$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: 82vDE+OQxwVx1IlTI+ylvtK99PNGodx1J52C4KFrKDU= Subject key identifier: 33:91:FD:7A:6C:7B:09:D5:13:45:F6:CD:B1:4A:38:63:13:C9:19:A6 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 77 Signing time: Wed 05 Nov 2025 07:01:29 +0000 Manifest this update: Wed 05 Nov 2025 07:01:29 +0000 Manifest next update: Wed 12 Nov 2025 07:01:29 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: QVIjcoXCY7eE9P7dbLXgo7BKe3iLTQTXb5XPuw8z8OA=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 120 (0x78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Nov 5 07:01:29 2025 GMT Not After : Nov 12 07:01:29 2025 GMT Subject: CN=690af649-789a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b8:dd:11:08:51:72:aa:11:cd:3e:93:43:50: 78:fb:f5:00:f7:a2:3b:4d:cb:cf:74:33:bd:8c:b7: 09:42:9b:e0:08:8c:7e:f4:9f:7a:3a:34:fb:69:5c: ae:bf:a6:5d:1d:43:b9:72:57:2b:c0:44:c4:e1:75: d2:48:19:b2:8d:e7:d0:4c:98:9e:d9:9f:b6:68:9d: 30:b4:f4:ed:5d:56:93:40:c6:de:e2:2f:2d:e8:b3: e2:17:01:79:0f:fb:f6:9c:ae:63:dd:04:ab:f2:e8: a2:72:8c:3c:e3:37:52:2d:77:b2:d1:c8:1c:a4:06: 5d:a9:3f:fb:50:4c:d2:a9:a1:e8:c9:52:da:ac:ba: 0d:fb:cf:34:ac:81:fc:78:03:c7:fc:99:b6:76:ad: c9:85:53:c0:4b:d9:f3:b6:61:73:31:0c:ee:eb:51: 75:19:24:6d:dd:3c:31:11:45:09:2b:5c:91:29:a7: 49:62:97:66:fd:5c:7c:c1:fd:78:a5:ac:da:c2:18: 36:b3:e4:f5:e9:cd:01:32:f3:b4:d3:d5:f1:64:61: 2d:ac:91:17:fb:05:62:f9:1c:fd:00:4d:13:d4:61: bf:d9:78:8f:b5:3c:8d:f4:e8:71:47:d2:6f:13:74: 99:ca:68:d2:2c:8b:8e:25:79:d2:09:cb:73:a4:d1: 5f:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:91:FD:7A:6C:7B:09:D5:13:45:F6:CD:B1:4A:38:63:13:C9:19:A6 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:15:33:70:0b:59:90:c4:6d:0d:cb:49:ea:e3:59:c9:38:1a: 4c:40:17:6e:e5:5c:f1:82:66:71:b0:db:d6:41:ca:41:3c:00: 78:a9:72:a8:4b:d2:87:20:7f:18:bd:ad:0a:b0:79:92:d6:36: 12:bd:69:33:ad:80:01:14:74:dc:08:14:d3:70:bf:29:c2:ee: 7c:aa:a0:3b:42:69:7d:0b:65:0a:f1:81:10:1f:5a:a5:1c:57: e2:e6:ca:42:02:3e:e2:39:21:df:ee:9e:bb:a4:8c:98:88:de: 8f:e5:b7:e2:c5:35:57:1f:27:c9:36:66:14:af:0d:5b:16:08: 70:b4:e0:29:65:36:59:f5:77:60:4a:5c:5e:85:a8:8e:68:4d: 8a:bd:d0:1f:b7:85:1f:68:3c:25:31:3d:46:6e:d4:6e:4c:95: 2b:9d:62:de:e7:9b:a8:e2:35:04:02:48:da:d0:83:78:10:a8: 57:0f:5a:b6:db:a4:64:ab:16:1c:42:ed:ff:4f:eb:13:95:75: 33:10:96:3f:47:b4:90:8a:fb:1b:4b:82:36:c0:af:eb:1c:53: 32:de:1d:15:43:bc:f0:82:60:1c:98:e1:eb:f5:df:36:59:f9: f0:82:17:d3:c4:21:73:32:fe:66:7a:83:20:96:8a:70:10:ad: 06:64:67:b5 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBeDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTExMDUwNzAxMjlaFw0yNTExMTIwNzAxMjlaMBgxFjAUBgNV BAMTDTY5MGFmNjQ5LTc4OWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+uN0RCFFyqhHNPpNDUHj79QD3ojtNy890M72MtwlCm+AIjH70n3o6NPtpXK6/ pl0dQ7lyVyvARMThddJIGbKN59BMmJ7Zn7ZonTC09O1dVpNAxt7iLy3os+IXAXkP +/acrmPdBKvy6KJyjDzjN1Itd7LRyBykBl2pP/tQTNKpoejJUtqsug37zzSsgfx4 A8f8mbZ2rcmFU8BL2fO2YXMxDO7rUXUZJG3dPDERRQkrXJEpp0lil2b9XHzB/Xil rNrCGDaz5PXpzQEy87TT1fFkYS2skRf7BWL5HP0ATRPUYb/ZeI+1PI306HFH0m8T dJnKaNIsi44ledIJy3Ok0V/ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUM5H9emx7 CdUTRfbNsUo4YxPJGaYwHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Mjg3LzM3Mjc4QzE2MDQ2RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFU VDNUbklieFM4V1FDSVAwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHMVM3ALWZDEbQ3LSerjWck4GkxAF27lXPGCZnGw29ZBykE8AHipcqhL 0ocgfxi9rQqweZLWNhK9aTOtgAEUdNwIFNNwvynC7nyqoDtCaX0LZQrxgRAfWqUc V+LmykICPuI5Id/unrukjJiI3o/lt+LFNVcfJ8k2ZhSvDVsWCHC04CllNln1d2BK XF6FqI5oTYq90B+3hR9oPCUxPUZu1G5MlSudYt7nm6jiNQQCSNrQg3gQqFcPWrbb pGSrFhxC7f9P6xOVdTMQlj9HtJCK+xtLgjbAr+scUzLeHRVDvPCCYByY4ev13zZZ +fCCF9PEIXMy/mZ6gyCWinAQrQZkZ7U= -----END CERTIFICATE-----Generated at Wed Nov 5 13:35:23 2025 by rpki-client