$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft File: K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft (raw, json) Hash identifier: t3zxuBhOnXvA66ZqCM51LbQmJJBqhbxoX2Rbt2hZAFw= Subject key identifier: 78:80:44:69:3B:EC:FF:59:A8:08:41:B3:CF:0E:2B:41:8D:7C:23:BA Authority key identifier: 2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 Certificate issuer: /CN=A91AE25A/serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Certificate serial: 01A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft Manifest number: 019D Signing time: Mon 03 Nov 2025 03:20:03 +0000 Manifest this update: Mon 03 Nov 2025 03:20:03 +0000 Manifest next update: Mon 10 Nov 2025 03:20:03 +0000 Files and hashes: 1: K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl (hash: 7EQDsnQMxHNb1FJjK60APxj+v/mQzQbgS0AI4Onu/y4=) 2: AB366D1C409611EE92C55F40C4F9AE02.roa (hash: bUZufHm2YUJjKX7UE+iKB/iI+xqEJZ46mEmd8NCr+x8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:20:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 416 (0x1a0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE25A, serialNumber=2BCA12D46D4611ED6EF1886F364468DF3D02EDE5 Validity Not Before: Nov 3 03:20:03 2025 GMT Not After : Nov 10 03:20:03 2025 GMT Subject: CN=69081f63-9a27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:ff:ca:7a:08:1f:10:aa:c8:36:49:9d:78:a2: 00:9e:02:11:05:3a:79:e3:af:a9:2f:73:f5:b7:bb: cb:0b:25:9f:e1:a9:f7:94:a3:76:63:bb:79:a6:94: 51:3d:8b:26:66:e9:68:b8:46:05:f6:b0:a9:b3:70: fb:fc:37:46:8b:02:64:f3:ac:26:4e:8a:92:1c:ca: 4b:16:89:84:05:bf:97:d2:6e:2d:e4:61:90:69:45: 7e:2a:49:2b:bd:60:4f:ea:ff:78:3a:33:97:87:1b: 2c:8b:1d:69:90:1a:42:8f:66:e9:75:8f:f5:fb:5d: 52:58:44:79:4d:e7:cb:3b:e9:42:c1:77:ad:cb:41: fd:5e:27:4b:f1:1f:ac:f0:11:ae:45:03:f1:df:92: 9b:a2:b3:3e:9b:e0:e9:69:81:5e:c1:78:c1:aa:48: ce:30:0e:06:17:fe:e6:02:0a:a6:7b:e9:57:a9:96: b9:df:55:0e:19:22:01:d4:92:3b:67:38:66:f7:a7: 30:a1:0b:eb:0c:bc:da:ea:38:06:69:2c:04:7f:7b: df:ff:94:2d:80:2a:25:6b:02:5e:c7:46:3d:8c:d8: 8d:4d:a2:ea:fc:57:92:f8:33:6d:ef:a8:29:b1:c1: 5e:b1:5a:95:3a:51:fb:bd:f4:43:70:12:8d:20:f3: b6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:80:44:69:3B:EC:FF:59:A8:08:41:B3:CF:0E:2B:41:8D:7C:23:BA X509v3 Authority Key Identifier: keyid:2B:CA:12:D4:6D:46:11:ED:6E:F1:88:6F:36:44:68:DF:3D:02:ED:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K8oS1G1GEe1u8YhvNkRo3z0C7eU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE25A/2C96F508409611EEB46E6F3FC4F9AE02/K8oS1G1GEe1u8YhvNkRo3z0C7eU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:c3:d0:42:15:e3:27:70:b5:35:3e:6a:99:e1:18:22:af:cc: 47:56:f4:4c:ba:1b:38:b6:3c:a9:35:6e:f8:a3:d0:c1:c9:40: b1:a9:88:3a:c4:be:ae:86:7f:87:14:fb:36:2a:36:67:c5:90: 31:ef:fb:1a:76:e4:66:62:10:f4:ca:80:42:03:a9:72:19:a2: 05:a8:c4:78:f4:12:42:b7:1c:bb:ef:d8:09:66:bc:84:10:7e: 14:b5:b2:30:94:35:92:86:52:8b:2f:4d:6a:dc:d5:66:41:78: 4f:ed:3a:32:43:70:7e:a1:4a:13:61:77:60:b8:6a:12:30:a4: 4d:cf:cb:2f:b5:10:06:de:5b:61:a3:14:02:90:3c:f0:b1:96: 59:eb:71:d9:f8:a2:e9:95:47:1f:e5:b8:9a:ca:f0:c0:5d:f4: 0a:2d:4d:17:d4:03:ea:db:cd:47:67:c6:bc:23:61:dd:37:42: 38:ae:d9:b6:0e:d3:3a:5d:f1:3e:2f:db:2e:73:84:16:eb:3b: 1f:67:68:f0:05:34:e3:3a:2d:9e:a8:e6:7e:47:fd:93:9e:b1: c4:c0:65:1e:60:bf:f2:9b:73:fe:4c:2d:70:2d:fc:cd:75:6b: 52:d6:e5:60:d1:7a:73:6b:c5:df:38:0a:1f:5e:78:e1:f3:0c: 75:48:5c:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUyNUExMTAvBgNVBAUTKDJCQ0ExMkQ0NkQ0NjExRUQ2RUYxODg2RjM2NDQ2OERG M0QwMkVERTUwHhcNMjUxMTAzMDMyMDAzWhcNMjUxMTEwMDMyMDAzWjAYMRYwFAYD VQQDEw02OTA4MWY2My05YTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6v/KeggfEKrINkmdeKIAngIRBTp546+pL3P1t7vLCyWf4an3lKN2Y7t5ppRR PYsmZulouEYF9rCps3D7/DdGiwJk86wmToqSHMpLFomEBb+X0m4t5GGQaUV+Kkkr vWBP6v94OjOXhxssix1pkBpCj2bpdY/1+11SWER5TefLO+lCwXety0H9XidL8R+s 8BGuRQPx35KborM+m+DpaYFewXjBqkjOMA4GF/7mAgqme+lXqZa531UOGSIB1JI7 Zzhm96cwoQvrDLza6jgGaSwEf3vf/5QtgColawJex0Y9jNiNTaLq/FeS+DNt76gp scFesVqVOlH7vfRDcBKNIPO2OQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHiARGk7 7P9ZqAhBs88OK0GNfCO6MB8GA1UdIwQYMBaAFCvKEtRtRhHtbvGIbzZEaN89Au3l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTI1QS8yQzk2RjUwODQw OTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0VlMXU4WWh2TmtSbzN6MEM3 ZVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0s4b1MxRzFHRWUxdThZaHZOa1JvM3owQzdlVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RTI1QS8yQzk2RjUwODQwOTYxMUVFQjQ2RTZGM0ZDNEY5QUUwMi9LOG9TMUcxR0Vl MXU4WWh2TmtSbzN6MEM3ZVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAYw9BCFeMncLU1PmqZ4Rgir8xHVvRMuhs4tjypNW74o9DByUCxqYg6 xL6uhn+HFPs2KjZnxZAx7/saduRmYhD0yoBCA6lyGaIFqMR49BJCtxy779gJZryE EH4UtbIwlDWShlKLL01q3NVmQXhP7ToyQ3B+oUoTYXdguGoSMKRNz8svtRAG3lth oxQCkDzwsZZZ63HZ+KLplUcf5biayvDAXfQKLU0X1APq281HZ8a8I2HdN0I4rtm2 DtM6XfE+L9suc4QW6zsfZ2jwBTTjOi2eqOZ+R/2TnrHEwGUeYL/ym3P+TC1wLfzN dWtS1uVg0Xpza8XfOAofXnjh8wx1SFw8 -----END CERTIFICATE-----Generated at Wed Nov 5 05:18:04 2025 by rpki-client