$ rpki-client -vvf rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft File: KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft (raw, json) Hash identifier: 6XdgN+yawIWnATvAxNNBSsqqutrci6e1HgX2Ymq1IIE= Subject key identifier: 87:EA:74:96:28:0C:9A:1F:7B:37:C8:09:73:16:FD:A0:51:56:BD:D3 Authority key identifier: 28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A Certificate issuer: /CN=A91A308F/serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Certificate serial: 0A7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft Manifest number: 0A73 Signing time: Sun 02 Nov 2025 19:35:16 +0000 Manifest this update: Sun 02 Nov 2025 19:35:16 +0000 Manifest next update: Sun 09 Nov 2025 19:35:16 +0000 Files and hashes: 1: KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl (hash: akbwJhQ5s77JDBp+MZxTaSB0mP6fMVgrys7Xp9rbrHE=) 2: 6303AF646F8911EA92087E39C4F9AE02.roa (hash: MlTCpmNvZBXbaN3j5f/1p2NogI1xqgj2n12XSV4tPcU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:35:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2682 (0xa7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A308F, serialNumber=28682EC723CCE336185B33302013FF0060DDE09A Validity Not Before: Nov 2 19:35:16 2025 GMT Not After : Nov 9 19:35:16 2025 GMT Subject: CN=6907b274-1ea0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:20:c3:65:de:bf:14:b1:33:3c:eb:aa:f8:02: 58:44:8a:f5:4b:fc:16:6b:7f:98:fc:32:07:53:76: 1a:87:7b:65:23:27:15:87:6b:23:be:77:21:30:1a: 8b:cb:08:75:21:47:aa:45:8b:dc:7c:12:e4:6b:cd: 59:18:fe:3d:19:27:d7:74:7f:25:e5:41:82:b1:86: c9:e9:de:16:cb:65:9d:fe:e2:75:e3:86:9d:7a:c9: bc:5a:8f:79:61:b5:6f:0f:91:82:6a:b7:64:b3:b1: 12:f5:f3:1c:f2:5b:47:bc:f3:10:63:da:40:a2:b0: aa:61:f6:b2:bb:0e:1a:0b:96:c3:f9:dd:7a:06:15: b2:86:c2:b3:b1:36:7b:43:c0:a5:df:3c:52:ac:e6: 69:76:f0:be:62:88:ba:ec:a8:ee:1d:82:bd:4d:64: 22:d3:9d:0a:4c:b0:e9:d7:8f:20:bb:ea:f6:e2:99: 6a:14:0c:fc:74:cb:dc:33:bc:db:43:23:67:3a:79: 7a:01:d9:6e:00:86:65:ae:10:28:a0:65:79:2e:f0: e2:8a:39:ca:fd:81:eb:e6:fc:5a:e5:56:22:6d:ca: df:dc:1e:64:17:c9:58:07:5b:9f:c5:e9:63:66:34: cf:d4:e9:30:1f:c2:64:16:9e:26:18:c9:30:cd:41: da:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:EA:74:96:28:0C:9A:1F:7B:37:C8:09:73:16:FD:A0:51:56:BD:D3 X509v3 Authority Key Identifier: keyid:28:68:2E:C7:23:CC:E3:36:18:5B:33:30:20:13:FF:00:60:DD:E0:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KGguxyPM4zYYWzMwIBP_AGDd4Jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A308F/B9B3445C6F8711EA93A9F933C4F9AE02/KGguxyPM4zYYWzMwIBP_AGDd4Jo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:2e:de:20:cb:ac:53:4d:f9:9a:5a:f7:ec:c7:b5:50:b7:c8: e8:dd:a7:86:c1:7b:95:c4:ea:ea:bf:9c:08:4c:13:fe:6b:1b: 66:a0:22:78:21:ee:73:03:09:ff:19:c4:b4:fe:f7:95:cd:bf: c2:93:8e:b3:fb:ac:b7:2e:99:28:c0:d0:61:cf:d6:3a:1e:ac: 67:49:92:6b:de:c8:7d:f0:cd:28:dc:ad:6e:5b:1d:fb:a1:3f: 1d:70:24:77:49:cf:07:6e:03:87:ba:be:13:c4:53:49:ce:ba: 80:7a:bb:ef:b0:b4:33:e4:37:8b:c9:36:c4:0e:57:1e:b0:6d: 8f:3d:89:4d:0c:72:4c:63:07:03:52:6b:eb:cb:55:2a:c4:db: b9:93:48:c0:d9:fe:66:fd:be:1d:3b:32:cc:18:a6:49:bb:06: ae:6e:5c:50:37:65:31:7a:84:5e:b0:6e:7f:7e:b6:85:24:2c: bc:91:03:92:af:fa:49:00:d0:10:16:21:79:70:4f:25:ad:78: 58:bd:c4:71:6d:2b:45:b2:fb:2c:b4:b4:8f:06:8d:ff:dc:38: 36:12:b5:88:dd:84:0c:5c:78:c9:62:03:e4:2e:e5:d7:68:de: 18:a7:83:3a:4c:7b:0a:6b:ab:2a:f9:70:cc:8f:33:49:0f:e3: 1b:79:f2:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTMwOEYxMTAvBgNVBAUTKDI4NjgyRUM3MjNDQ0UzMzYxODVCMzMzMDIwMTNGRjAw NjBEREUwOUEwHhcNMjUxMTAyMTkzNTE2WhcNMjUxMTA5MTkzNTE2WjAYMRYwFAYD VQQDEw02OTA3YjI3NC0xZWEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSDDZd6/FLEzPOuq+AJYRIr1S/wWa3+Y/DIHU3Yah3tlIycVh2sjvnchMBqL ywh1IUeqRYvcfBLka81ZGP49GSfXdH8l5UGCsYbJ6d4Wy2Wd/uJ144adesm8Wo95 YbVvD5GCardks7ES9fMc8ltHvPMQY9pAorCqYfayuw4aC5bD+d16BhWyhsKzsTZ7 Q8Cl3zxSrOZpdvC+Yoi67KjuHYK9TWQi050KTLDp148gu+r24plqFAz8dMvcM7zb QyNnOnl6AdluAIZlrhAooGV5LvDiijnK/YHr5vxa5VYibcrf3B5kF8lYB1ufxelj ZjTP1OkwH8JkFp4mGMkwzUHazQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfqdJYo DJofezfICXMW/aBRVr3TMB8GA1UdIwQYMBaAFChoLscjzOM2GFszMCAT/wBg3eCa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzA4Ri9COUIzNDQ1QzZG ODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6WVlXek13SUJQX0FHRGQ0 Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tHZ3V4eVBNNHpZWVd6TXdJQlBfQUdEZDRKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzA4Ri9COUIzNDQ1QzZGODcxMUVBOTNBOUY5MzNDNEY5QUUwMi9LR2d1eHlQTTR6 WVlXek13SUJQX0FHRGQ0Sm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCYLt4gy6xTTfmaWvfsx7VQt8jo3aeGwXuVxOrqv5wITBP+axtmoCJ4 Ie5zAwn/GcS0/veVzb/Ck46z+6y3LpkowNBhz9Y6HqxnSZJr3sh98M0o3K1uWx37 oT8dcCR3Sc8HbgOHur4TxFNJzrqAervvsLQz5DeLyTbEDlcesG2PPYlNDHJMYwcD Umvry1UqxNu5k0jA2f5m/b4dOzLMGKZJuwaublxQN2UxeoResG5/fraFJCy8kQOS r/pJANAQFiF5cE8lrXhYvcRxbStFsvsstLSPBo3/3Dg2ErWI3YQMXHjJYgPkLuXX aN4Yp4M6THsKa6sq+XDMjzNJD+MbefLO -----END CERTIFICATE-----Generated at Tue Nov 4 16:33:45 2025 by rpki-client