$ rpki-client -vvf rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft File: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft (raw, json) Hash identifier: 243jSQwn45SWNRrf7OT9C29OHorDFy4dVkoiJFGqoh0= Subject key identifier: 6D:8B:75:7D:AE:E0:4F:D9:5D:D1:FA:E6:77:BB:57:45:C2:89:AB:00 Authority key identifier: 28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 Certificate issuer: /CN=A91602ED/serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Certificate serial: 06C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft Manifest number: 06C1 Signing time: Tue 04 Nov 2025 22:11:41 +0000 Manifest this update: Tue 04 Nov 2025 22:11:41 +0000 Manifest next update: Tue 11 Nov 2025 22:11:41 +0000 Files and hashes: 1: KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl (hash: lOANNtQ6YPJ78st/IuBQmjv9vlfGvSXgUGLIYyVD87w=) 2: 7883418E943A11EBB6706530C4F9AE02.roa (hash: TnZM67noo4lbQHfXpAgCtw+JAFkneMpGmuhyQRw2ydg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:11:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1735 (0x6c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91602ED, serialNumber=287529DC20CA0ECE95A7A556E10BCDFD7237D8D8 Validity Not Before: Nov 4 22:11:41 2025 GMT Not After : Nov 11 22:11:41 2025 GMT Subject: CN=690a7a1d-23b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:33:f3:07:d2:7a:53:00:b9:3d:5c:4a:e8:5c: 8f:1c:81:5e:3e:dd:d2:37:8c:1b:f3:56:a6:e1:57: ae:9e:97:2e:ec:d3:33:62:07:b1:44:39:ef:fa:66: 6e:ba:00:2f:76:6c:5b:1b:34:c8:3d:5b:a8:ca:7d: 68:54:1f:77:fa:8d:6b:ba:33:df:4d:6a:88:55:fe: f1:78:a6:1f:30:61:44:8a:0c:56:46:90:1c:8e:2d: 78:da:13:ad:6b:1a:5c:38:e7:52:cf:5c:18:49:08: 85:d7:10:c1:e8:75:30:54:ba:53:9a:29:fd:2a:16: ef:50:b4:c8:a3:63:b5:22:6b:87:b8:4d:03:f7:b3: f9:a2:46:f2:b9:17:cd:ff:f8:db:2e:06:9f:3d:e5: 20:01:a7:6e:d3:67:00:74:0f:fa:c8:0a:7b:9f:53: 3f:a0:c7:70:0d:52:9c:9d:40:b7:67:47:c5:72:93: 22:e1:cd:09:cb:dd:95:0c:4b:29:80:76:f5:3f:e0: c1:70:0c:d2:88:bd:c9:dd:59:91:67:ad:8e:99:4a: 5a:f3:7c:48:b7:dd:73:65:6e:39:64:93:a9:54:1c: 9c:82:7d:4a:51:bb:dd:c1:f0:fe:54:6e:81:a1:99: bb:c3:d9:94:d0:d6:55:3d:8b:6a:9a:38:e6:42:b7: 6e:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:8B:75:7D:AE:E0:4F:D9:5D:D1:FA:E6:77:BB:57:45:C2:89:AB:00 X509v3 Authority Key Identifier: keyid:28:75:29:DC:20:CA:0E:CE:95:A7:A5:56:E1:0B:CD:FD:72:37:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91602ED/167BC63C7C1B11EB9F3F3C65C4F9AE02/KHUp3CDKDs6Vp6VW4QvN_XI32Ng.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:23:e1:0e:e8:ea:3c:da:d1:a9:86:55:2a:90:fd:0f:70:3d: ec:42:e6:b3:27:bc:b7:49:f3:44:90:d8:fd:b1:2d:aa:b6:b7: a0:8c:be:76:80:95:36:51:26:bb:ce:00:4a:ff:7c:cd:91:85: bf:be:cc:bd:58:de:03:b3:e0:0f:26:3e:a2:3c:1d:d2:18:3b: e0:71:2c:65:38:67:ea:50:2f:75:4b:eb:48:80:f5:ba:1a:2a: 07:05:2c:34:b7:56:6a:7e:91:36:c0:9f:9e:55:ec:b0:61:af: 09:1b:18:58:02:4e:c2:81:cd:8c:82:15:e2:25:6e:40:f3:5b: 6e:e7:d9:8c:03:df:dd:4b:79:0f:f9:ff:c8:d9:7c:3a:7d:90: 27:0e:81:52:57:6c:5b:a1:f7:5d:e5:43:fd:25:6d:be:59:23: 09:11:78:e3:61:cc:3d:09:f4:b5:65:55:2c:da:7d:5a:a4:1c: 23:43:23:3c:e1:3f:b1:ff:f7:ac:10:43:f9:f8:29:3c:a2:f2: 1b:33:21:49:17:76:d1:a1:0e:3e:cd:f1:fa:6d:e3:9c:e7:a8: a5:38:b6:ed:49:98:dc:7c:7f:81:3a:b9:a3:57:62:da:5d:c7: c0:62:a0:df:d4:36:a4:67:4a:b3:47:bc:c1:fa:59:cb:ff:2c: 64:d6:bd:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyRUQxMTAvBgNVBAUTKDI4NzUyOURDMjBDQTBFQ0U5NUE3QTU1NkUxMEJDREZE NzIzN0Q4RDgwHhcNMjUxMTA0MjIxMTQxWhcNMjUxMTExMjIxMTQxWjAYMRYwFAYD VQQDEw02OTBhN2ExZC0yM2IwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTPzB9J6UwC5PVxK6FyPHIFePt3SN4wb81am4Veunpcu7NMzYgexRDnv+mZu ugAvdmxbGzTIPVuoyn1oVB93+o1rujPfTWqIVf7xeKYfMGFEigxWRpAcji142hOt axpcOOdSz1wYSQiF1xDB6HUwVLpTmin9KhbvULTIo2O1ImuHuE0D97P5okbyuRfN //jbLgafPeUgAadu02cAdA/6yAp7n1M/oMdwDVKcnUC3Z0fFcpMi4c0Jy92VDEsp gHb1P+DBcAzSiL3J3VmRZ62OmUpa83xIt91zZW45ZJOpVBycgn1KUbvdwfD+VG6B oZm7w9mU0NZVPYtqmjjmQrduaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2LdX2u 4E/ZXdH65ne7V0XCiasAMB8GA1UdIwQYMBaAFCh1Kdwgyg7OlaelVuELzf1yN9jY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDJFRC8xNjdCQzYzQzdD MUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0RzNlZwNlZXNFF2Tl9YSTMy TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIVXAzQ0RLRHM2VnA2Vlc0UXZOX1hJMzJOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDJFRC8xNjdCQzYzQzdDMUIxMUVCOUYzRjNDNjVDNEY5QUUwMi9LSFVwM0NES0Rz NlZwNlZXNFF2Tl9YSTMyTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWI+EO6Oo82tGphlUqkP0PcD3sQuazJ7y3SfNEkNj9sS2qtregjL52 gJU2USa7zgBK/3zNkYW/vsy9WN4Ds+APJj6iPB3SGDvgcSxlOGfqUC91S+tIgPW6 GioHBSw0t1ZqfpE2wJ+eVeywYa8JGxhYAk7Cgc2MghXiJW5A81tu59mMA9/dS3kP +f/I2Xw6fZAnDoFSV2xbofdd5UP9JW2+WSMJEXjjYcw9CfS1ZVUs2n1apBwjQyM8 4T+x//esEEP5+Ck8ovIbMyFJF3bRoQ4+zfH6beOc56ilOLbtSZjcfH+BOrmjV2La XcfAYqDf1DakZ0qzR7zB+lnL/yxk1r0l -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:39 2025 by rpki-client