$ rpki-client -vvf rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft File: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft (raw, json) Hash identifier: f+CVqRwACsodxpppjvj4lYotfvSaMA5B7uA5BAmIJRI= Subject key identifier: B6:A1:0B:9F:74:7F:D5:2A:88:8F:CE:1F:94:54:C3:A5:52:1E:4C:03 Authority key identifier: 91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A Certificate issuer: /CN=A91C779D/serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Certificate serial: 0132 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft Manifest number: 0130 Signing time: Mon 03 Nov 2025 04:32:11 +0000 Manifest this update: Mon 03 Nov 2025 04:32:11 +0000 Manifest next update: Mon 10 Nov 2025 04:32:11 +0000 Files and hashes: 1: kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl (hash: fOK3eThyf69IEjEFjl6XlOrHlT8+KwNCFqMP//chSB4=) 2: 1BC8D5FCE2B211EE946C6541C4F9AE02.roa (hash: iCp30dussETMXyoeph6Ol3mQ5L5KpmSd4EZLSV4J5eE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:32:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C779D, serialNumber=912FB5F7351CF98FB967451FEEDAF49F148E1A3A Validity Not Before: Nov 3 04:32:11 2025 GMT Not After : Nov 10 04:32:11 2025 GMT Subject: CN=6908304b-9a16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:df:b7:0d:d7:3b:3a:5f:e0:5f:e6:f3:8a:81: 8b:c1:69:3b:8e:db:e2:6b:d1:1e:44:a6:1c:79:dd: 65:5b:9b:5b:98:02:00:f6:20:64:f7:bf:b4:47:fd: 0d:47:a1:02:ec:df:92:45:f1:5a:47:67:f2:a8:97: bc:5f:1d:cb:b1:43:2c:9f:32:b6:97:7d:4a:95:68: 44:de:eb:ce:3e:21:a3:7f:d8:2f:bb:bb:cf:5d:ff: 76:da:7c:a1:f6:a7:e7:ef:67:ca:91:66:90:45:92: 30:8c:f9:92:b1:95:17:22:d2:78:76:82:eb:74:7e: b7:bb:f5:f2:ed:98:c1:3a:42:5d:63:94:71:b5:0c: 75:65:49:ea:3a:62:7b:21:b3:f8:69:c9:f4:39:f4: 01:9f:34:76:5f:9f:68:a6:7e:d9:b8:1d:9f:99:fc: f8:1f:07:e5:f0:3c:ce:fa:32:18:57:93:63:97:15: 6c:1d:4a:6d:14:a2:86:e7:43:0a:62:47:68:2f:cc: 24:20:5c:64:5c:d4:57:bb:42:dc:11:b8:c2:12:90: fa:39:bf:cf:6e:07:9d:00:ef:6a:c1:df:50:9a:46: 3e:31:eb:a9:21:fc:a7:83:3b:a9:d3:89:59:93:d6: a0:a4:1d:08:16:ae:85:a4:2c:62:9a:29:7a:81:57: 8f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:A1:0B:9F:74:7F:D5:2A:88:8F:CE:1F:94:54:C3:A5:52:1E:4C:03 X509v3 Authority Key Identifier: keyid:91:2F:B5:F7:35:1C:F9:8F:B9:67:45:1F:EE:DA:F4:9F:14:8E:1A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C779D/4FD59424E2AE11EE86F33C1EC4F9AE02/kS-19zUc-Y-5Z0Uf7tr0nxSOGjo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:a1:11:6c:d9:b9:35:34:75:c4:de:7b:fd:8d:a3:37:c2:d8: ad:69:b9:94:2b:db:72:30:f9:21:c9:84:a8:07:61:50:6f:00: f6:93:c8:c5:37:7c:bc:0b:ec:bf:13:95:e3:bd:d3:0b:4f:0f: 75:b2:68:6e:e4:bc:1f:11:c6:17:53:f1:46:05:d0:89:66:6a: ce:3a:c5:d7:a4:04:eb:ff:f0:cc:26:0c:1b:97:3f:8b:80:d5: a3:ad:76:42:7f:74:69:35:3c:31:b8:c2:fd:ae:16:e8:39:46: 51:f8:ff:23:38:23:65:4d:cc:dc:84:d8:ae:71:65:68:b3:46: f9:43:79:95:ff:30:cc:9a:e4:63:11:d0:39:ff:87:94:75:90: 72:a2:4a:f9:3e:be:cf:a4:24:6d:65:15:54:dc:ae:aa:2b:19: 67:7c:e2:e8:7f:78:ee:55:3b:d4:a7:b9:fd:ab:f7:d4:f9:3b: 97:d5:39:dd:91:0f:6f:47:88:75:70:a4:2f:64:99:10:37:25: 66:6b:fb:8d:13:a6:90:d8:4a:cd:5e:71:74:0f:32:47:2b:ae: 0a:8b:ea:6a:7a:82:60:c2:4c:6a:ca:a0:68:47:9c:61:54:63: 20:a3:f6:a9:40:77:97:47:94:b7:3b:5a:ed:84:e6:48:4c:38: 51:c4:42:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc3OUQxMTAvBgNVBAUTKDkxMkZCNUY3MzUxQ0Y5OEZCOTY3NDUxRkVFREFGNDlG MTQ4RTFBM0EwHhcNMjUxMTAzMDQzMjExWhcNMjUxMTEwMDQzMjExWjAYMRYwFAYD VQQDEw02OTA4MzA0Yi05YTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs9+3Ddc7Ol/gX+bzioGLwWk7jtvia9EeRKYced1lW5tbmAIA9iBk97+0R/0N R6EC7N+SRfFaR2fyqJe8Xx3LsUMsnzK2l31KlWhE3uvOPiGjf9gvu7vPXf922nyh 9qfn72fKkWaQRZIwjPmSsZUXItJ4doLrdH63u/Xy7ZjBOkJdY5RxtQx1ZUnqOmJ7 IbP4acn0OfQBnzR2X59opn7ZuB2fmfz4Hwfl8DzO+jIYV5NjlxVsHUptFKKG50MK YkdoL8wkIFxkXNRXu0LcEbjCEpD6Ob/PbgedAO9qwd9QmkY+MeupIfyngzup04lZ k9agpB0IFq6FpCximil6gVePGwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLahC590 f9UqiI/OH5RUw6VSHkwDMB8GA1UdIwQYMBaAFJEvtfc1HPmPuWdFH+7a9J8Ujho6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzc5RC80RkQ1OTQyNEUy QUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1ZLTVaMFVmN3RyMG54U09H am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTLTE5elVjLVktNVowVWY3dHIwbnhTT0dqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD Nzc5RC80RkQ1OTQyNEUyQUUxMUVFODZGMzNDMUVDNEY5QUUwMi9rUy0xOXpVYy1Z LTVaMFVmN3RyMG54U09Ham8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZoRFs2bk1NHXE3nv9jaM3wtitabmUK9tyMPkhyYSoB2FQbwD2k8jF N3y8C+y/E5XjvdMLTw91smhu5LwfEcYXU/FGBdCJZmrOOsXXpATr//DMJgwblz+L gNWjrXZCf3RpNTwxuML9rhboOUZR+P8jOCNlTczchNiucWVos0b5Q3mV/zDMmuRj EdA5/4eUdZByokr5Pr7PpCRtZRVU3K6qKxlnfOLof3juVTvUp7n9q/fU+TuX1Tnd kQ9vR4h1cKQvZJkQNyVma/uNE6aQ2ErNXnF0DzJHK64Ki+pqeoJgwkxqyqBoR5xh VGMgo/apQHeXR5S3O1rthOZITDhRxEK3 -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:31 2025 by rpki-client