$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft File: kKmEULnak4EYotWtU02IKPS5RjQ.mft (raw, json) Hash identifier: mYtyYvgNa+VSf38B11b6dSevWGsuJvD4Wl+Otsj7w00= Subject key identifier: 47:C7:FC:E2:8E:9D:FE:5A:E9:34:08:5C:E6:CB:97:67:DC:8C:FF:B7 Authority key identifier: 90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 Certificate issuer: /CN=A91EA2CC/serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Certificate serial: 0C77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft Manifest number: 0C61 Signing time: Tue 04 Nov 2025 18:42:51 +0000 Manifest this update: Tue 04 Nov 2025 18:42:51 +0000 Manifest next update: Tue 11 Nov 2025 18:42:51 +0000 Files and hashes: 1: kKmEULnak4EYotWtU02IKPS5RjQ.crl (hash: sRzTnv6ILSngMPprUF7nrOnJmEW+BbTRRkkCgCMZxRY=) 2: D376CA2E63B311EFBEFCDF10C4F9AE02.roa (hash: G+U7uQFgAb2U+N/txdaeFUXvdA97Z5VnhrdZ+BD6M4c=) 3: E6144BC6F52011EFB886A255C4F9AE02.roa (hash: aEMS3M29hCCeByUCXZ+uvfYFpf4/VBfRmYpl07QvYhY=) 4: C9989D9EF52011EF88416555C4F9AE02.roa (hash: J1Y3R18xnrLrxVnTd6dnJAcJxU9kFVJTgj8vMihGb8o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:42:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA2CC, serialNumber=90A98450B9DA938118A2D5AD534D8828F4B94634 Validity Not Before: Nov 4 18:42:51 2025 GMT Not After : Nov 11 18:42:51 2025 GMT Subject: CN=690a492b-5e0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:95:19:a6:e0:de:29:b0:cc:28:22:29:33:a2: ee:c1:9d:12:f6:b8:3d:95:5c:c5:26:09:59:7b:a3: 04:0a:0a:6c:e0:8e:57:e6:16:8a:f6:3c:8a:9e:bd: 69:48:d0:16:3e:5d:62:ef:1e:7e:ae:23:bf:cd:75: d2:dc:82:3a:11:f4:53:33:8c:b8:73:f1:8d:19:df: e5:fb:4f:bf:bd:7e:e1:8c:46:fb:1f:4b:0d:38:e4: eb:e8:4e:87:40:b9:0e:83:f2:99:28:18:be:c8:1f: 85:b4:8d:e5:b9:2c:2c:94:07:88:07:30:d5:17:58: df:2d:78:6b:2f:91:6b:6d:af:ff:59:dd:af:fe:ea: 59:75:63:dc:61:43:04:ff:38:28:0f:84:a8:4a:50: d8:22:13:90:b3:48:e1:4c:82:8b:15:98:d6:a4:8c: 2b:48:32:c6:2f:10:50:c0:30:f1:e0:68:7b:18:f2: 0a:96:ca:be:ef:81:7f:8e:1a:06:83:c1:76:d3:1c: ea:ad:8a:11:23:e1:61:29:a5:85:29:14:3a:3f:c8: 55:84:ef:75:46:89:7e:1b:84:e1:ee:66:82:fe:83: e0:f1:a5:ff:30:30:db:68:14:33:c9:6f:fc:72:59: 28:ca:5c:68:20:9b:ca:e3:74:ee:c5:0c:39:2a:70: eb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C7:FC:E2:8E:9D:FE:5A:E9:34:08:5C:E6:CB:97:67:DC:8C:FF:B7 X509v3 Authority Key Identifier: keyid:90:A9:84:50:B9:DA:93:81:18:A2:D5:AD:53:4D:88:28:F4:B9:46:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKmEULnak4EYotWtU02IKPS5RjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA2CC/F26E06CE11F911EA9CB88C35C4F9AE02/kKmEULnak4EYotWtU02IKPS5RjQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:4a:62:41:8b:c4:32:04:4e:17:1c:56:ab:f0:84:2f:87:f7: 3e:6b:76:a6:ed:7f:05:46:c2:a8:51:e8:3d:54:64:41:1e:64: ab:4f:04:44:a2:c7:f0:ce:e4:50:d0:63:8c:f6:df:24:ce:7f: 0c:bb:be:bd:17:bc:c6:25:f2:17:b0:c3:3b:80:55:1f:f3:f8: d4:bd:20:02:b2:3c:48:c5:95:84:ff:9c:eb:d1:3f:1f:5a:89: 31:9b:48:35:f4:c4:fa:b9:cf:6d:36:12:e6:bf:f8:5f:15:db: 95:50:d7:46:db:3b:28:e0:0f:95:01:a5:ca:83:24:04:a8:77: b9:a3:c5:fb:57:53:52:40:31:32:50:21:48:83:b8:90:2c:57: 3d:9a:dd:fb:54:aa:12:1c:6b:df:da:29:e2:d4:40:0a:5e:f7: 91:bc:2e:62:93:2d:7d:3a:63:78:14:07:93:e5:3e:09:f4:87: 92:33:80:0a:06:b0:77:10:01:e4:aa:56:5d:79:6f:72:de:9e: c4:e1:89:f3:17:fe:0c:a5:ae:e8:08:03:fe:d0:fd:53:27:0f: f9:b6:76:ff:67:0f:47:4e:1b:ff:d4:c9:4a:e0:04:b9:b9:08: 38:98:06:76:0e:e3:64:08:bb:8e:fd:66:88:16:ac:fb:53:75: 53:3f:ee:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUEyQ0MxMTAvBgNVBAUTKDkwQTk4NDUwQjlEQTkzODExOEEyRDVBRDUzNEQ4ODI4 RjRCOTQ2MzQwHhcNMjUxMTA0MTg0MjUxWhcNMjUxMTExMTg0MjUxWjAYMRYwFAYD VQQDEw02OTBhNDkyYi01ZTBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5UZpuDeKbDMKCIpM6LuwZ0S9rg9lVzFJglZe6MECgps4I5X5haK9jyKnr1p SNAWPl1i7x5+riO/zXXS3II6EfRTM4y4c/GNGd/l+0+/vX7hjEb7H0sNOOTr6E6H QLkOg/KZKBi+yB+FtI3luSwslAeIBzDVF1jfLXhrL5Frba//Wd2v/upZdWPcYUME /zgoD4SoSlDYIhOQs0jhTIKLFZjWpIwrSDLGLxBQwDDx4Gh7GPIKlsq+74F/jhoG g8F20xzqrYoRI+FhKaWFKRQ6P8hVhO91Rol+G4Th7maC/oPg8aX/MDDbaBQzyW/8 clkoylxoIJvK43TuxQw5KnDrwQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEfH/OKO nf5a6TQIXObLl2fcjP+3MB8GA1UdIwQYMBaAFJCphFC52pOBGKLVrVNNiCj0uUY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTJDQy9GMjZFMDZDRTEx RjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0RVlvdFd0VTAySUtQUzVS alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tLbUVVTG5hazRFWW90V3RVMDJJS1BTNVJqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTJDQy9GMjZFMDZDRTExRjkxMUVBOUNCODhDMzVDNEY5QUUwMi9rS21FVUxuYWs0 RVlvdFd0VTAySUtQUzVSalEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBSmJBi8QyBE4XHFar8IQvh/c+a3am7X8FRsKoUeg9VGRBHmSrTwRE osfwzuRQ0GOM9t8kzn8Mu769F7zGJfIXsMM7gFUf8/jUvSACsjxIxZWE/5zr0T8f Wokxm0g19MT6uc9tNhLmv/hfFduVUNdG2zso4A+VAaXKgyQEqHe5o8X7V1NSQDEy UCFIg7iQLFc9mt37VKoSHGvf2ini1EAKXveRvC5iky19OmN4FAeT5T4J9IeSM4AK BrB3EAHkqlZdeW9y3p7E4YnzF/4Mpa7oCAP+0P1TJw/5tnb/Zw9HThv/1MlK4AS5 uQg4mAZ2DuNkCLuO/WaIFqz7U3VTP+7K -----END CERTIFICATE-----Generated at Tue Nov 4 20:23:35 2025 by rpki-client