$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: cuQVOdl81PuuypAR73t2dFNvxGSt9y7xrJacRRqxc5w= Subject key identifier: 83:07:59:60:C5:8E:62:3E:60:ED:61:12:D6:C5:FB:49:AB:5F:B0:95 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: DC Signing time: Wed 05 Nov 2025 05:44:52 +0000 Manifest this update: Wed 05 Nov 2025 05:44:52 +0000 Manifest next update: Wed 12 Nov 2025 05:44:52 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: TdwLNgvzVqvTxXyZhBFvRzucI1pF7AeHw2G2d/U61AM=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: EkH7NGdtLzD6VnZqtvPSOcqvmB0pZ+aCYQgXfVmLWFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Nov 5 05:44:52 2025 GMT Not After : Nov 12 05:44:52 2025 GMT Subject: CN=690ae454-e4ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:51:c0:90:cd:9e:86:df:6c:ba:3a:19:67:00: 76:65:36:0a:7d:da:fe:0f:9e:46:32:2a:d8:52:80: 4f:df:41:78:7f:30:ed:f9:fd:29:46:c5:00:9a:04: 07:c4:a5:9c:4c:22:c6:85:08:d7:ab:04:d8:11:f6: 61:6c:47:d7:1e:b8:fc:8c:f1:be:a9:7c:f5:8b:c4: b9:76:5a:12:48:9b:96:38:cf:e2:0f:ba:ac:1d:bb: 40:54:e0:c9:4b:cb:fe:ae:1f:1e:0c:cf:00:b4:16: 0c:c4:f3:3d:66:5c:88:fc:d3:87:fc:8f:d6:bb:c9: 72:02:b9:27:17:f2:a7:76:c6:71:45:d2:1a:a6:5c: c8:45:a3:90:c4:ef:4a:6e:15:35:b2:b7:3c:a8:52: 7b:8d:59:c6:2e:69:de:d1:bf:59:87:bc:d0:27:6e: 75:cf:41:d4:6e:c7:cc:11:95:6b:4c:96:d7:30:69: db:7c:63:f3:e6:b3:3c:ae:6b:68:ac:66:9a:90:66: d0:fd:88:3c:7f:01:53:cb:bb:1f:82:2e:a5:9b:e5: 48:9b:ae:d0:99:52:5c:9e:4d:59:58:29:47:03:9e: 8e:c6:95:13:a6:5f:86:60:00:e3:f4:41:5a:78:0d: 65:1d:c5:d9:36:14:30:05:5a:38:c8:1e:db:88:a6: 11:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:07:59:60:C5:8E:62:3E:60:ED:61:12:D6:C5:FB:49:AB:5F:B0:95 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption da:60:93:0e:37:a9:0e:c1:e6:6f:6d:89:44:62:7c:13:30:99: 08:ce:25:c2:74:23:8b:17:87:46:87:a3:e3:94:9d:24:94:6c: 58:85:6b:73:af:28:19:c9:96:3d:9b:90:e4:b0:32:67:6b:96: 00:d7:f3:93:12:31:db:d3:86:a2:09:c4:8d:cc:a8:41:29:01: cf:97:11:99:4f:c6:6a:83:01:84:f5:3c:42:f9:5b:ae:18:03: 6d:2d:60:2a:fd:da:18:f5:cd:25:f2:8f:4c:f3:8a:63:1d:16: 3d:48:25:8b:6d:b4:f4:7f:45:dc:82:7b:01:77:5d:dc:e4:71: cc:6c:27:70:bb:05:a0:63:82:5c:02:f2:17:52:d1:0e:a6:c1: 08:7a:e4:83:ee:f2:de:dd:46:a2:b7:53:03:8e:1d:95:6d:26: 3e:02:3b:26:63:6b:a9:a6:cd:f2:f4:91:4b:5a:9b:59:ce:56: a6:e6:6f:e9:84:33:19:f3:a9:2f:b3:3c:db:15:10:c6:ef:e1: 37:d0:c7:44:98:50:af:44:bb:f5:ca:07:ae:9d:e0:39:f4:58: 3e:b3:7f:00:c9:b6:ee:32:02:4b:a0:c4:6b:4c:94:5b:69:98: 26:64:ba:1e:b0:d6:93:8a:45:9a:83:76:aa:5e:e6:8a:3f:0d: 6c:08:ea:a2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUxMTA1MDU0NDUyWhcNMjUxMTEyMDU0NDUyWjAYMRYwFAYD VQQDEw02OTBhZTQ1NC1lNGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVHAkM2eht9sujoZZwB2ZTYKfdr+D55GMirYUoBP30F4fzDt+f0pRsUAmgQH xKWcTCLGhQjXqwTYEfZhbEfXHrj8jPG+qXz1i8S5dloSSJuWOM/iD7qsHbtAVODJ S8v+rh8eDM8AtBYMxPM9ZlyI/NOH/I/Wu8lyArknF/KndsZxRdIaplzIRaOQxO9K bhU1src8qFJ7jVnGLmne0b9Zh7zQJ251z0HUbsfMEZVrTJbXMGnbfGPz5rM8rmto rGaakGbQ/Yg8fwFTy7sfgi6lm+VIm67QmVJcnk1ZWClHA56OxpUTpl+GYADj9EFa eA1lHcXZNhQwBVo4yB7biKYRJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIMHWWDF jmI+YO1hEtbF+0mrX7CVMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDaYJMON6kOweZvbYlEYnwTMJkIziXCdCOLF4dGh6PjlJ0klGxYhWtz rygZyZY9m5DksDJna5YA1/OTEjHb04aiCcSNzKhBKQHPlxGZT8ZqgwGE9TxC+Vuu GANtLWAq/doY9c0l8o9M84pjHRY9SCWLbbT0f0XcgnsBd13c5HHMbCdwuwWgY4Jc AvIXUtEOpsEIeuSD7vLe3Uait1MDjh2VbSY+AjsmY2upps3y9JFLWptZzlam5m/p hDMZ86kvszzbFRDG7+E30MdEmFCvRLv1ygeuneA59Fg+s38AybbuMgJLoMRrTJRb aZgmZLoesNaTikWag3aqXuaKPw1sCOqi -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:43 2025 by rpki-client