$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: mkwAcdN0gcBo3/ksNSTyna4un6LzoA1EkXl7CnmW36U= Subject key identifier: 81:FC:9D:49:1A:E8:88:17:18:E5:74:81:A0:3B:BA:73:67:F4:A4:0E Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0739 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0730 Signing time: Tue 04 Nov 2025 21:51:09 +0000 Manifest this update: Tue 04 Nov 2025 21:51:09 +0000 Manifest next update: Tue 11 Nov 2025 21:51:09 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: 3JZ1UsDxZrLU0UTfqb3wrVNlUZFrXymwf7+QJZryxjk=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1849 (0x739) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Nov 4 21:51:09 2025 GMT Not After : Nov 11 21:51:09 2025 GMT Subject: CN=690a754d-5ccc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:48:48:ff:c5:71:38:03:96:89:60:36:92: 86:e8:8a:03:e6:c7:33:9b:b5:2e:61:b2:97:d8:f6: 83:07:b0:f2:c3:06:16:a1:bc:3e:78:7a:98:4c:55: 3d:f5:70:db:b1:44:55:00:0a:05:cb:bb:c2:b7:ec: 91:87:88:2f:8b:db:72:de:3f:d0:77:6b:ca:9c:59: d1:c5:ef:fb:56:90:f8:e6:54:f2:58:b3:ed:86:2b: f9:5e:51:4c:ce:34:54:c6:a0:0f:0d:cf:96:0f:0d: 11:10:ea:79:eb:2f:dc:d0:c9:65:03:25:90:5f:b6: 0d:80:81:df:11:89:f0:ab:72:59:7d:c7:48:e6:ec: 17:cf:49:d3:68:e3:aa:8b:45:22:fb:18:ce:4b:a1: 99:36:21:39:43:f0:cf:d9:2b:26:a1:0c:40:88:19: 8b:9b:d4:b9:21:d7:ee:98:96:f5:e5:a4:c1:5e:f1: ac:1f:a2:a1:45:8f:7c:4b:58:ad:03:3c:ed:22:5c: a5:eb:01:97:09:11:8a:c1:72:48:48:54:c1:ef:37: 4d:76:75:55:db:b9:5c:87:22:3b:d5:d5:ba:01:71: ab:71:68:4b:c3:87:e8:3a:6e:06:d3:98:69:01:08: 37:3d:f6:93:69:37:e9:01:d6:79:65:48:ed:f1:58: 4a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:FC:9D:49:1A:E8:88:17:18:E5:74:81:A0:3B:BA:73:67:F4:A4:0E X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:f4:fa:ed:f2:67:92:eb:18:9d:d8:ef:86:3b:aa:95:ea:18: 6e:4b:b9:55:bb:1e:17:bb:27:35:08:bf:31:52:21:1c:32:1c: 55:46:b2:3a:2e:d5:f8:70:1f:b4:a4:ae:63:97:4e:7c:d4:75: b8:da:7c:66:21:20:ed:36:f8:34:f6:b8:be:70:84:6b:e6:bc: 6d:2c:b3:7b:45:4a:44:a0:fd:33:60:68:c2:a5:0b:b3:19:5c: ee:da:8c:4a:ca:2a:e9:5e:0a:b9:17:06:b2:57:be:2b:77:ea: 38:5c:12:7a:c0:54:a6:a9:61:45:71:ae:08:b7:f8:0a:2d:7d: c2:fb:3e:84:06:e9:54:54:32:e9:b4:63:7c:e8:23:be:a8:e3: b2:66:30:2a:ed:e1:67:00:5c:07:ab:49:7b:9b:dc:e9:49:bb: cd:a7:62:8b:75:5d:6a:71:d7:f8:fa:70:29:91:20:26:ad:8f: 24:d1:f1:36:61:9f:a4:23:5c:55:9e:e3:ff:68:24:66:1a:8b: 1c:5c:92:84:38:39:ed:5a:e3:4b:c3:8d:01:43:dd:a3:03:a7: 7a:ea:0c:da:e0:a3:53:e4:75:c6:2f:a9:21:bb:89:52:b3:28: 9a:c5:06:22:2a:f6:1a:ff:f4:d0:33:48:43:4c:0f:b9:ad:e6: 41:ed:07:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUxMTA0MjE1MTA5WhcNMjUxMTExMjE1MTA5WjAYMRYwFAYD VQQDEw02OTBhNzU0ZC01Y2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzY1ISP/FcTgDlolgNpKG6IoD5sczm7UuYbKX2PaDB7DywwYWobw+eHqYTFU9 9XDbsURVAAoFy7vCt+yRh4gvi9ty3j/Qd2vKnFnRxe/7VpD45lTyWLPthiv5XlFM zjRUxqAPDc+WDw0REOp56y/c0MllAyWQX7YNgIHfEYnwq3JZfcdI5uwXz0nTaOOq i0Ui+xjOS6GZNiE5Q/DP2SsmoQxAiBmLm9S5IdfumJb15aTBXvGsH6KhRY98S1it AzztIlyl6wGXCRGKwXJISFTB7zdNdnVV27lchyI71dW6AXGrcWhLw4foOm4G05hp AQg3PfaTaTfpAdZ5ZUjt8VhKRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIH8nUka 6IgXGOV0gaA7unNn9KQOMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCc9Prt8meS6xid2O+GO6qV6hhuS7lVux4Xuyc1CL8xUiEcMhxVRrI6 LtX4cB+0pK5jl0581HW42nxmISDtNvg09ri+cIRr5rxtLLN7RUpEoP0zYGjCpQuz GVzu2oxKyirpXgq5FwayV74rd+o4XBJ6wFSmqWFFca4It/gKLX3C+z6EBulUVDLp tGN86CO+qOOyZjAq7eFnAFwHq0l7m9zpSbvNp2KLdV1qcdf4+nApkSAmrY8k0fE2 YZ+kI1xVnuP/aCRmGoscXJKEODntWuNLw40BQ92jA6d66gza4KNT5HXGL6khu4lS syiaxQYiKvYa//TQM0hDTA+5reZB7Qf5 -----END CERTIFICATE-----Generated at Wed Nov 5 15:32:49 2025 by rpki-client