$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: HrjqTRN8195mFGO3gZ0Xs68BGqO44YhBxzr/+K1R0/c= Subject key identifier: B8:1E:04:47:8C:FE:5D:6F:79:5F:FB:98:AC:4F:06:E0:DC:89:CA:EB Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: 0103 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: 0101 Signing time: Mon 03 Nov 2025 05:02:59 +0000 Manifest this update: Mon 03 Nov 2025 05:02:58 +0000 Manifest next update: Mon 10 Nov 2025 05:02:58 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: xGDmEbyoJmd6fMVmYGfrmGT0CfHkjwPRVREs3y1yDoM=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 259 (0x103) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Nov 3 05:02:58 2025 GMT Not After : Nov 10 05:02:58 2025 GMT Subject: CN=69083782-0b38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:fe:cc:4b:25:b0:6c:12:18:06:5d:01:ad:ea: 66:24:4e:4a:5d:2d:5d:98:bc:a2:f9:d4:2a:3a:f0: 43:20:b9:31:47:5b:0d:f8:5a:3d:72:db:66:98:d5: 79:d2:1f:38:13:68:33:b5:c4:12:10:67:24:a0:09: 15:c6:59:90:96:95:c8:6b:67:16:1e:1e:3a:bc:b2: de:10:11:7f:df:d1:e9:6d:cc:3a:c6:d2:bb:4a:a0: c7:0b:a7:48:ba:e6:cf:1d:4c:cd:06:d1:a0:d7:15: a1:a1:87:f2:4e:48:ab:63:93:c6:19:4c:b6:d5:80: 64:ae:99:d7:d1:0d:c9:b1:9b:c6:24:92:27:64:23: 69:e6:09:35:75:9f:16:af:c7:78:2c:c2:02:c1:47: 93:67:15:67:ac:40:c8:23:c0:f3:b2:69:f0:6b:55: d4:64:ae:59:53:af:d5:8b:a2:96:79:62:e6:6a:2a: cf:d7:31:b0:7c:8c:2f:67:d9:15:6d:1e:76:58:5d: bb:f3:0d:cb:78:d9:68:18:0f:72:ec:db:45:2a:c7: b5:6c:63:89:60:73:eb:4e:af:94:1a:08:c0:cf:97: 65:30:dc:da:da:34:ab:a5:bf:7b:ef:7d:0b:36:98: ca:15:96:49:f3:01:75:dd:3e:f1:e9:ae:f2:3b:86: 45:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:1E:04:47:8C:FE:5D:6F:79:5F:FB:98:AC:4F:06:E0:DC:89:CA:EB X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 10:df:9e:18:8c:73:37:ff:f0:5b:55:c1:67:58:8d:4c:c6:ae: 4b:fa:44:de:bf:95:c2:ca:1e:b4:0c:c1:f5:72:ed:1d:33:68: 40:47:19:1a:b3:6d:6b:c9:50:10:c7:14:84:7e:8d:8c:fe:5a: 93:c9:da:26:57:fb:0b:6f:31:79:63:a1:58:fa:36:0d:fa:e5: 49:ae:d0:64:55:3e:0f:ef:62:2f:e5:a2:08:04:09:4d:7f:d6: 11:e2:b1:db:ca:12:57:19:84:e5:4a:c3:d0:bb:97:e1:50:68: 39:0f:9e:0b:52:84:e6:af:b4:2c:1a:9b:2a:bc:6d:70:c5:a4: b6:2f:84:f0:fc:8c:cc:b9:f2:51:2e:c8:ec:c9:aa:54:04:26: 09:94:65:0c:93:21:5a:94:98:20:43:3d:5f:83:ff:95:7f:58: b0:58:c5:70:31:d0:39:75:18:1a:5f:b0:8b:4b:0e:f6:13:59: 74:3d:3c:5e:e9:23:f1:f6:d2:a0:20:d1:7a:fa:35:c5:3d:da: 11:9c:89:49:d4:52:75:4c:48:f8:d6:f9:f5:67:5d:5a:7e:4e: 0f:8b:27:48:0d:3a:06:39:66:66:17:01:a2:36:3f:d0:99:c4: 15:7f:5e:93:f4:39:b0:a6:cc:d6:a1:74:8a:63:40:a0:3f:3b: e2:6d:29:02 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUxMTAzMDUwMjU4WhcNMjUxMTEwMDUwMjU4WjAYMRYwFAYD VQQDEw02OTA4Mzc4Mi0wYjM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3f7MSyWwbBIYBl0BrepmJE5KXS1dmLyi+dQqOvBDILkxR1sN+Fo9cttmmNV5 0h84E2gztcQSEGckoAkVxlmQlpXIa2cWHh46vLLeEBF/39Hpbcw6xtK7SqDHC6dI uubPHUzNBtGg1xWhoYfyTkirY5PGGUy21YBkrpnX0Q3JsZvGJJInZCNp5gk1dZ8W r8d4LMICwUeTZxVnrEDII8Dzsmnwa1XUZK5ZU6/Vi6KWeWLmairP1zGwfIwvZ9kV bR52WF278w3LeNloGA9y7NtFKse1bGOJYHPrTq+UGgjAz5dlMNza2jSrpb97730L NpjKFZZJ8wF13T7x6a7yO4ZFOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgeBEeM /l1veV/7mKxPBuDcicrrMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAQ354YjHM3//BbVcFnWI1Mxq5L+kTev5XCyh60DMH1cu0dM2hARxka s21ryVAQxxSEfo2M/lqTydomV/sLbzF5Y6FY+jYN+uVJrtBkVT4P72Iv5aIIBAlN f9YR4rHbyhJXGYTlSsPQu5fhUGg5D54LUoTmr7QsGpsqvG1wxaS2L4Tw/IzMufJR LsjsyapUBCYJlGUMkyFalJggQz1fg/+Vf1iwWMVwMdA5dRgaX7CLSw72E1l0PTxe 6SPx9tKgINF6+jXFPdoRnIlJ1FJ1TEj41vn1Z11afk4PiydIDToGOWZmFwGiNj/Q mcQVf16T9DmwpszWoXSKY0CgPzvibSkC -----END CERTIFICATE-----Generated at Tue Nov 4 21:36:28 2025 by rpki-client