$ rpki-client -vvf rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft File: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft (raw, json) Hash identifier: JISyxDWLtH1ia2BzBk+Am1f4muqUV4v3ZM4E920FRLo= Subject key identifier: F8:CF:FD:E4:EC:76:D4:5C:B9:49:23:BD:04:39:74:58:6B:C5:D0:C9 Authority key identifier: 29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC Certificate issuer: /CN=A9152329/serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Certificate serial: B8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft Manifest number: B7 Signing time: Wed 05 Nov 2025 06:14:29 +0000 Manifest this update: Wed 05 Nov 2025 06:14:29 +0000 Manifest next update: Wed 12 Nov 2025 06:14:29 +0000 Files and hashes: 1: KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl (hash: IEGTfa5AmwTFeG55W3ZMHXfGN5IT0rQPO2lFSscXJPk=) 2: 38161248A26911EFBF6D0319C4F9AE02.roa (hash: ask+BZFU8F8z7xA+3YaObHPYrB9zSG3srAnnNSVnzDc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:14:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 184 (0xb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152329, serialNumber=293AC6405309DE94951687FE17296ADDCD9572FC Validity Not Before: Nov 5 06:14:29 2025 GMT Not After : Nov 12 06:14:29 2025 GMT Subject: CN=690aeb45-a82e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:04:51:96:10:5d:8c:34:c5:a3:5b:32:11:6a: 7e:46:59:2d:ef:3b:f9:a2:d1:77:e9:10:cc:aa:ac: e9:4d:88:2d:d6:db:b3:1a:d2:be:37:94:64:80:88: ff:b8:a9:0a:4c:b6:13:10:ad:7f:0f:ba:ac:b9:86: 16:6f:76:69:39:50:b9:21:a8:4d:b6:ee:1b:af:d0: 59:63:01:79:87:cf:38:70:4e:41:6a:16:68:17:2d: 33:71:d1:15:32:1c:52:b1:35:ce:c3:ea:75:ac:f1: 52:0b:76:7b:8c:c4:27:68:a4:1e:2c:6a:ae:bf:1f: 96:95:17:9a:12:02:09:8b:b3:c3:56:9b:90:67:9c: ca:96:7c:87:12:23:6e:62:c8:6b:ee:28:e9:ba:8b: e1:6c:10:23:52:57:e2:67:e8:6d:67:e1:e4:4f:d7: bb:3c:f3:b8:4b:25:07:35:13:43:0e:72:51:dd:77: 5e:54:c5:38:80:aa:dc:c4:7f:bb:85:82:e9:59:30: 11:0c:9e:28:7a:a0:14:7d:cd:df:e9:f6:3b:ef:90: f2:7e:da:73:cc:93:f6:69:ef:05:44:f5:99:c4:d3: 8b:6b:61:75:7a:6a:85:a6:51:72:48:5d:4f:0e:00: 6d:51:2c:8e:3b:92:d1:0f:a6:53:cb:0b:14:dd:8f: b1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CF:FD:E4:EC:76:D4:5C:B9:49:23:BD:04:39:74:58:6B:C5:D0:C9 X509v3 Authority Key Identifier: keyid:29:3A:C6:40:53:09:DE:94:95:16:87:FE:17:29:6A:DD:CD:95:72:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152329/C7FAD368A26811EF9D914118C4F9AE02/KTrGQFMJ3pSVFof-Fylq3c2Vcvw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:8f:61:2d:86:c2:04:cf:5c:5a:64:da:e2:00:36:a2:b5:b9: 5f:d9:58:1c:9c:1b:50:cf:66:88:9f:51:92:8a:15:76:6c:78: 57:3d:cd:3d:b5:a3:33:ce:a5:b5:7e:dc:07:de:56:cf:e1:d4: ca:cc:29:58:a1:4f:e4:86:5f:b7:af:66:59:dd:62:f7:6a:a2: cb:78:df:d3:b2:a8:3d:32:0c:19:c8:5d:0a:30:78:f2:0e:09: f4:d3:4b:b0:40:ed:58:c1:6c:a6:89:d4:44:68:04:e6:4d:51: da:e2:50:0e:2e:eb:7d:84:44:0c:ed:fc:49:a7:91:07:04:4a: cb:a9:bf:b5:57:3d:f3:18:12:b9:e6:09:bd:fc:42:d2:8f:be: 16:d8:4d:39:6d:00:e8:88:f7:f0:9f:c7:4d:26:74:da:5e:f6: 88:91:e7:4f:b1:43:bf:68:ed:34:87:49:eb:54:46:41:79:a2: 6b:ec:6b:57:7e:af:3d:c4:dd:ee:da:c4:a9:4d:a0:d5:b9:f3: 19:62:48:e7:48:bc:56:72:07:ec:76:92:b8:d5:6a:bb:a0:8c: 37:fb:f2:5d:fe:30:04:ab:e0:16:c6:c1:ff:42:6a:35:6f:d5: 20:34:87:14:b3:21:8f:ef:95:b4:a9:cf:58:b1:98:c5:32:76: 48:55:64:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTIzMjkxMTAvBgNVBAUTKDI5M0FDNjQwNTMwOURFOTQ5NTE2ODdGRTE3Mjk2QURE Q0Q5NTcyRkMwHhcNMjUxMTA1MDYxNDI5WhcNMjUxMTEyMDYxNDI5WjAYMRYwFAYD VQQDEw02OTBhZWI0NS1hODJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzgRRlhBdjDTFo1syEWp+Rlkt7zv5otF36RDMqqzpTYgt1tuzGtK+N5RkgIj/ uKkKTLYTEK1/D7qsuYYWb3ZpOVC5IahNtu4br9BZYwF5h884cE5BahZoFy0zcdEV MhxSsTXOw+p1rPFSC3Z7jMQnaKQeLGquvx+WlReaEgIJi7PDVpuQZ5zKlnyHEiNu Yshr7ijpuovhbBAjUlfiZ+htZ+HkT9e7PPO4SyUHNRNDDnJR3XdeVMU4gKrcxH+7 hYLpWTARDJ4oeqAUfc3f6fY775DyftpzzJP2ae8FRPWZxNOLa2F1emqFplFySF1P DgBtUSyOO5LRD6ZTywsU3Y+xRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPjP/eTs dtRcuUkjvQQ5dFhrxdDJMB8GA1UdIwQYMBaAFCk6xkBTCd6UlRaH/hcpat3NlXL8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjMyOS9DN0ZBRDM2OEEy NjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNwU1ZGb2YtRnlscTNjMlZj dncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tUckdRRk1KM3BTVkZvZi1GeWxxM2MyVmN2dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MjMyOS9DN0ZBRDM2OEEyNjgxMUVGOUQ5MTQxMThDNEY5QUUwMi9LVHJHUUZNSjNw U1ZGb2YtRnlscTNjMlZjdncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATj2EthsIEz1xaZNriADaitblf2VgcnBtQz2aIn1GSihV2bHhXPc09 taMzzqW1ftwH3lbP4dTKzClYoU/khl+3r2ZZ3WL3aqLLeN/Tsqg9MgwZyF0KMHjy Dgn000uwQO1YwWymidREaATmTVHa4lAOLut9hEQM7fxJp5EHBErLqb+1Vz3zGBK5 5gm9/ELSj74W2E05bQDoiPfwn8dNJnTaXvaIkedPsUO/aO00h0nrVEZBeaJr7GtX fq89xN3u2sSpTaDVufMZYkjnSLxWcgfsdpK41Wq7oIw3+/Jd/jAEq+AWxsH/Qmo1 b9UgNIcUsyGP75W0qc9YsZjFMnZIVWTN -----END CERTIFICATE-----Generated at Wed Nov 5 17:56:08 2025 by rpki-client