$ rpki-client -vvf rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft File: kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft (raw, json) Hash identifier: mcOxqsWoziF8akUvxU4DqLRTTJWtJtVvJxa8VIcfdm4= Subject key identifier: 98:E7:09:C6:F3:01:BD:00:B6:79:64:90:B0:52:83:AC:19:94:7C:F0 Authority key identifier: 91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 Certificate issuer: /CN=A9115CB5/serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Certificate serial: 05A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft Manifest number: 0598 Signing time: Tue 04 Nov 2025 23:16:03 +0000 Manifest this update: Tue 04 Nov 2025 23:16:02 +0000 Manifest next update: Tue 11 Nov 2025 23:16:02 +0000 Files and hashes: 1: kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl (hash: 2Tx2Yu6tTlcXxHIhYftLiQXGo6z6Jk8VyxoZyTQ0I5s=) 2: C41538940B4711EC99840631C4F9AE02.roa (hash: jmBBk9G7I6kWRNtiv9uf3HqTLrY1UbUUMPlSvnBT+V4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:16:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1444 (0x5a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9115CB5, serialNumber=91F4939ABAED40FA366ECC76359DCA2BCB68CE47 Validity Not Before: Nov 4 23:16:02 2025 GMT Not After : Nov 11 23:16:02 2025 GMT Subject: CN=690a8932-b5df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:07:fe:85:df:21:ff:ab:b2:da:e6:97:27: ee:71:a6:7e:93:9b:92:ea:36:c8:26:0a:0c:74:22: 0c:f9:6c:74:f4:d7:de:cb:06:16:ab:22:30:b1:fc: e3:8c:16:7d:e2:74:00:4c:d6:70:cd:03:fb:15:9b: 0a:c5:7d:6b:55:32:f5:23:1f:99:30:38:8c:bd:f9: 6d:82:47:84:60:29:22:8e:fc:41:3f:9c:cb:c8:a7: e1:b4:cc:c0:d4:83:72:4a:2e:98:b1:73:a4:50:b8: 59:16:ad:3e:0d:52:cb:25:56:48:52:eb:31:b8:0a: 1f:43:39:4f:c0:36:ad:9a:b5:fc:cd:8e:62:94:6e: af:4f:55:3c:c8:0f:fb:5b:56:5e:55:20:17:b6:76: a4:87:e3:d1:c9:f4:46:b8:f4:04:02:cf:42:5f:9a: eb:a1:d2:97:3a:68:30:64:35:46:39:25:a7:02:23: 9c:7e:8b:4e:4a:09:9d:54:74:c1:c5:24:6c:fa:9e: 6f:e4:14:8b:d1:72:08:44:2b:ea:3b:2c:5b:d5:f8: 7c:e5:f5:bd:39:91:22:57:92:41:b9:f2:0f:52:d4: 7a:9b:50:77:23:f0:85:99:77:3c:11:e7:bb:26:75: 45:f1:a2:b2:6d:2c:58:f8:30:0e:f5:e3:09:6e:49: e9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E7:09:C6:F3:01:BD:00:B6:79:64:90:B0:52:83:AC:19:94:7C:F0 X509v3 Authority Key Identifier: keyid:91:F4:93:9A:BA:ED:40:FA:36:6E:CC:76:35:9D:CA:2B:CB:68:CE:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfSTmrrtQPo2bsx2NZ3KK8tozkc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9115CB5/D9FD2DFEF37F11EBB283E74AC4F9AE02/kfSTmrrtQPo2bsx2NZ3KK8tozkc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:97:c0:28:50:0b:d3:9b:2e:b8:cc:21:fd:02:17:7a:94:f3: db:f8:cb:1c:62:ed:40:47:13:3b:43:a6:a9:66:c9:e9:9c:ca: 6b:2a:5c:8e:bf:eb:a5:72:bb:be:a1:d4:3f:e7:cd:89:4a:6c: 3b:d3:61:c7:d6:ce:a8:7a:bb:bd:4e:e3:79:36:7d:c6:1d:5b: 57:2a:15:78:40:88:67:c1:7c:58:02:10:47:9c:d2:b0:25:c0: b9:6e:e2:09:d9:43:5d:0d:b9:97:96:ac:a6:9c:51:74:b0:e0: c0:64:48:a4:6d:37:a5:e5:70:5a:03:3f:fe:d2:b9:ae:e1:27: 8a:71:17:48:3b:37:a7:f1:97:91:84:25:a3:17:2c:56:67:f1: 0b:4d:3a:af:33:0f:98:9f:34:6c:9f:dd:46:19:4b:47:72:7c: dc:a9:2c:c9:17:af:8d:59:2a:f2:34:68:52:9d:91:26:8a:a4: 20:6c:39:ac:36:23:2d:db:c1:8d:21:3f:a7:7a:39:f2:93:49: 01:a9:0b:23:21:5d:1f:ca:cc:97:18:07:01:05:70:ae:06:55: 8d:63:77:c0:c4:c0:88:24:b6:77:8c:69:54:43:7c:bc:b0:56: 31:5c:69:ab:c2:d8:95:8b:d0:2c:e6:a4:5c:5c:97:cf:88:f5: e0:22:82:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTVDQjUxMTAvBgNVBAUTKDkxRjQ5MzlBQkFFRDQwRkEzNjZFQ0M3NjM1OURDQTJC Q0I2OENFNDcwHhcNMjUxMTA0MjMxNjAyWhcNMjUxMTExMjMxNjAyWjAYMRYwFAYD VQQDEw02OTBhODkzMi1iNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHgH/oXfIf+rstrmlyfucaZ+k5uS6jbIJgoMdCIM+Wx09NfeywYWqyIwsfzj jBZ94nQATNZwzQP7FZsKxX1rVTL1Ix+ZMDiMvfltgkeEYCkijvxBP5zLyKfhtMzA 1INySi6YsXOkULhZFq0+DVLLJVZIUusxuAofQzlPwDatmrX8zY5ilG6vT1U8yA/7 W1ZeVSAXtnakh+PRyfRGuPQEAs9CX5rrodKXOmgwZDVGOSWnAiOcfotOSgmdVHTB xSRs+p5v5BSL0XIIRCvqOyxb1fh85fW9OZEiV5JBufIPUtR6m1B3I/CFmXc8Eee7 JnVF8aKybSxY+DAO9eMJbknphwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJjnCcbz Ab0AtnlkkLBSg6wZlHzwMB8GA1UdIwQYMBaAFJH0k5q67UD6Nm7MdjWdyivLaM5H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNUNCNS9EOUZEMkRGRUYz N0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQbzJic3gyTlozS0s4dG96 a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmU1RtcnJ0UVBvMmJzeDJOWjNLSzh0b3prYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NUNCNS9EOUZEMkRGRUYzN0YxMUVCQjI4M0U3NEFDNEY5QUUwMi9rZlNUbXJydFFQ bzJic3gyTlozS0s4dG96a2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAml8AoUAvTmy64zCH9Ahd6lPPb+MscYu1ARxM7Q6apZsnpnMprKlyO v+ulcru+odQ/582JSmw702HH1s6oeru9TuN5Nn3GHVtXKhV4QIhnwXxYAhBHnNKw JcC5buIJ2UNdDbmXlqymnFF0sODAZEikbTel5XBaAz/+0rmu4SeKcRdIOzen8ZeR hCWjFyxWZ/ELTTqvMw+YnzRsn91GGUtHcnzcqSzJF6+NWSryNGhSnZEmiqQgbDms NiMt28GNIT+nejnyk0kBqQsjIV0fysyXGAcBBXCuBlWNY3fAxMCIJLZ3jGlUQ3y8 sFYxXGmrwtiVi9As5qRcXJfPiPXgIoJz -----END CERTIFICATE-----Generated at Wed Nov 5 11:44:22 2025 by rpki-client