$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: 98Ylca+uqN3YStpZXXHpGXdb+YDbZfJXooOIQ//8Sfg= Subject key identifier: 91:29:FB:CB:4B:83:15:62:17:F7:A2:40:18:53:30:7F:3A:80:6A:6F Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1379 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1370 Signing time: Tue 04 Nov 2025 17:05:02 +0000 Manifest this update: Tue 04 Nov 2025 17:05:01 +0000 Manifest next update: Tue 11 Nov 2025 17:05:01 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: CxB+JVVzAq567a+vBV+3jJjFP8hWnd0ASpZmaYOFxbs=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: 7JGYiU3kiC6kUGQIsQnoyjTh5wnU3N3mh36JHRhfnlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:05:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4985 (0x1379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Nov 4 17:05:01 2025 GMT Not After : Nov 11 17:05:01 2025 GMT Subject: CN=690a323d-4327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e2:76:66:53:7b:86:2a:f4:d6:42:de:20:ba: 0a:81:f0:38:21:33:e3:5d:1e:6f:2f:14:3b:f9:39: 49:f7:9b:11:5b:37:74:81:b7:7c:53:cb:60:78:d8: cd:6d:d8:aa:4f:ac:35:a7:0a:73:37:74:1a:b2:1d: 4b:48:18:55:5b:a9:e3:ca:99:07:f4:a0:a1:ba:bb: 59:e7:eb:39:87:b5:90:b7:2c:a7:1f:67:e1:7c:ae: 84:c2:eb:18:54:bb:b0:68:43:84:64:19:69:ef:cf: 3b:54:99:b4:8e:de:65:2b:53:0b:4a:a4:b7:f5:37: 1f:8e:a0:c8:ce:bc:5e:bd:2a:a4:60:3f:84:f3:cd: f1:3e:87:cb:01:ca:b2:0b:8d:65:94:9e:d8:24:86: ee:90:d9:f6:d4:68:f2:8f:f9:84:ea:14:cc:8d:37: 24:52:93:7e:5c:f0:66:fc:2e:1c:a1:41:f7:90:c4: 8a:40:d1:83:7f:02:da:39:21:ca:c0:68:45:dd:c0: eb:50:51:a4:52:81:ad:04:78:f3:26:40:8d:d0:76: 7a:3f:6e:ea:3b:94:2a:c7:6b:cf:be:30:38:fe:40: c7:aa:e9:ad:5e:6b:13:27:3d:a6:19:f2:7d:13:9e: 78:28:0a:5a:7a:01:59:00:eb:d7:23:39:76:08:ff: ba:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:29:FB:CB:4B:83:15:62:17:F7:A2:40:18:53:30:7F:3A:80:6A:6F X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:31:c3:77:b1:d5:17:fa:cb:57:cd:e8:7a:8b:70:0b:37:d3: 95:07:63:6b:92:34:c1:0c:01:09:dd:13:bd:b4:8a:6b:16:76: 7e:db:54:e0:46:da:9e:b2:95:28:87:16:77:22:ee:25:12:c0: 8b:29:88:77:37:69:a3:4c:ec:aa:3d:84:30:88:ea:dd:2c:70: 56:e9:06:a9:c2:e4:65:ea:ed:b8:25:b3:62:96:28:c4:58:31: 6f:ca:e0:ab:08:82:9d:aa:49:c1:15:1c:16:0d:0b:1c:5a:5b: aa:1e:c3:fd:a0:71:c7:a2:02:0b:83:44:83:c6:09:8b:a6:95: c7:1d:e3:9b:ba:ef:cd:0f:30:6e:19:5d:6c:1a:14:d1:e2:83: df:2d:64:0f:ae:e8:a6:d1:c1:27:db:ae:35:7c:1f:2e:0c:be: 91:51:c4:7e:f1:90:cb:5c:27:e5:7f:26:3a:ce:e1:fc:9e:17: 3a:00:f3:49:48:5c:06:d4:05:d9:ab:db:ce:51:76:86:28:11: 59:3e:fd:bd:f6:cb:50:ba:07:80:6f:94:46:aa:67:e2:7d:35: 4a:94:45:3d:d3:23:0c:e6:43:a5:d3:d6:58:c9:5e:2d:7c:f7: 2b:9c:74:7e:73:45:1e:30:06:ab:11:e2:8a:14:2d:f6:a3:e8: b2:b0:ef:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUxMTA0MTcwNTAxWhcNMjUxMTExMTcwNTAxWjAYMRYwFAYD VQQDEw02OTBhMzIzZC00MzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOJ2ZlN7hir01kLeILoKgfA4ITPjXR5vLxQ7+TlJ95sRWzd0gbd8U8tgeNjN bdiqT6w1pwpzN3Qash1LSBhVW6njypkH9KChurtZ5+s5h7WQtyynH2fhfK6EwusY VLuwaEOEZBlp7887VJm0jt5lK1MLSqS39TcfjqDIzrxevSqkYD+E883xPofLAcqy C41llJ7YJIbukNn21Gjyj/mE6hTMjTckUpN+XPBm/C4coUH3kMSKQNGDfwLaOSHK wGhF3cDrUFGkUoGtBHjzJkCN0HZ6P27qO5Qqx2vPvjA4/kDHqumtXmsTJz2mGfJ9 E554KApaegFZAOvXIzl2CP+68QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJEp+8tL gxViF/eiQBhTMH86gGpvMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB9McN3sdUX+stXzeh6i3ALN9OVB2NrkjTBDAEJ3RO9tIprFnZ+21Tg RtqespUohxZ3Iu4lEsCLKYh3N2mjTOyqPYQwiOrdLHBW6QapwuRl6u24JbNilijE WDFvyuCrCIKdqknBFRwWDQscWluqHsP9oHHHogILg0SDxgmLppXHHeObuu/NDzBu GV1sGhTR4oPfLWQPruim0cEn2641fB8uDL6RUcR+8ZDLXCflfyY6zuH8nhc6APNJ SFwG1AXZq9vOUXaGKBFZPv299stQugeAb5RGqmfifTVKlEU90yMM5kOl09ZYyV4t fPcrnHR+c0UeMAarEeKKFC32o+iysO/R -----END CERTIFICATE-----Generated at Wed Nov 5 15:50:35 2025 by rpki-client