$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft File: KHuwzWb71-W3qIumZ4kSTAsExXg.mft (raw, json) Hash identifier: N4D0TBh0z/w+1Qk6hBiu7mokkblKRIbKsTeT/4BewYI= Subject key identifier: C6:D6:2B:57:A4:E8:05:4C:D9:A3:D6:BD:64:B0:CF:78:CE:90:BA:67 Authority key identifier: 28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 Certificate issuer: /CN=A91EAE25/serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Certificate serial: 0BCF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft Manifest number: 0BC2 Signing time: Sun 02 Nov 2025 18:54:48 +0000 Manifest this update: Sun 02 Nov 2025 18:54:47 +0000 Manifest next update: Sun 09 Nov 2025 18:54:47 +0000 Files and hashes: 1: KHuwzWb71-W3qIumZ4kSTAsExXg.crl (hash: qgT8NwpljkFesy4xDZDU1wWfC3uhEhS4otmDy0u9b5s=) 2: 2BA212DC306D11EA81D19B38C4F9AE02.roa (hash: t1CbmrYkwmBmGPrreNUR9MWvKRnTUYs/Z13bobbplHk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3023 (0xbcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE25, serialNumber=287BB0CD66FBD7E5B7A88BA66789124C0B04C578 Validity Not Before: Nov 2 18:54:47 2025 GMT Not After : Nov 9 18:54:47 2025 GMT Subject: CN=6907a8f8-06d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2b:cd:96:ff:d7:95:df:53:96:d4:5d:f2:70: ec:24:11:d6:49:15:6b:3a:c0:2d:f1:f9:c7:7b:34: 2c:09:ca:27:63:44:fb:38:01:df:a6:62:ac:21:b8: fd:45:e5:e6:5e:a9:54:b4:14:52:f2:09:80:e3:b3: 1d:d6:ea:27:e5:63:cc:f5:19:92:77:ce:08:3d:19: 69:25:22:48:98:7d:4a:1a:38:b1:0a:bc:65:4a:60: 87:98:c4:89:ca:c3:92:e1:44:ca:21:56:75:14:69: c9:eb:85:20:e1:a0:d3:a4:0a:64:de:06:87:72:a9: ed:02:70:18:b7:2b:02:63:04:8d:47:5a:d8:6e:f2: 29:cb:93:93:15:eb:7d:b4:f4:5b:eb:39:57:d8:c8: 22:e6:95:90:9b:60:04:46:87:0b:7a:44:e9:1b:7f: c7:08:97:1c:d4:a8:08:6e:7c:2b:8d:40:be:c8:d5: 14:b7:8f:9e:1b:14:87:f1:29:69:4b:a9:f4:05:b0: 57:bb:b7:c6:76:b0:f5:66:8c:19:d8:44:dd:57:75: b6:01:fc:8e:f5:88:e4:0c:83:b1:90:c9:34:59:78: de:44:b4:e2:10:05:c1:f3:3d:71:94:a0:30:c7:fc: 1c:c0:0b:37:fc:ad:0f:5c:07:b7:6a:2f:ca:00:66: 44:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D6:2B:57:A4:E8:05:4C:D9:A3:D6:BD:64:B0:CF:78:CE:90:BA:67 X509v3 Authority Key Identifier: keyid:28:7B:B0:CD:66:FB:D7:E5:B7:A8:8B:A6:67:89:12:4C:0B:04:C5:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHuwzWb71-W3qIumZ4kSTAsExXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE25/68E57AEE306811EAA706E32AC4F9AE02/KHuwzWb71-W3qIumZ4kSTAsExXg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:dc:02:b1:06:5d:da:b5:bd:bf:d0:84:61:b0:32:1c:87:1b: fb:c8:cc:1d:60:1b:eb:90:89:a8:2f:88:0c:e8:e7:bc:46:b7: d0:5a:ed:74:17:a7:17:a0:06:fa:0d:41:9a:2a:98:b0:a7:a8: 86:3c:72:99:e0:67:45:93:4d:5a:13:20:0e:e6:ed:c7:86:75: 26:a5:1b:0e:2d:2a:1b:43:b4:b1:a5:50:a4:ff:c0:c2:49:c6: a2:43:ad:92:c4:b5:65:0a:cf:db:0b:1d:bd:a7:d9:d0:de:18: 09:d0:7d:2e:c7:88:5d:8a:77:0a:de:7b:ce:c6:0c:c1:ac:2f: a5:e1:7e:a5:21:99:de:67:60:f1:08:7a:2c:97:46:03:5b:f2: cf:07:b1:d6:79:5c:76:c4:e4:4c:36:6c:a9:a8:21:e5:82:51: 15:96:f2:9f:67:e2:0e:cb:ec:7d:90:ce:16:e0:8b:f4:ab:5d: c2:5b:d7:d0:7e:47:64:48:4b:86:81:62:60:3a:64:04:ba:cf: 8f:2f:a0:e0:53:21:84:7a:02:da:02:b4:91:20:f3:5b:ae:81: b3:0b:cd:c0:36:15:1d:cd:43:84:8f:4b:df:22:90:83:47:34: b0:00:4e:fe:4f:b9:1e:8a:cd:5d:ed:bc:f2:28:19:2a:2f:cd: b4:2b:0f:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC88wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFMjUxMTAvBgNVBAUTKDI4N0JCMENENjZGQkQ3RTVCN0E4OEJBNjY3ODkxMjRD MEIwNEM1NzgwHhcNMjUxMTAyMTg1NDQ3WhcNMjUxMTA5MTg1NDQ3WjAYMRYwFAYD VQQDEw02OTA3YThmOC0wNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yvNlv/Xld9TltRd8nDsJBHWSRVrOsAt8fnHezQsCconY0T7OAHfpmKsIbj9 ReXmXqlUtBRS8gmA47Md1uon5WPM9RmSd84IPRlpJSJImH1KGjixCrxlSmCHmMSJ ysOS4UTKIVZ1FGnJ64Ug4aDTpApk3gaHcqntAnAYtysCYwSNR1rYbvIpy5OTFet9 tPRb6zlX2Mgi5pWQm2AERocLekTpG3/HCJcc1KgIbnwrjUC+yNUUt4+eGxSH8Slp S6n0BbBXu7fGdrD1ZowZ2ETdV3W2AfyO9YjkDIOxkMk0WXjeRLTiEAXB8z1xlKAw x/wcwAs3/K0PXAe3ai/KAGZE1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMbWK1ek 6AVM2aPWvWSwz3jOkLpnMB8GA1UdIwQYMBaAFCh7sM1m+9flt6iLpmeJEkwLBMV4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUyNS82OEU1N0FFRTMw NjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEtVzNxSXVtWjRrU1RBc0V4 WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIdXd6V2I3MS1XM3FJdW1aNGtTVEFzRXhYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QUUyNS82OEU1N0FFRTMwNjgxMUVBQTcwNkUzMkFDNEY5QUUwMi9LSHV3eldiNzEt VzNxSXVtWjRrU1RBc0V4WGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA13AKxBl3atb2/0IRhsDIchxv7yMwdYBvrkImoL4gM6Oe8RrfQWu10 F6cXoAb6DUGaKpiwp6iGPHKZ4GdFk01aEyAO5u3HhnUmpRsOLSobQ7SxpVCk/8DC ScaiQ62SxLVlCs/bCx29p9nQ3hgJ0H0ux4hdincK3nvOxgzBrC+l4X6lIZneZ2Dx CHosl0YDW/LPB7HWeVx2xORMNmypqCHlglEVlvKfZ+IOy+x9kM4W4Iv0q13CW9fQ fkdkSEuGgWJgOmQEus+PL6DgUyGEegLaArSRIPNbroGzC83ANhUdzUOEj0vfIpCD RzSwAE7+T7keis1d7bzyKBkqL820Kw9O -----END CERTIFICATE-----Generated at Tue Nov 4 19:13:04 2025 by rpki-client