$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: nvTt7uQAJmkx7dTyKUsfcCz8b21lSocIz96B9OjQyCk= Subject key identifier: 2C:53:67:42:19:E4:5A:14:BB:17:05:18:85:CF:07:B2:A0:2C:2F:D9 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 0219 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 0204 Signing time: Wed 05 Nov 2025 02:39:40 +0000 Manifest this update: Wed 05 Nov 2025 02:39:40 +0000 Manifest next update: Wed 12 Nov 2025 02:39:40 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: OBQj5qeSQfn0cj8BeNEDu5ybbw8Vxb9VsehmcB0qgzE=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:39:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Nov 5 02:39:40 2025 GMT Not After : Nov 12 02:39:40 2025 GMT Subject: CN=690ab8ec-b2f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:dc:07:39:f1:22:21:4a:04:d3:a4:1b:9a: f1:12:92:2f:02:cd:87:50:af:b9:9e:5a:c4:00:aa: a6:44:77:3d:c9:c6:db:07:55:1b:e2:5a:ea:60:ae: 6d:5d:18:f9:e3:3e:ae:e8:58:dd:e5:b3:85:34:61: 16:dc:9d:db:ce:9f:a6:07:e0:64:c6:84:f5:78:1c: 33:15:d2:9d:af:56:d9:df:97:b0:69:d9:40:71:4f: 1d:f4:33:33:a8:48:06:47:2d:f0:a7:db:82:88:93: 4b:6a:14:7a:6f:ad:12:ec:0d:a5:85:14:ef:a8:04: cb:98:5a:49:6e:3c:5a:11:dc:2b:b9:02:48:d6:f0: 65:7e:77:6a:ef:1c:68:84:a2:19:d0:5d:8d:c9:06: 12:1e:51:0d:05:6e:27:8b:4d:8e:e2:ab:f0:57:99: ae:04:b1:cf:4e:2d:89:09:bb:8e:4c:36:c3:35:53: 6b:fa:ba:1b:09:34:48:aa:f0:cc:25:76:a5:f9:cd: 78:f5:8b:04:f9:37:5c:fa:0b:87:84:f3:50:90:26: 0e:00:54:be:ab:31:d7:ff:c3:bf:48:c6:69:26:ac: c8:6b:0b:23:72:fb:d7:cc:42:14:45:56:11:90:eb: 44:f0:bc:1b:cc:c5:36:52:36:d6:d9:ac:81:73:b3: f2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:53:67:42:19:E4:5A:14:BB:17:05:18:85:CF:07:B2:A0:2C:2F:D9 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:b4:19:f0:e1:05:2f:81:09:e5:11:91:d0:a2:f0:f5:ad:10: ae:e4:a1:b8:f8:e0:a5:35:95:2f:41:0a:08:2c:b8:da:f9:a8: 64:10:98:9f:b2:41:3f:d6:9a:1e:9d:4a:7c:e4:b6:02:cd:c5: 94:e8:31:75:3b:1c:c4:c3:83:1a:83:47:30:08:b8:f0:9c:0a: dd:17:0e:bd:56:27:4d:78:67:17:7b:ba:76:27:bc:96:08:7b: cf:bf:e7:8c:2f:8d:56:5e:f3:54:ec:c5:36:6f:8a:7a:14:a2: f7:0b:5b:1a:96:72:1a:37:7e:40:6f:a8:bb:17:a2:4f:e1:23: 64:cd:ff:87:39:e3:14:88:8e:6b:43:c7:45:c0:18:7f:38:db: 17:77:90:f0:81:15:03:63:11:5d:0e:23:ac:37:c7:d0:ea:23: 1a:48:c1:7d:0e:d3:14:b6:32:37:33:90:e9:59:8e:6c:ce:e4: db:7f:8a:c2:50:bd:07:52:71:58:74:6a:5f:62:50:00:07:4e: 6d:80:04:57:3a:b1:14:af:b3:cb:5b:c5:46:38:9a:30:0c:cd: 31:f3:50:65:61:ed:05:cd:97:c3:3f:7c:75:52:b7:c6:8b:50: 28:3e:91:20:5f:45:c0:b6:ec:93:22:af:b6:c3:92:dc:30:28: 76:8d:a6:5d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUxMTA1MDIzOTQwWhcNMjUxMTEyMDIzOTQwWjAYMRYwFAYD VQQDEw02OTBhYjhlYy1iMmYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtfcBznxIiFKBNOkG5rxEpIvAs2HUK+5nlrEAKqmRHc9ycbbB1Ub4lrqYK5t XRj54z6u6Fjd5bOFNGEW3J3bzp+mB+BkxoT1eBwzFdKdr1bZ35ewadlAcU8d9DMz qEgGRy3wp9uCiJNLahR6b60S7A2lhRTvqATLmFpJbjxaEdwruQJI1vBlfndq7xxo hKIZ0F2NyQYSHlENBW4ni02O4qvwV5muBLHPTi2JCbuOTDbDNVNr+robCTRIqvDM JXal+c149YsE+Tdc+guHhPNQkCYOAFS+qzHX/8O/SMZpJqzIawsjcvvXzEIURVYR kOtE8LwbzMU2UjbW2ayBc7PyZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCxTZ0IZ 5FoUuxcFGIXPB7KgLC/ZMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBJtBnw4QUvgQnlEZHQovD1rRCu5KG4+OClNZUvQQoILLja+ahkEJif skE/1poenUp85LYCzcWU6DF1OxzEw4Mag0cwCLjwnArdFw69VidNeGcXe7p2J7yW CHvPv+eML41WXvNU7MU2b4p6FKL3C1salnIaN35Ab6i7F6JP4SNkzf+HOeMUiI5r Q8dFwBh/ONsXd5DwgRUDYxFdDiOsN8fQ6iMaSMF9DtMUtjI3M5DpWY5szuTbf4rC UL0HUnFYdGpfYlAAB05tgARXOrEUr7PLW8VGOJowDM0x81BlYe0FzZfDP3x1UrfG i1AoPpEgX0XAtuyTIq+2w5LcMCh2jaZd -----END CERTIFICATE-----Generated at Thu Nov 6 00:41:11 2025 by rpki-client