$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft File: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft (raw, json) Hash identifier: BpgJLzqnpLEAlMkaQhOBDo0n3FsdiHsCCkI/bmEUnCo= Subject key identifier: 31:FD:57:C1:F0:EF:59:B0:78:6A:A4:41:12:0A:18:AD:DF:D5:28:7C Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft Manifest number: 0199 Signing time: Mon 03 Nov 2025 03:27:40 +0000 Manifest this update: Mon 03 Nov 2025 03:27:40 +0000 Manifest next update: Mon 10 Nov 2025 03:27:39 +0000 Files and hashes: 1: kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl (hash: VR2V3c+Drkwj/ZM5IPTv55brcBQtm2d+g0ok65NVOfY=) 2: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (hash: A0mC9X2UnmVuFudZOyuXLKDdp8UzNcimAQJMyA4hcow=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:27:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323, serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Nov 3 03:27:40 2025 GMT Not After : Nov 10 03:27:39 2025 GMT Subject: CN=6908212c-dce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:3f:f0:6b:f8:e6:fe:8d:04:09:1f:ba:85:18: 03:cd:42:72:7f:be:08:39:4e:b9:8b:a9:10:51:a9: f3:4c:7b:d5:d8:35:7c:7c:4d:3a:38:a9:33:11:21: e3:3c:db:77:ed:9c:9f:d8:f6:f1:7a:8b:5a:c1:a3: e6:95:24:1e:e3:d7:c9:30:13:b8:3b:41:ee:8e:3e: 78:2b:aa:ce:a7:68:c1:f1:f0:98:3e:10:98:65:c8: a3:f6:84:59:a2:31:05:63:77:ea:bf:61:a1:07:d4: d5:7e:05:96:2f:3f:e6:b3:d8:3f:e6:f2:ec:be:ca: 6c:d6:c9:e9:45:91:5d:74:6e:04:40:c3:a2:dc:e9: c5:d1:32:80:0d:12:b8:e1:05:ad:85:7b:16:90:4c: 2d:66:51:ff:54:83:c7:8c:ce:c9:f1:c7:e3:28:24: 54:ae:d7:fe:30:eb:21:e2:33:08:82:b5:f0:cf:4d: 12:99:03:bc:89:7b:47:42:30:87:cf:c1:ca:d9:9b: 6a:c1:6e:ac:b0:60:12:68:a0:00:a9:7d:cc:99:2f: ec:11:15:1e:7b:06:58:e5:7b:2c:27:53:38:ad:f0: c1:cc:9f:54:73:c0:c6:8e:d6:49:53:60:1f:d7:54: 69:61:e6:d7:84:bb:3f:73:93:4c:36:e1:69:c7:13: 54:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:FD:57:C1:F0:EF:59:B0:78:6A:A4:41:12:0A:18:AD:DF:D5:28:7C X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:87:3a:83:89:eb:d1:d5:bc:28:7d:7e:21:35:ee:4d:ec:91: 94:66:f3:59:22:00:3f:58:b3:68:45:6c:42:07:96:24:d6:ac: d0:20:c4:1f:ce:e3:02:ab:cb:c9:ce:d0:7a:a7:dc:7e:0d:02: d1:11:9a:3c:f1:99:43:d8:e5:52:4c:ab:d4:9b:78:68:2e:2e: fd:7b:83:e5:66:7c:05:3d:dd:43:71:8b:4c:9a:53:5e:8e:96: 87:0a:f5:a8:1a:f9:ba:01:86:48:33:77:2b:f9:3d:6c:05:92: 57:c2:d0:5c:b7:14:2c:5e:08:fb:c4:61:42:9b:9b:0a:a0:ec: ce:e6:eb:e9:58:2f:9f:d1:0b:fe:06:7b:2c:08:ee:36:29:04: 7c:bd:a2:78:c6:56:11:87:a6:17:01:3b:00:19:96:99:7b:5c: 09:d8:8b:e3:00:24:9d:98:fb:73:b8:e1:03:01:3a:e6:0c:26: f0:53:22:e4:47:ea:3a:11:ec:f3:cb:c7:38:ee:0d:f2:bd:03: 87:54:eb:ca:2b:f1:8f:23:2b:9f:3d:63:be:6a:86:60:e4:f7: 04:df:00:9f:b3:4c:d3:89:0e:e2:cb:4b:d3:8e:5b:d7:98:d0: f4:4a:98:4c:a7:49:8c:f5:74:db:de:83:7f:6f:33:07:a6:f6: c8:df:61:fa -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzMjMxMTAvBgNVBAUTKDkzMDQyMzRFNzM5MDQ5MTQzQTg1OTFBMzc0NUE1M0U0 QjkyQUQ4RDgwHhcNMjUxMTAzMDMyNzQwWhcNMjUxMTEwMDMyNzM5WjAYMRYwFAYD VQQDEw02OTA4MjEyYy1kY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8T/wa/jm/o0ECR+6hRgDzUJyf74IOU65i6kQUanzTHvV2DV8fE06OKkzESHj PNt37Zyf2PbxeotawaPmlSQe49fJMBO4O0Hujj54K6rOp2jB8fCYPhCYZcij9oRZ ojEFY3fqv2GhB9TVfgWWLz/ms9g/5vLsvsps1snpRZFddG4EQMOi3OnF0TKADRK4 4QWthXsWkEwtZlH/VIPHjM7J8cfjKCRUrtf+MOsh4jMIgrXwz00SmQO8iXtHQjCH z8HK2ZtqwW6ssGASaKAAqX3MmS/sERUeewZY5XssJ1M4rfDBzJ9Uc8DGjtZJU2Af 11RpYebXhLs/c5NMNuFpxxNUjQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDH9V8Hw 71mweGqkQRIKGK3f1Sh8MB8GA1UdIwQYMBaAFJMEI05zkEkUOoWRo3RaU+S5KtjY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTMyMy85RTYxRTQyNDUy NUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNSUTZoWkdqZEZwVDVMa3Ey TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi9rd1FqVG5PUVNS UTZoWkdqZEZwVDVMa3EyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAOhzqDievR1bwofX4hNe5N7JGUZvNZIgA/WLNoRWxCB5Yk1qzQIMQf zuMCq8vJztB6p9x+DQLREZo88ZlD2OVSTKvUm3hoLi79e4PlZnwFPd1DcYtMmlNe jpaHCvWoGvm6AYZIM3cr+T1sBZJXwtBctxQsXgj7xGFCm5sKoOzO5uvpWC+f0Qv+ BnssCO42KQR8vaJ4xlYRh6YXATsAGZaZe1wJ2IvjACSdmPtzuOEDATrmDCbwUyLk R+o6Eezzy8c47g3yvQOHVOvKK/GPIyufPWO+aoZg5PcE3wCfs0zTiQ7iy0vTjlvX mND0SphMp0mM9XTb3oN/bzMHpvbI32H6 -----END CERTIFICATE-----Generated at Mon Nov 3 18:14:37 2025 by rpki-client