$ rpki-client -vvf rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft File: k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft (raw, json) Hash identifier: B4ZiysTJPUsuhxaSzXIAW0guqWP4M+f/j1QT2PBTcSA= Subject key identifier: 03:5F:DD:ED:1B:AA:9F:0D:38:A0:AA:40:E8:D6:F0:E0:B4:E4:9C:60 Authority key identifier: 93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 Certificate issuer: /CN=A917584F/serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Certificate serial: 0586 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft Manifest number: 0582 Signing time: Tue 04 Nov 2025 23:19:38 +0000 Manifest this update: Tue 04 Nov 2025 23:19:38 +0000 Manifest next update: Tue 11 Nov 2025 23:19:38 +0000 Files and hashes: 1: k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl (hash: 6lcjeWKR1fCuPoWBFOKtA2MZOCBRQXE/kF8+T2YZgp8=) 2: CE00DA34FF4411EBAD3A632AC4F9AE02.roa (hash: gsNxtD+HCrA+T6b9YqONqQ4jv3lalAETh9MJihh24Cg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:19:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1414 (0x586) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917584F, serialNumber=934ADFB94A39A0C37B77F97903706B61F0BEFEE7 Validity Not Before: Nov 4 23:19:38 2025 GMT Not After : Nov 11 23:19:38 2025 GMT Subject: CN=690a8a0a-8583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ef:c6:97:4b:bd:7a:3e:9a:30:98:d6:3f:96: 06:9f:77:ae:2d:b0:67:c8:96:72:4f:28:36:1f:a6: c1:aa:d2:7d:a7:b4:7b:1f:92:47:30:f1:61:43:79: ee:be:eb:d9:ee:50:80:9d:b0:33:f9:96:3d:85:a1: 1c:8e:37:2e:9d:1e:d6:a4:5a:69:2b:d5:ab:8a:65: 01:98:98:d9:fa:77:b8:ec:fa:5c:44:71:5f:16:e3: 84:ab:8b:fd:ca:17:0d:93:b5:d9:66:12:80:ce:e2: 38:af:78:e6:6b:10:22:bd:72:43:3c:59:7c:21:c2: a5:e8:7e:02:1c:f2:fb:5f:14:4b:71:af:e3:85:51: 54:74:4c:10:27:db:b4:36:c3:68:ac:c5:73:ed:51: 96:81:c1:50:bb:b4:7c:c1:68:5d:80:bd:74:ac:7f: e4:df:31:0c:79:96:66:c6:19:6c:45:c3:7b:ae:6b: 38:b8:38:b4:00:d2:c0:fd:1f:c1:49:19:c6:66:15: 97:01:45:5c:8b:22:ca:12:52:e3:3a:36:a0:df:95: 04:58:0d:3a:03:10:44:c3:35:d0:f5:1b:bd:07:f6: 89:be:ab:43:98:c2:05:e7:b3:e8:b6:48:21:67:be: b4:c5:7e:ee:ca:75:d5:2f:ea:90:9a:97:46:98:c9: ca:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:5F:DD:ED:1B:AA:9F:0D:38:A0:AA:40:E8:D6:F0:E0:B4:E4:9C:60 X509v3 Authority Key Identifier: keyid:93:4A:DF:B9:4A:39:A0:C3:7B:77:F9:79:03:70:6B:61:F0:BE:FE:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k0rfuUo5oMN7d_l5A3BrYfC-_uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917584F/DD72CE58F9C911EB9555B36AC4F9AE02/k0rfuUo5oMN7d_l5A3BrYfC-_uc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c4:a4:3d:e4:40:c4:e2:bc:ef:e5:7b:e8:f9:67:3f:be:65:5f: ef:1f:7f:cb:06:b0:97:75:8a:ff:dd:9b:3a:5a:c1:0c:f5:47: 2a:6c:90:10:f0:4b:bf:7f:b0:f3:fb:b5:5d:30:29:3e:eb:f2: 95:06:9a:72:df:ca:4b:c9:48:40:c5:cb:ac:8e:ce:38:dd:eb: b0:69:41:2d:c8:2c:3a:12:3e:03:23:dd:75:4f:65:7e:45:13: d1:1a:08:f3:a6:1a:2f:ae:74:34:08:d0:b0:74:31:fc:0d:ee: 58:e4:07:52:63:8c:1a:97:0c:18:03:08:7e:49:ae:5a:96:ca: ba:31:f6:1c:4c:ed:0e:eb:be:b8:32:73:e0:de:1f:93:ef:5b: 08:3f:f8:71:8b:5e:0a:57:f2:f2:93:93:95:43:8a:2a:77:f1: ab:69:e7:ed:0f:d2:df:80:55:84:38:9b:fc:10:cd:15:eb:fe: 8b:18:2f:df:99:9f:0e:a6:02:4f:d5:46:a4:39:f1:d4:e1:6f: 67:00:17:11:3c:93:9d:2e:43:b2:69:6d:38:82:56:b7:88:d9: 85:03:b3:cb:ff:52:6b:7c:85:0a:86:68:60:82:d9:f6:01:f0: b3:8d:6a:bc:3c:4b:ed:6c:c4:9e:88:40:7b:a9:48:ab:18:66: dd:2b:76:3f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBYYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4NEYxMTAvBgNVBAUTKDkzNEFERkI5NEEzOUEwQzM3Qjc3Rjk3OTAzNzA2QjYx RjBCRUZFRTcwHhcNMjUxMTA0MjMxOTM4WhcNMjUxMTExMjMxOTM4WjAYMRYwFAYD VQQDEw02OTBhOGEwYS04NTgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1O/Gl0u9ej6aMJjWP5YGn3euLbBnyJZyTyg2H6bBqtJ9p7R7H5JHMPFhQ3nu vuvZ7lCAnbAz+ZY9haEcjjcunR7WpFppK9WrimUBmJjZ+ne47PpcRHFfFuOEq4v9 yhcNk7XZZhKAzuI4r3jmaxAivXJDPFl8IcKl6H4CHPL7XxRLca/jhVFUdEwQJ9u0 NsNorMVz7VGWgcFQu7R8wWhdgL10rH/k3zEMeZZmxhlsRcN7rms4uDi0ANLA/R/B SRnGZhWXAUVciyLKElLjOjag35UEWA06AxBEwzXQ9Ru9B/aJvqtDmMIF57Potkgh Z760xX7uynXVL+qQmpdGmMnKSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFANf3e0b qp8NOKCqQOjW8OC05JxgMB8GA1UdIwQYMBaAFJNK37lKOaDDe3f5eQNwa2Hwvv7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTg0Ri9ERDcyQ0U1OEY5 QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9NTjdkX2w1QTNCcllmQy1f dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2swcmZ1VW81b01ON2RfbDVBM0JyWWZDLV91Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTg0Ri9ERDcyQ0U1OEY5QzkxMUVCOTU1NUIzNkFDNEY5QUUwMi9rMHJmdVVvNW9N TjdkX2w1QTNCcllmQy1fdWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDEpD3kQMTivO/le+j5Zz++ZV/vH3/LBrCXdYr/3Zs6WsEM9UcqbJAQ 8Eu/f7Dz+7VdMCk+6/KVBppy38pLyUhAxcusjs443euwaUEtyCw6Ej4DI911T2V+ RRPRGgjzphovrnQ0CNCwdDH8De5Y5AdSY4walwwYAwh+Sa5alsq6MfYcTO0O6764 MnPg3h+T71sIP/hxi14KV/Lyk5OVQ4oqd/GraeftD9LfgFWEOJv8EM0V6/6LGC/f mZ8OpgJP1UakOfHU4W9nABcRPJOdLkOyaW04gla3iNmFA7PL/1JrfIUKhmhggtn2 AfCzjWq8PEvtbMSeiEB7qUirGGbdK3Y/ -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:34 2025 by rpki-client