$ rpki-client -vvf rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft File: KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft (raw, json) Hash identifier: z2ShgIHcI+JzwtqVidilQoqBgNE2+MVIz/25SYP7C1k= Subject key identifier: A5:5E:19:AB:FF:0E:54:E5:ED:5A:61:2D:E6:B3:AC:BF:38:FE:41:47 Authority key identifier: 2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B Certificate issuer: /CN=A91233D4/serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Certificate serial: 0AA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft Manifest number: 0A95 Signing time: Tue 04 Nov 2025 19:40:43 +0000 Manifest this update: Tue 04 Nov 2025 19:40:42 +0000 Manifest next update: Tue 11 Nov 2025 19:40:42 +0000 Files and hashes: 1: KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl (hash: a8kljIeQRmh7l+9Du0B+Ir3X/PE2n9w8cO9mIorzLs0=) 2: A08B108A78D411EAA8C57711C4F9AE02.roa (hash: 3OpBGXXCJTXlZTJu94VcICtCah5ixfAdvhW279UITTY=) 3: A1D479B878D411EAA8C57711C4F9AE02.roa (hash: OYgq0o9dgNrqTYjdakq5qNzK/yt9wMabsIU2jLZbz/U=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:40:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2727 (0xaa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91233D4, serialNumber=2A93E1459766506195DFFC99B523362BE5AC0D6B Validity Not Before: Nov 4 19:40:42 2025 GMT Not After : Nov 11 19:40:42 2025 GMT Subject: CN=690a56bb-afd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:5a:6a:6d:ff:fc:1b:d2:03:5e:32:3d:8c:db: 42:0a:b6:3a:30:d6:51:5e:bb:57:b0:b2:2d:27:79: a6:e6:fc:79:42:e9:53:3a:ed:7c:0b:6a:2a:f0:11: 71:00:fb:74:3b:f1:37:0a:fd:c4:11:28:5a:57:40: 07:d4:ad:da:12:d6:b7:d6:5e:06:a7:9c:15:75:7f: e4:f0:76:e3:be:96:1f:b2:68:2a:f5:e0:22:13:cf: 08:22:d2:92:5a:bf:fa:80:cb:7b:c9:ad:0e:4b:f3: a9:66:ea:9f:97:da:0f:24:31:04:75:0c:02:41:db: 2d:f2:d8:97:28:ed:2a:f8:e5:82:d4:f1:be:fc:3b: 25:99:f2:eb:86:dd:84:ab:db:9b:36:c2:eb:d2:54: c1:eb:a4:88:f5:01:96:c8:f2:6e:18:2f:ca:4a:a3: e5:10:43:ff:1d:76:39:03:d5:e6:e7:07:bb:b4:64: 56:0b:4a:61:b4:22:cc:f7:6f:ec:6b:90:31:58:f6: 58:ee:fd:f0:8f:b4:7d:94:95:ff:1f:a8:3b:a2:b6: e2:e9:be:d9:96:e8:52:ee:cc:71:66:41:9d:0f:53: 77:3a:b4:c9:48:41:34:92:52:85:3b:f7:a9:14:80: f8:f5:9d:46:13:ad:2d:65:98:03:d9:81:86:61:2c: 02:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:5E:19:AB:FF:0E:54:E5:ED:5A:61:2D:E6:B3:AC:BF:38:FE:41:47 X509v3 Authority Key Identifier: keyid:2A:93:E1:45:97:66:50:61:95:DF:FC:99:B5:23:36:2B:E5:AC:0D:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KpPhRZdmUGGV3_yZtSM2K-WsDWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91233D4/25A061806B1F11EA8130A65FC4F9AE02/KpPhRZdmUGGV3_yZtSM2K-WsDWs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:ae:55:7f:a0:72:73:be:63:ad:01:c2:14:b2:b6:95:60:3b: d4:5a:6b:0e:4c:a1:10:b9:e9:db:1e:39:43:df:70:66:88:ab: f8:8f:5a:b2:b2:81:44:7c:fd:b3:e9:8a:0d:3f:78:8e:53:5f: 71:0e:73:96:9f:3c:98:5e:bd:72:29:61:bf:93:7e:0b:f1:7e: 5a:aa:5a:de:9e:4e:25:a1:79:f9:b6:8c:e8:9e:a5:f5:44:ed: 5b:d5:74:23:b9:e7:55:2e:3c:bf:5e:d8:cb:a3:36:21:fc:1a: 72:6a:65:4f:d3:2f:24:ad:c0:fe:16:6b:5a:13:51:9d:01:b2: 00:26:96:e1:3c:dc:0c:26:b2:88:2f:1c:5b:08:1a:ab:78:6e: fe:89:ae:93:d8:ce:45:2e:a3:2d:f4:62:b6:59:2c:69:32:1a: 97:87:55:70:c1:5f:71:00:3d:84:2c:a0:0e:bd:25:1d:3d:a8: 28:8a:ad:0f:c8:9b:c9:4b:20:37:26:86:b9:02:f0:89:e0:a6: c7:d1:4a:c2:d1:34:3e:30:45:bc:54:fe:ca:bc:dd:8b:d0:b8: 43:83:53:f7:df:d2:c1:c1:91:02:94:95:16:f7:0c:fe:02:57: fb:b6:a6:5f:75:ad:e3:13:68:8b:f1:6e:1f:0b:67:03:45:e8: fc:c2:05:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCqcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMzRDQxMTAvBgNVBAUTKDJBOTNFMTQ1OTc2NjUwNjE5NURGRkM5OUI1MjMzNjJC RTVBQzBENkIwHhcNMjUxMTA0MTk0MDQyWhcNMjUxMTExMTk0MDQyWjAYMRYwFAYD VQQDEw02OTBhNTZiYi1hZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvVpqbf/8G9IDXjI9jNtCCrY6MNZRXrtXsLItJ3mm5vx5QulTOu18C2oq8BFx APt0O/E3Cv3EEShaV0AH1K3aEta31l4Gp5wVdX/k8HbjvpYfsmgq9eAiE88IItKS Wr/6gMt7ya0OS/OpZuqfl9oPJDEEdQwCQdst8tiXKO0q+OWC1PG+/DslmfLrht2E q9ubNsLr0lTB66SI9QGWyPJuGC/KSqPlEEP/HXY5A9Xm5we7tGRWC0phtCLM92/s a5AxWPZY7v3wj7R9lJX/H6g7orbi6b7ZluhS7sxxZkGdD1N3OrTJSEE0klKFO/ep FID49Z1GE60tZZgD2YGGYSwCwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKVeGav/ DlTl7VphLeazrL84/kFHMB8GA1UdIwQYMBaAFCqT4UWXZlBhld/8mbUjNivlrA1r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzNENC8yNUEwNjE4MDZC MUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVHR1YzX3ladFNNMkstV3NE V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0twUGhSWmRtVUdHVjNfeVp0U00ySy1Xc0RXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzNENC8yNUEwNjE4MDZCMUYxMUVBODEzMEE2NUZDNEY5QUUwMi9LcFBoUlpkbVVH R1YzX3ladFNNMkstV3NEV3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBsrlV/oHJzvmOtAcIUsraVYDvUWmsOTKEQuenbHjlD33BmiKv4j1qy soFEfP2z6YoNP3iOU19xDnOWnzyYXr1yKWG/k34L8X5aqlrenk4loXn5tozonqX1 RO1b1XQjuedVLjy/XtjLozYh/BpyamVP0y8krcD+FmtaE1GdAbIAJpbhPNwMJrKI LxxbCBqreG7+ia6T2M5FLqMt9GK2WSxpMhqXh1VwwV9xAD2ELKAOvSUdPagoiq0P yJvJSyA3Joa5AvCJ4KbH0UrC0TQ+MEW8VP7KvN2L0LhDg1P339LBwZEClJUW9wz+ Alf7tqZfda3jE2iL8W4fC2cDRej8wgWy -----END CERTIFICATE-----Generated at Wed Nov 5 11:46:17 2025 by rpki-client