$ rpki-client -vvf rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft File: kzrI56xL07WCmJ_Mty_JJ9cWQks.mft (raw, json) Hash identifier: SJvsOEaPW3FFVoRYWeU/f6MmJ09+2pq/buw1O+Fgfts= Subject key identifier: 4A:FC:E3:3D:FE:95:BE:8B:FF:58:A0:D8:31:8D:30:D2:C3:61:16:BC Authority key identifier: 93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B Certificate issuer: /CN=A91C79E1/serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Certificate serial: 0866 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft Manifest number: 0860 Signing time: Wed 22 Oct 2025 21:24:14 +0000 Manifest this update: Wed 22 Oct 2025 21:24:13 +0000 Manifest next update: Wed 29 Oct 2025 21:24:13 +0000 Files and hashes: 1: kzrI56xL07WCmJ_Mty_JJ9cWQks.crl (hash: sAQ6p8L5lxSSrlHTs0HmKlyIuW5ZNcK0xxAxCJ+nkgU=) 2: 26D0F9B82A6611ECB12FB439C4F9AE02.roa (hash: o8uKSFAZOoKiAV/aw+gEXp611EqrXFJMlAGF3VnwD9c=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 21:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2150 (0x866) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C79E1, serialNumber=933AC8E7AC4BD3B582989FCCB72FC927D716424B Validity Not Before: Oct 22 21:24:13 2025 GMT Not After : Oct 29 21:24:13 2025 GMT Subject: CN=68f94b7e-850b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:06:1d:13:f0:cf:c9:a9:a3:1a:1f:b8:1b:55: 56:fa:77:8b:bc:c8:ee:2b:bb:18:b1:8b:38:e9:82: f3:d6:75:d8:4d:bc:15:7b:75:cc:35:0c:b6:ea:b2: cf:b3:fa:be:a5:04:cf:bd:a2:da:3b:20:7a:c3:fc: fd:72:d6:69:4c:aa:8e:9b:1f:f5:50:41:c3:79:bc: e9:b2:7d:a8:2a:4c:ed:02:14:31:56:9b:d4:a8:40: 84:af:bb:04:eb:0f:46:95:d7:90:f2:d2:48:3d:2a: f8:7f:5a:aa:83:3a:c8:ba:a9:ea:37:73:c2:45:f4: 34:26:6a:12:c5:7b:f1:f4:e2:44:56:7b:fb:a7:e1: 78:7a:60:25:af:c4:39:34:28:8c:7c:12:61:2f:d0: 60:64:b0:be:10:bf:b7:37:48:dd:9a:ee:0a:56:56: 0f:c9:e4:f0:0c:6c:ff:0e:76:d0:44:09:5e:a0:e6: b8:84:66:5d:3b:d8:9e:51:0a:f5:c6:24:8a:9e:b2: 8d:e7:47:15:26:25:60:27:eb:08:26:b2:1c:c1:52: 27:6a:47:f9:55:cd:30:c5:f6:b4:3a:5f:05:86:29: 2e:96:3d:fd:0b:69:a0:46:ae:a9:82:a1:4a:b4:77: 5a:0f:db:2f:cb:26:8e:0f:d1:3a:67:cf:a3:16:ec: 03:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FC:E3:3D:FE:95:BE:8B:FF:58:A0:D8:31:8D:30:D2:C3:61:16:BC X509v3 Authority Key Identifier: keyid:93:3A:C8:E7:AC:4B:D3:B5:82:98:9F:CC:B7:2F:C9:27:D7:16:42:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kzrI56xL07WCmJ_Mty_JJ9cWQks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C79E1/6556F8DAD78411EA9C5D9640C4F9AE02/kzrI56xL07WCmJ_Mty_JJ9cWQks.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 20:e0:b4:e0:55:42:ac:f0:ca:9a:dd:d7:43:30:c6:ba:3f:f1: 61:5a:b2:9d:07:8c:c2:3c:05:81:ff:b2:b6:68:6b:66:a6:6f: fa:32:a9:68:5b:20:64:5d:ef:e2:04:9f:e7:c5:01:2e:d8:a0: 4f:7f:1f:e5:44:62:0a:3d:d8:dc:c5:15:bf:17:d6:cb:0c:e2: 39:1a:26:32:e2:d3:e8:5c:35:f7:20:da:b5:45:d3:65:79:4c: 0f:c6:0e:d4:05:80:72:2f:1b:d3:b2:ad:b2:fd:55:24:67:8f: ef:b7:19:fc:ac:fa:2f:e3:d3:5a:ea:77:f7:06:25:3d:cc:0a: 92:2b:da:f8:76:f7:15:bb:5c:11:b3:20:df:f3:a2:54:ac:87: 14:07:59:cc:69:2e:0f:f9:84:85:a2:42:a8:6b:37:c5:ed:90: ae:41:ae:77:95:ad:9d:64:81:c0:75:f2:a4:20:23:26:2e:7a: 59:51:a3:f1:b3:8f:12:ad:37:83:93:69:b3:c9:bb:5b:7c:76: d1:7a:ad:24:b3:f6:19:7e:b6:3e:0f:5b:6a:97:eb:82:c1:3d: b2:f8:24:4d:b3:26:e9:1f:be:22:6c:0c:54:cf:e6:0e:42:d3: c3:8c:53:45:75:94:71:ad:6f:56:08:1c:9c:ee:fb:3c:5a:47: 7d:c4:15:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzc5RTExMTAvBgNVBAUTKDkzM0FDOEU3QUM0QkQzQjU4Mjk4OUZDQ0I3MkZDOTI3 RDcxNjQyNEIwHhcNMjUxMDIyMjEyNDEzWhcNMjUxMDI5MjEyNDEzWjAYMRYwFAYD VQQDEw02OGY5NGI3ZS04NTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0gYdE/DPyamjGh+4G1VW+neLvMjuK7sYsYs46YLz1nXYTbwVe3XMNQy26rLP s/q+pQTPvaLaOyB6w/z9ctZpTKqOmx/1UEHDebzpsn2oKkztAhQxVpvUqECEr7sE 6w9GldeQ8tJIPSr4f1qqgzrIuqnqN3PCRfQ0JmoSxXvx9OJEVnv7p+F4emAlr8Q5 NCiMfBJhL9BgZLC+EL+3N0jdmu4KVlYPyeTwDGz/DnbQRAleoOa4hGZdO9ieUQr1 xiSKnrKN50cVJiVgJ+sIJrIcwVInakf5Vc0wxfa0Ol8Fhikulj39C2mgRq6pgqFK tHdaD9svyyaOD9E6Z8+jFuwD7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEr84z3+ lb6L/1ig2DGNMNLDYRa8MB8GA1UdIwQYMBaAFJM6yOesS9O1gpifzLcvySfXFkJL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzlFMS82NTU2RjhEQUQ3 ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3V0NtSl9NdHlfSko5Y1dR a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6ckk1NnhMMDdXQ21KX010eV9KSjljV1Frcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzlFMS82NTU2RjhEQUQ3ODQxMUVBOUM1RDk2NDBDNEY5QUUwMi9renJJNTZ4TDA3 V0NtSl9NdHlfSko5Y1dRa3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAg4LTgVUKs8Mqa3ddDMMa6P/FhWrKdB4zCPAWB/7K2aGtmpm/6Mqlo WyBkXe/iBJ/nxQEu2KBPfx/lRGIKPdjcxRW/F9bLDOI5GiYy4tPoXDX3INq1RdNl eUwPxg7UBYByLxvTsq2y/VUkZ4/vtxn8rPov49Na6nf3BiU9zAqSK9r4dvcVu1wR syDf86JUrIcUB1nMaS4P+YSFokKoazfF7ZCuQa53la2dZIHAdfKkICMmLnpZUaPx s48SrTeDk2mzybtbfHbReq0ks/YZfrY+D1tql+uCwT2y+CRNsybpH74ibAxUz+YO QtPDjFNFdZRxrW9WCByc7vs8Wkd9xBVa -----END CERTIFICATE-----Generated at Fri Oct 24 19:25:06 2025 by rpki-client