$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft File: Kz24XvlSI40ZLc8XDua-scjbA6k.mft (raw, json) Hash identifier: bkEZ5pG0jyvMgLaNhkwGelgnGZMyfiEEhK+UCRP/4xA= Subject key identifier: DC:EE:ED:2C:96:F3:FC:42:7E:86:E6:52:B3:37:3A:02:34:AD:17:9D Authority key identifier: 2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 Certificate issuer: /CN=A919F525/serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Certificate serial: D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft Manifest number: CF Signing time: Mon 03 Nov 2025 05:45:24 +0000 Manifest this update: Mon 03 Nov 2025 05:45:24 +0000 Manifest next update: Mon 10 Nov 2025 05:45:24 +0000 Files and hashes: 1: Kz24XvlSI40ZLc8XDua-scjbA6k.crl (hash: gOo3X3StGNwE/9TA5cGMmoiyh799auU4m3APJuOav4k=) 2: 4AFF817484EF11EFBDCD721DC4F9AE02.roa (hash: VYuqdxkeY8VDCaP9z9fc7NoqICt3B9Gb1p23SFkZpM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:45:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=2B3DB85EF952238D192DCF170EE6BEB1C8DB03A9 Validity Not Before: Nov 3 05:45:24 2025 GMT Not After : Nov 10 05:45:24 2025 GMT Subject: CN=69084174-b225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:05:cf:ae:8b:9b:2e:10:e0:8f:d7:ec:a4:ea: 8b:17:41:3e:84:28:16:5c:55:71:a0:3b:22:9b:d3: fb:a9:2c:f7:1c:7b:31:c2:0a:c5:27:13:b1:a4:49: 9f:60:7b:06:8d:92:94:08:38:a5:95:b0:ea:19:27: 9c:79:d6:dd:1d:cb:89:c7:94:5d:09:aa:09:35:db: 45:c0:99:4f:3e:8a:ba:d0:fc:80:ff:39:76:7e:c3: e7:18:da:0b:01:62:cc:0b:59:12:97:2c:32:02:a7: 47:ad:da:18:05:2e:e4:ba:c7:f8:aa:a5:d0:56:a3: 0e:4e:48:e2:84:aa:e6:f7:ea:72:f8:e2:22:4d:e0: df:27:8e:ed:96:71:20:28:f9:3a:5f:07:62:67:2c: af:23:08:25:f2:fc:04:d7:4d:cf:85:55:00:a4:87: 65:47:20:73:a3:00:29:b7:df:df:6a:1d:5f:4b:07: 07:7c:d6:0a:44:13:e0:2a:d2:9e:a4:cc:26:62:ff: b0:14:cc:a7:58:62:38:60:d6:2b:ca:61:61:32:e8: d8:6b:91:8a:4c:17:00:60:08:94:e1:e1:bf:f8:3a: 3c:48:fe:eb:5b:10:34:e0:5b:a0:54:77:04:3e:a6: 0f:e2:fe:6a:0e:48:5d:6b:dd:1c:8a:73:91:a7:3e: 7d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:EE:ED:2C:96:F3:FC:42:7E:86:E6:52:B3:37:3A:02:34:AD:17:9D X509v3 Authority Key Identifier: keyid:2B:3D:B8:5E:F9:52:23:8D:19:2D:CF:17:0E:E6:BE:B1:C8:DB:03:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kz24XvlSI40ZLc8XDua-scjbA6k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/E187177684ED11EFB9FF2D5AC4F9AE02/Kz24XvlSI40ZLc8XDua-scjbA6k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:b4:9e:9b:2a:1d:ba:87:cb:cc:36:51:eb:fd:fc:ec:1a:95: f3:3a:7a:60:e4:c1:0f:05:fe:dd:a6:6b:5b:95:c6:29:b7:ed: 2e:fa:a2:8e:ad:dc:57:3f:b3:ea:69:c8:85:f0:27:71:cc:e7: d7:d4:d6:c6:f6:db:c5:f6:8d:b5:8b:22:27:d7:70:33:59:aa: ca:ba:32:0b:c3:1d:c9:26:d0:6c:ea:b8:b4:66:56:b7:5c:db: ce:18:8c:e1:1a:4e:1c:71:f4:4c:ff:61:b1:b0:5f:c2:9c:c4: f7:ca:ae:bb:81:bd:e1:15:d1:89:32:be:a9:2a:45:04:8b:81: 80:b1:b1:af:d0:4b:85:51:96:8c:d8:64:64:f0:92:f2:db:85: 1a:44:5e:f3:c7:6c:94:83:6c:a0:e7:d8:df:b7:df:0c:fb:15: 49:26:cf:1b:6b:73:37:a9:e3:dc:5f:9d:05:d9:b4:cc:93:6b: aa:4b:37:f6:a5:bf:87:44:3c:6d:96:bc:11:80:71:19:c4:1c: 1e:21:35:eb:47:6d:9a:30:61:a7:aa:d4:9c:17:82:e9:b5:0a: 37:98:b5:cb:e0:c9:4f:d4:25:23:f1:17:9d:39:14:af:ff:29: 14:6e:98:6d:04:be:8d:55:59:c1:99:1f:25:bd:1a:8d:fa:1a: 79:0b:98:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUY1MjUxMTAvBgNVBAUTKDJCM0RCODVFRjk1MjIzOEQxOTJEQ0YxNzBFRTZCRUIx QzhEQjAzQTkwHhcNMjUxMTAzMDU0NTI0WhcNMjUxMTEwMDU0NTI0WjAYMRYwFAYD VQQDEw02OTA4NDE3NC1iMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gXProubLhDgj9fspOqLF0E+hCgWXFVxoDsim9P7qSz3HHsxwgrFJxOxpEmf YHsGjZKUCDillbDqGSecedbdHcuJx5RdCaoJNdtFwJlPPoq60PyA/zl2fsPnGNoL AWLMC1kSlywyAqdHrdoYBS7kusf4qqXQVqMOTkjihKrm9+py+OIiTeDfJ47tlnEg KPk6XwdiZyyvIwgl8vwE103PhVUApIdlRyBzowApt9/fah1fSwcHfNYKRBPgKtKe pMwmYv+wFMynWGI4YNYrymFhMujYa5GKTBcAYAiU4eG/+Do8SP7rWxA04FugVHcE PqYP4v5qDkhda90cinORpz59XQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNzu7SyW 8/xCfobmUrM3OgI0rRedMB8GA1UdIwQYMBaAFCs9uF75UiONGS3PFw7mvrHI2wOp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RjUyNS9FMTg3MTc3Njg0 RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0MFpMYzhYRHVhLXNjamJB NmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t6MjRYdmxTSTQwWkxjOFhEdWEtc2NqYkE2ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FMTg3MTc3Njg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9LejI0WHZsU0k0 MFpMYzhYRHVhLXNjamJBNmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBFtJ6bKh26h8vMNlHr/fzsGpXzOnpg5MEPBf7dpmtblcYpt+0u+qKO rdxXP7PqaciF8CdxzOfX1NbG9tvF9o21iyIn13AzWarKujILwx3JJtBs6ri0Zla3 XNvOGIzhGk4ccfRM/2GxsF/CnMT3yq67gb3hFdGJMr6pKkUEi4GAsbGv0EuFUZaM 2GRk8JLy24UaRF7zx2yUg2yg59jft98M+xVJJs8ba3M3qePcX50F2bTMk2uqSzf2 pb+HRDxtlrwRgHEZxBweITXrR22aMGGnqtScF4LptQo3mLXL4MlP1CUj8RedORSv /ykUbphtBL6NVVnBmR8lvRqN+hp5C5j+ -----END CERTIFICATE-----Generated at Tue Nov 4 21:32:43 2025 by rpki-client