$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: RNIjEd0foPy0wyXfFzA/C2DRYl3SX9Y7jpkKLER/1b4= Subject key identifier: 6D:9B:47:DB:DE:9C:CB:15:16:A9:51:12:7D:5B:F8:B8:AE:C0:B3:35 Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: F5 Signing time: Mon 03 Nov 2025 05:17:26 +0000 Manifest this update: Mon 03 Nov 2025 05:17:25 +0000 Manifest next update: Mon 10 Nov 2025 05:17:25 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: aEJTEUcVsfWjl352cl5Ob0BIPyEB6/mdgzM73pRpmWs=) 2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:17:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Nov 3 05:17:25 2025 GMT Not After : Nov 10 05:17:25 2025 GMT Subject: CN=69083ae5-0b7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5d:e4:33:77:29:4d:73:3c:8b:29:29:a1:ba: 7c:1b:10:1b:4b:78:cc:7e:f1:53:3c:34:80:f8:0c: 41:43:c0:98:b1:61:53:4b:90:0e:fe:a6:49:35:f8: 4e:cd:2d:65:b7:da:1b:af:f0:70:d9:ba:e6:4e:b7: 93:af:9f:31:75:b3:47:3c:3c:9a:7a:c0:79:cd:d9: fd:74:fa:68:64:f7:85:c6:6f:d4:e0:4c:64:3f:13: 23:c0:af:64:9f:48:a4:88:cd:e0:04:03:13:14:27: d6:e8:24:21:1a:90:0d:c7:ce:ee:f6:ca:5d:59:98: fd:7e:ad:e5:e5:dd:67:78:6b:a5:38:af:31:a3:12: 98:30:4c:bb:5b:a1:f8:a4:57:da:c0:9e:c1:2f:d5: 8d:a8:a4:91:60:b7:46:26:6b:a2:6b:f0:df:2c:1f: ae:71:b4:d0:b6:47:92:51:ca:a7:ec:6e:18:35:5c: 4a:5e:bd:38:63:ed:18:b9:05:a4:30:d7:fe:49:ee: 55:aa:0c:2d:ec:eb:5d:45:2a:df:4a:c2:5f:b1:1b: 1f:a9:c6:64:51:9d:97:0d:5a:2b:83:7d:6c:8f:ad: 9b:88:02:3b:d8:db:4b:a9:64:40:2f:c9:1f:b6:2a: a4:26:91:da:15:5e:63:c8:3b:ee:ac:e7:ff:c4:03: b2:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:9B:47:DB:DE:9C:CB:15:16:A9:51:12:7D:5B:F8:B8:AE:C0:B3:35 X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:30:97:ca:57:81:d4:0c:45:dc:b1:c8:b2:bc:af:e5:d7:fc: ea:5d:61:3b:1e:48:72:e7:59:10:28:4f:57:b4:a7:4b:a2:2d: 13:ac:eb:a4:25:75:8e:bf:8f:8a:9f:1f:47:64:de:7a:67:8e: c2:e5:5f:8c:44:80:2f:7c:a2:ee:d6:ce:a0:b5:82:13:07:af: ab:8b:b0:e4:4b:c1:8a:29:c7:0b:55:d7:7c:2e:b6:05:a6:af: 2e:79:16:0e:7e:e3:fd:c7:4d:6c:da:f2:ec:42:3a:20:a2:2c: e3:3e:89:43:ec:f1:9b:9b:8a:a5:4c:95:5a:15:bd:23:f3:16: 12:68:d9:26:16:80:0d:4c:a7:ea:e0:b9:ea:c5:70:d2:73:82: 96:be:25:90:2f:1b:9a:6e:c3:d2:00:18:c0:0a:bf:7c:25:d1: c8:a9:e9:3c:45:60:2f:b8:26:87:94:96:ac:eb:38:5f:b4:6c: 3b:4e:52:a5:a1:8e:50:5c:30:47:b5:df:47:08:aa:3a:76:7d: 2a:db:fa:b0:cc:0d:84:2e:80:54:50:22:d2:db:e0:db:a8:f0: 39:76:fa:b5:96:6e:7f:57:ba:77:68:8d:dd:59:49:46:42:c9: 03:9e:77:28:6f:e6:af:ca:77:df:00:47:64:84:ea:7e:dd:51: 1a:b9:40:fd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUxMTAzMDUxNzI1WhcNMjUxMTEwMDUxNzI1WjAYMRYwFAYD VQQDEw02OTA4M2FlNS0wYjdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4l3kM3cpTXM8iykpobp8GxAbS3jMfvFTPDSA+AxBQ8CYsWFTS5AO/qZJNfhO zS1lt9obr/Bw2brmTreTr58xdbNHPDyaesB5zdn9dPpoZPeFxm/U4ExkPxMjwK9k n0ikiM3gBAMTFCfW6CQhGpANx87u9spdWZj9fq3l5d1neGulOK8xoxKYMEy7W6H4 pFfawJ7BL9WNqKSRYLdGJmuia/DfLB+ucbTQtkeSUcqn7G4YNVxKXr04Y+0YuQWk MNf+Se5Vqgwt7OtdRSrfSsJfsRsfqcZkUZ2XDVorg31sj62biAI72NtLqWRAL8kf tiqkJpHaFV5jyDvurOf/xAOybQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG2bR9ve nMsVFqlREn1b+LiuwLM1MB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlMJfKV4HUDEXcsciyvK/l1/zqXWE7Hkhy51kQKE9XtKdLoi0TrOuk JXWOv4+Knx9HZN56Z47C5V+MRIAvfKLu1s6gtYITB6+ri7DkS8GKKccLVdd8LrYF pq8ueRYOfuP9x01s2vLsQjogoizjPolD7PGbm4qlTJVaFb0j8xYSaNkmFoANTKfq 4LnqxXDSc4KWviWQLxuabsPSABjACr98JdHIqek8RWAvuCaHlJas6zhftGw7TlKl oY5QXDBHtd9HCKo6dn0q2/qwzA2ELoBUUCLS2+DbqPA5dvq1lm5/V7p3aI3dWUlG QskDnncob+avynffAEdkhOp+3VEauUD9 -----END CERTIFICATE-----Generated at Tue Nov 4 21:34:26 2025 by rpki-client