$ rpki-client -vvf rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft File: kg59CR8VVp8tg0DGWCuVlewGVoA.mft (raw, json) Hash identifier: WwuyaV3BaH7RFWlRUwR9P5CZCDiYgApJd/svutNfjYU= Subject key identifier: 8E:07:A2:86:6C:8B:68:24:45:4A:B1:F3:5D:25:ED:38:56:57:6A:19 Authority key identifier: 92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 Certificate issuer: /CN=A9112FE1/serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft Manifest number: 73 Signing time: Wed 05 Nov 2025 07:04:50 +0000 Manifest this update: Wed 05 Nov 2025 07:04:50 +0000 Manifest next update: Wed 12 Nov 2025 07:04:50 +0000 Files and hashes: 1: kg59CR8VVp8tg0DGWCuVlewGVoA.crl (hash: lkqXZ5FqR+flsc/TbrMV2iCv6sAhyOBaWBrfyfRz3xw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:04:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112FE1, serialNumber=920E7D091F15569F2D8340C6582B9595EC065680 Validity Not Before: Nov 5 07:04:50 2025 GMT Not After : Nov 12 07:04:50 2025 GMT Subject: CN=690af712-6ef9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1c:de:0a:d0:4f:65:60:17:4f:ca:b5:07:f9: f8:d7:0b:d1:f8:18:f0:8f:7c:b1:e6:70:61:86:87: 58:27:ef:71:22:c3:60:cf:6b:3e:b8:c3:dd:f2:5a: 59:ff:1c:aa:45:4b:d1:84:5a:ec:a9:cf:fa:3d:c3: b8:56:b9:69:1a:7f:b4:b3:1b:6b:85:70:0f:3f:6a: a1:5b:bc:42:e0:29:d9:b1:e7:a5:6f:22:ae:52:2a: 8a:bb:de:03:d6:a1:30:b1:63:3b:28:c3:85:dd:7b: b6:54:00:19:80:44:be:da:5e:41:c2:10:c3:18:f9: d0:35:17:b5:42:93:1b:e7:bf:db:e6:42:14:6f:8e: bd:5b:ee:b4:5b:40:6e:60:11:82:03:75:db:0d:bb: 31:3b:a0:d7:33:3c:9e:81:08:47:95:e2:f4:93:58: f8:90:8e:33:e6:fe:b3:ac:76:b4:2d:da:d9:03:6d: e5:c3:47:89:a7:9f:51:83:44:c0:66:1d:65:97:9b: 22:e7:57:02:26:f5:b8:cd:0c:bf:a5:da:ee:9d:27: f9:c1:6c:ca:ec:ff:98:72:83:54:23:ea:cb:f9:71: a3:8e:1d:18:d7:96:06:64:fc:61:c7:49:07:b6:67: 55:45:64:c2:4b:8d:22:18:eb:29:c9:fd:30:9e:ab: 45:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:07:A2:86:6C:8B:68:24:45:4A:B1:F3:5D:25:ED:38:56:57:6A:19 X509v3 Authority Key Identifier: keyid:92:0E:7D:09:1F:15:56:9F:2D:83:40:C6:58:2B:95:95:EC:06:56:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/kg59CR8VVp8tg0DGWCuVlewGVoA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112FE1/F1C7447E09F111F08B44A325C4F9AE02/kg59CR8VVp8tg0DGWCuVlewGVoA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c6:ef:32:11:93:e5:6c:39:86:7c:6c:22:8d:a8:81:7c:02:0c: 5c:f7:f6:d6:28:4f:fe:93:62:bb:be:a8:03:9f:5d:53:74:3a: 71:69:93:f7:49:10:9d:60:86:bf:78:1a:42:72:6d:a8:95:f5: 0a:b5:cd:7a:8d:02:5c:cf:c6:b8:6d:84:1d:e1:28:82:9e:cd: 9a:8b:f1:af:b7:ef:e3:b5:0e:ff:c0:d0:d7:90:f9:08:bd:84: c7:21:90:4d:ec:7d:34:e7:81:ab:63:d4:61:06:c9:be:ef:dd: a0:77:0c:85:b8:6a:89:15:09:10:1d:d3:e8:7e:60:ad:29:af: 8c:ec:96:08:aa:4b:af:10:68:85:7e:f8:8d:ce:bf:ab:49:28: 37:76:b6:29:83:57:be:51:f2:e3:a6:4b:ea:71:a7:50:3c:5d: 25:ea:74:8f:a3:49:3e:e6:87:3a:b5:f3:c9:1c:2e:49:4f:b7: 35:9c:54:21:a3:80:0d:8f:9d:09:a6:ff:6c:0e:26:5c:b6:7f: 77:95:11:dd:cf:34:a3:4e:0a:8f:4d:80:98:be:bb:13:a6:22: b5:71:00:6c:3b:e9:83:27:aa:e0:95:69:22:b7:ee:ee:8a:68: 88:33:7f:f1:42:92:0d:f9:56:a0:7c:3c:4c:f5:f7:8c:e6:8c: 5a:4e:91:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MkZFMTExMC8GA1UEBRMoOTIwRTdEMDkxRjE1NTY5RjJEODM0MEM2NTgyQjk1OTVF QzA2NTY4MDAeFw0yNTExMDUwNzA0NTBaFw0yNTExMTIwNzA0NTBaMBgxFjAUBgNV BAMTDTY5MGFmNzEyLTZlZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUHN4K0E9lYBdPyrUH+fjXC9H4GPCPfLHmcGGGh1gn73Eiw2DPaz64w93yWln/ HKpFS9GEWuypz/o9w7hWuWkaf7SzG2uFcA8/aqFbvELgKdmx56VvIq5SKoq73gPW oTCxYzsow4Xde7ZUABmARL7aXkHCEMMY+dA1F7VCkxvnv9vmQhRvjr1b7rRbQG5g EYIDddsNuzE7oNczPJ6BCEeV4vSTWPiQjjPm/rOsdrQt2tkDbeXDR4mnn1GDRMBm HWWXmyLnVwIm9bjNDL+l2u6dJ/nBbMrs/5hyg1Qj6sv5caOOHRjXlgZk/GHHSQe2 Z1VFZMJLjSIY6ynJ/TCeq0XVAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjgeihmyL aCRFSrHzXSXtOFZXahkwHwYDVR0jBBgwFoAUkg59CR8VVp8tg0DGWCuVlewGVoAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyRkUxL0YxQzc0NDdFMDlG MTExRjA4QjQ0QTMyNUM0RjlBRTAyL2tnNTlDUjhWVnA4dGcwREdXQ3VWbGV3R1Zv QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIva2c1OUNSOFZWcDh0ZzBER1dDdVZsZXdHVm9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEy RkUxL0YxQzc0NDdFMDlGMTExRjA4QjQ0QTMyNUM0RjlBRTAyL2tnNTlDUjhWVnA4 dGcwREdXQ3VWbGV3R1ZvQS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMbvMhGT5Ww5hnxsIo2ogXwCDFz39tYoT/6TYru+qAOfXVN0OnFpk/dJ EJ1ghr94GkJybaiV9Qq1zXqNAlzPxrhthB3hKIKezZqL8a+37+O1Dv/A0NeQ+Qi9 hMchkE3sfTTngatj1GEGyb7v3aB3DIW4aokVCRAd0+h+YK0pr4zslgiqS68QaIV+ +I3Ov6tJKDd2timDV75R8uOmS+pxp1A8XSXqdI+jST7mhzq188kcLklPtzWcVCGj gA2PnQmm/2wOJly2f3eVEd3PNKNOCo9NgJi+uxOmIrVxAGw76YMnquCVaSK37u6K aIgzf/FCkg35VqB8PEz194zmjFpOkXI= -----END CERTIFICATE-----Generated at Wed Nov 5 16:28:32 2025 by rpki-client