$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: Yu82iYyMDN0BkzRNWWKV1ThHbFovVyqk0oOiz+awev8= Subject key identifier: 92:97:5E:B3:8F:20:48:0E:5D:78:5D:90:13:E0:5E:52:8D:3A:27:4B Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B5D Signing time: Tue 04 Nov 2025 19:14:13 +0000 Manifest this update: Tue 04 Nov 2025 19:14:13 +0000 Manifest next update: Tue 11 Nov 2025 19:14:13 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: b+CXnn36N8gBACyb8etKafq2FypymOmpuEef+ivAjp8=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: PulA86jFfi+mSmGrurNlPPzi/J9i4GAt5gWrp9tpCBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Nov 4 19:14:13 2025 GMT Not After : Nov 11 19:14:13 2025 GMT Subject: CN=690a5085-c440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b7:29:02:31:0a:34:1c:a1:6a:1f:84:b3:64: 00:2a:bb:fa:11:39:0e:ba:de:75:b4:82:d1:f6:c4: 81:71:f0:43:77:21:5c:4c:95:94:84:00:35:0f:55: a6:0e:93:70:39:24:42:64:c0:8f:60:93:55:9b:49: 6d:04:8f:ad:a8:00:19:d9:86:fa:57:2b:fc:9c:79: cb:58:30:b6:6d:f2:3e:b8:13:47:2d:42:cf:53:b5: 48:8a:62:25:94:19:41:36:18:d3:2b:d9:9a:38:b9: 61:17:a7:5f:4b:71:48:f4:90:80:ca:80:7a:d0:38: f0:9b:e6:bd:ae:8b:53:f2:06:f2:b9:e9:c8:fb:35: 07:31:11:6c:b9:33:e8:37:bf:37:27:91:da:f6:5d: bd:fb:98:bf:60:54:83:af:97:05:21:2c:b0:e2:aa: e5:57:c3:e8:a2:b1:46:a6:d4:0c:6b:87:7b:86:e6: 78:d6:ab:3c:a3:b9:34:80:d4:2a:f7:5c:6b:e4:fe: f6:d9:cb:82:6b:19:94:58:c4:80:f9:f0:a6:ca:5b: 50:d6:42:c9:82:fd:6a:1f:3c:81:db:5c:3e:c5:6d: 3f:3c:e0:68:80:c9:bd:10:41:4e:66:db:8c:73:c5: 92:8d:6a:54:18:88:29:47:56:e2:d6:6f:2b:97:9c: 68:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:97:5E:B3:8F:20:48:0E:5D:78:5D:90:13:E0:5E:52:8D:3A:27:4B X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:dd:e6:cd:b4:cd:2d:8d:8a:d8:7e:c8:33:a9:da:54:1d:90: 50:43:41:75:41:44:b9:f0:f5:66:e8:e3:d2:cc:98:ca:7c:2f: d0:a1:d7:b5:90:9f:38:a8:3a:e6:3f:c9:36:21:37:a5:0f:9d: 12:57:a1:bb:6f:3e:11:3b:10:70:a6:25:b7:6f:09:a9:0c:6a: 27:38:04:8f:7c:da:62:86:92:a7:f8:ad:96:57:e8:e0:ae:c4: 31:14:f0:ed:b7:88:f7:6a:c6:aa:39:06:6e:c2:41:42:df:c9: 27:77:6f:80:bd:2b:e4:77:b2:b1:ee:be:ee:d2:b8:a3:f5:02: 6d:98:66:ed:a3:ee:0d:26:3c:7d:c6:10:6e:96:5b:ac:ed:43: e8:9d:5d:28:ad:71:f3:e3:f7:93:16:a6:20:ff:5c:6a:4d:27: c8:ca:70:f5:c0:da:c1:b6:8c:01:20:3b:21:d5:f0:07:5d:c7: b2:01:d2:30:b0:87:54:ae:c6:b2:0d:8e:7b:12:31:f5:ee:7a: 67:9f:10:73:69:0d:88:e3:76:37:cd:f1:b7:61:29:2c:0b:b4: b3:94:ae:2c:c5:75:20:a1:ce:9c:78:b4:97:bf:eb:a5:9d:51: 8f:aa:76:57:2c:c8:d6:b7:27:c9:cf:75:6d:1c:6d:28:ef:32: e9:08:cd:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjUxMTA0MTkxNDEzWhcNMjUxMTExMTkxNDEzWjAYMRYwFAYD VQQDEw02OTBhNTA4NS1jNDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbcpAjEKNByhah+Es2QAKrv6ETkOut51tILR9sSBcfBDdyFcTJWUhAA1D1Wm DpNwOSRCZMCPYJNVm0ltBI+tqAAZ2Yb6Vyv8nHnLWDC2bfI+uBNHLULPU7VIimIl lBlBNhjTK9maOLlhF6dfS3FI9JCAyoB60Djwm+a9rotT8gbyuenI+zUHMRFsuTPo N783J5Ha9l29+5i/YFSDr5cFISyw4qrlV8PoorFGptQMa4d7huZ41qs8o7k0gNQq 91xr5P722cuCaxmUWMSA+fCmyltQ1kLJgv1qHzyB21w+xW0/POBogMm9EEFOZtuM c8WSjWpUGIgpR1bi1m8rl5xooQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJKXXrOP IEgOXXhdkBPgXlKNOidLMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBO3ebNtM0tjYrYfsgzqdpUHZBQQ0F1QUS58PVm6OPSzJjKfC/Qode1 kJ84qDrmP8k2ITelD50SV6G7bz4ROxBwpiW3bwmpDGonOASPfNpihpKn+K2WV+jg rsQxFPDtt4j3asaqOQZuwkFC38knd2+AvSvkd7Kx7r7u0rij9QJtmGbto+4NJjx9 xhBullus7UPonV0orXHz4/eTFqYg/1xqTSfIynD1wNrBtowBIDsh1fAHXceyAdIw sIdUrsayDY57EjH17npnnxBzaQ2I43Y3zfG3YSksC7SzlK4sxXUgoc6ceLSXv+ul nVGPqnZXLMjWtyfJz3VtHG0o7zLpCM24 -----END CERTIFICATE-----Generated at Wed Nov 5 17:59:51 2025 by rpki-client