$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: c4BFKg+lZa2wmy/+wsx8FMp09ni+Ra+XItObuaB9OOk= Subject key identifier: D2:2F:70:B9:C4:D5:D0:93:8F:AD:61:D8:B7:06:3B:D2:8D:18:CD:F0 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C5D Signing time: Tue 28 Oct 2025 18:31:59 +0000 Manifest this update: Tue 28 Oct 2025 18:31:59 +0000 Manifest next update: Tue 04 Nov 2025 18:31:59 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: GWR4zP/dojlcp3pH2c6TaflI6lzY7OYDCbr23TgXArI=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: J1Y3R18xnrLrxVnTd6dnJAcJxU9kFVJTgj8vMihGb8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 18:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3187 (0xc73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Oct 28 18:31:59 2025 GMT Not After : Nov 4 18:31:59 2025 GMT Subject: CN=69010c1f-787c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:96:8c:24:53:7c:9c:b2:b2:59:f3:48:05:50: 52:34:0a:47:4d:a9:0c:a9:ad:9b:91:d0:a6:8e:29: 6e:09:f4:1b:a1:c6:a2:b4:43:4d:27:59:08:f5:2d: 2c:30:f9:24:f7:fd:71:1b:f5:27:17:92:cc:6b:c3: e3:03:89:8d:9f:ff:d6:da:0e:34:ee:17:77:4f:3b: 0d:81:9e:3d:96:b7:83:f7:94:76:83:bd:c0:7f:08: 9c:fe:f3:85:98:35:34:db:fa:88:f9:f4:bc:09:fe: 94:93:03:2d:e5:17:e0:59:21:19:4b:c0:8f:07:83: 47:6b:b3:40:13:39:bc:a5:fc:a3:48:2a:80:1f:46: 2e:b7:c7:44:62:b2:5c:bc:ea:6c:5e:0b:62:61:36: 5e:f6:33:8d:f7:a2:5a:bc:24:9c:50:2d:d0:26:82: b4:35:78:bd:42:5e:95:2e:c8:89:f9:83:84:f9:d3: 4c:44:aa:cb:52:a8:7d:35:c2:8d:fb:55:64:22:87: db:2f:78:13:ab:e0:36:7a:db:de:65:8f:d0:2c:35: 89:06:c1:de:f5:cc:3f:68:1d:6e:7b:4a:64:f8:27: 37:55:58:94:8a:e8:a1:40:c5:f8:00:8c:93:c5:c0: f9:7c:38:6f:fe:ce:42:d1:72:a2:d2:a5:fe:3e:4a: 21:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2F:70:B9:C4:D5:D0:93:8F:AD:61:D8:B7:06:3B:D2:8D:18:CD:F0 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:9e:73:b4:29:ac:97:81:65:d6:91:1e:42:09:4a:f3:2f:bc: 58:81:86:e9:12:57:0b:bc:74:b6:0f:c2:20:13:89:cc:e4:14: a8:4c:56:6d:d6:02:b5:1e:9a:24:ad:49:cc:ac:9a:88:22:77: 90:e9:95:7e:d3:4e:72:61:99:8e:e5:12:c7:dd:47:ba:c1:4d: ac:8e:89:97:af:9c:ab:0a:ea:c4:0b:f1:50:f1:1b:25:18:a8: 23:52:0c:62:39:ab:0b:d8:bd:d7:4e:b0:75:11:47:69:f3:51: d3:7d:c5:37:97:fa:4f:a2:f2:61:10:17:af:69:c9:92:d5:ff: 68:a7:65:c7:bf:be:44:3d:7f:f2:0b:6b:7f:bb:41:bc:7a:49: 5c:83:56:1c:c5:49:72:cf:31:6a:ce:14:8a:f7:ee:89:12:af: 26:d9:1f:b3:66:54:dc:c6:fa:bb:19:d9:71:e2:a2:ec:7a:9d: ef:b2:5e:e6:e7:31:99:c7:93:be:31:af:43:24:78:d5:4c:c1: 9d:34:20:1e:46:e5:da:98:cf:ff:01:13:c6:96:2b:98:d9:cd: 7b:07:18:15:8a:95:14:e4:26:82:68:5e:5c:c0:aa:98:72:65: ce:c8:1d:e8:e5:2f:44:43:55:40:07:3c:07:be:71:cf:b2:15: 02:99:a0:f1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUxMDI4MTgzMTU5WhcNMjUxMTA0MTgzMTU5WjAYMRYwFAYD VQQDEw02OTAxMGMxZi03ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2paMJFN8nLKyWfNIBVBSNApHTakMqa2bkdCmjiluCfQbocaitENNJ1kI9S0s MPkk9/1xG/UnF5LMa8PjA4mNn//W2g407hd3TzsNgZ49lreD95R2g73Afwic/vOF mDU02/qI+fS8Cf6UkwMt5RfgWSEZS8CPB4NHa7NAEzm8pfyjSCqAH0Yut8dEYrJc vOpsXgtiYTZe9jON96JavCScUC3QJoK0NXi9Ql6VLsiJ+YOE+dNMRKrLUqh9NcKN +1VkIofbL3gTq+A2etveZY/QLDWJBsHe9cw/aB1ue0pk+Cc3VViUiuihQMX4AIyT xcD5fDhv/s5C0XKi0qX+PkohKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNIvcLnE 1dCTj61h2LcGO9KNGM3wMB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcnnO0KayXgWXWkR5CCUrzL7xYgYbpElcLvHS2D8IgE4nM5BSoTFZt 1gK1HpokrUnMrJqIIneQ6ZV+005yYZmO5RLH3Ue6wU2sjomXr5yrCurEC/FQ8Rsl GKgjUgxiOasL2L3XTrB1EUdp81HTfcU3l/pPovJhEBevacmS1f9op2XHv75EPX/y C2t/u0G8eklcg1YcxUlyzzFqzhSK9+6JEq8m2R+zZlTcxvq7Gdlx4qLsep3vsl7m 5zGZx5O+Ma9DJHjVTMGdNCAeRuXamM//ARPGliuY2c17BxgVipUU5CaCaF5cwKqY cmXOyB3o5S9EQ1VABzwHvnHPshUCmaDx -----END CERTIFICATE-----Generated at Thu Oct 30 05:57:54 2025 by rpki-client