$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: aB/QERzN02xSDRMkuVzxL+8/1Pv8OT8Qv5309GSbqXY= Subject key identifier: C7:1F:68:81:7B:0F:BF:84:89:39:B9:F1:E7:E9:4C:30:9D:23:68:FE Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 0153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 0153 Signing time: Mon 03 Nov 2025 04:07:13 +0000 Manifest this update: Mon 03 Nov 2025 04:07:13 +0000 Manifest next update: Mon 10 Nov 2025 04:07:13 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: C7qkLGf8EGtfDuLkqcyUo0K4UwEEw5PozWFUarxHQZg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:07:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 339 (0x153) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Nov 3 04:07:13 2025 GMT Not After : Nov 10 04:07:13 2025 GMT Subject: CN=69082a71-407d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:aa:3f:a6:23:94:59:02:c2:11:c3:e8:5c: dd:16:ac:1b:0d:65:ad:a2:1d:9d:c0:d3:a2:bc:98: 42:51:e5:f9:25:e3:c9:0b:ab:45:5c:3a:4f:80:e2: d4:63:0b:dc:25:a7:19:06:28:3e:b8:04:dd:b5:33: bb:7c:7b:2e:e5:12:c4:05:46:91:8a:19:51:ef:06: bb:4b:b6:e2:67:dd:c8:a8:2a:c3:6b:60:02:26:16: 34:0e:44:c0:1a:43:17:d8:f8:21:a2:0f:5b:85:a3: 1d:a3:45:b3:bb:af:e3:f9:f4:8b:a7:27:00:72:57: ca:ac:47:41:cd:14:ca:dc:00:a5:28:d1:b3:13:1c: ad:e8:8d:df:a1:3c:ea:40:0e:6b:57:66:8d:36:cb: e4:d5:61:9d:65:2c:01:29:9f:12:95:c0:ad:23:4d: bb:53:8b:5e:18:d4:b5:56:a0:69:48:ee:e5:5e:5a: 67:2b:ee:1d:6e:ef:f8:1d:69:84:5e:c4:b3:6a:91: 7b:4f:31:fe:ed:81:48:26:12:1e:11:bc:0b:ab:6c: a6:99:46:d4:8c:31:1c:b3:0a:67:ec:1d:19:39:58: 78:b3:8b:f3:5e:68:73:82:95:f4:fb:29:f0:7d:81: d2:d2:94:f2:da:20:af:80:68:60:ef:b5:f9:3e:d2: 20:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:1F:68:81:7B:0F:BF:84:89:39:B9:F1:E7:E9:4C:30:9D:23:68:FE X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:18:2c:fa:e1:9d:28:36:9e:9e:57:d7:57:5e:a3:91:06:9c: 35:69:4f:48:85:5f:07:0e:b5:d3:b4:08:5c:47:43:d8:f4:b4: ce:96:0d:5e:23:4a:5a:21:af:20:94:1c:52:c0:de:c3:0e:f6: 50:e1:67:ae:26:35:9a:6c:9b:2c:00:fc:09:f3:37:84:66:a9: cc:e5:f3:d5:fa:fe:a2:7c:bd:c4:f7:15:5c:98:ce:3d:c0:be: 80:f2:ff:3c:a5:ab:38:34:88:77:4e:64:f4:59:39:1d:c2:5a: e1:6e:98:79:1a:aa:f8:14:d8:68:13:f5:5d:57:a0:d5:b6:e3: 17:57:c2:9a:3a:9f:16:3e:7d:0c:8e:10:a7:77:97:42:26:9f: a4:7f:88:25:a9:a1:aa:82:b2:eb:57:f4:88:0a:06:9e:d6:ce: 38:d8:bb:3f:db:f6:71:b4:1c:a5:f4:cb:0c:85:fa:96:0e:15: 3b:39:7f:0d:47:9a:0c:d7:f5:18:3b:17:13:aa:5d:e4:47:95: bd:bd:cf:39:29:27:db:67:32:ba:ae:03:66:15:8a:e9:5a:1d: 43:0f:c3:15:d0:14:ce:a8:96:53:e2:fa:c8:89:31:c5:7d:8a: d1:2f:8d:db:f5:78:ab:9d:29:6e:1f:4e:4b:0a:2b:f8:12:d5: dc:24:02:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAVMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjUxMTAzMDQwNzEzWhcNMjUxMTEwMDQwNzEzWjAYMRYwFAYD VQQDEw02OTA4MmE3MS00MDdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlSqP6YjlFkCwhHD6FzdFqwbDWWtoh2dwNOivJhCUeX5JePJC6tFXDpPgOLU YwvcJacZBig+uATdtTO7fHsu5RLEBUaRihlR7wa7S7biZ93IqCrDa2ACJhY0DkTA GkMX2Pghog9bhaMdo0Wzu6/j+fSLpycAclfKrEdBzRTK3AClKNGzExyt6I3foTzq QA5rV2aNNsvk1WGdZSwBKZ8SlcCtI027U4teGNS1VqBpSO7lXlpnK+4dbu/4HWmE XsSzapF7TzH+7YFIJhIeEbwLq2ymmUbUjDEcswpn7B0ZOVh4s4vzXmhzgpX0+ynw fYHS0pTy2iCvgGhg77X5PtIgUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcfaIF7 D7+EiTm58efpTDCdI2j+MB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqGCz64Z0oNp6eV9dXXqORBpw1aU9IhV8HDrXTtAhcR0PY9LTOlg1e I0paIa8glBxSwN7DDvZQ4WeuJjWabJssAPwJ8zeEZqnM5fPV+v6ifL3E9xVcmM49 wL6A8v88pas4NIh3TmT0WTkdwlrhbph5Gqr4FNhoE/VdV6DVtuMXV8KaOp8WPn0M jhCnd5dCJp+kf4glqaGqgrLrV/SICgae1s442Ls/2/ZxtByl9MsMhfqWDhU7OX8N R5oM1/UYOxcTql3kR5W9vc85KSfbZzK6rgNmFYrpWh1DD8MV0BTOqJZT4vrIiTHF fYrRL43b9XirnSluH05LCiv4EtXcJAKw -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:06 2025 by rpki-client