$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft File: KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft (raw, json) Hash identifier: 3tLt0a/56WaoU4VjYS58GI55k312AmL+PHA23yrbWnw= Subject key identifier: 7D:A1:5D:1E:84:1D:44:6E:73:23:DC:7A:D4:67:15:90:8E:48:85:9A Authority key identifier: 28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 Certificate issuer: /CN=A91DA252/serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Certificate serial: 09FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft Manifest number: 09F6 Signing time: Sun 02 Nov 2025 19:50:17 +0000 Manifest this update: Sun 02 Nov 2025 19:50:16 +0000 Manifest next update: Sun 09 Nov 2025 19:50:16 +0000 Files and hashes: 1: KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl (hash: w2+LmrAJtvBalAU8ZARD6lzHffz8Lu0BqQWQ//AEBv8=) 2: 81E66AB486DD11EAA5DCD466C4F9AE02.roa (hash: PABbUqoLwf3xZn77dm2ppG3YXtLL0LLzakgXhNUgKAg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA252, serialNumber=28F18EC749EA91B5A3299749F2ABE2788A10C691 Validity Not Before: Nov 2 19:50:16 2025 GMT Not After : Nov 9 19:50:16 2025 GMT Subject: CN=6907b5f9-3822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:67:6e:77:7a:10:ff:b7:4f:eb:da:dd:d5:0d: f0:a1:59:8d:65:e7:01:da:f4:b5:89:a1:3c:05:32: 3d:47:2b:0d:ab:f5:fe:04:c9:87:93:f0:be:35:20: 49:be:9f:7c:89:be:3b:8a:62:10:87:b8:ea:04:2c: fc:9f:61:b1:a6:91:86:d3:5f:c3:00:34:a4:55:93: af:0f:75:29:7a:64:ad:36:8d:17:59:0d:7a:31:27: db:67:3e:93:ad:b3:f7:18:b4:47:63:74:7a:ac:97: 29:41:4a:cd:19:5c:46:0a:d4:13:7c:34:35:e7:4b: e3:c4:5c:7a:52:ed:3f:94:da:d0:b7:85:45:94:b7: fd:16:f4:c2:e3:8c:24:32:0a:cc:02:cb:12:28:35: ca:3b:fa:f3:c4:d5:cb:fa:ea:c8:bf:97:0c:18:98: 43:1f:a0:73:c3:87:88:af:96:c1:b9:ee:d4:b3:af: 88:31:f9:e7:e7:b8:cf:44:78:db:6e:d9:46:93:ef: 26:8f:f7:96:26:4a:49:c0:b7:d8:53:3c:2a:1c:bf: 24:61:f1:75:98:d0:92:58:1d:71:d5:d6:1f:36:b8: e6:36:a1:43:8b:fc:75:29:df:72:ee:40:2b:fd:65: f5:45:3f:d2:97:4c:fd:3b:1d:24:23:8a:08:49:e6: f6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:A1:5D:1E:84:1D:44:6E:73:23:DC:7A:D4:67:15:90:8E:48:85:9A X509v3 Authority Key Identifier: keyid:28:F1:8E:C7:49:EA:91:B5:A3:29:97:49:F2:AB:E2:78:8A:10:C6:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPGOx0nqkbWjKZdJ8qvieIoQxpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA252/F081716886DC11EA9BD3C466C4F9AE02/KPGOx0nqkbWjKZdJ8qvieIoQxpE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:3a:58:cc:cf:fa:bf:51:a3:e3:d5:7e:2d:7e:5e:4c:51:25: 06:a9:67:2f:86:9a:9a:d0:26:67:d0:a3:14:58:72:24:64:74: 4b:f0:16:1a:c0:ac:2f:67:cc:29:1d:60:8b:ca:f5:3a:ac:99: 19:58:1e:88:dc:19:61:6f:44:1a:96:f7:a8:c9:8e:da:20:95: 59:ed:e2:b1:6e:92:1d:05:ea:09:c5:f9:27:9d:54:e7:b8:7e: d7:2b:6e:d5:ed:dd:8c:1b:bb:18:e4:c6:2e:3c:f9:7a:3a:db: 35:70:68:33:a9:c9:f8:38:27:dd:0d:14:66:20:5a:28:a3:77: cc:c9:67:bf:4c:05:32:48:53:22:5a:f6:54:be:00:04:e7:7d: a6:03:c8:d7:1e:3f:95:8c:86:7c:15:34:cc:e5:72:74:f9:fa: 2e:5b:1f:2d:0c:76:cd:f1:3b:70:4b:08:0c:77:61:53:b7:68: 96:c9:1b:26:e0:4d:5b:5d:28:7b:88:7b:7f:7b:25:76:6f:3c: 98:65:1c:50:93:f0:0f:72:5f:59:a2:f9:98:19:7a:0e:3a:e5: 74:f8:0c:77:d4:c6:ef:42:98:2f:49:7a:f5:c2:18:6d:fa:29: 72:8c:73:92:84:b1:d4:01:4d:d8:11:9b:49:2f:9a:06:f9:29: c2:eb:ac:8e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REEyNTIxMTAvBgNVBAUTKDI4RjE4RUM3NDlFQTkxQjVBMzI5OTc0OUYyQUJFMjc4 OEExMEM2OTEwHhcNMjUxMTAyMTk1MDE2WhcNMjUxMTA5MTk1MDE2WjAYMRYwFAYD VQQDEw02OTA3YjVmOS0zODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArWdud3oQ/7dP69rd1Q3woVmNZecB2vS1iaE8BTI9RysNq/X+BMmHk/C+NSBJ vp98ib47imIQh7jqBCz8n2GxppGG01/DADSkVZOvD3UpemStNo0XWQ16MSfbZz6T rbP3GLRHY3R6rJcpQUrNGVxGCtQTfDQ150vjxFx6Uu0/lNrQt4VFlLf9FvTC44wk MgrMAssSKDXKO/rzxNXL+urIv5cMGJhDH6Bzw4eIr5bBue7Us6+IMfnn57jPRHjb btlGk+8mj/eWJkpJwLfYUzwqHL8kYfF1mNCSWB1x1dYfNrjmNqFDi/x1Kd9y7kAr /WX1RT/Sl0z9Ox0kI4oISeb2nQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH2hXR6E HURucyPcetRnFZCOSIWaMB8GA1UdIwQYMBaAFCjxjsdJ6pG1oymXSfKr4niKEMaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTI1Mi9GMDgxNzE2ODg2 REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWtiV2pLWmRKOHF2aWVJb1F4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQR094MG5xa2JXaktaZEo4cXZpZUlvUXhwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTI1Mi9GMDgxNzE2ODg2REMxMUVBOUJEM0M0NjZDNEY5QUUwMi9LUEdPeDBucWti V2pLWmRKOHF2aWVJb1F4cEUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA2OljMz/q/UaPj1X4tfl5MUSUGqWcvhpqa0CZn0KMUWHIkZHRL8BYa wKwvZ8wpHWCLyvU6rJkZWB6I3Blhb0QalveoyY7aIJVZ7eKxbpIdBeoJxfknnVTn uH7XK27V7d2MG7sY5MYuPPl6Ots1cGgzqcn4OCfdDRRmIFooo3fMyWe/TAUySFMi WvZUvgAE532mA8jXHj+VjIZ8FTTM5XJ0+fouWx8tDHbN8TtwSwgMd2FTt2iWyRsm 4E1bXSh7iHt/eyV2bzyYZRxQk/APcl9ZovmYGXoOOuV0+Ax31MbvQpgvSXr1whht +ilyjHOShLHUAU3YEZtJL5oG+SnC66yO -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:58 2025 by rpki-client