$ rpki-client -vvf rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft File: kzrtfDoGQianFEt0eMdAPazdgAU.mft (raw, json) Hash identifier: pZZ23DwpHiCiZxe2/DlnJ7xORkzcCTlh99WWaBLuu/8= Subject key identifier: AB:BF:D5:50:E4:1A:45:83:7A:E6:CD:74:C9:A6:EE:F3:D0:95:EF:D0 Authority key identifier: 93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 Certificate issuer: /CN=A91A81F7/serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Certificate serial: 03E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft Manifest number: 03E4 Signing time: Mon 03 Nov 2025 00:32:29 +0000 Manifest this update: Mon 03 Nov 2025 00:32:29 +0000 Manifest next update: Mon 10 Nov 2025 00:32:29 +0000 Files and hashes: 1: kzrtfDoGQianFEt0eMdAPazdgAU.crl (hash: 8U/4JMxuFXVaYtMqnmgxSjIHMZt5niTSLD5VgoEzPD4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A81F7, serialNumber=933AED7C3A064226A7144B7478C7403DACDD8005 Validity Not Before: Nov 3 00:32:29 2025 GMT Not After : Nov 10 00:32:29 2025 GMT Subject: CN=6907f81d-2ad8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:46:f9:c6:43:d8:69:87:1a:60:ad:60:d5:d7: 00:41:80:30:89:ca:b3:3b:53:55:94:75:1e:7e:65: fc:fd:e9:76:ab:ea:59:0e:79:da:93:3e:bf:d2:e9: 65:26:2c:cd:a7:f1:b5:33:6a:f5:b3:cd:2e:cf:c3: 87:8e:83:f6:65:2d:55:e9:b8:d8:c1:09:63:91:96: bf:77:57:9a:fe:2a:9a:7b:e4:a0:fa:8a:80:ef:77: f8:d7:94:35:f6:97:a9:43:69:c7:de:4a:3e:f1:f9: 24:f5:82:bf:73:19:b1:da:0b:fd:e2:eb:88:84:b6: 72:85:a6:9d:b9:5a:b0:ab:d0:6e:5e:a8:7a:35:ea: 1e:f6:69:e6:bd:a7:8f:b4:96:81:a5:89:dc:e7:27: d3:1c:2a:b9:0c:1f:fe:32:c5:9d:2b:69:13:7f:d9: fe:7e:d9:3b:f3:10:3c:2f:58:13:9d:15:11:94:89: d0:bc:d6:93:87:1f:cc:e2:a6:85:89:00:b5:a6:d2: 21:5b:e2:07:8c:31:a2:61:3d:cd:b4:e5:28:da:80: b9:59:c8:c6:d4:44:98:48:87:16:d9:31:c2:f9:e3: d7:48:59:a8:b2:86:29:9a:53:af:a0:7a:86:d7:9c: 28:71:d6:d9:51:9a:4b:71:7b:af:da:7a:50:b1:2f: 2a:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BF:D5:50:E4:1A:45:83:7A:E6:CD:74:C9:A6:EE:F3:D0:95:EF:D0 X509v3 Authority Key Identifier: keyid:93:3A:ED:7C:3A:06:42:26:A7:14:4B:74:78:C7:40:3D:AC:DD:80:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrtfDoGQianFEt0eMdAPazdgAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A81F7/30F46EEE9F8611EC8D9F3F34C4F9AE02/kzrtfDoGQianFEt0eMdAPazdgAU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:c9:ca:65:31:00:b2:8b:5f:e9:ce:e6:35:47:7b:c4:92:10: d7:f0:27:f0:5b:46:fd:bd:ac:40:97:f7:50:8b:47:05:61:66: 52:10:62:a1:c0:d2:ef:4f:ba:f1:47:43:e7:3f:85:4f:bd:87: a6:2f:f8:bd:c0:0d:f9:e8:1f:64:c3:19:c2:d0:26:21:85:f8: 67:2a:e6:45:8c:73:4d:48:07:0f:a1:1b:4b:af:72:68:c6:38: ec:5b:ba:5a:6a:ee:56:3e:6b:af:3f:3d:16:1b:b6:78:97:b2: 3a:f7:25:a6:35:99:70:aa:f2:1a:a4:01:15:14:af:be:31:ca: 2a:85:f2:59:14:5c:21:36:89:e1:f9:26:a0:30:bc:4d:6b:fb: f6:e3:4e:8b:e6:6f:83:af:2b:11:79:70:a2:0a:8c:0f:de:b5: e3:d8:f9:ea:4f:e3:ff:bf:54:34:58:1e:61:6f:70:a3:7f:78: 69:0d:f9:21:18:99:55:b6:88:65:75:43:3b:7d:9a:64:df:7d: 29:72:ab:52:a1:66:d8:e9:86:0d:8b:c2:4f:42:1c:d3:a4:d3: cf:5c:57:a2:e9:aa:6c:b1:e8:b3:71:91:56:fb:f9:13:7d:f9: 50:70:b4:d2:e3:58:86:7d:22:ff:c2:80:99:41:52:ee:76:7f: 36:c7:d6:1b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgxRjcxMTAvBgNVBAUTKDkzM0FFRDdDM0EwNjQyMjZBNzE0NEI3NDc4Qzc0MDNE QUNERDgwMDUwHhcNMjUxMTAzMDAzMjI5WhcNMjUxMTEwMDAzMjI5WjAYMRYwFAYD VQQDEw02OTA3ZjgxZC0yYWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kb5xkPYaYcaYK1g1dcAQYAwicqzO1NVlHUefmX8/el2q+pZDnnakz6/0ull JizNp/G1M2r1s80uz8OHjoP2ZS1V6bjYwQljkZa/d1ea/iqae+Sg+oqA73f415Q1 9pepQ2nH3ko+8fkk9YK/cxmx2gv94uuIhLZyhaaduVqwq9BuXqh6Neoe9mnmvaeP tJaBpYnc5yfTHCq5DB/+MsWdK2kTf9n+ftk78xA8L1gTnRURlInQvNaThx/M4qaF iQC1ptIhW+IHjDGiYT3NtOUo2oC5WcjG1ESYSIcW2THC+ePXSFmosoYpmlOvoHqG 15wocdbZUZpLcXuv2npQsS8qHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKu/1VDk GkWDeubNdMmm7vPQle/QMB8GA1UdIwQYMBaAFJM67Xw6BkImpxRLdHjHQD2s3YAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODFGNy8zMEY0NkVFRTlG ODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1FpYW5GRXQwZU1kQVBhemRn QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6cnRmRG9HUWlhbkZFdDBlTWRBUGF6ZGdBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODFGNy8zMEY0NkVFRTlGODYxMUVDOEQ5RjNGMzRDNEY5QUUwMi9renJ0ZkRvR1Fp YW5GRXQwZU1kQVBhemRnQVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOycplMQCyi1/pzuY1R3vEkhDX8CfwW0b9vaxAl/dQi0cFYWZSEGKh wNLvT7rxR0PnP4VPvYemL/i9wA356B9kwxnC0CYhhfhnKuZFjHNNSAcPoRtLr3Jo xjjsW7paau5WPmuvPz0WG7Z4l7I69yWmNZlwqvIapAEVFK++McoqhfJZFFwhNonh +SagMLxNa/v2406L5m+DrysReXCiCowP3rXj2PnqT+P/v1Q0WB5hb3Cjf3hpDfkh GJlVtohldUM7fZpk330pcqtSoWbY6YYNi8JPQhzTpNPPXFei6apsseizcZFW+/kT fflQcLTS41iGfSL/woCZQVLudn82x9Yb -----END CERTIFICATE-----Generated at Mon Nov 3 18:15:02 2025 by rpki-client