$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft File: Ktu3GxFSPKM5Ll832dx2shHb4IM.mft (raw, json) Hash identifier: c0QhpPiUdm5mbMl45zrB+19lvkr+AKmlIP+dGf5Trvk= Subject key identifier: A2:6C:13:EA:9A:B9:33:32:D1:1C:D7:12:8C:31:A0:2F:55:F7:F7:29 Authority key identifier: 2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 Certificate issuer: /CN=A91C8347/serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft Manifest number: 013A Signing time: Mon 03 Nov 2025 04:42:01 +0000 Manifest this update: Mon 03 Nov 2025 04:42:01 +0000 Manifest next update: Mon 10 Nov 2025 04:42:01 +0000 Files and hashes: 1: Ktu3GxFSPKM5Ll832dx2shHb4IM.crl (hash: 2vmPXHsgW7YVgGrzYx1WcMH2mQ7VkIMam3B9X4C/yko=) 2: 34C7EB4010F411EFB4CD9614C4F9AE02.roa (hash: 5QVyPmB1PRFpCtk6BRZ20HLOXQ8hVyEmcdVKPIlpB7E=) 3: F4777FBEEDDA11EF9731160CC4F9AE02.roa (hash: RlIbmp0Lo/M48Q8XdgnjXEwJZ7614fl+AY4B8ug41tA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:42:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8347, serialNumber=2ADBB71B11523CA3392E5F37D9DC76B211DBE083 Validity Not Before: Nov 3 04:42:01 2025 GMT Not After : Nov 10 04:42:01 2025 GMT Subject: CN=69083299-0be9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:2b:d8:61:d3:ce:31:d2:a3:1f:bb:c4:15:97: 1d:5e:44:25:04:ef:d3:b6:bc:04:5b:3a:23:42:91: 7b:15:a1:fc:53:99:82:0f:95:af:c1:81:a9:fe:ad: 61:a1:c8:5e:7b:6d:a1:d8:83:e4:4b:06:14:a2:b0: 44:ae:d8:c0:98:5e:43:af:63:c9:8b:80:32:ef:f0: 3a:a1:9f:e7:78:8c:14:6d:4f:d6:b6:00:7f:dd:cf: 4d:6a:d5:e1:2a:bb:01:c7:0c:51:bf:3a:7c:e9:7f: 07:b7:74:22:d4:e8:00:b4:7f:70:3b:df:88:f6:3c: d6:29:a0:03:f4:a2:f6:db:3c:92:1c:7c:aa:bf:6c: ff:ca:f4:7a:60:25:e5:4c:09:8f:71:37:de:ff:2c: 76:84:5c:d0:c7:47:4c:84:62:cb:4a:15:4e:a4:61: 09:62:5c:84:64:2e:8f:87:d9:2e:89:2d:d2:04:84: 0e:0e:e8:6a:e1:cd:82:c9:46:3b:75:39:32:0f:08: ac:c5:5a:f7:3e:52:f0:7a:e0:2c:8d:41:e4:e9:9e: 4d:b5:72:74:c9:9a:7b:06:1d:52:6f:fa:4f:6a:90: e2:6b:a8:b0:49:47:44:7f:de:e9:57:e1:ea:c8:42: 01:c4:d7:74:33:ce:4f:76:b6:9c:c4:0c:fe:03:63: 1a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:6C:13:EA:9A:B9:33:32:D1:1C:D7:12:8C:31:A0:2F:55:F7:F7:29 X509v3 Authority Key Identifier: keyid:2A:DB:B7:1B:11:52:3C:A3:39:2E:5F:37:D9:DC:76:B2:11:DB:E0:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ktu3GxFSPKM5Ll832dx2shHb4IM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8347/C3E72190F9A911EEA82A791AC4F9AE02/Ktu3GxFSPKM5Ll832dx2shHb4IM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:05:29:73:c1:1a:db:7b:4d:df:fc:9a:eb:6e:84:b1:ac:9c: 4b:10:af:b3:e7:d3:c4:41:36:8b:7e:c1:e2:64:6b:a9:c3:a7: 5e:f9:a6:a7:fd:77:01:a8:6f:07:66:06:25:e5:b4:3e:c5:38: 3e:66:96:6f:0a:0f:0f:93:0c:4e:32:78:39:2a:0f:92:8a:dd: f5:64:f7:49:7a:da:72:fe:61:44:a6:78:85:dd:b8:09:41:00: 07:3b:03:a9:72:62:28:a9:02:ea:3d:9d:a3:a5:fb:81:7e:05: 95:b9:09:ed:3e:36:d9:cd:3a:d7:18:ba:f7:7e:05:3b:4e:00: c1:fe:b5:11:ab:34:57:de:55:2e:01:b1:33:7e:bc:f0:59:99: 6d:a4:9f:0e:ff:b6:66:f4:81:4d:38:6c:1d:0a:79:81:7e:cc: f8:01:b8:76:f7:fb:6e:d2:2e:42:b6:0b:c5:9e:78:d6:1f:c7: 14:e9:ee:75:ed:8b:b1:dc:78:b5:18:a6:15:6c:0e:90:7b:ea: 83:1a:62:b9:61:cd:4e:d5:32:d4:aa:cf:ae:46:22:34:50:ac: cb:d8:3e:fb:68:dd:dd:31:a6:73:0e:18:fc:36:7e:2d:28:1c: aa:19:4f:62:bf:d0:fa:56:91:83:2b:bf:04:ee:15:ca:c5:d5: 77:2f:e2:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzNDcxMTAvBgNVBAUTKDJBREJCNzFCMTE1MjNDQTMzOTJFNUYzN0Q5REM3NkIy MTFEQkUwODMwHhcNMjUxMTAzMDQ0MjAxWhcNMjUxMTEwMDQ0MjAxWjAYMRYwFAYD VQQDEw02OTA4MzI5OS0wYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmivYYdPOMdKjH7vEFZcdXkQlBO/TtrwEWzojQpF7FaH8U5mCD5WvwYGp/q1h ochee22h2IPkSwYUorBErtjAmF5Dr2PJi4Ay7/A6oZ/neIwUbU/WtgB/3c9NatXh KrsBxwxRvzp86X8Ht3Qi1OgAtH9wO9+I9jzWKaAD9KL22zySHHyqv2z/yvR6YCXl TAmPcTfe/yx2hFzQx0dMhGLLShVOpGEJYlyEZC6Ph9kuiS3SBIQODuhq4c2CyUY7 dTkyDwisxVr3PlLweuAsjUHk6Z5NtXJ0yZp7Bh1Sb/pPapDia6iwSUdEf97pV+Hq yEIBxNd0M85PdracxAz+A2MaUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKJsE+qa uTMy0RzXEowxoC9V9/cpMB8GA1UdIwQYMBaAFCrbtxsRUjyjOS5fN9ncdrIR2+CD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODM0Ny9DM0U3MjE5MEY5 QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BLTTVMbDgzMmR4MnNoSGI0 SU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0dTNHeEZTUEtNNUxsODMyZHgyc2hIYjRJTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODM0Ny9DM0U3MjE5MEY5QTkxMUVFQTgyQTc5MUFDNEY5QUUwMi9LdHUzR3hGU1BL TTVMbDgzMmR4MnNoSGI0SU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5BSlzwRrbe03f/JrrboSxrJxLEK+z59PEQTaLfsHiZGupw6de+aan /XcBqG8HZgYl5bQ+xTg+ZpZvCg8PkwxOMng5Kg+Sit31ZPdJetpy/mFEpniF3bgJ QQAHOwOpcmIoqQLqPZ2jpfuBfgWVuQntPjbZzTrXGLr3fgU7TgDB/rURqzRX3lUu AbEzfrzwWZltpJ8O/7Zm9IFNOGwdCnmBfsz4Abh29/tu0i5CtgvFnnjWH8cU6e51 7Yux3Hi1GKYVbA6Qe+qDGmK5Yc1O1TLUqs+uRiI0UKzL2D77aN3dMaZzDhj8Nn4t KByqGU9iv9D6VpGDK78E7hXKxdV3L+Ki -----END CERTIFICATE-----Generated at Mon Nov 3 18:09:58 2025 by rpki-client