$ rpki-client -vvf rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft File: KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft (raw, json) Hash identifier: zWepIv/A3iXZ7+f3zByVFGNqeTbdbWTMRrUN8NeiXb0= Subject key identifier: FA:98:AE:E9:16:B8:02:86:DE:D1:41:1B:44:15:3F:F4:EA:53:3E:21 Authority key identifier: 2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 Certificate issuer: /CN=A9190960/serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Certificate serial: 070B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft Manifest number: 0702 Signing time: Sun 02 Nov 2025 21:53:27 +0000 Manifest this update: Sun 02 Nov 2025 21:53:26 +0000 Manifest next update: Sun 09 Nov 2025 21:53:26 +0000 Files and hashes: 1: KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl (hash: oyo7ePS+3jCgduIjH0fwQ3SEDoftHGm5Trzq6wy5bEQ=) 2: ED534930C8B511ED9A1D817EC4F9AE02.roa (hash: cWc+J1TIBwheicFkr/uWy0LuYQxsGfxktq1Xam8BBXI=) 3: 9398F508619611EBA485B448C4F9AE02.roa (hash: Nd8Cn8Kc0/NAG96VlpahXIFBzBlttK0FrKVnW80S2cI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:53:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1803 (0x70b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190960, serialNumber=2A900734C5E3B93ACA9470E3F5ADDADC2F215B31 Validity Not Before: Nov 2 21:53:26 2025 GMT Not After : Nov 9 21:53:26 2025 GMT Subject: CN=6907d2d6-b812 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:59:59:06:f7:a1:50:ff:b7:2c:a2:8b:58:b8: 3c:a6:a0:70:43:73:a8:90:2b:77:4d:fb:bf:47:ad: f5:ba:00:83:e5:b7:a4:72:c1:51:e2:01:42:4f:c3: 67:d1:de:de:3e:b2:2c:10:2f:cb:30:b9:ef:15:a9: 6f:31:19:0f:b9:bc:54:ec:21:48:22:70:02:68:e6: a8:c0:fc:38:7d:47:c8:14:05:9c:57:c7:58:b3:80: 3b:99:be:42:f5:4b:da:39:55:9d:c1:0a:4a:ed:1c: 7f:d5:5f:b0:7f:aa:c7:f1:4b:e1:84:89:8a:dd:c4: 4a:72:b8:8d:a4:72:4a:40:cb:ae:cf:41:d8:05:c7: 21:2f:f6:76:98:78:99:00:a7:50:0a:98:eb:10:4a: 66:cc:65:cb:8d:d8:32:fa:b8:22:e4:a1:a8:c8:ad: 6d:00:a3:d6:5e:63:fe:b3:14:ac:d0:83:e0:93:7b: 74:04:84:b3:ee:b2:22:1d:21:d6:d4:39:ca:16:c0: 08:3f:9a:5a:b5:f5:d0:d8:22:c6:d2:42:42:10:59: ce:f7:df:64:0f:6d:0a:f4:e6:3d:dd:8a:fb:23:58: 59:55:f5:75:6f:e7:34:8a:6d:f2:5e:be:7f:1b:12: da:80:72:a5:7b:0b:29:15:00:a6:e4:74:58:78:7b: 46:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:98:AE:E9:16:B8:02:86:DE:D1:41:1B:44:15:3F:F4:EA:53:3E:21 X509v3 Authority Key Identifier: keyid:2A:90:07:34:C5:E3:B9:3A:CA:94:70:E3:F5:AD:DA:DC:2F:21:5B:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpAHNMXjuTrKlHDj9a3a3C8hWzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190960/9C6F7BEA619411EBBFD2AA2AC4F9AE02/KpAHNMXjuTrKlHDj9a3a3C8hWzE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:35:3c:00:9b:65:9a:ba:7b:0e:b9:70:ba:84:87:51:b3:58: a7:29:bd:da:a2:5d:9e:54:b8:c8:0d:51:7e:c6:46:de:e1:d0: b3:7e:0c:d8:ed:cb:6f:14:13:b1:0a:35:7f:b9:2d:e1:e9:76: 4b:2c:01:51:fd:9d:93:04:c5:d7:76:96:e0:74:a0:91:25:89: fe:74:8f:8e:92:69:dc:e9:07:37:d1:f7:e0:ed:e6:86:0e:e0: 93:9a:70:0c:99:cf:f2:b6:80:f0:93:c6:7f:a5:b4:ff:31:7e: 2a:af:4c:b1:da:8f:ab:3a:f5:5c:aa:4a:ff:cb:cc:37:e7:b1: 53:36:d4:11:dc:cb:69:47:9a:d0:0b:0a:42:2e:d6:fd:bd:37: 4d:e5:c9:fd:2e:98:ea:7e:f7:bc:04:6c:e8:5d:f0:15:f9:03: 2d:ca:62:9d:9a:4e:97:b0:ab:71:50:bf:8f:09:1c:10:15:6d: 35:0c:e1:da:3d:29:01:d0:b5:b2:4a:55:cc:7b:60:40:ae:af: 47:86:f3:0d:29:cf:a3:d4:8a:65:cd:51:0b:63:ed:f6:b3:78: 60:b9:56:e7:26:85:47:eb:91:4d:1e:78:fe:46:8e:4c:7e:cb: ad:0a:66:f9:67:9c:68:e5:2e:a0:bc:6c:94:62:3f:74:7e:a1: d2:4c:ee:f0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5NjAxMTAvBgNVBAUTKDJBOTAwNzM0QzVFM0I5M0FDQTk0NzBFM0Y1QUREQURD MkYyMTVCMzEwHhcNMjUxMTAyMjE1MzI2WhcNMjUxMTA5MjE1MzI2WjAYMRYwFAYD VQQDEw02OTA3ZDJkNi1iODEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1lZBvehUP+3LKKLWLg8pqBwQ3OokCt3Tfu/R631ugCD5bekcsFR4gFCT8Nn 0d7ePrIsEC/LMLnvFalvMRkPubxU7CFIInACaOaowPw4fUfIFAWcV8dYs4A7mb5C 9UvaOVWdwQpK7Rx/1V+wf6rH8UvhhImK3cRKcriNpHJKQMuuz0HYBcchL/Z2mHiZ AKdQCpjrEEpmzGXLjdgy+rgi5KGoyK1tAKPWXmP+sxSs0IPgk3t0BISz7rIiHSHW 1DnKFsAIP5patfXQ2CLG0kJCEFnO999kD20K9OY93Yr7I1hZVfV1b+c0im3yXr5/ GxLagHKlewspFQCm5HRYeHtGBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPqYrukW uAKG3tFBG0QVP/TqUz4hMB8GA1UdIwQYMBaAFCqQBzTF47k6ypRw4/Wt2twvIVsx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk2MC85QzZGN0JFQTYx OTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVUcktsSERqOWEzYTNDOGhX ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twQUhOTVhqdVRyS2xIRGo5YTNhM0M4aFd6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MDk2MC85QzZGN0JFQTYxOTQxMUVCQkZEMkFBMkFDNEY5QUUwMi9LcEFITk1YanVU cktsSERqOWEzYTNDOGhXekUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCNNTwAm2WaunsOuXC6hIdRs1inKb3aol2eVLjIDVF+xkbe4dCzfgzY 7ctvFBOxCjV/uS3h6XZLLAFR/Z2TBMXXdpbgdKCRJYn+dI+Okmnc6Qc30ffg7eaG DuCTmnAMmc/ytoDwk8Z/pbT/MX4qr0yx2o+rOvVcqkr/y8w357FTNtQR3MtpR5rQ CwpCLtb9vTdN5cn9Lpjqfve8BGzoXfAV+QMtymKdmk6XsKtxUL+PCRwQFW01DOHa PSkB0LWySlXMe2BArq9HhvMNKc+j1IplzVELY+32s3hguVbnJoVH65FNHnj+Ro5M fsutCmb5Z5xo5S6gvGyUYj90fqHSTO7w -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:00 2025 by rpki-client