$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: Vw6phOgdairsQqad5X4N8X/hbhRVLNR7fh4CBvVCoOA= Subject key identifier: 49:9D:B9:17:32:30:1E:98:63:03:CE:96:23:81:F9:A0:A2:22:C9:6C Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07D3 Signing time: Tue 04 Nov 2025 21:19:29 +0000 Manifest this update: Tue 04 Nov 2025 21:19:29 +0000 Manifest next update: Tue 11 Nov 2025 21:19:29 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: G0V1iwLeyr6hPe97KXCrtHKNGJMFoMhlESip9khugcs=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: fxQZfbaLKR/d/fZu/fhyY8IFle3U5GHLuzj+qPAQsuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Nov 4 21:19:29 2025 GMT Not After : Nov 11 21:19:29 2025 GMT Subject: CN=690a6de1-f90d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f2:72:84:b5:1f:19:a7:eb:6b:17:a4:29:28: ff:98:ff:ec:72:d0:80:ac:f8:ed:dd:a2:89:1f:fc: 84:42:cc:cd:73:2c:8f:36:9a:70:2f:ea:5a:5d:bf: f3:96:07:59:c4:5d:43:0b:b2:b5:02:25:ed:a0:a2: 32:dd:b5:1b:1e:dd:df:30:9a:36:93:1f:3b:3e:84: 25:2f:fd:47:7d:0b:2b:16:88:a3:a3:cc:03:ea:27: a8:d6:be:10:38:0d:5b:00:c3:5a:72:72:f0:1e:99: bf:48:59:0d:32:89:68:c6:65:19:9c:c2:64:80:dd: f2:82:0c:ce:e0:ae:84:8e:b5:f3:45:ce:7c:87:0a: b4:35:1e:ac:25:81:56:42:3f:5f:ff:91:61:e2:6d: bf:80:a8:cf:8e:6d:ec:7f:1c:11:1c:80:e9:77:e3: 93:6b:43:f4:7c:0d:40:4a:5d:e8:9f:2d:dc:fd:1e: 17:fa:54:2e:cd:dd:f2:ef:c9:d8:ca:29:b0:10:55: 4c:2e:69:ce:da:03:20:e6:af:0d:bb:82:95:91:4c: 24:4c:53:5d:74:99:4e:bc:cb:4a:a4:56:81:94:d2: f0:74:73:53:01:5e:74:ac:0d:60:2a:e2:fb:39:1c: 36:d5:7f:80:ed:6b:83:c4:49:d1:bf:c5:c2:60:32: 12:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:9D:B9:17:32:30:1E:98:63:03:CE:96:23:81:F9:A0:A2:22:C9:6C X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:df:c3:ad:d8:88:3d:0e:b7:e3:a7:dc:15:14:06:9b:6f:c3: bc:82:86:99:3c:1a:59:ea:93:25:4c:d9:b5:a0:f7:99:d3:b9: f1:7d:2b:b4:18:85:86:1d:53:14:df:02:e8:95:83:6d:9f:e6: 72:ac:9f:74:bf:73:7c:82:0f:b1:b1:5e:58:89:4c:72:75:b1: ec:d2:57:a1:9b:9e:28:ce:73:52:6d:46:7f:f7:6e:92:f6:a2: ca:cb:55:57:7b:9a:3c:dd:1a:26:19:14:01:10:58:d3:80:92: fa:a4:4e:96:93:e2:69:5b:2e:97:da:0a:23:68:b1:bb:88:58: 3e:90:a9:3c:67:76:9f:ec:f1:f1:8a:f7:96:12:77:cd:30:4f: 0b:0a:92:54:3a:a8:df:86:0b:ee:d8:a4:a1:25:ba:db:98:45: 7b:60:8b:aa:55:5f:dc:f1:30:60:65:39:63:b5:f1:e1:a0:ff: 93:c6:8e:0f:f5:ea:38:df:1b:f9:a5:e3:77:a3:84:4d:61:c4: 13:41:04:68:38:ab:9b:33:7b:28:e6:83:71:34:a8:4b:ca:46: e1:94:ad:94:f0:13:9a:26:bc:56:e5:10:95:b5:e8:2c:9f:04: 4e:19:c4:82:57:a0:6a:d7:05:95:40:dc:83:cb:1e:3a:97:ee: 17:3b:22:35 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUxMTA0MjExOTI5WhcNMjUxMTExMjExOTI5WjAYMRYwFAYD VQQDEw02OTBhNmRlMS1mOTBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfJyhLUfGafraxekKSj/mP/sctCArPjt3aKJH/yEQszNcyyPNppwL+paXb/z lgdZxF1DC7K1AiXtoKIy3bUbHt3fMJo2kx87PoQlL/1HfQsrFoijo8wD6ieo1r4Q OA1bAMNacnLwHpm/SFkNMoloxmUZnMJkgN3yggzO4K6EjrXzRc58hwq0NR6sJYFW Qj9f/5Fh4m2/gKjPjm3sfxwRHIDpd+OTa0P0fA1ASl3ony3c/R4X+lQuzd3y78nY yimwEFVMLmnO2gMg5q8Nu4KVkUwkTFNddJlOvMtKpFaBlNLwdHNTAV50rA1gKuL7 ORw21X+A7WuDxEnRv8XCYDISGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmduRcy MB6YYwPOliOB+aCiIslsMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCq38Ot2Ig9Drfjp9wVFAabb8O8goaZPBpZ6pMlTNm1oPeZ07nxfSu0 GIWGHVMU3wLolYNtn+ZyrJ90v3N8gg+xsV5YiUxydbHs0lehm54oznNSbUZ/926S 9qLKy1VXe5o83RomGRQBEFjTgJL6pE6Wk+JpWy6X2gojaLG7iFg+kKk8Z3af7PHx iveWEnfNME8LCpJUOqjfhgvu2KShJbrbmEV7YIuqVV/c8TBgZTljtfHhoP+Txo4P 9eo43xv5peN3o4RNYcQTQQRoOKubM3so5oNxNKhLykbhlK2U8BOaJrxW5RCVtegs nwROGcSCV6Bq1wWVQNyDyx46l+4XOyI1 -----END CERTIFICATE-----Generated at Wed Nov 5 05:26:57 2025 by rpki-client