$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: KIye/TLyLuF+thSc9hU2mdfxMA4CEo85jhc2+k4Tphs= Subject key identifier: 5E:7B:DD:EF:0E:A3:7B:93:BB:29:18:B7:E5:02:6B:81:73:B0:B9:7A Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 9B Signing time: Wed 05 Nov 2025 06:33:41 +0000 Manifest this update: Wed 05 Nov 2025 06:33:40 +0000 Manifest next update: Wed 12 Nov 2025 06:33:40 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: NyZExY+EfDLBW23QBFQbRh2ajSas8q0nPFAc7Ey6fiM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Nov 5 06:33:40 2025 GMT Not After : Nov 12 06:33:40 2025 GMT Subject: CN=690aefc5-7624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:17:2a:9e:79:db:56:31:95:52:0d:50:a7:c8: 24:4e:c5:fe:fc:24:4d:57:67:50:47:f6:5a:6b:c4: 1e:86:5a:fd:aa:8d:62:f1:ee:b3:11:4b:88:38:7e: be:6a:f5:e8:10:06:93:23:98:2f:ec:1e:72:91:cf: d1:f7:98:34:3f:75:b9:ca:35:0a:0c:ee:b2:d6:ed: ab:ab:12:d4:38:c7:52:18:71:da:be:92:ce:2b:f7: da:18:fd:95:e2:8a:80:16:53:89:7b:01:f2:3f:be: c2:43:e0:88:ff:dc:9a:31:20:08:dd:61:a1:c3:c4: 6b:1d:41:7f:9b:8f:1e:97:81:40:c3:70:5f:d6:cb: 40:3b:31:1d:aa:b6:88:87:22:85:82:26:b6:44:79: 17:df:77:3b:ae:92:87:00:b6:3a:c4:f3:e6:dc:8f: 57:82:f9:fc:e0:82:d9:e5:e1:66:46:c1:94:84:8b: ad:68:75:cd:17:75:28:e0:47:d3:82:7b:5d:09:1a: fa:c0:d8:9c:c3:bc:f9:bf:63:6a:65:72:99:99:cd: b4:60:c3:a4:80:10:c2:4a:37:e9:31:49:26:c7:b3: ec:6f:be:6f:a5:43:57:ec:24:3b:df:61:86:d8:ed: e1:f5:77:5e:fa:b7:4b:bc:f8:be:94:9c:aa:96:17: 4d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:7B:DD:EF:0E:A3:7B:93:BB:29:18:B7:E5:02:6B:81:73:B0:B9:7A X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3f:62:60:d1:09:41:3a:52:2b:b6:9d:99:93:f1:20:93:4a:bb: 7f:2c:fd:7e:b1:1f:6b:83:88:cc:dc:80:f5:1d:63:15:9c:27: 1a:5a:4d:c2:b1:00:46:ac:fa:af:59:27:e2:f9:98:3b:2e:48: 35:b3:ac:88:36:d1:bf:84:a4:3b:b1:d5:42:83:a4:d2:ce:fa: fd:e7:f0:ae:68:1d:1d:e5:8e:b3:75:3a:42:b2:fb:07:e5:dd: 49:6a:e1:3d:ab:c3:52:9f:b6:34:2c:a0:7e:8c:7f:2f:88:d0: 55:79:a8:81:5e:54:50:bf:7a:f2:70:2f:d0:5b:2e:b2:7f:11: f2:0f:d9:76:5b:67:c8:4a:88:90:59:94:ff:82:70:7c:5a:86: 0c:6e:05:5a:9c:66:d0:e7:a8:36:bb:dc:2d:58:05:56:9f:d8: 72:80:63:dc:54:b4:8a:60:a6:df:59:fa:7f:68:2e:ec:0d:ea: a8:39:48:a8:7b:c8:33:86:14:f3:2d:e8:15:e1:7a:46:56:c1: 98:f7:9b:8c:1a:b8:f2:ab:39:76:46:96:2b:ea:3c:41:3c:f8: 63:6c:b0:7f:11:2a:fe:6c:db:28:82:9a:28:54:2d:06:df:f0: 7f:55:e9:9c:a4:b7:86:30:21:aa:2b:f7:5f:ca:d4:43:e9:d1: 5e:48:8d:f6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzNzcxMTAvBgNVBAUTKDkwODBEQjUwRkYwQjc0M0ZGQTMyQjc5RDBERDVDMzE5 MDIxRDZFMjQwHhcNMjUxMTA1MDYzMzQwWhcNMjUxMTEyMDYzMzQwWjAYMRYwFAYD VQQDEw02OTBhZWZjNS03NjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xcqnnnbVjGVUg1Qp8gkTsX+/CRNV2dQR/Zaa8Qehlr9qo1i8e6zEUuIOH6+ avXoEAaTI5gv7B5ykc/R95g0P3W5yjUKDO6y1u2rqxLUOMdSGHHavpLOK/faGP2V 4oqAFlOJewHyP77CQ+CI/9yaMSAI3WGhw8RrHUF/m48el4FAw3Bf1stAOzEdqraI hyKFgia2RHkX33c7rpKHALY6xPPm3I9Xgvn84ILZ5eFmRsGUhIutaHXNF3Uo4EfT gntdCRr6wNicw7z5v2NqZXKZmc20YMOkgBDCSjfpMUkmx7Psb75vpUNX7CQ732GG 2O3h9Xde+rdLvPi+lJyqlhdN2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF573e8O o3uTuykYt+UCa4FzsLl6MB8GA1UdIwQYMBaAFJCA21D/C3Q/+jK3nQ3VwxkCHW4k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTM3Ny9GM0M0NEE3OEND NTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGREXzZNcmVkRGRYREdRSWRi aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTM3Ny9GM0M0NEE3OENDNTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGRE XzZNcmVkRGRYREdRSWRiaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA/YmDRCUE6Uiu2nZmT8SCTSrt/LP1+sR9rg4jM3ID1HWMVnCcaWk3C sQBGrPqvWSfi+Zg7Lkg1s6yINtG/hKQ7sdVCg6TSzvr95/CuaB0d5Y6zdTpCsvsH 5d1JauE9q8NSn7Y0LKB+jH8viNBVeaiBXlRQv3rycC/QWy6yfxHyD9l2W2fISoiQ WZT/gnB8WoYMbgVanGbQ56g2u9wtWAVWn9hygGPcVLSKYKbfWfp/aC7sDeqoOUio e8gzhhTzLegV4XpGVsGY95uMGrjyqzl2RpYr6jxBPPhjbLB/ESr+bNsogpooVC0G 3/B/VemcpLeGMCGqK/dfytRD6dFeSI32 -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:26 2025 by rpki-client