$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: yMTdG7RXcNqoc3f34+zv4ZPxdCZn24pTzb/66ZwhWjU= Subject key identifier: CC:E8:05:73:B4:B0:82:7B:23:CA:6A:E1:DC:C5:32:B4:03:24:8A:B7 Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07D2 Signing time: Sun 02 Nov 2025 21:12:53 +0000 Manifest this update: Sun 02 Nov 2025 21:12:53 +0000 Manifest next update: Sun 09 Nov 2025 21:12:53 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: /IYrfiamPV/RcAepb0gAN7T5q6G96LZwLvdF9+I1IS4=) 2: E7BAB834B5F511F0B410AD78C4F9AE02.roa (hash: fxQZfbaLKR/d/fZu/fhyY8IFle3U5GHLuzj+qPAQsuQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 21:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2012 (0x7dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Nov 2 21:12:53 2025 GMT Not After : Nov 9 21:12:53 2025 GMT Subject: CN=6907c955-60a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f2:4c:04:7f:7e:95:c1:7b:62:85:ad:a0:0a: c3:02:a4:58:af:8a:0c:11:93:31:d4:5c:3e:e1:0a: ca:a7:4f:a3:e5:b6:1a:aa:72:2a:ad:2a:c3:7b:b2: 5b:09:ba:f5:1a:93:9f:ff:1e:f6:40:73:9f:07:14: 2e:ed:e3:44:3e:2e:02:2a:2d:6a:ab:ac:c0:80:9d: 89:6c:6b:c2:61:29:32:83:39:3f:9b:10:b0:f5:84: 90:28:93:0a:c4:dd:2e:61:88:b6:54:f2:9f:a4:69: 1e:16:e3:78:39:8e:7c:2f:e8:ad:b8:c4:49:da:71: 97:89:c5:d0:10:1d:fa:99:1a:a0:02:ef:e6:62:3c: f9:ac:03:a6:2a:fc:ff:e7:93:00:03:ba:06:09:bd: 1c:b8:3a:72:ed:b3:ec:5d:eb:5c:17:a5:12:74:92: 0e:e1:bf:4f:a7:ac:5a:96:3b:9c:b7:f1:a4:af:45: 35:65:9c:8a:b0:4b:41:ce:bc:2e:5f:3f:44:3d:8b: 2b:73:df:e0:55:43:0d:fc:df:aa:a5:65:01:0d:4e: b9:91:2a:93:87:97:1e:89:f9:60:8e:17:3a:03:11: c5:be:11:0d:62:29:df:a1:76:ae:5f:be:0e:58:45: 60:04:cd:4b:94:2e:b3:23:b9:17:e3:37:d9:7c:88: 8c:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:E8:05:73:B4:B0:82:7B:23:CA:6A:E1:DC:C5:32:B4:03:24:8A:B7 X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:f2:6c:e5:d7:c3:dc:e5:a4:f8:bd:1c:42:e4:83:ca:ec:e8: c2:ce:19:08:bd:9a:83:70:f7:6d:48:be:59:ee:48:25:72:f0: 8e:9e:af:01:6c:b2:33:f5:bb:6f:a4:45:ae:1e:aa:ca:8a:0e: 11:d4:d3:81:94:c8:24:d1:38:30:bc:85:2b:33:00:c6:05:4d: 9b:51:4f:35:5b:10:a8:cf:73:7a:3a:13:cf:0d:be:6c:6c:c2: 22:61:6f:fd:29:d6:de:ff:77:4a:58:52:f4:6f:77:33:77:6e: 21:29:7b:16:15:0d:5d:53:d7:8d:64:59:cd:d8:de:b2:fe:48: ef:78:ce:19:cd:1d:b4:2c:1d:e7:61:13:09:7a:a8:9c:de:3e: 19:4f:72:27:6a:dd:c1:2d:3a:2d:5e:b1:07:4b:e1:88:10:4f: 5b:e7:aa:a1:f9:8e:ab:0a:fe:70:f3:4c:43:9a:b9:b4:33:ae: c8:b5:d4:44:84:3a:69:10:c0:a4:fd:e8:30:80:7e:9a:26:19: 23:87:01:c8:97:11:b1:fe:65:89:cb:3c:66:9e:6c:1e:bb:5e: 92:fd:0a:f5:3f:59:7c:b8:52:1a:29:b4:df:07:ef:0e:55:bb: dd:00:c1:b4:89:1e:52:ac:b6:48:49:90:3b:2d:8e:3d:53:ca: 09:18:7a:51 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB9wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUxMTAyMjExMjUzWhcNMjUxMTA5MjExMjUzWjAYMRYwFAYD VQQDEw02OTA3Yzk1NS02MGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3PJMBH9+lcF7YoWtoArDAqRYr4oMEZMx1Fw+4QrKp0+j5bYaqnIqrSrDe7Jb Cbr1GpOf/x72QHOfBxQu7eNEPi4CKi1qq6zAgJ2JbGvCYSkygzk/mxCw9YSQKJMK xN0uYYi2VPKfpGkeFuN4OY58L+ituMRJ2nGXicXQEB36mRqgAu/mYjz5rAOmKvz/ 55MAA7oGCb0cuDpy7bPsXetcF6USdJIO4b9Pp6xaljuct/Gkr0U1ZZyKsEtBzrwu Xz9EPYsrc9/gVUMN/N+qpWUBDU65kSqTh5ceiflgjhc6AxHFvhENYinfoXauX74O WEVgBM1LlC6zI7kX4zfZfIiMIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzoBXO0 sIJ7I8pq4dzFMrQDJIq3MB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAn8mzl18Pc5aT4vRxC5IPK7OjCzhkIvZqDcPdtSL5Z7kglcvCOnq8B bLIz9btvpEWuHqrKig4R1NOBlMgk0TgwvIUrMwDGBU2bUU81WxCoz3N6OhPPDb5s bMIiYW/9Kdbe/3dKWFL0b3czd24hKXsWFQ1dU9eNZFnN2N6y/kjveM4ZzR20LB3n YRMJeqic3j4ZT3Inat3BLTotXrEHS+GIEE9b56qh+Y6rCv5w80xDmrm0M67ItdRE hDppEMCk/egwgH6aJhkjhwHIlxGx/mWJyzxmnmweu16S/Qr1P1l8uFIaKbTfB+8O VbvdAMG0iR5SrLZISZA7LY49U8oJGHpR -----END CERTIFICATE-----Generated at Tue Nov 4 12:36:09 2025 by rpki-client