$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: doFTLDA1jjQ3xUsua29RzJjNRWH6SThR7cQA5VzXywg= Subject key identifier: 0B:67:23:4E:20:6A:A8:1B:FB:EE:04:AA:15:B7:F0:9F:51:9F:72:45 Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 76 Signing time: Mon 03 Nov 2025 06:50:14 +0000 Manifest this update: Mon 03 Nov 2025 06:50:13 +0000 Manifest next update: Mon 10 Nov 2025 06:50:13 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: ga+VUxona7ueEzJV0yNkTdXlV3EFkzPX8vxjhYfWlJI=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 119 (0x77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Nov 3 06:50:13 2025 GMT Not After : Nov 10 06:50:13 2025 GMT Subject: CN=690850a5-77d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:36:c0:e0:e0:c5:18:45:dd:5a:29:51:36:cd: 1c:21:ba:f9:10:93:37:73:f9:ed:60:c0:06:2e:3a: 47:69:b5:3c:5e:97:ca:50:91:b3:70:14:26:ea:0c: 1a:f2:57:02:39:9b:6f:8f:13:9c:6f:ff:ac:49:59: c4:de:2b:ef:cf:29:f9:24:71:59:a7:62:93:e1:e3: e7:25:69:b9:e8:e4:0e:b2:74:99:d9:d4:07:4f:30: c3:c5:a4:8b:23:2b:28:bf:f9:98:99:22:21:10:91: 23:a7:17:27:97:db:77:e4:e6:5d:c8:12:46:fd:59: 68:ed:b8:de:9f:e4:0b:9c:2d:cb:50:fe:6a:bb:aa: d9:3b:ca:ca:cf:32:7a:7d:69:1a:f1:0d:33:9f:48: af:9f:04:81:f0:d1:a0:50:5d:dc:ff:14:ed:f1:d1: d7:73:de:86:81:32:ce:f1:c1:11:d2:12:2e:99:56: 22:29:02:f7:d9:41:8e:51:14:04:87:42:8b:0a:60: 16:08:e7:f0:05:58:77:da:01:c8:03:eb:d5:8e:fb: 0e:c4:b2:7d:c5:a5:99:f3:f1:19:5f:a0:ae:c2:ae: fb:f5:04:35:e1:22:72:4a:1b:33:a6:1a:a4:79:0b: 33:0f:2a:ab:24:3f:2e:e4:8b:a6:9a:32:59:46:ac: 23:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:67:23:4E:20:6A:A8:1B:FB:EE:04:AA:15:B7:F0:9F:51:9F:72:45 X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:64:b9:02:86:f3:c2:53:62:c8:36:1b:78:d1:d6:f7:05:9a: c3:de:f6:b0:ea:7a:bd:0f:cd:5e:75:3c:29:6a:99:f8:e1:4a: c9:5e:b4:f0:35:44:9f:9b:fe:11:66:af:81:10:76:f8:1f:91: 1f:84:3d:7b:aa:da:96:b4:19:63:85:9a:74:39:1f:a6:46:85: 89:7b:e5:f4:bf:0e:dd:0b:b5:e6:0c:60:ee:ef:98:93:8a:ed: bb:c3:fe:43:14:84:7a:7a:4a:28:eb:c4:bb:e8:05:3e:71:22: a5:7e:2a:25:01:ab:37:69:d9:fd:a3:1e:69:c8:98:2d:b0:2d: cd:73:4e:b9:b0:7e:7f:46:3a:ed:0e:41:33:51:74:3e:4c:79: 99:d8:30:15:bd:55:51:4e:a7:5f:7d:c6:5b:23:d4:33:75:07: e4:91:2f:29:68:24:43:14:0c:3c:77:ed:73:9c:49:3d:24:68: d4:01:db:49:df:b4:c4:8e:a9:fc:7d:60:45:16:99:96:29:6b: 0f:13:6b:ca:52:f6:de:d2:c0:5a:bb:08:aa:78:34:30:d5:ee: 46:5b:6e:7d:f3:fd:c7:6f:51:5a:a8:38:cc:14:85:78:0b:20: 13:5f:cc:41:c6:9d:2d:f9:d7:ba:7f:1a:43:50:5e:e9:3e:ca: d6:fa:05:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTExMDMwNjUwMTNaFw0yNTExMTAwNjUwMTNaMBgxFjAUBgNV BAMTDTY5MDg1MGE1LTc3ZDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhNsDg4MUYRd1aKVE2zRwhuvkQkzdz+e1gwAYuOkdptTxel8pQkbNwFCbqDBry VwI5m2+PE5xv/6xJWcTeK+/PKfkkcVmnYpPh4+clabno5A6ydJnZ1AdPMMPFpIsj Kyi/+ZiZIiEQkSOnFyeX23fk5l3IEkb9WWjtuN6f5AucLctQ/mq7qtk7ysrPMnp9 aRrxDTOfSK+fBIHw0aBQXdz/FO3x0ddz3oaBMs7xwRHSEi6ZViIpAvfZQY5RFASH QosKYBYI5/AFWHfaAcgD69WO+w7Esn3FpZnz8RlfoK7Crvv1BDXhInJKGzOmGqR5 CzMPKqskPy7ki6aaMllGrCNRAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUC2cjTiBq qBv77gSqFbfwn1GfckUwHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Mjg3LzM3Mjc4QzE2MDQ2RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFU VDNUbklieFM4V1FDSVAwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALpkuQKG88JTYsg2G3jR1vcFmsPe9rDqer0PzV51PClqmfjhSsletPA1 RJ+b/hFmr4EQdvgfkR+EPXuq2pa0GWOFmnQ5H6ZGhYl75fS/Dt0LteYMYO7vmJOK 7bvD/kMUhHp6SijrxLvoBT5xIqV+KiUBqzdp2f2jHmnImC2wLc1zTrmwfn9GOu0O QTNRdD5MeZnYMBW9VVFOp199xlsj1DN1B+SRLyloJEMUDDx37XOcST0kaNQB20nf tMSOqfx9YEUWmZYpaw8Ta8pS9t7SwFq7CKp4NDDV7kZbbn3z/cdvUVqoOMwUhXgL IBNfzEHGnS3517p/GkNQXuk+ytb6Bfw= -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:22 2025 by rpki-client