$ rpki-client -vvf rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft File: KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft (raw, json) Hash identifier: +bmYUrfEE9OBxl073yBqMRswBrX51lkoZjlzbqU7E4k= Subject key identifier: 86:E2:35:00:AF:E9:BE:34:3D:0F:7A:E3:A3:36:C6:A1:38:FA:7C:0A Authority key identifier: 28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 Certificate issuer: /CN=A915FE9F/serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft Manifest number: 47 Signing time: Mon 03 Nov 2025 07:23:00 +0000 Manifest this update: Mon 03 Nov 2025 07:23:00 +0000 Manifest next update: Mon 10 Nov 2025 07:23:00 +0000 Files and hashes: 1: KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl (hash: nKPCV4oiLTcmJvPWu8VrlxzXRIcSczPeTjWjxHozxk8=) 2: EAAC1A669E5C11F0B2B86856C4F9AE02.roa (hash: 3ivuXSavI1grPWsZeIczoxpu8ztBxvr+RSbjIfz05CY=) 3: E9ACBC4C9E5C11F0B2B86856C4F9AE02.roa (hash: 9HHR5FNxgt2P/Pdw8ubx9aLKafeL5xLqLydwvJefiRE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:22:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915FE9F, serialNumber=28DAD8D4CC6F740FA000D436869AE0F176EAE933 Validity Not Before: Nov 3 07:23:00 2025 GMT Not After : Nov 10 07:23:00 2025 GMT Subject: CN=69085854-e823 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0d:c0:d8:58:9f:2d:76:88:66:36:7e:32:45: d1:6d:18:fc:0c:4f:68:fe:eb:6a:38:66:02:49:c0: a5:9c:71:17:02:3c:a0:d9:40:af:6f:27:fc:f4:ea: 4d:d5:1e:94:43:04:f6:c3:fb:62:20:3d:80:33:d0: bf:79:e3:00:14:6e:74:ff:97:0a:78:4f:6c:da:53: 05:ff:b3:ca:b1:e2:98:ab:df:84:d3:06:5f:4d:00: 66:7d:19:a4:7b:81:b8:c7:95:b7:a4:f0:22:a2:2d: 2e:c5:b0:26:31:fb:48:60:85:cf:ad:8c:1c:87:1d: 54:42:86:62:c0:91:66:1c:01:80:ac:1b:83:fc:8b: 21:33:62:44:61:5b:d5:44:0b:90:8b:90:5f:ec:b2: ea:ee:de:a8:bd:c5:10:cd:9e:27:2a:c8:04:21:6a: 66:c0:45:0c:68:43:0e:11:4e:89:c1:f7:63:90:e3: f1:1f:2e:df:5f:d7:ff:5a:3f:13:fb:b1:14:32:1f: ea:94:fb:fd:9a:fe:9d:8c:d9:f6:63:43:f7:e7:05: f5:35:73:67:5e:58:c6:1f:67:5c:89:03:08:a0:ec: be:0c:7d:d1:ea:52:1f:21:d4:52:2e:ee:3f:a5:6b: 14:1b:62:c1:16:34:80:50:ee:2e:40:a4:25:ae:20: 71:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:E2:35:00:AF:E9:BE:34:3D:0F:7A:E3:A3:36:C6:A1:38:FA:7C:0A X509v3 Authority Key Identifier: keyid:28:DA:D8:D4:CC:6F:74:0F:A0:00:D4:36:86:9A:E0:F1:76:EA:E9:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KNrY1MxvdA-gANQ2hprg8Xbq6TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915FE9F/23027124517011F0B9DBCB87C4F9AE02/KNrY1MxvdA-gANQ2hprg8Xbq6TM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:3a:24:aa:91:32:c2:36:87:1a:cf:38:96:97:02:2d:63:d3: 3f:db:de:af:74:b8:91:b1:da:51:0c:bb:b0:3c:e8:08:c0:1b: a4:ce:84:b4:0d:5e:c4:b6:a9:cd:c3:9c:e1:59:61:26:72:26: 44:d0:a8:39:ce:88:44:f8:80:a8:51:80:a6:6e:c0:27:17:7d: 1c:e6:6f:84:45:dc:c2:58:b4:81:aa:31:b6:45:c7:69:ee:98: f3:1f:98:65:2d:ee:68:d1:ae:0a:0c:f2:cc:39:12:5c:11:43: 4d:1d:ee:2e:cc:f1:fd:a3:36:f9:67:2c:bd:83:7f:d3:3b:27: 2e:5d:33:6f:df:10:b3:52:4f:98:38:23:9d:cb:d8:17:01:64: 27:2a:ef:7c:2c:62:09:a1:b6:97:b2:d9:50:be:63:b3:36:b6: 00:40:76:cc:ca:bd:9f:0f:f9:e6:7d:13:2e:49:e3:6d:6d:0d: 7f:fe:cd:93:0c:87:3a:7c:b9:9e:68:75:7e:32:97:1a:16:b8: 01:6c:c8:e7:3c:ef:d9:41:80:03:72:35:7c:67:52:a3:cb:c8: 80:23:10:5f:69:2a:c3:a9:7b:10:06:df:55:b0:19:8d:78:b7: f3:2a:d7:28:d9:0e:c0:fa:e7:d2:13:33:d9:4c:1b:b2:ba:ac: 24:f1:3f:ba -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 RkU5RjExMC8GA1UEBRMoMjhEQUQ4RDRDQzZGNzQwRkEwMDBENDM2ODY5QUUwRjE3 NkVBRTkzMzAeFw0yNTExMDMwNzIzMDBaFw0yNTExMTAwNzIzMDBaMBgxFjAUBgNV BAMTDTY5MDg1ODU0LWU4MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzDcDYWJ8tdohmNn4yRdFtGPwMT2j+62o4ZgJJwKWccRcCPKDZQK9vJ/z06k3V HpRDBPbD+2IgPYAz0L954wAUbnT/lwp4T2zaUwX/s8qx4pir34TTBl9NAGZ9GaR7 gbjHlbek8CKiLS7FsCYx+0hghc+tjByHHVRChmLAkWYcAYCsG4P8iyEzYkRhW9VE C5CLkF/ssuru3qi9xRDNnicqyAQhambARQxoQw4RTonB92OQ4/EfLt9f1/9aPxP7 sRQyH+qU+/2a/p2M2fZjQ/fnBfU1c2deWMYfZ1yJAwig7L4MfdHqUh8h1FIu7j+l axQbYsEWNIBQ7i5ApCWuIHHlAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUhuI1AK/p vjQ9D3rjozbGoTj6fAowHwYDVR0jBBgwFoAUKNrY1MxvdA+gANQ2hprg8Xbq6TMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVGRTlGLzIzMDI3MTI0NTE3 MDExRjBCOURCQ0I4N0M0RjlBRTAyL0tOclkxTXh2ZEEtZ0FOUTJocHJnOFhicTZU TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS05yWTFNeHZkQS1nQU5RMmhwcmc4WGJxNlRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTVG RTlGLzIzMDI3MTI0NTE3MDExRjBCOURCQ0I4N0M0RjlBRTAyL0tOclkxTXh2ZEEt Z0FOUTJocHJnOFhicTZUTS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGM6JKqRMsI2hxrPOJaXAi1j0z/b3q90uJGx2lEMu7A86AjAG6TOhLQN XsS2qc3DnOFZYSZyJkTQqDnOiET4gKhRgKZuwCcXfRzmb4RF3MJYtIGqMbZFx2nu mPMfmGUt7mjRrgoM8sw5ElwRQ00d7i7M8f2jNvlnLL2Df9M7Jy5dM2/fELNST5g4 I53L2BcBZCcq73wsYgmhtpey2VC+Y7M2tgBAdszKvZ8P+eZ9Ey5J421tDX/+zZMM hzp8uZ5odX4ylxoWuAFsyOc879lBgANyNXxnUqPLyIAjEF9pKsOpexAG31WwGY14 t/Mq1yjZDsD659ITM9lMG7K6rCTxP7o= -----END CERTIFICATE-----Generated at Wed Nov 5 04:46:30 2025 by rpki-client