$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft File: keKklwM5j7IArA6fpHZpFddL-eU.mft (raw, json) Hash identifier: u9UKh5NgFfbRQS1sFTU84S8qx3LcQDE6psi2dd+w70Q= Subject key identifier: E4:A7:F4:61:EE:29:15:85:21:0B:A1:E1:79:B2:3B:5B:27:D9:30:17 Authority key identifier: 91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 Certificate issuer: /CN=A91FD6E4/serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Certificate serial: 01B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft Manifest number: 01B5 Signing time: Mon 03 Nov 2025 03:06:35 +0000 Manifest this update: Mon 03 Nov 2025 03:06:35 +0000 Manifest next update: Mon 10 Nov 2025 03:06:35 +0000 Files and hashes: 1: keKklwM5j7IArA6fpHZpFddL-eU.crl (hash: MUb8pXzpOGXy8oqk6XDBa2Eyeke+Pwbx4j8He77RRKU=) 2: 345AD30E1E1311EE846A3261C4F9AE02.roa (hash: tkkYz0ghUklFSNnUvurDs2pFNwSVM0cpaVXq98edoAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6E4, serialNumber=91E2A49703398FB200AC0E9FA4766915D74BF9E5 Validity Not Before: Nov 3 03:06:35 2025 GMT Not After : Nov 10 03:06:35 2025 GMT Subject: CN=69081c3b-7a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1b:29:85:d7:60:9d:5a:95:3c:db:4e:33:4d: 76:3e:5f:7a:c9:20:f9:98:0f:89:88:21:58:7d:c5: 8e:3b:66:9f:da:9f:b2:d6:c5:f4:88:29:23:4d:12: 5b:d3:fe:b5:3c:83:81:69:64:c2:b5:d6:7d:a7:63: d2:58:f8:33:9e:5b:23:12:dc:9d:28:d2:cc:58:f2: 38:65:c5:97:04:80:b4:5b:86:ba:89:42:39:1e:bc: da:19:7d:4a:17:6e:f6:79:22:c0:29:dd:99:d3:6f: dc:91:a8:cc:40:dd:b5:75:09:d7:5e:44:db:a9:f3: 4e:cf:88:19:e1:05:bf:84:7e:e9:bc:c0:89:c2:56: 9d:8f:da:3c:58:43:26:85:67:ca:01:36:58:38:41: 49:6b:f3:05:eb:2e:5f:e6:9c:d3:23:be:3a:86:b3: 6a:19:59:d8:84:f3:d2:58:b8:5f:06:93:fe:45:b0: 13:2b:d1:2a:4a:e1:22:0f:8f:bd:df:35:f8:3e:a6: aa:5f:56:98:f5:17:90:ec:7b:dd:50:34:ef:07:30: 23:f7:dc:24:0e:d2:51:e8:65:d2:a2:0b:25:b7:5f: 8b:b7:e6:ab:cf:27:bc:94:16:02:a2:1e:13:df:9c: fd:f9:2b:ec:bb:9c:99:78:3f:2b:be:49:4a:1e:fb: 0e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:A7:F4:61:EE:29:15:85:21:0B:A1:E1:79:B2:3B:5B:27:D9:30:17 X509v3 Authority Key Identifier: keyid:91:E2:A4:97:03:39:8F:B2:00:AC:0E:9F:A4:76:69:15:D7:4B:F9:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/keKklwM5j7IArA6fpHZpFddL-eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6E4/ABE7E0561E0E11EE9170F429C4F9AE02/keKklwM5j7IArA6fpHZpFddL-eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:c0:9c:79:0a:0d:06:e1:a9:29:f9:a4:80:7d:cb:4a:0e:cd: e2:86:79:4c:71:d6:ae:95:2e:44:55:c3:32:17:e3:65:7d:b1: fe:ba:a9:a1:a3:82:75:f7:ce:ec:d3:96:27:4a:a0:c2:1d:e3: 4c:da:36:ca:72:f5:91:0f:63:84:75:00:83:91:f6:c4:69:ea: 73:3a:07:62:64:e7:33:60:e7:47:f7:25:51:aa:e0:ff:3c:53: d7:67:ab:1b:7e:27:fc:eb:93:f2:6b:70:5c:0e:5b:fb:b2:c6: 43:a0:42:09:d7:ef:c1:c3:0f:e1:22:66:1a:97:46:fd:e9:53: a5:6d:33:08:bc:e0:9d:43:c3:de:92:74:8f:e6:38:13:ec:41: be:e8:d1:a3:b2:34:a1:0b:57:4f:2d:53:0d:4c:5c:be:db:92: 91:ea:1a:6c:af:4b:fa:a1:2d:3f:ba:43:77:50:5c:26:07:e5: bb:b3:a8:90:cf:da:d9:7e:ce:21:6f:17:50:3b:be:00:0f:e0: 73:12:44:23:da:93:a2:0c:03:0a:7a:0c:ab:04:51:91:45:1d: c1:f9:0f:a1:62:78:80:4f:78:f9:21:7c:a6:aa:ed:be:54:a1: 49:8d:46:43:f6:ed:80:58:6b:aa:93:8a:a4:71:3d:b0:e0:72: d3:14:cd:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkQ2RTQxMTAvBgNVBAUTKDkxRTJBNDk3MDMzOThGQjIwMEFDMEU5RkE0NzY2OTE1 RDc0QkY5RTUwHhcNMjUxMTAzMDMwNjM1WhcNMjUxMTEwMDMwNjM1WjAYMRYwFAYD VQQDEw02OTA4MWMzYi03YTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BsphddgnVqVPNtOM012Pl96ySD5mA+JiCFYfcWOO2af2p+y1sX0iCkjTRJb 0/61PIOBaWTCtdZ9p2PSWPgznlsjEtydKNLMWPI4ZcWXBIC0W4a6iUI5HrzaGX1K F272eSLAKd2Z02/ckajMQN21dQnXXkTbqfNOz4gZ4QW/hH7pvMCJwladj9o8WEMm hWfKATZYOEFJa/MF6y5f5pzTI746hrNqGVnYhPPSWLhfBpP+RbATK9EqSuEiD4+9 3zX4PqaqX1aY9ReQ7HvdUDTvBzAj99wkDtJR6GXSogslt1+Lt+arzye8lBYCoh4T 35z9+Svsu5yZeD8rvklKHvsO5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOSn9GHu KRWFIQuh4XmyO1sn2TAXMB8GA1UdIwQYMBaAFJHipJcDOY+yAKwOn6R2aRXXS/nl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRDZFNC9BQkU3RTA1NjFF MEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3SUFyQTZmcEhacEZkZEwt ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tlS2tsd001ajdJQXJBNmZwSFpwRmRkTC1lVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZFNC9BQkU3RTA1NjFFMEUxMUVFOTE3MEY0MjlDNEY5QUUwMi9rZUtrbHdNNWo3 SUFyQTZmcEhacEZkZEwtZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFwJx5Cg0G4akp+aSAfctKDs3ihnlMcdaulS5EVcMyF+NlfbH+uqmh o4J1987s05YnSqDCHeNM2jbKcvWRD2OEdQCDkfbEaepzOgdiZOczYOdH9yVRquD/ PFPXZ6sbfif865Pya3BcDlv7ssZDoEIJ1+/Bww/hImYal0b96VOlbTMIvOCdQ8Pe knSP5jgT7EG+6NGjsjShC1dPLVMNTFy+25KR6hpsr0v6oS0/ukN3UFwmB+W7s6iQ z9rZfs4hbxdQO74AD+BzEkQj2pOiDAMKegyrBFGRRR3B+Q+hYniAT3j5IXymqu2+ VKFJjUZD9u2AWGuqk4qkcT2w4HLTFM3P -----END CERTIFICATE-----Generated at Mon Nov 3 18:17:13 2025 by rpki-client