$ rpki-client -vvf rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft File: KJYksuALd009OQ9aCtELW8NfVtg.mft (raw, json) Hash identifier: TCA/mDa69ouCvCjNNJf/pTC8Ni4Z5/WFxxDYwMULE6o= Subject key identifier: CE:DC:3F:2F:52:51:50:FB:82:8D:41:68:7D:C5:1C:00:20:F4:CE:10 Authority key identifier: 28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 Certificate issuer: /CN=A918748C/serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Certificate serial: 0AD5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft Manifest number: 0AB8 Signing time: Tue 04 Nov 2025 19:36:27 +0000 Manifest this update: Tue 04 Nov 2025 19:36:27 +0000 Manifest next update: Tue 11 Nov 2025 19:36:27 +0000 Files and hashes: 1: KJYksuALd009OQ9aCtELW8NfVtg.crl (hash: yHwqSK7H5VkDqL6ZRvjBIHll3Wz1msgSlA3SK8nNQiA=) 2: 53C1347EB60D11F0AD4B0751C4F9AE02.roa (hash: vbzoDXxoxDAXMA+SBS3V9UK64+8j7fYiBs+VYN+R5aY=) 3: DCE066622C7811EC97C8D979C4F9AE02.roa (hash: 0+FYOd7cEHhPhl5/EXB24cdR/+U1VPktvi4vWKzamkI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:36:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2773 (0xad5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918748C, serialNumber=289624B2E00B774D3D390F5A0AD10B5BC35F56D8 Validity Not Before: Nov 4 19:36:27 2025 GMT Not After : Nov 11 19:36:27 2025 GMT Subject: CN=690a55bb-48c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:7a:0a:02:58:88:e0:da:d9:d0:7e:9a:28:b1: fc:05:c7:d0:a4:98:5f:51:3f:6d:3a:39:1b:e9:7f: cf:bf:57:46:0e:0a:c6:83:36:74:61:7a:cc:2a:2d: 75:1f:60:f4:b6:a8:39:58:be:9f:6a:7b:41:51:9e: 9c:ef:4a:1d:6a:aa:99:78:21:28:f6:71:0f:f3:ad: fe:1a:51:ae:ff:2d:d0:bb:a8:a6:6b:52:18:7e:cf: e6:9c:c3:8a:f7:9f:57:f1:26:26:95:af:ee:0f:17: 3c:14:e4:ec:9a:a6:75:16:17:9b:7a:8f:3d:e7:6a: 00:e0:5c:f0:39:9f:64:38:46:de:9b:56:1d:81:b6: 87:e6:9a:d0:7a:43:92:d9:af:fb:a0:ad:18:d6:3d: a1:66:7b:dc:ef:8e:9d:0c:60:41:a1:90:2f:63:6b: ac:ec:b8:1e:59:83:89:61:4f:9e:1b:f2:33:d0:2b: 49:1c:4f:31:00:d5:c0:60:de:2d:38:b5:8a:d2:fe: 94:5e:75:3c:57:43:ee:00:15:0c:55:bd:01:1f:6a: 63:35:fb:e6:10:69:52:87:7c:3a:18:5d:49:82:c0: 09:0e:31:b4:b6:aa:8d:c0:f8:be:bb:39:83:7a:36: 06:a7:d5:b8:93:6d:a6:d4:c1:9b:01:cf:00:e8:40: c0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:DC:3F:2F:52:51:50:FB:82:8D:41:68:7D:C5:1C:00:20:F4:CE:10 X509v3 Authority Key Identifier: keyid:28:96:24:B2:E0:0B:77:4D:3D:39:0F:5A:0A:D1:0B:5B:C3:5F:56:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KJYksuALd009OQ9aCtELW8NfVtg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918748C/A74DA77264B411EAB38A340DC4F9AE02/KJYksuALd009OQ9aCtELW8NfVtg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:7c:eb:08:d9:80:86:2d:53:89:20:7f:59:42:af:b3:1a:3e: be:4c:61:50:7f:9e:b7:db:fe:1c:d0:89:35:d7:86:ed:d8:ba: 63:98:2d:a2:80:a2:c3:d9:f6:68:70:70:14:b3:cc:d7:b2:92: 7f:95:e2:8c:43:65:48:61:39:d8:84:19:27:c9:c6:42:68:25: 5a:ff:c1:16:73:8d:52:8a:04:1c:f5:35:8a:61:31:84:e6:fd: 20:66:42:cb:d8:16:b1:21:91:c2:92:ea:c7:54:fc:d1:ba:eb: 9d:52:e8:2d:e8:7e:da:f6:7f:09:30:d6:7f:7b:8d:84:39:e5: 5d:82:28:84:f0:7e:de:2f:8b:24:11:aa:b2:07:f2:1b:a2:1f: 23:99:e2:dd:fa:85:d4:63:a9:d8:81:f3:d2:0b:91:0f:74:ba: 57:83:69:af:4e:d6:34:8c:9a:bb:e6:39:46:50:f1:92:36:dd: 8a:bb:c7:3b:e6:43:1d:76:bd:5e:5c:68:e9:1c:f5:50:25:bb: 7c:27:1e:00:48:1e:55:05:ed:3c:95:df:a8:5b:e2:dd:ba:4f: 5f:92:40:b4:08:2f:61:ce:70:e7:19:47:f1:68:bd:a4:e4:88: 5b:6a:e7:ad:6c:17:3e:94:84:e7:db:3b:18:a9:05:e4:2c:48: a0:cb:a2:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc0OEMxMTAvBgNVBAUTKDI4OTYyNEIyRTAwQjc3NEQzRDM5MEY1QTBBRDEwQjVC QzM1RjU2RDgwHhcNMjUxMTA0MTkzNjI3WhcNMjUxMTExMTkzNjI3WjAYMRYwFAYD VQQDEw02OTBhNTViYi00OGM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA33oKAliI4NrZ0H6aKLH8BcfQpJhfUT9tOjkb6X/Pv1dGDgrGgzZ0YXrMKi11 H2D0tqg5WL6fantBUZ6c70odaqqZeCEo9nEP863+GlGu/y3Qu6ima1IYfs/mnMOK 959X8SYmla/uDxc8FOTsmqZ1Fhebeo8952oA4FzwOZ9kOEbem1YdgbaH5prQekOS 2a/7oK0Y1j2hZnvc746dDGBBoZAvY2us7LgeWYOJYU+eG/Iz0CtJHE8xANXAYN4t OLWK0v6UXnU8V0PuABUMVb0BH2pjNfvmEGlSh3w6GF1JgsAJDjG0tqqNwPi+uzmD ejYGp9W4k22m1MGbAc8A6EDAJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM7cPy9S UVD7go1BaH3FHAAg9M4QMB8GA1UdIwQYMBaAFCiWJLLgC3dNPTkPWgrRC1vDX1bY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzQ4Qy9BNzREQTc3MjY0 QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQwMDlPUTlhQ3RFTFc4TmZW dGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tKWWtzdUFMZDAwOU9ROWFDdEVMVzhOZlZ0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzQ4Qy9BNzREQTc3MjY0QjQxMUVBQjM4QTM0MERDNEY5QUUwMi9LSllrc3VBTGQw MDlPUTlhQ3RFTFc4TmZWdGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2fOsI2YCGLVOJIH9ZQq+zGj6+TGFQf5632/4c0Ik114bt2LpjmC2i gKLD2fZocHAUs8zXspJ/leKMQ2VIYTnYhBknycZCaCVa/8EWc41SigQc9TWKYTGE 5v0gZkLL2BaxIZHCkurHVPzRuuudUugt6H7a9n8JMNZ/e42EOeVdgiiE8H7eL4sk EaqyB/Iboh8jmeLd+oXUY6nYgfPSC5EPdLpXg2mvTtY0jJq75jlGUPGSNt2Ku8c7 5kMddr1eXGjpHPVQJbt8Jx4ASB5VBe08ld+oW+Lduk9fkkC0CC9hznDnGUfxaL2k 5IhbauetbBc+lITn2zsYqQXkLEigy6Ke -----END CERTIFICATE-----Generated at Wed Nov 5 11:45:33 2025 by rpki-client