$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: 5tJE6T3ymS4pXmMC+7g9sHurD3qDqVus8mKrldc21SA= Subject key identifier: 24:81:06:F5:01:8C:13:A0:77:1D:D0:1E:F8:8B:DF:92:B1:D8:EA:75 Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: FC Signing time: Sat 25 Oct 2025 08:45:27 +0000 Manifest this update: Sat 25 Oct 2025 08:45:27 +0000 Manifest next update: Sat 01 Nov 2025 08:45:27 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: oOoj/PnNKg2dNmU24acAGsjnlWSRoaULnd7O+8W6MDk=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 08:45:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Oct 25 08:45:27 2025 GMT Not After : Nov 1 08:45:27 2025 GMT Subject: CN=68fc8e27-0d6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:31:11:eb:42:1f:8a:d6:77:af:81:84:7d:50: 3d:52:45:3d:7d:39:5d:5d:2f:fa:1f:83:9b:e1:30: 3b:fd:fb:2e:c0:27:dc:37:cb:05:47:c9:9f:28:24: 36:29:1f:cf:40:09:90:a9:32:7e:98:1a:c1:9a:0a: db:0a:9b:73:f3:f9:fd:cf:14:ed:ee:0f:46:2e:a8: a3:11:d7:47:3a:df:2e:57:a0:a4:3a:d4:ae:a2:45: 23:b7:10:69:6e:b6:d8:ff:96:aa:34:8e:7d:ab:7a: 2c:f6:7b:3d:91:9f:73:11:d3:b5:a9:05:45:0f:1f: 13:e3:33:2e:47:cb:9d:9c:95:ce:60:1b:b6:b5:f6: a8:98:90:0f:73:3e:7b:c2:bd:b4:78:4d:9a:6d:c6: 82:67:cf:1d:87:da:f3:89:0d:ff:01:3b:d5:8e:0f: 8f:6d:33:de:ab:3d:56:c4:99:fa:c7:f4:ac:d3:24: fd:70:1d:4d:a9:e7:73:76:ac:cd:7f:7c:eb:b2:bf: 25:67:ca:63:fe:76:5e:7a:1f:0a:aa:77:d5:40:2d: 42:cb:1c:0e:a4:9b:a6:1a:42:27:b5:86:ed:42:8c: 3f:b5:a9:7c:99:32:60:77:2f:ec:f7:10:e3:3f:10: 70:1c:3b:d1:f2:8c:1a:b0:37:b0:e9:61:75:65:cb: 9f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:81:06:F5:01:8C:13:A0:77:1D:D0:1E:F8:8B:DF:92:B1:D8:EA:75 X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:8a:8a:b8:7b:8d:fd:ec:fd:eb:76:00:14:70:9e:cf:6c:61: 23:6a:d4:6f:46:09:51:71:9a:82:43:88:e6:45:0a:55:6a:28: 22:97:da:0b:95:69:e3:be:09:d3:7d:b3:ba:17:42:f1:67:9c: 2f:3c:10:1a:5b:d5:d9:23:0e:5d:71:61:80:6b:e0:e4:ed:b1: 88:7c:eb:4f:5f:ad:4e:22:12:45:81:33:28:06:05:01:f1:c5: 4f:49:e1:f2:90:1c:84:fe:fc:f9:c9:a0:b4:00:98:51:c9:03: 68:43:01:b1:37:76:e9:1e:e6:91:c9:a6:98:07:71:c6:d7:69: 5d:a0:57:cb:d1:b9:e8:8b:e8:9f:46:1e:bf:b0:5b:a0:35:7e: e2:11:2a:d3:df:c1:eb:6d:ed:51:e2:34:a9:88:4a:c9:7e:35: 56:69:7c:19:22:42:58:20:b6:44:04:46:11:7a:1f:40:4c:ec: f1:93:47:d8:bf:50:0f:75:3e:e3:2c:e6:a2:47:0a:15:4d:08: 1e:9c:aa:22:91:c1:01:72:2f:c9:58:75:26:af:9a:19:f8:05: b1:55:25:73:72:37:99:4e:b5:26:cd:57:b4:26:17:93:2b:87: e9:ea:d7:4d:4f:c2:d7:db:d5:66:03:62:a6:07:eb:6e:22:e5: 5b:21:73:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUxMDI1MDg0NTI3WhcNMjUxMTAxMDg0NTI3WjAYMRYwFAYD VQQDEw02OGZjOGUyNy0wZDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArjER60IfitZ3r4GEfVA9UkU9fTldXS/6H4Ob4TA7/fsuwCfcN8sFR8mfKCQ2 KR/PQAmQqTJ+mBrBmgrbCptz8/n9zxTt7g9GLqijEddHOt8uV6CkOtSuokUjtxBp brbY/5aqNI59q3os9ns9kZ9zEdO1qQVFDx8T4zMuR8udnJXOYBu2tfaomJAPcz57 wr20eE2abcaCZ88dh9rziQ3/ATvVjg+PbTPeqz1WxJn6x/Ss0yT9cB1NqedzdqzN f3zrsr8lZ8pj/nZeeh8KqnfVQC1CyxwOpJumGkIntYbtQow/tal8mTJgdy/s9xDj PxBwHDvR8owasDew6WF1ZcufdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCSBBvUB jBOgdx3QHviL35Kx2Op1MB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBNioq4e4397P3rdgAUcJ7PbGEjatRvRglRcZqCQ4jmRQpVaigil9oL lWnjvgnTfbO6F0LxZ5wvPBAaW9XZIw5dcWGAa+Dk7bGIfOtPX61OIhJFgTMoBgUB 8cVPSeHykByE/vz5yaC0AJhRyQNoQwGxN3bpHuaRyaaYB3HG12ldoFfL0bnoi+if Rh6/sFugNX7iESrT38Hrbe1R4jSpiErJfjVWaXwZIkJYILZEBEYReh9ATOzxk0fY v1APdT7jLOaiRwoVTQgenKoikcEBci/JWHUmr5oZ+AWxVSVzcjeZTrUmzVe0JheT K4fp6tdNT8LX29VmA2KmB+tuIuVbIXP4 -----END CERTIFICATE-----Generated at Sat Oct 25 13:06:05 2025 by rpki-client