$ rpki-client -vvf rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft File: khLuorkaMmYPdScf7IWJswnDifA.mft (raw, json) Hash identifier: 8dkzte+yJjDUXDc8TGj6fdRNtQRUejYFTZLGA132uV0= Subject key identifier: BD:B6:A7:73:56:9B:75:7D:75:BF:7F:90:70:0C:2E:FE:5F:C5:BE:05 Authority key identifier: 92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 Certificate issuer: /CN=A91999F5/serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Certificate serial: 03F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft Manifest number: 03E8 Signing time: Wed 05 Nov 2025 00:39:45 +0000 Manifest this update: Wed 05 Nov 2025 00:39:44 +0000 Manifest next update: Wed 12 Nov 2025 00:39:44 +0000 Files and hashes: 1: khLuorkaMmYPdScf7IWJswnDifA.crl (hash: Z67LAECN8JE8cDw+aC0yPazUSg8AzOTLOV9MxC6GwnY=) 2: F84777FCD9DC11EDA4083A71C4F9AE02.roa (hash: CoOJrAcKTrWo0nejzXhp58RWFVEIO9a7vZX9DurBX3o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:39:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91999F5, serialNumber=9212EEA2B91A32660F75271FEC8589B309C389F0 Validity Not Before: Nov 5 00:39:44 2025 GMT Not After : Nov 12 00:39:44 2025 GMT Subject: CN=690a9cd0-44ce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:d2:37:12:c7:f7:32:b3:12:f7:d4:75:f4: 2a:1d:a3:e7:35:a9:cd:92:bf:a9:23:17:5d:61:70: 9d:21:5d:7d:95:a6:fc:8f:63:cd:76:7a:ca:9c:06: 69:61:1a:2c:45:e4:78:d6:65:37:8e:cc:7f:13:26: 18:63:c0:54:0f:e5:46:a9:3c:c9:c0:d8:82:23:ca: 32:dd:64:c4:0e:f5:9b:9f:ce:88:be:af:08:04:87: 76:98:6d:db:c0:4f:63:61:d9:0f:92:1a:39:79:76: 9c:d4:7c:40:7d:06:92:d0:7f:b0:49:6d:14:d9:40: 5e:74:f0:11:1a:8a:5a:43:74:6a:7f:08:e6:71:a4: 10:fc:4a:e1:cb:aa:68:77:3a:7f:ce:ff:74:a7:59: 54:ac:ae:14:09:d1:5c:9b:df:54:19:67:fb:f2:7b: fc:16:6e:4a:14:f4:b7:1d:05:8b:8b:a3:ad:1d:80: 22:40:56:be:4e:aa:0e:4f:af:21:a8:e9:1a:60:6a: 60:74:be:62:00:97:11:d4:fb:9f:2d:42:d5:c4:3f: cb:a7:12:b0:32:fc:8f:fc:9e:62:e9:46:27:d7:7d: 78:b6:20:cd:8b:43:da:a4:74:3a:a2:64:70:5f:6d: 34:c1:f0:e4:10:fe:56:25:9c:1c:93:bf:31:cf:f4: f1:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B6:A7:73:56:9B:75:7D:75:BF:7F:90:70:0C:2E:FE:5F:C5:BE:05 X509v3 Authority Key Identifier: keyid:92:12:EE:A2:B9:1A:32:66:0F:75:27:1F:EC:85:89:B3:09:C3:89:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/khLuorkaMmYPdScf7IWJswnDifA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91999F5/6A3DB5789F7911EC9CB47A0AC4F9AE02/khLuorkaMmYPdScf7IWJswnDifA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0a:ec:3b:03:2f:6b:2c:51:30:f2:39:97:fd:b9:39:5a:a5:44: 16:26:ff:05:97:07:53:1b:d8:7a:67:21:f0:f3:1d:d0:43:b6: d0:ec:e9:5c:31:45:81:0c:39:33:ba:d4:15:af:4b:31:8b:53: 77:80:69:ef:f9:18:38:0d:9e:81:6d:6a:fe:c9:b3:1d:93:13: 6a:e8:db:6d:58:8c:57:d7:bb:07:a1:6a:e4:4f:b0:d8:8e:3c: ba:0b:33:03:92:ec:bb:1c:57:d9:a2:fc:68:e3:b0:b1:89:eb: b9:e5:be:64:38:63:78:ef:65:4f:82:a7:09:b3:24:b1:ea:d1: cb:fe:6d:8d:fa:85:cc:00:16:0f:d8:ce:22:cb:fc:fd:a6:f3: 66:52:4d:ef:0b:ae:38:e4:29:18:a9:f9:fe:7d:64:7a:cf:1e: 9e:ad:73:8e:82:7d:a6:0b:d9:b6:36:58:4f:84:5d:89:00:08: 91:0d:e4:90:f4:fa:da:58:3e:7b:05:27:38:af:3a:8c:ec:3f: 05:a9:2b:9f:d5:01:df:42:b8:23:64:9a:75:7e:03:a0:ea:a2: 3f:6f:b2:e8:ac:d8:85:d7:41:16:84:0e:dd:fa:80:64:0b:60: 8b:09:c1:30:3c:21:d7:1d:a7:a6:4b:9e:bb:ea:f3:81:99:7e: 82:6e:48:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk5RjUxMTAvBgNVBAUTKDkyMTJFRUEyQjkxQTMyNjYwRjc1MjcxRkVDODU4OUIz MDlDMzg5RjAwHhcNMjUxMTA1MDAzOTQ0WhcNMjUxMTEyMDAzOTQ0WjAYMRYwFAYD VQQDEw02OTBhOWNkMC00NGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEnSNxLH9zKzEvfUdfQqHaPnNanNkr+pIxddYXCdIV19lab8j2PNdnrKnAZp YRosReR41mU3jsx/EyYYY8BUD+VGqTzJwNiCI8oy3WTEDvWbn86Ivq8IBId2mG3b wE9jYdkPkho5eXac1HxAfQaS0H+wSW0U2UBedPARGopaQ3RqfwjmcaQQ/Erhy6po dzp/zv90p1lUrK4UCdFcm99UGWf78nv8Fm5KFPS3HQWLi6OtHYAiQFa+TqoOT68h qOkaYGpgdL5iAJcR1PufLULVxD/LpxKwMvyP/J5i6UYn1314tiDNi0PapHQ6omRw X200wfDkEP5WJZwck78xz/Tx2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL22p3NW m3V9db9/kHAMLv5fxb4FMB8GA1UdIwQYMBaAFJIS7qK5GjJmD3UnH+yFibMJw4nw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTlGNS82QTNEQjU3ODlG NzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1tWVBkU2NmN0lXSnN3bkRp ZkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2toTHVvcmthTW1ZUGRTY2Y3SVdKc3duRGlmQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 OTlGNS82QTNEQjU3ODlGNzkxMUVDOUNCNDdBMEFDNEY5QUUwMi9raEx1b3JrYU1t WVBkU2NmN0lXSnN3bkRpZkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAK7DsDL2ssUTDyOZf9uTlapUQWJv8FlwdTG9h6ZyHw8x3QQ7bQ7Olc MUWBDDkzutQVr0sxi1N3gGnv+Rg4DZ6BbWr+ybMdkxNq6NttWIxX17sHoWrkT7DY jjy6CzMDkuy7HFfZovxo47Cxieu55b5kOGN472VPgqcJsySx6tHL/m2N+oXMABYP 2M4iy/z9pvNmUk3vC6445CkYqfn+fWR6zx6erXOOgn2mC9m2NlhPhF2JAAiRDeSQ 9PraWD57BSc4rzqM7D8FqSuf1QHfQrgjZJp1fgOg6qI/b7LorNiF10EWhA7d+oBk C2CLCcEwPCHXHaemS5676vOBmX6CbkiL -----END CERTIFICATE-----Generated at Wed Nov 5 22:31:41 2025 by rpki-client