$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft File: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft (raw, json) Hash identifier: IoD+UJQuXAxSjqR+lLojaOLP0uUXgnjl4FZImk4c+3I= Subject key identifier: 60:B8:5E:27:0E:ED:60:F5:3F:C3:8D:AC:B1:6B:EB:39:E8:33:C1:D4 Authority key identifier: 28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 Certificate issuer: /CN=A91C5021/serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Certificate serial: 078B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft Manifest number: 0774 Signing time: Tue 04 Nov 2025 21:43:42 +0000 Manifest this update: Tue 04 Nov 2025 21:43:41 +0000 Manifest next update: Tue 11 Nov 2025 21:43:41 +0000 Files and hashes: 1: KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl (hash: FJJB0P/yPC0aVmpt1UtzYtqqypzELM4St9R9Npoau7w=) 2: C42CEC7ECC3611EF9C79665CC4F9AE02.roa (hash: +9I46oBmobqbn5rox7c5LlYsiP1+hncBa8w/SO0pYyk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1931 (0x78b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5021, serialNumber=28F07110E43584A3BA6A3A4A87D68E9EB7D3E902 Validity Not Before: Nov 4 21:43:41 2025 GMT Not After : Nov 11 21:43:41 2025 GMT Subject: CN=690a738e-df9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:da:4e:ad:b2:4a:7a:64:52:96:f6:27:9d: 81:65:0c:e2:a4:ce:9c:c1:00:57:9a:e3:6a:59:4c: eb:80:af:83:b2:ff:df:5a:db:ea:9b:06:fa:a5:64: ea:10:58:70:61:15:b7:ad:15:67:bc:97:0a:37:cf: 95:0e:46:c4:ca:64:ca:8d:b1:77:c5:2b:23:2c:a9: 6b:ea:56:99:fa:84:a5:2c:dc:77:86:47:1a:16:83: a0:0b:31:dc:41:6a:c1:43:fa:f5:26:c2:f6:98:a0: 07:c0:ac:04:f0:21:5d:59:3a:bd:82:81:d9:03:c8: d0:32:fe:fc:22:f9:e2:ea:0d:48:b3:88:bc:c4:65: 5d:8f:9e:6e:72:69:85:35:c6:a9:eb:f9:1d:8e:46: 1b:78:7e:38:5c:6c:8f:94:8c:8f:d4:de:20:e3:25: 87:f8:1d:47:c0:b5:03:2e:19:8a:c7:25:ad:88:c8: ec:bd:31:32:7a:8e:d9:c2:42:e8:d0:1c:b1:57:14: e9:23:1a:57:85:a3:58:6c:9f:fd:0f:97:e8:e3:33: 90:48:71:6a:15:4e:c5:4d:7e:a8:0b:ba:17:da:93: c7:99:a1:60:ae:99:13:64:4c:e8:d5:54:5d:5d:64: af:4f:ab:d7:69:eb:6a:0e:d0:bf:20:bc:cd:e9:8c: 37:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:B8:5E:27:0E:ED:60:F5:3F:C3:8D:AC:B1:6B:EB:39:E8:33:C1:D4 X509v3 Authority Key Identifier: keyid:28:F0:71:10:E4:35:84:A3:BA:6A:3A:4A:87:D6:8E:9E:B7:D3:E9:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5021/9AFD486C3BBC11EBA776F161C4F9AE02/KPBxEOQ1hKO6ajpKh9aOnrfT6QI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 43:3c:90:7d:43:9f:5b:0e:27:8f:17:bb:ba:62:05:a3:3b:8e: 19:1d:fb:d2:f7:fa:1d:39:bf:b1:cf:82:24:53:e4:06:49:31: ef:69:e8:8d:49:8f:09:c4:29:c4:5f:fe:e5:9f:99:59:12:de: 89:26:72:37:7e:b3:d7:ca:12:12:56:07:e5:38:8d:41:5f:ad: 58:4f:df:ae:4a:9c:13:26:19:a9:72:21:58:5d:45:03:32:09: 27:5a:8f:b1:dc:76:e3:c0:21:37:35:3c:4f:94:5a:dd:07:fa: b0:92:92:11:e5:af:c1:2f:ab:8d:22:81:3a:14:00:6e:6f:cc: cd:32:f1:64:3c:14:5f:78:a6:76:e5:43:d2:73:e0:7c:b6:0d: 7c:02:c7:eb:99:3a:34:49:6f:0e:bc:ff:05:a3:66:61:87:66: 87:b7:7e:2d:54:a6:dc:1d:5c:18:6f:d1:cf:3d:78:02:72:f8: b1:17:06:fc:f3:48:1d:46:75:66:d9:75:dc:eb:0e:df:57:62: fd:cd:6a:14:63:e0:13:f9:f7:24:5b:ae:34:2c:be:93:c2:e0: 05:3f:4e:3d:be:9a:19:4f:eb:67:73:c1:90:5c:75:65:dd:bc: 0b:9d:f7:02:e1:21:d9:94:e4:2c:9f:e4:f9:20:43:0b:a4:94: 05:d0:a2:c3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB4swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzUwMjExMTAvBgNVBAUTKDI4RjA3MTEwRTQzNTg0QTNCQTZBM0E0QTg3RDY4RTlF QjdEM0U5MDIwHhcNMjUxMTA0MjE0MzQxWhcNMjUxMTExMjE0MzQxWjAYMRYwFAYD VQQDEw02OTBhNzM4ZS1kZjljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL/aTq2ySnpkUpb2J52BZQzipM6cwQBXmuNqWUzrgK+Dsv/fWtvqmwb6pWTq EFhwYRW3rRVnvJcKN8+VDkbEymTKjbF3xSsjLKlr6laZ+oSlLNx3hkcaFoOgCzHc QWrBQ/r1JsL2mKAHwKwE8CFdWTq9goHZA8jQMv78Ivni6g1Is4i8xGVdj55ucmmF Ncap6/kdjkYbeH44XGyPlIyP1N4g4yWH+B1HwLUDLhmKxyWtiMjsvTEyeo7ZwkLo 0ByxVxTpIxpXhaNYbJ/9D5fo4zOQSHFqFU7FTX6oC7oX2pPHmaFgrpkTZEzo1VRd XWSvT6vXaetqDtC/ILzN6Yw3yQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGC4XicO 7WD1P8ONrLFr6znoM8HUMB8GA1UdIwQYMBaAFCjwcRDkNYSjumo6SofWjp630+kC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTAyMS85QUZENDg2QzNC QkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhLTzZhanBLaDlhT25yZlQ2 UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQQnhFT1ExaEtPNmFqcEtoOWFPbnJmVDZRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTAyMS85QUZENDg2QzNCQkMxMUVCQTc3NkYxNjFDNEY5QUUwMi9LUEJ4RU9RMWhL TzZhanBLaDlhT25yZlQ2UUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBDPJB9Q59bDiePF7u6YgWjO44ZHfvS9/odOb+xz4IkU+QGSTHvaeiN SY8JxCnEX/7ln5lZEt6JJnI3frPXyhISVgflOI1BX61YT9+uSpwTJhmpciFYXUUD MgknWo+x3HbjwCE3NTxPlFrdB/qwkpIR5a/BL6uNIoE6FABub8zNMvFkPBRfeKZ2 5UPSc+B8tg18AsfrmTo0SW8OvP8Fo2Zhh2aHt34tVKbcHVwYb9HPPXgCcvixFwb8 80gdRnVm2XXc6w7fV2L9zWoUY+AT+fckW640LL6TwuAFP049vpoZT+tnc8GQXHVl 3bwLnfcC4SHZlOQsn+T5IEMLpJQF0KLD -----END CERTIFICATE-----Generated at Wed Nov 5 10:01:52 2025 by rpki-client