$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: +jKQvaMgA5AkgJklsYPdQ8BKeARy7gRuLu4lEJXRNcE= Subject key identifier: 3B:BF:16:C9:F4:ED:47:0F:86:26:FE:2E:7C:1D:29:35:92:6E:AC:06 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: E7 Signing time: Mon 03 Nov 2025 05:22:05 +0000 Manifest this update: Mon 03 Nov 2025 05:22:05 +0000 Manifest next update: Mon 10 Nov 2025 05:22:05 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: OBErKo0gHdV3dbSvmZuuAP0LBJNm9GutPMMCBLJxwJ8=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: QzMQcl79jMhK/zyugK+WK4417ANs7GPPe+ng/DcUaGM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Nov 3 05:22:05 2025 GMT Not After : Nov 10 05:22:05 2025 GMT Subject: CN=69083bfd-cec0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:0e:94:2e:f1:b5:a2:19:95:ac:34:87:db:1a: eb:cf:a5:b8:51:79:aa:74:8f:3a:bc:34:2e:7f:3e: 09:ce:37:ee:92:e4:f7:15:f2:19:08:ee:61:99:1c: 69:5a:bf:c4:30:55:4d:f4:90:61:62:97:e6:6b:bb: 04:ad:28:12:1a:4f:b6:d8:cc:38:0f:02:c1:58:ec: 69:34:78:b4:68:a8:f3:f3:38:23:84:02:a6:8c:ac: 06:30:88:c0:02:bc:92:bd:92:05:d2:67:07:99:0a: 90:1c:1b:31:cc:18:b5:07:07:87:26:f6:70:c9:25: c1:90:d7:7d:3a:18:be:96:e1:a1:4f:9f:90:85:cb: c6:06:3c:cf:d5:06:2a:a9:24:69:c2:bc:d5:6c:5e: b5:45:82:c9:3b:06:78:e3:2c:bd:7d:9f:56:3d:a8: d0:ea:7b:47:3b:25:b2:c1:05:f2:5a:67:21:17:02: 9d:ef:5a:d0:d8:f4:a0:f3:c0:fc:8d:91:af:bb:83: 76:5e:cd:b8:64:54:41:bc:bd:f2:a6:f7:18:5f:2d: 86:91:9b:d9:b5:11:c0:f9:cc:d0:5f:9d:fb:fb:b9: 0c:c1:33:2a:2d:1e:06:f5:72:ae:ea:3c:e9:73:43: cf:b7:3a:d3:dd:4c:6f:18:e0:d9:d7:68:e1:79:d0: a0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BF:16:C9:F4:ED:47:0F:86:26:FE:2E:7C:1D:29:35:92:6E:AC:06 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:cf:68:a1:90:5c:74:e2:fe:2c:00:fc:c2:a4:12:0b:93:84: 61:7d:ab:b9:91:89:d7:0e:6f:4d:5e:ea:68:7f:7d:0c:57:7c: 6a:3a:6b:28:9c:4d:1b:34:d5:0d:07:52:46:d3:2b:bd:e7:bf: e1:4b:13:de:dc:cb:12:62:06:1e:69:a7:62:2e:de:7a:88:3d: f5:c4:95:6d:7b:d0:d9:71:32:ce:e4:12:a7:b1:e9:08:06:40: 8b:d6:84:96:83:f8:ca:91:fc:b1:9e:d4:a1:f7:2f:32:5f:7d: 98:e0:e6:ea:b6:c0:3b:a8:9e:d1:2e:3b:16:81:ed:5d:d5:1f: 55:af:e3:df:60:1d:d3:fd:3f:40:1e:8d:0c:1f:5c:48:27:59: a1:50:f0:89:35:5a:24:46:51:be:88:df:78:30:bb:3f:4b:d3: d0:99:8a:ab:25:c0:d2:74:ac:c8:9c:bf:1a:d0:13:14:65:7d: 25:e6:6c:97:36:6b:87:d0:1c:37:9d:6d:f4:85:fd:c8:5f:9a: 06:aa:df:aa:03:c5:0b:ac:43:24:fd:3c:25:4a:dc:c4:b0:98: 03:37:02:a8:ca:13:45:97:ce:52:6c:e7:00:05:bc:5f:28:78: 2f:f3:96:e5:e0:e8:e5:dd:37:40:8a:7c:11:1b:54:04:a6:2a: eb:ac:39:16 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUxMTAzMDUyMjA1WhcNMjUxMTEwMDUyMjA1WjAYMRYwFAYD VQQDEw02OTA4M2JmZC1jZWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnQ6ULvG1ohmVrDSH2xrrz6W4UXmqdI86vDQufz4JzjfukuT3FfIZCO5hmRxp Wr/EMFVN9JBhYpfma7sErSgSGk+22Mw4DwLBWOxpNHi0aKjz8zgjhAKmjKwGMIjA ArySvZIF0mcHmQqQHBsxzBi1BweHJvZwySXBkNd9Ohi+luGhT5+QhcvGBjzP1QYq qSRpwrzVbF61RYLJOwZ44yy9fZ9WPajQ6ntHOyWywQXyWmchFwKd71rQ2PSg88D8 jZGvu4N2Xs24ZFRBvL3ypvcYXy2GkZvZtRHA+czQX537+7kMwTMqLR4G9XKu6jzp c0PPtzrT3UxvGODZ12jhedCgxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDu/Fsn0 7UcPhib+LnwdKTWSbqwGMB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCxz2ihkFx04v4sAPzCpBILk4Rhfau5kYnXDm9NXupof30MV3xqOmso nE0bNNUNB1JG0yu957/hSxPe3MsSYgYeaadiLt56iD31xJVte9DZcTLO5BKnsekI BkCL1oSWg/jKkfyxntSh9y8yX32Y4ObqtsA7qJ7RLjsWge1d1R9Vr+PfYB3T/T9A Ho0MH1xIJ1mhUPCJNVokRlG+iN94MLs/S9PQmYqrJcDSdKzInL8a0BMUZX0l5myX NmuH0Bw3nW30hf3IX5oGqt+qA8ULrEMk/TwlStzEsJgDNwKoyhNFl85SbOcABbxf KHgv85bl4Ojl3TdAinwRG1QEpirrrDkW -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:15 2025 by rpki-client