$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: LgcAcouL3rtiQ5i3ZRR4uCvYWQRM3tuRWqFSxvhq6jA= Subject key identifier: 24:BB:E8:B3:8F:A8:42:58:7F:3F:72:6C:D0:E0:E7:38:F4:C6:44:CF Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A61 Signing time: Tue 04 Nov 2025 19:44:19 +0000 Manifest this update: Tue 04 Nov 2025 19:44:19 +0000 Manifest next update: Tue 11 Nov 2025 19:44:19 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: VrLz65WOw6vTv49UOwpj9cmtHASvYT70BspBtHWoTsg=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: OgrtZob9BenmszWmMepyuR4+jTnWhH21Nc4ELG9DAkE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:44:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2665 (0xa69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Nov 4 19:44:19 2025 GMT Not After : Nov 11 19:44:19 2025 GMT Subject: CN=690a5793-1611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5c:fb:6e:e7:cd:42:6f:cf:e2:bd:89:3c:4d: 4f:e9:2b:29:89:17:f9:20:53:df:17:32:c0:13:ba: 2f:8b:b1:de:dc:84:e8:a5:e9:c3:53:4b:9c:7b:01: 62:9a:32:31:58:36:61:37:80:b0:63:dc:19:ef:63: d6:40:33:01:ec:6a:6a:3e:2d:6a:21:c6:2a:22:28: 7d:a3:f2:83:77:fa:a2:de:88:f2:07:3b:f8:54:67: 49:22:09:ee:60:b6:48:1b:26:21:ae:1d:2b:94:a1: 1c:a5:d8:6a:d1:0e:0a:14:e8:b1:d7:3f:82:78:bb: 08:07:72:03:5a:9c:7f:2f:0f:3b:27:ef:b7:ad:bb: c3:09:c9:25:25:8b:e5:26:ce:4b:95:df:1e:0f:9a: 29:25:96:2a:93:7f:67:12:c4:26:ce:34:2e:d5:8b: 6d:8d:72:71:68:15:02:05:4c:63:29:94:af:1c:be: 63:ef:2c:fd:5a:10:ff:34:93:96:99:a0:27:d4:59: c5:c0:28:b8:6a:88:65:4a:59:cd:72:4d:7c:c5:fc: f0:eb:a0:a1:73:25:cb:11:0f:17:78:95:d6:e0:47: 1c:ba:f5:6a:33:e4:9c:20:14:ba:eb:3b:75:3f:92: 7d:7d:14:78:fe:96:29:34:e6:13:7b:33:1b:6e:16: 9d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BB:E8:B3:8F:A8:42:58:7F:3F:72:6C:D0:E0:E7:38:F4:C6:44:CF X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:02:23:83:72:c9:10:f7:64:37:12:29:2e:0d:66:21:47:59: fd:c8:fd:18:23:a8:87:27:18:1f:6c:d7:0d:0b:02:2e:0b:4d: 5f:78:0b:09:8b:aa:eb:b6:96:d6:55:09:b9:df:11:6c:14:af: 83:8b:b3:66:0d:77:cf:a9:9a:b1:93:6b:d6:f0:b1:dd:3b:9e: b0:29:01:75:0e:1d:d0:63:ec:48:67:2a:40:07:30:93:f1:97: ae:5c:b4:91:9a:94:7f:15:77:80:2d:19:98:dc:c6:72:dc:97: 0c:bd:46:da:86:39:e6:c2:7a:e2:3e:d2:aa:67:0f:01:d9:9b: ac:69:93:64:5a:8f:0c:0e:4e:a3:83:26:c9:b5:2d:17:1a:34: a3:a3:0f:69:f6:f1:fa:f2:8c:bd:b4:0c:d1:a7:97:66:d2:70: 84:e6:91:bd:d2:f1:32:da:61:1d:70:de:87:bc:d1:ba:f7:55: b7:bc:07:05:67:37:1f:3e:43:f4:a9:7d:66:49:83:e7:30:fc: 7c:96:22:f0:c5:34:87:bd:12:b6:8f:e4:95:66:17:06:ee:3d: 8b:49:93:b1:25:62:43:17:45:1f:98:39:ca:5e:d7:b3:6b:90: 79:26:2d:2a:36:ce:0f:e5:68:3a:fc:39:22:7b:da:f6:e4:64: 54:29:54:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUxMTA0MTk0NDE5WhcNMjUxMTExMTk0NDE5WjAYMRYwFAYD VQQDEw02OTBhNTc5My0xNjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoVz7bufNQm/P4r2JPE1P6SspiRf5IFPfFzLAE7ovi7He3ITopenDU0ucewFi mjIxWDZhN4CwY9wZ72PWQDMB7GpqPi1qIcYqIih9o/KDd/qi3ojyBzv4VGdJIgnu YLZIGyYhrh0rlKEcpdhq0Q4KFOix1z+CeLsIB3IDWpx/Lw87J++3rbvDCcklJYvl Js5Lld8eD5opJZYqk39nEsQmzjQu1YttjXJxaBUCBUxjKZSvHL5j7yz9WhD/NJOW maAn1FnFwCi4aohlSlnNck18xfzw66ChcyXLEQ8XeJXW4EccuvVqM+ScIBS66zt1 P5J9fRR4/pYpNOYTezMbbhadDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCS76LOP qEJYfz9ybNDg5zj0xkTPMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9AiODcskQ92Q3EikuDWYhR1n9yP0YI6iHJxgfbNcNCwIuC01feAsJ i6rrtpbWVQm53xFsFK+Di7NmDXfPqZqxk2vW8LHdO56wKQF1Dh3QY+xIZypABzCT 8ZeuXLSRmpR/FXeALRmY3MZy3JcMvUbahjnmwnriPtKqZw8B2ZusaZNkWo8MDk6j gybJtS0XGjSjow9p9vH68oy9tAzRp5dm0nCE5pG90vEy2mEdcN6HvNG691W3vAcF ZzcfPkP0qX1mSYPnMPx8liLwxTSHvRK2j+SVZhcG7j2LSZOxJWJDF0UfmDnKXtez a5B5Ji0qNs4P5Wg6/Dkie9r25GRUKVQz -----END CERTIFICATE-----Generated at Wed Nov 5 11:56:21 2025 by rpki-client