$ rpki-client -vvf rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft File: KxuyStzbFPbix7uy2Iq62x3diY0.mft (raw, json) Hash identifier: 7YYFJqpCcVrGuTOsM68qNoCiTsw9DkQNmktdH0ZCU94= Subject key identifier: 91:77:47:05:0E:4E:CD:F5:14:AC:80:E5:47:42:AA:E8:68:BB:D1:83 Authority key identifier: 2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D Certificate issuer: /CN=A91A80D2/serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Certificate serial: 034E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft Manifest number: 0348 Signing time: Mon 03 Nov 2025 00:57:38 +0000 Manifest this update: Mon 03 Nov 2025 00:57:37 +0000 Manifest next update: Mon 10 Nov 2025 00:57:37 +0000 Files and hashes: 1: KxuyStzbFPbix7uy2Iq62x3diY0.crl (hash: 6309fxRRe9q0yF7+WiL6RBWTQyswKuYiKqRPE7Rr8Bs=) 2: 3486D47412D511EFB1EF161DC4F9AE02.roa (hash: Crj6EQEsFsVZ7Rl37tD7+KlB9qlhMrOAHvL0KyIGgkI=) 3: 95CA439CDAE211ECA14A8254C4F9AE02.roa (hash: 16TIMxSDuDuwbvd9GQ+m4o06d2DMg8lDV7WSYdSxPbs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 846 (0x34e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A80D2, serialNumber=2B1BB24ADCDB14F6E2C7BBB2D88ABADB1DDD898D Validity Not Before: Nov 3 00:57:37 2025 GMT Not After : Nov 10 00:57:37 2025 GMT Subject: CN=6907fe02-f13f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:79:2c:e9:93:88:f1:48:49:1e:f3:f5:ed:1c: 0d:51:51:7d:f0:a0:a0:93:93:c1:9e:59:6c:d0:59: 72:83:b4:73:13:04:3f:d7:a4:3f:36:60:e4:4e:ee: 9f:7e:c3:06:67:c5:29:11:77:04:b6:db:36:70:a3: bd:fd:6c:dc:54:37:57:97:fd:d5:a2:a1:6d:da:c1: 42:2d:b8:a7:25:78:c9:61:7f:75:90:72:8f:44:d1: 1e:94:29:07:8d:b9:16:19:22:65:d3:9a:d2:b0:27: ec:dd:8d:fd:a5:30:79:f2:ba:61:d2:df:57:a5:a8: 7a:85:7f:4a:0b:5c:1a:f2:fd:08:c3:0a:f6:ba:09: 48:bb:9d:b9:b0:86:87:4c:f2:4d:b3:75:81:a9:7a: 94:19:2f:0c:73:7a:65:8d:50:f0:f4:ba:4a:b9:e8: 06:32:bd:d5:29:00:d7:07:91:7d:43:d5:66:a7:03: 08:e1:0d:92:92:8d:9c:dc:92:12:9f:6c:7a:0c:83: a2:3a:69:14:98:62:7f:57:c4:b1:0d:b9:17:04:88: 84:b2:5e:fc:5c:19:22:76:5f:7f:9d:d9:e1:de:54: 5f:96:6d:2f:77:fd:68:d5:10:2c:a0:a0:bb:f7:84: f5:cf:a0:8a:9d:d5:59:21:ce:81:d8:fa:d5:72:76: 18:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:77:47:05:0E:4E:CD:F5:14:AC:80:E5:47:42:AA:E8:68:BB:D1:83 X509v3 Authority Key Identifier: keyid:2B:1B:B2:4A:DC:DB:14:F6:E2:C7:BB:B2:D8:8A:BA:DB:1D:DD:89:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxuyStzbFPbix7uy2Iq62x3diY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A80D2/D428D0C6DADE11EC87711450C4F9AE02/KxuyStzbFPbix7uy2Iq62x3diY0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:9e:71:1b:b4:7e:ca:b9:2c:f3:78:3c:99:21:e9:a0:4d:59: 2c:f8:0e:4d:66:1d:c2:38:20:c7:54:31:7a:9a:97:4b:ed:be: b0:82:13:04:6d:31:f7:92:99:1d:7a:14:53:4d:31:6f:d3:18: e3:e6:1e:3f:57:85:7c:d6:b8:df:ff:aa:ea:28:ac:df:6e:24: fb:b1:40:db:e1:1c:8e:63:af:ec:44:01:ba:5e:10:e8:ee:6d: 37:26:26:0d:04:80:d3:06:b5:1d:b5:d2:ab:d9:14:cc:62:5e: 1a:11:0b:f0:ee:8a:e8:9a:cd:cb:ff:2d:fd:08:49:58:71:8e: 1b:92:4e:63:66:5c:85:b2:07:f4:01:f4:40:72:58:e0:0d:5a: f1:db:b1:0c:5d:3d:d3:00:d7:bd:5a:f9:a8:0c:56:eb:a5:62: 60:2d:58:7b:39:d0:94:9b:12:a0:1d:72:30:ae:6d:c0:c2:d0: f9:02:77:c9:76:13:05:fd:e9:3c:bc:6f:ae:08:e9:b6:68:30: 9b:84:17:e1:4e:f9:7d:1f:53:ef:0c:d5:55:eb:8e:01:df:9a: b9:f5:9f:55:e1:04:1f:93:74:93:2b:6b:5e:f4:6a:41:59:95: 61:55:24:c7:93:6e:18:29:cf:85:dc:19:63:73:ce:5a:bd:26: b4:cd:2b:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgwRDIxMTAvBgNVBAUTKDJCMUJCMjRBRENEQjE0RjZFMkM3QkJCMkQ4OEFCQURC MURERDg5OEQwHhcNMjUxMTAzMDA1NzM3WhcNMjUxMTEwMDA1NzM3WjAYMRYwFAYD VQQDEw02OTA3ZmUwMi1mMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzXks6ZOI8UhJHvP17RwNUVF98KCgk5PBnlls0Flyg7RzEwQ/16Q/NmDkTu6f fsMGZ8UpEXcEtts2cKO9/WzcVDdXl/3VoqFt2sFCLbinJXjJYX91kHKPRNEelCkH jbkWGSJl05rSsCfs3Y39pTB58rph0t9Xpah6hX9KC1wa8v0Iwwr2uglIu525sIaH TPJNs3WBqXqUGS8Mc3pljVDw9LpKuegGMr3VKQDXB5F9Q9VmpwMI4Q2Sko2c3JIS n2x6DIOiOmkUmGJ/V8SxDbkXBIiEsl78XBkidl9/ndnh3lRflm0vd/1o1RAsoKC7 94T1z6CKndVZIc6B2PrVcnYYewIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJF3RwUO Ts31FKyA5UdCquhou9GDMB8GA1UdIwQYMBaAFCsbskrc2xT24se7stiKutsd3YmN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODBEMi9ENDI4RDBDNkRB REUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQYml4N3V5MklxNjJ4M2Rp WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4dXlTdHpiRlBiaXg3dXkySXE2MngzZGlZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODBEMi9ENDI4RDBDNkRBREUxMUVDODc3MTE0NTBDNEY5QUUwMi9LeHV5U3R6YkZQ Yml4N3V5MklxNjJ4M2RpWTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMnnEbtH7KuSzzeDyZIemgTVks+A5NZh3COCDHVDF6mpdL7b6wghME bTH3kpkdehRTTTFv0xjj5h4/V4V81rjf/6rqKKzfbiT7sUDb4RyOY6/sRAG6XhDo 7m03JiYNBIDTBrUdtdKr2RTMYl4aEQvw7oroms3L/y39CElYcY4bkk5jZlyFsgf0 AfRAcljgDVrx27EMXT3TANe9WvmoDFbrpWJgLVh7OdCUmxKgHXIwrm3AwtD5AnfJ dhMF/ek8vG+uCOm2aDCbhBfhTvl9H1PvDNVV644B35q59Z9V4QQfk3STK2te9GpB WZVhVSTHk24YKc+F3Bljc85avSa0zSuf -----END CERTIFICATE-----Generated at Mon Nov 3 18:20:10 2025 by rpki-client