$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: zVw+b3Ye0Z9JkJYmFE9enK3ohz/VBPjlyz2GnpXSe+Y= Subject key identifier: FD:9F:1E:8D:54:2F:C6:FE:4A:51:11:FB:71:17:E1:D3:7A:0A:28:B2 Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 1055 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 1044 Signing time: Tue 04 Nov 2025 17:29:53 +0000 Manifest this update: Tue 04 Nov 2025 17:29:52 +0000 Manifest next update: Tue 11 Nov 2025 17:29:52 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: 7SMtewIGIMegUoIzRyI3TZquEAGH7yrbEACVI8LXdTY=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4181 (0x1055) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Nov 4 17:29:52 2025 GMT Not After : Nov 11 17:29:52 2025 GMT Subject: CN=690a3811-72e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:21:8d:f9:c6:e5:0f:0b:71:a5:2a:b4:e1: 5f:f2:92:39:a5:ac:49:9a:f8:33:0c:a2:1a:fe:c3: 14:28:40:80:ae:85:55:3f:f5:58:ec:b8:4f:ac:e5: fc:3a:ba:70:51:22:84:a1:73:33:25:87:52:42:af: 44:9c:d4:9c:ef:37:e8:c5:3b:6f:98:a3:c4:39:38: 95:95:bd:f3:0a:52:77:51:c3:f3:86:67:94:0e:84: 57:23:c4:bc:e0:c7:ac:6a:5b:ac:e1:8d:33:c5:ea: 30:7d:c3:f9:c1:6c:3b:58:0b:31:a7:39:44:1e:9e: 33:0f:4b:03:40:48:67:73:7a:86:db:e5:b7:e5:62: 5d:99:aa:7d:c0:d6:58:e6:0a:fc:79:f7:a9:4d:9f: c0:0f:f2:51:fb:42:c1:ef:69:70:be:b1:9d:39:4c: aa:ab:ba:bf:a7:f5:44:fa:ae:78:d4:ce:c2:b5:99: b2:5a:1a:5b:25:23:d7:67:41:32:25:33:de:6e:84: 92:e5:62:21:1e:94:45:ed:08:9f:b4:6d:5a:de:1f: b3:ad:56:10:52:d9:f9:21:a2:f4:18:aa:5a:5d:a2: 7c:c8:12:d9:94:50:b7:ae:fa:85:16:13:08:34:5e: b5:ec:3b:71:8a:19:ba:00:71:03:26:6f:a5:1e:46: e8:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:9F:1E:8D:54:2F:C6:FE:4A:51:11:FB:71:17:E1:D3:7A:0A:28:B2 X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:4a:24:db:ff:7a:a1:fa:56:7c:4e:4a:23:4f:8a:f5:23:49: 4f:14:b2:9c:0d:92:c0:64:03:2b:89:ac:01:66:33:04:72:30: f4:93:76:fd:c0:aa:99:e7:c8:0f:3b:5f:43:aa:a0:48:c1:39: 66:30:6b:49:bf:b7:e5:2c:6a:3b:6e:4e:eb:7d:37:9d:f2:79: 31:c2:c2:53:3a:9c:56:9c:c7:ec:e2:a9:c5:9c:85:05:ed:6e: 1b:a0:c7:aa:6c:6b:f5:d5:a3:76:85:7d:f7:a1:20:74:bc:1d: f1:8d:70:67:8e:32:ba:9f:f6:dc:17:c8:f6:d6:d4:9b:9e:8b: ee:b7:b6:84:bc:24:58:1b:12:b7:f6:2c:9a:fa:79:b0:48:e5: bb:70:5f:10:3b:40:19:f3:17:a6:d4:f0:68:4e:fa:fd:26:00: fa:74:8a:cf:13:fc:2f:08:c5:4a:ed:03:9e:6e:6c:0d:30:22: c9:72:5d:b3:ba:5d:6b:11:01:cb:c9:b7:4d:94:78:9b:86:45: 10:1c:bf:53:a6:5a:8d:62:a1:6d:f3:be:64:d0:06:83:5b:17: 31:40:09:e0:af:fe:01:bf:43:93:9b:df:23:c9:54:3a:2f:31: 79:ba:d8:63:09:5c:67:b7:02:5e:2e:db:57:4f:48:76:44:df: 0d:e3:41:12 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUxMTA0MTcyOTUyWhcNMjUxMTExMTcyOTUyWjAYMRYwFAYD VQQDEw02OTBhMzgxMS03MmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvIhjfnG5Q8LcaUqtOFf8pI5paxJmvgzDKIa/sMUKECAroVVP/VY7LhPrOX8 OrpwUSKEoXMzJYdSQq9EnNSc7zfoxTtvmKPEOTiVlb3zClJ3UcPzhmeUDoRXI8S8 4Mesalus4Y0zxeowfcP5wWw7WAsxpzlEHp4zD0sDQEhnc3qG2+W35WJdmap9wNZY 5gr8efepTZ/AD/JR+0LB72lwvrGdOUyqq7q/p/VE+q541M7CtZmyWhpbJSPXZ0Ey JTPeboSS5WIhHpRF7QiftG1a3h+zrVYQUtn5IaL0GKpaXaJ8yBLZlFC3rvqFFhMI NF617Dtxihm6AHEDJm+lHkbomQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFP2fHo1U L8b+SlER+3EX4dN6CiiyMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpSiTb/3qh+lZ8TkojT4r1I0lPFLKcDZLAZAMriawBZjMEcjD0k3b9 wKqZ58gPO19DqqBIwTlmMGtJv7flLGo7bk7rfTed8nkxwsJTOpxWnMfs4qnFnIUF 7W4boMeqbGv11aN2hX33oSB0vB3xjXBnjjK6n/bcF8j21tSbnovut7aEvCRYGxK3 9iya+nmwSOW7cF8QO0AZ8xem1PBoTvr9JgD6dIrPE/wvCMVK7QOebmwNMCLJcl2z ul1rEQHLybdNlHibhkUQHL9TplqNYqFt875k0AaDWxcxQAngr/4Bv0OTm98jyVQ6 LzF5uthjCVxntwJeLttXT0h2RN8N40ES -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:38 2025 by rpki-client