$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft File: _Kk1XBq-QE8_PPUZL9NLEloAvxs.mft (raw, json) Hash identifier: zfSgSVrkQiWjsqFJNeEVU2muGgAaATai53aQVbYzo20= Subject key identifier: 2E:00:91:C0:00:DA:B0:84:B5:25:D5:28:68:2E:A0:25:80:D1:2C:1F Authority key identifier: FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B Certificate issuer: /CN=A91ADD64/serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Certificate serial: 011B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft Manifest number: 0116 Signing time: Mon 03 Nov 2025 04:51:48 +0000 Manifest this update: Mon 03 Nov 2025 04:51:47 +0000 Manifest next update: Mon 10 Nov 2025 04:51:47 +0000 Files and hashes: 1: _Kk1XBq-QE8_PPUZL9NLEloAvxs.crl (hash: MLxBFD09/vs3/2bGrof58MRkTRQVNzPdkPD3047uA0A=) 2: 5740BDF8370111F094BF7862C4F9AE02.roa (hash: cSZNA9xFMjtULJTWhj5iUzlZdi4hLGYSAlp+qRF7bTw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 283 (0x11b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADD64, serialNumber=FCA9355C1ABE404F3F3CF5192FD34B125A00BF1B Validity Not Before: Nov 3 04:51:47 2025 GMT Not After : Nov 10 04:51:47 2025 GMT Subject: CN=690834e4-acd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d3:96:b0:82:65:c7:f1:a9:f5:a3:4f:f7:61: 82:61:a5:32:2f:61:98:3c:ae:97:cd:a7:72:22:87: 02:75:d5:5e:34:9b:2e:3a:47:58:06:d3:c0:b1:de: 76:d2:c5:d8:e5:e4:6f:91:4c:b8:a1:5c:66:0e:e9: 86:b5:00:7c:6a:80:0f:5d:6c:34:c1:87:88:73:91: 38:4e:43:2d:f2:23:6d:df:4c:8e:82:8c:91:a9:04: 1b:0d:33:f1:5e:20:d4:c0:3f:d5:6a:26:eb:48:1e: 38:f3:e4:31:e6:dc:b3:63:2d:d1:3f:f0:f6:7e:cd: 20:fd:62:16:be:b0:84:1a:32:f8:15:e0:5c:73:c3: 36:c6:70:5d:49:c4:55:52:be:b6:cb:42:67:5c:a2: 04:e9:42:a5:0f:e1:39:c9:db:80:09:f9:4b:a2:23: 94:4a:fe:45:52:57:d8:f2:15:85:c9:d4:3f:c1:b7: 82:70:1d:0d:82:05:02:01:52:44:b5:e6:33:99:93: 29:ca:79:b1:ed:64:b1:58:bb:81:15:b0:c0:65:27: f5:31:38:a1:95:f3:ce:45:09:5e:1f:ff:00:a2:47: 59:87:8f:c5:30:68:16:51:18:3a:bb:31:f2:c7:66: a3:34:a6:52:df:b1:6e:10:f0:8b:f7:2f:d8:d1:b0: fd:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:00:91:C0:00:DA:B0:84:B5:25:D5:28:68:2E:A0:25:80:D1:2C:1F X509v3 Authority Key Identifier: keyid:FC:A9:35:5C:1A:BE:40:4F:3F:3C:F5:19:2F:D3:4B:12:5A:00:BF:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/_Kk1XBq-QE8_PPUZL9NLEloAvxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADD64/4EB2B428134B11EF94424D3DC4F9AE02/_Kk1XBq-QE8_PPUZL9NLEloAvxs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:99:89:90:0e:aa:3c:30:c7:e9:f6:c3:63:7c:07:be:d9:d4: 06:92:c2:98:13:7b:ad:17:db:53:b7:db:8c:7c:fe:98:e4:66: fd:f4:5a:9a:4e:46:17:c9:13:b0:ae:de:11:fa:8d:f0:f1:81: 16:56:86:24:a4:89:d5:5d:7c:90:3e:b9:57:e7:10:ff:35:19: fc:3f:a4:f7:f8:92:80:d6:67:f5:97:f7:ae:5c:48:b2:ba:b5: 16:f8:87:92:d1:b6:0e:b7:43:36:22:31:6b:cc:25:d4:dd:a3: 03:14:68:ee:c3:c0:20:9d:05:40:e1:5d:e7:72:4a:d6:c2:69: 57:3d:4f:9d:1e:44:9c:fe:d1:bc:4b:9e:6d:0f:e9:a4:cc:1f: 23:e8:9b:b2:1e:48:91:dc:31:c1:1a:5b:0e:0e:b7:0f:5c:a7: 9e:81:14:df:71:c1:d7:11:41:24:c1:b8:df:57:6f:6b:1b:9d: 37:3b:a6:98:f6:28:cd:c4:fa:c2:8d:20:7f:e5:ed:81:ec:00: ba:66:86:4b:ba:05:32:70:4f:2f:5f:ef:78:05:61:72:ef:ab: 8d:09:ea:1f:21:47:73:85:46:e6:a4:69:a7:14:77:de:9b:63: 85:fb:98:b9:bf:60:c3:a1:52:27:88:04:02:8f:31:11:9c:4a: 3f:ae:ea:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICARswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURENjQxMTAvBgNVBAUTKEZDQTkzNTVDMUFCRTQwNEYzRjNDRjUxOTJGRDM0QjEy NUEwMEJGMUIwHhcNMjUxMTAzMDQ1MTQ3WhcNMjUxMTEwMDQ1MTQ3WjAYMRYwFAYD VQQDEw02OTA4MzRlNC1hY2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwtOWsIJlx/Gp9aNP92GCYaUyL2GYPK6XzadyIocCddVeNJsuOkdYBtPAsd52 0sXY5eRvkUy4oVxmDumGtQB8aoAPXWw0wYeIc5E4TkMt8iNt30yOgoyRqQQbDTPx XiDUwD/VaibrSB448+Qx5tyzYy3RP/D2fs0g/WIWvrCEGjL4FeBcc8M2xnBdScRV Ur62y0JnXKIE6UKlD+E5yduACflLoiOUSv5FUlfY8hWFydQ/wbeCcB0NggUCAVJE teYzmZMpynmx7WSxWLuBFbDAZSf1MTihlfPORQleH/8AokdZh4/FMGgWURg6uzHy x2ajNKZS37FuEPCL9y/Y0bD9awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC4AkcAA 2rCEtSXVKGguoCWA0SwfMB8GA1UdIwQYMBaAFPypNVwavkBPPzz1GS/TSxJaAL8b MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREQ2NC80RUIyQjQyODEz NEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFFOF9QUFVaTDlOTEVsb0F2 eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL19LazFYQnEtUUU4X1BQVVpMOU5MRWxvQXZ4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB REQ2NC80RUIyQjQyODEzNEIxMUVGOTQ0MjREM0RDNEY5QUUwMi9fS2sxWEJxLVFF OF9QUFVaTDlOTEVsb0F2eHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDcmYmQDqo8MMfp9sNjfAe+2dQGksKYE3utF9tTt9uMfP6Y5Gb99Fqa TkYXyROwrt4R+o3w8YEWVoYkpInVXXyQPrlX5xD/NRn8P6T3+JKA1mf1l/euXEiy urUW+IeS0bYOt0M2IjFrzCXU3aMDFGjuw8AgnQVA4V3nckrWwmlXPU+dHkSc/tG8 S55tD+mkzB8j6JuyHkiR3DHBGlsODrcPXKeegRTfccHXEUEkwbjfV29rG503O6aY 9ijNxPrCjSB/5e2B7AC6ZoZLugUycE8vX+94BWFy76uNCeofIUdzhUbmpGmnFHfe m2OF+5i5v2DDoVIniAQCjzERnEo/ruqy -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:27 2025 by rpki-client