$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft File: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft (raw, json) Hash identifier: gYzbN75hQcE6T+cIK1nGVfV1jC5uOBN/OY1dfHBWJIo= Subject key identifier: 9C:F3:60:32:F7:60:24:8E:33:83:72:60:59:83:9C:C3:E6:11:55:4F Authority key identifier: 90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 Certificate issuer: /CN=A91EC4DD/serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Certificate serial: 072A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft Manifest number: 0724 Signing time: Tue 04 Nov 2025 21:54:27 +0000 Manifest this update: Tue 04 Nov 2025 21:54:26 +0000 Manifest next update: Tue 11 Nov 2025 21:54:26 +0000 Files and hashes: 1: kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl (hash: FY8yPjjDZ0fyXa3vC3tbmkS4gFjFksXF6g+syHUo0/4=) 2: AFCD8352557E11EBACB5CE3BC4F9AE02.roa (hash: yon8zk/9fCZ3WyFBjyvszv/gLcYp08xtnvCiEsyDKSw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1834 (0x72a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC4DD, serialNumber=90C3D8351726A8B91DE26D46811283435CC52623 Validity Not Before: Nov 4 21:54:26 2025 GMT Not After : Nov 11 21:54:26 2025 GMT Subject: CN=690a7613-af64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:17:76:41:56:b9:97:58:86:17:1c:38:42:22: 41:30:66:c4:83:64:27:79:f0:e9:1d:bb:58:40:eb: 83:15:3b:19:eb:9d:18:78:da:9f:3f:b9:b1:5f:84: f9:33:8c:5b:bf:40:5d:8e:57:06:8c:02:ec:a3:c0: 37:f2:ca:ba:8a:51:94:e8:ab:60:e0:64:23:bb:90: 66:90:2c:71:47:20:e6:ac:7f:cc:80:be:a1:71:30: 73:1a:d4:c5:b7:5d:5e:53:6c:6c:64:b9:6b:7d:63: 88:f1:ec:59:20:c3:44:f4:38:8a:16:1a:e7:3b:78: 57:b2:c9:0e:ce:ed:46:23:bd:a2:d5:fd:72:bd:22: f9:12:2b:c7:e3:35:30:7e:b7:68:0e:65:e3:4f:fc: 84:20:f1:ea:5d:da:93:65:d9:a1:e5:16:f4:92:96: f4:0b:76:21:b9:c4:d2:f7:c3:19:0e:5c:d3:e2:b3: a7:f2:f7:7d:d8:64:50:6a:60:5b:23:20:c8:fd:61: f2:dd:9a:9d:48:6b:0a:b5:8f:6a:68:ea:55:eb:7a: 56:77:71:c0:7a:d8:71:6e:fd:24:8e:e9:74:01:a7: e8:97:95:ae:14:45:1c:ea:42:ee:93:df:77:7b:72: ec:65:e3:fb:0a:bd:98:71:10:f3:ff:72:eb:32:75: 93:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:F3:60:32:F7:60:24:8E:33:83:72:60:59:83:9C:C3:E6:11:55:4F X509v3 Authority Key Identifier: keyid:90:C3:D8:35:17:26:A8:B9:1D:E2:6D:46:81:12:83:43:5C:C5:26:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC4DD/B88C224C557D11EBB490B53BC4F9AE02/kMPYNRcmqLkd4m1GgRKDQ1zFJiM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:01:8b:89:b2:56:2f:2e:b3:e1:2f:8c:da:03:4a:c9:33:52: af:7d:17:39:b0:9e:28:fe:fc:79:64:25:64:d3:8a:59:41:43: 58:8f:ad:d7:e3:50:d5:b7:7d:91:b1:83:e8:16:54:ae:da:dc: 39:da:14:de:76:64:2c:f7:a0:23:5c:db:bb:3a:ab:d5:e8:04: 47:51:e0:a8:9b:91:23:93:70:c2:db:9b:f1:28:08:b4:5f:e0: 88:b4:5a:17:4c:fe:22:93:4d:17:51:35:b6:a7:a3:d5:7d:d7: 39:60:60:15:8b:46:f6:f7:98:e2:9c:3c:01:b6:08:b0:2c:63: 7b:e4:6d:71:2d:11:0a:46:16:7a:8f:d2:cd:5e:ed:aa:4e:b2: 80:de:c5:36:66:74:77:d5:29:ac:66:79:55:3e:e0:b2:0d:c2: 3b:c5:f2:c9:72:7f:ca:6c:a7:e3:fb:f8:15:ec:24:67:4f:4a: 12:3a:64:c1:7a:dc:7b:16:0f:58:44:17:93:8f:c6:16:ea:ec: bc:5a:52:a9:65:d2:74:cd:69:fc:c8:63:2c:20:74:73:fb:87: 6e:27:ba:2a:19:7d:82:23:c8:15:f3:d6:ac:ac:70:f9:c6:15: 9c:38:71:7c:c9:e0:1c:9a:f0:b4:22:d7:3a:0f:2e:9b:ee:63: a1:01:b6:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICByowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM0REQxMTAvBgNVBAUTKDkwQzNEODM1MTcyNkE4QjkxREUyNkQ0NjgxMTI4MzQz NUNDNTI2MjMwHhcNMjUxMTA0MjE1NDI2WhcNMjUxMTExMjE1NDI2WjAYMRYwFAYD VQQDEw02OTBhNzYxMy1hZjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2hd2QVa5l1iGFxw4QiJBMGbEg2QnefDpHbtYQOuDFTsZ650YeNqfP7mxX4T5 M4xbv0BdjlcGjALso8A38sq6ilGU6Ktg4GQju5BmkCxxRyDmrH/MgL6hcTBzGtTF t11eU2xsZLlrfWOI8exZIMNE9DiKFhrnO3hXsskOzu1GI72i1f1yvSL5EivH4zUw frdoDmXjT/yEIPHqXdqTZdmh5Rb0kpb0C3YhucTS98MZDlzT4rOn8vd92GRQamBb IyDI/WHy3ZqdSGsKtY9qaOpV63pWd3HAethxbv0kjul0Aafol5WuFEUc6kLuk993 e3LsZeP7Cr2YcRDz/3LrMnWTaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJzzYDL3 YCSOM4NyYFmDnMPmEVVPMB8GA1UdIwQYMBaAFJDD2DUXJqi5HeJtRoESg0NcxSYj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzRERC9CODhDMjI0QzU1 N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFMa2Q0bTFHZ1JLRFExekZK aU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tNUFlOUmNtcUxrZDRtMUdnUktEUTF6RkppTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QzRERC9CODhDMjI0QzU1N0QxMUVCQjQ5MEI1M0JDNEY5QUUwMi9rTVBZTlJjbXFM a2Q0bTFHZ1JLRFExekZKaU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBbAYuJslYvLrPhL4zaA0rJM1KvfRc5sJ4o/vx5ZCVk04pZQUNYj63X 41DVt32RsYPoFlSu2tw52hTedmQs96AjXNu7OqvV6ARHUeCom5Ejk3DC25vxKAi0 X+CItFoXTP4ik00XUTW2p6PVfdc5YGAVi0b295jinDwBtgiwLGN75G1xLREKRhZ6 j9LNXu2qTrKA3sU2ZnR31SmsZnlVPuCyDcI7xfLJcn/KbKfj+/gV7CRnT0oSOmTB etx7Fg9YRBeTj8YW6uy8WlKpZdJ0zWn8yGMsIHRz+4duJ7oqGX2CI8gV89asrHD5 xhWcOHF8yeAcmvC0Itc6Dy6b7mOhAbYp -----END CERTIFICATE-----Generated at Wed Nov 5 10:25:17 2025 by rpki-client