$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: fZIAXBrRRa6503QaTxKGIxlnqkmtufqARqZ2L2T0Dxo= Subject key identifier: E7:94:26:0C:C0:B2:54:E6:38:54:55:51:72:39:1C:38:A9:B4:DB:B9 Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: F8 Signing time: Wed 05 Nov 2025 05:21:06 +0000 Manifest this update: Wed 05 Nov 2025 05:21:06 +0000 Manifest next update: Wed 12 Nov 2025 05:21:06 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: fvddQt4Y9gNp/2iBQBTFxP1CjdFPEC0wh4d6FCnydLk=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:21:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 250 (0xfa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Nov 5 05:21:06 2025 GMT Not After : Nov 12 05:21:06 2025 GMT Subject: CN=690adec2-d4cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ec:15:b3:30:d7:2d:ff:46:54:80:82:a5:8a: c5:8a:18:d0:df:22:45:d1:76:14:05:5d:d2:cd:c4: c1:61:e9:ea:40:0e:c6:ff:59:84:c8:06:4e:9e:f4: 7c:8f:32:b8:67:8c:de:bc:7f:58:ea:32:e1:88:0b: 65:29:06:d3:ba:80:2f:8c:c5:aa:90:d1:a0:98:68: bf:9a:c6:4f:82:ea:78:c6:e9:80:e0:16:b1:84:66: 98:49:05:f7:65:0f:0c:1d:67:54:83:f5:66:6c:7c: 65:17:96:3a:1e:09:1e:6b:74:00:73:84:ee:eb:08: f1:ac:5f:8f:b4:0d:8d:eb:46:ff:b4:2d:35:16:25: 12:d1:db:6e:45:2c:61:19:35:0a:dc:b6:a0:39:d4: fc:92:d4:c7:0b:b0:40:04:3d:5f:b8:9d:12:50:a1: 58:be:12:eb:28:8c:79:02:4c:e8:33:16:ae:95:6a: 55:de:be:f6:b3:5a:20:45:55:d2:19:df:63:1a:ba: 1d:75:27:50:d3:19:2c:20:59:63:19:a3:37:de:26: 47:c1:dc:26:26:6e:34:a9:44:e6:4b:51:14:1c:53: 14:39:11:6b:6d:31:6a:4d:e3:74:ee:03:53:8b:20: 1b:18:ca:80:9d:6e:0e:1c:ca:8d:33:9b:c5:da:9a: fd:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:94:26:0C:C0:B2:54:E6:38:54:55:51:72:39:1C:38:A9:B4:DB:B9 X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:fb:37:53:24:50:3e:11:dc:27:61:4b:a4:a5:63:64:87:49: 71:e0:f2:f5:91:35:8b:3b:7a:1f:91:96:1e:90:8c:b8:15:73: 11:a9:93:18:33:69:82:86:f4:5d:07:c1:9b:c7:ca:09:4b:65: ea:97:73:03:8a:57:80:07:61:3b:31:c7:7d:82:fd:29:99:51: b6:db:f7:88:59:0c:6e:35:af:b6:96:47:28:73:8b:a5:64:5f: 95:84:f4:95:37:1a:ed:ff:b1:e3:61:5e:8c:f0:3b:70:34:3c: 0c:83:da:46:b3:6a:84:2e:3f:4f:89:3b:02:92:fd:3f:e1:59: a6:f5:ab:bc:48:1d:ea:f0:30:f5:43:57:9a:3c:02:32:58:62: de:57:a7:76:b6:77:8c:27:91:25:92:46:8a:42:3e:a2:b2:0a: 98:7c:99:0e:57:66:ae:59:98:e2:b7:ed:2b:d3:61:27:26:7f: e3:38:b9:f8:0b:fd:53:ed:9d:72:f8:a4:a3:6c:e2:d6:98:e2: 33:7d:cf:f2:83:03:22:f0:f8:8a:8b:e0:1d:69:7a:58:c9:99: cb:99:be:6a:fd:d8:b7:b8:72:2a:97:43:4c:6c:69:34:ad:4c: 30:19:f8:36:df:c3:7d:98:5a:3c:25:4f:73:88:41:a4:c0:77: e2:0d:cc:26 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUxMTA1MDUyMTA2WhcNMjUxMTEyMDUyMTA2WjAYMRYwFAYD VQQDEw02OTBhZGVjMi1kNGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2OwVszDXLf9GVICCpYrFihjQ3yJF0XYUBV3SzcTBYenqQA7G/1mEyAZOnvR8 jzK4Z4zevH9Y6jLhiAtlKQbTuoAvjMWqkNGgmGi/msZPgup4xumA4BaxhGaYSQX3 ZQ8MHWdUg/VmbHxlF5Y6Hgkea3QAc4Tu6wjxrF+PtA2N60b/tC01FiUS0dtuRSxh GTUK3LagOdT8ktTHC7BABD1fuJ0SUKFYvhLrKIx5AkzoMxaulWpV3r72s1ogRVXS Gd9jGroddSdQ0xksIFljGaM33iZHwdwmJm40qUTmS1EUHFMUORFrbTFqTeN07gNT iyAbGMqAnW4OHMqNM5vF2pr9SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOeUJgzA slTmOFRVUXI5HDiptNu5MB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCa+zdTJFA+EdwnYUukpWNkh0lx4PL1kTWLO3ofkZYekIy4FXMRqZMY M2mChvRdB8Gbx8oJS2Xql3MDileAB2E7Mcd9gv0pmVG22/eIWQxuNa+2lkcoc4ul ZF+VhPSVNxrt/7HjYV6M8DtwNDwMg9pGs2qELj9PiTsCkv0/4Vmm9au8SB3q8DD1 Q1eaPAIyWGLeV6d2tneMJ5ElkkaKQj6isgqYfJkOV2auWZjit+0r02EnJn/jOLn4 C/1T7Z1y+KSjbOLWmOIzfc/ygwMi8PiKi+AdaXpYyZnLmb5q/di3uHIql0NMbGk0 rUwwGfg238N9mFo8JU9ziEGkwHfiDcwm -----END CERTIFICATE-----Generated at Wed Nov 5 15:40:02 2025 by rpki-client