$ rpki-client -vvf rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft File: kw3fQQEGkDvrmRnJm94BY4cGVa4.mft (raw, json) Hash identifier: WoObO4GaehsZ9w1aUYwB43SWOnrHUZtyTgaI9dsj7SU= Subject key identifier: F5:F8:CC:06:DD:12:17:B8:11:6F:53:70:70:93:E1:53:88:02:C6:AE Authority key identifier: 93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE Certificate issuer: /CN=A9198553/serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Certificate serial: 99 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft Manifest number: 96 Signing time: Wed 29 Oct 2025 06:16:00 +0000 Manifest this update: Wed 29 Oct 2025 06:15:58 +0000 Manifest next update: Wed 05 Nov 2025 06:15:58 +0000 Files and hashes: 1: kw3fQQEGkDvrmRnJm94BY4cGVa4.crl (hash: g7SL1kWYkE6sd4UGsUNPdsje+kE+TI4j1IxjZMIE9+4=) 2: 5042D03ED2EF11EFBA610425C4F9AE02.roa (hash: Td45KF7s5KJjDmYTPbjMG6cwXZMtoTfhOtwsLcRRVB4=) 3: B56BC994E18A11EF94F99968C4F9AE02.roa (hash: gzNobaLbEvK3FJ3mC0CiPYdWO820L9Sv8IKQdUKftFE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 06:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9198553, serialNumber=930DDF410106903BEB9919C99BDE0163870655AE Validity Not Before: Oct 29 06:15:58 2025 GMT Not After : Nov 5 06:15:58 2025 GMT Subject: CN=6901b11f-084a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:93:ab:00:ae:b4:61:58:15:9b:b4:f6:2f:01: 7a:cc:80:16:cd:f4:4b:17:ea:27:ea:ad:08:a7:0a: d0:90:7f:3f:a8:c2:78:4c:0b:3d:0a:b4:04:59:06: 20:f0:b5:4e:ff:58:ab:48:c8:b9:2a:ef:15:a6:43: 4f:91:d3:c9:a3:29:96:7c:eb:d4:48:a9:ce:06:99: b8:ae:d6:93:07:3f:cb:60:96:2b:2e:ba:70:3a:9a: c7:51:be:93:14:dc:af:c1:3c:e0:c8:96:f7:5e:f8: 41:8c:9b:76:3c:b9:3c:36:8d:88:fc:ee:be:ea:ba: 19:32:65:f6:71:62:6d:aa:66:16:80:9a:d2:1f:62: 39:1a:90:a7:cc:9c:7d:f6:02:a9:7a:93:26:1b:fa: 3c:e2:65:e4:9c:de:21:5e:43:ba:c4:c6:39:85:08: b4:6e:c9:b0:f9:5b:fc:ab:9c:bb:c5:8e:c3:06:9e: c2:e8:f6:4b:63:e7:44:9c:a0:b1:71:71:3d:24:55: 9a:62:b0:90:4e:18:f1:bb:12:be:d8:f5:81:f4:ff: 52:60:d5:6e:d6:76:30:83:26:1c:95:15:5a:98:ba: 43:bc:c1:b1:4f:7f:82:9d:09:c7:b2:a3:43:22:cb: 5a:3a:60:e9:58:18:99:65:84:6c:94:6f:e7:c4:52: 48:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:F8:CC:06:DD:12:17:B8:11:6F:53:70:70:93:E1:53:88:02:C6:AE X509v3 Authority Key Identifier: keyid:93:0D:DF:41:01:06:90:3B:EB:99:19:C9:9B:DE:01:63:87:06:55:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kw3fQQEGkDvrmRnJm94BY4cGVa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9198553/A59BFFE4D2ED11EF8DEE5120C4F9AE02/kw3fQQEGkDvrmRnJm94BY4cGVa4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a1:72:a7:7e:1c:0c:f4:55:fb:e9:4a:e6:6b:12:5a:d6:88:66: d6:89:ff:a0:9f:e1:20:66:d2:b8:95:e7:ef:ad:14:95:19:06: 63:db:c8:84:87:9e:5d:d3:66:a9:b2:b8:db:a6:e1:48:36:86: f2:12:34:34:5e:5a:68:6c:31:d7:45:9c:3b:d5:62:f0:56:09: 92:ca:ca:24:66:b6:f6:70:7a:25:a2:34:80:4a:38:1d:8d:e2: 87:10:50:23:28:d5:08:38:91:a4:05:f5:e5:21:a1:c7:f4:a3: 23:11:e8:41:37:26:8e:00:aa:f7:d6:c9:4a:f9:56:cb:be:f3: 07:b0:f2:f2:fc:15:b2:d2:e0:d4:6d:a1:9d:2d:2d:1a:8a:d0: 18:9c:0c:99:29:c3:54:68:3c:9a:b2:cb:95:f2:94:a9:8d:54: 24:b6:5c:55:82:9c:66:a0:38:6f:22:df:b2:36:be:ed:87:88: ba:7e:52:21:3a:4f:02:61:83:73:1b:42:30:d0:99:dd:0c:2c: 7f:27:1a:8c:7e:d3:f1:f2:de:40:80:f5:ff:c0:96:46:2e:5c: 7c:31:36:1b:3a:65:31:48:4d:0b:5c:d9:11:b2:e3:8e:d0:c3: a1:dd:28:3f:95:56:ba:da:68:d8:fa:ad:c1:db:12:31:be:12: 8c:3f:70:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg1NTMxMTAvBgNVBAUTKDkzMERERjQxMDEwNjkwM0JFQjk5MTlDOTlCREUwMTYz ODcwNjU1QUUwHhcNMjUxMDI5MDYxNTU4WhcNMjUxMTA1MDYxNTU4WjAYMRYwFAYD VQQDEw02OTAxYjExZi0wODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZOrAK60YVgVm7T2LwF6zIAWzfRLF+on6q0IpwrQkH8/qMJ4TAs9CrQEWQYg 8LVO/1irSMi5Ku8VpkNPkdPJoymWfOvUSKnOBpm4rtaTBz/LYJYrLrpwOprHUb6T FNyvwTzgyJb3XvhBjJt2PLk8No2I/O6+6roZMmX2cWJtqmYWgJrSH2I5GpCnzJx9 9gKpepMmG/o84mXknN4hXkO6xMY5hQi0bsmw+Vv8q5y7xY7DBp7C6PZLY+dEnKCx cXE9JFWaYrCQThjxuxK+2PWB9P9SYNVu1nYwgyYclRVamLpDvMGxT3+CnQnHsqND IstaOmDpWBiZZYRslG/nxFJI1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPX4zAbd Ehe4EW9TcHCT4VOIAsauMB8GA1UdIwQYMBaAFJMN30EBBpA765kZyZveAWOHBlWu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODU1My9BNTlCRkZFNEQy RUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tEdnJtUm5KbTk0Qlk0Y0dW YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t3M2ZRUUVHa0R2cm1SbkptOTRCWTRjR1ZhNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODU1My9BNTlCRkZFNEQyRUQxMUVGOERFRTUxMjBDNEY5QUUwMi9rdzNmUVFFR2tE dnJtUm5KbTk0Qlk0Y0dWYTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQChcqd+HAz0VfvpSuZrElrWiGbWif+gn+EgZtK4lefvrRSVGQZj28iE h55d02apsrjbpuFINobyEjQ0XlpobDHXRZw71WLwVgmSysokZrb2cHolojSASjgd jeKHEFAjKNUIOJGkBfXlIaHH9KMjEehBNyaOAKr31slK+VbLvvMHsPLy/BWy0uDU baGdLS0aitAYnAyZKcNUaDyassuV8pSpjVQktlxVgpxmoDhvIt+yNr7th4i6flIh Ok8CYYNzG0Iw0JndDCx/JxqMftPx8t5AgPX/wJZGLlx8MTYbOmUxSE0LXNkRsuOO 0MOh3Sg/lVa62mjY+q3B2xIxvhKMP3DQ -----END CERTIFICATE-----Generated at Thu Oct 30 05:17:23 2025 by rpki-client