyyJQtA 01+6SAqQxkoxGO6Hr61oAk21iYdDrHyEGgxsH7468gkamFmrdSPmiR8ByJFUryUs Ij7FKq9WMxnz7nIstxbmmdi/iXgWicygqOE9sTl2i8Dv3ClOCR9FqS19Et1O8EXR Obur1j3Dtks0HdWPI3UMrvLL7a1j/0ct3iWe/mwud741UnHJ1iT9SxS6vf38ui0V xH7DJlbDVMX2a+6QYSZu+T7Jfs8wwQ2zyowV2OtzLCXOWZtqdFejW9Oqh9Jj0RTv lWwg+fj2mfS4OMWCGTR2ow9rYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDc6ZXNB d3no53x3f/GnJtBhMow5MB8GA1UdIwQYMBaAFJHmac4CFQl71NR3oadEaw2dAkj/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzZEOS85MjYwQzY1ODA2 MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNYdlUxSGVocDBSckRaMENT UDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlWnB6Z0lWQ1h2VTFIZWhwMFJyRFowQ1NQOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzZEOS85MjYwQzY1ODA2MTgxMUVDQkIyNjJDNUVDNEY5QUUwMi9rZVpwemdJVkNY dlUxSGVocDBSckRaMENTUDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJLb1bHmpyeVNDTwnAvdDOxodd8iP7on7W6xggSfEqUwq4bkcKMqwP kQGaMXhU2vVTEQMu93T0puVNksDWt81bqxOyuVAvljTQxoRfcSIV0kCgQ2Y7VuJK IGIrxDVaWCcN5MxyYAWbGxezTgUYtoIkX9cns9+7abBRnW79aSi0E9edREbYRyRZ arapRaaADpbmiaWLwoy3jPOEejZbw2Mvl19fOrJvwIhA/TnidVxALJMWLvYeOWDh l9tvQ4wUydnQQ4gynYMlM6FxsMbYDxqcgknnbtOtW0HPDlR6fTi+RjtayAJcZuLx buoyV1PSevw0Gh7imho0C1eSibwM1iWN -----END CERTIFICATE-----Generated at Wed Nov 5 16:39:39 2025 by rpki-client