$ rpki-client -vvf rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft File: Klm5bDClX71h0iMDc864nR2wGos.mft (raw, json) Hash identifier: QpjqBr6BHAj1VN+MLc7pwydM1/wm3xFuQz1EguS7xwg= Subject key identifier: 1F:F6:F4:BF:F7:01:95:82:D5:F3:E0:52:84:F2:FC:33:86:D4:7F:25 Authority key identifier: 2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B Certificate issuer: /CN=A91F523F/serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Certificate serial: B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft Manifest number: AE Signing time: Mon 03 Nov 2025 06:09:28 +0000 Manifest this update: Mon 03 Nov 2025 06:09:27 +0000 Manifest next update: Mon 10 Nov 2025 06:09:27 +0000 Files and hashes: 1: Klm5bDClX71h0iMDc864nR2wGos.crl (hash: OmyIC0a6MdH51wDbLFIoJnEwRNKGG1g52EXXo/fLc38=) 2: 607B5F6AB05411EF84C8DC74C4F9AE02.roa (hash: CDlWFm2LtxVmYaaBC5EKvKez8sI4jo8CXca3FR8eDpc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:09:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 176 (0xb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F523F, serialNumber=2A59B96C30A55FBD61D2230373CEB89D1DB01A8B Validity Not Before: Nov 3 06:09:27 2025 GMT Not After : Nov 10 06:09:27 2025 GMT Subject: CN=69084717-f694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:63:1d:75:b5:7f:51:04:9b:ac:a0:73:2b:57: 6b:fa:47:ef:49:c4:78:fc:c3:f2:df:dd:50:a5:e2: 42:c1:8f:7e:70:83:a9:64:c0:4c:06:1c:41:c3:e5: 18:7e:7e:7d:a4:6f:39:c3:14:b3:45:f8:b7:81:0f: 98:09:b6:c9:78:87:8d:10:f3:19:72:4e:00:8d:98: 8c:17:7d:d2:3f:1c:cd:da:45:c3:c4:ea:2b:33:88: 2d:8b:ee:00:e2:65:80:14:2f:3b:5e:d1:3b:e7:9c: cc:89:b0:52:9a:57:9c:67:0a:91:86:1e:b1:da:e7: 95:e0:cf:92:65:44:a0:c3:ab:ae:af:89:a4:ea:4f: ac:b9:17:6b:60:ab:94:bd:41:07:fd:95:c3:75:e1: 16:49:c8:16:2c:3f:90:fc:70:5e:af:f1:cf:9a:5a: 62:8a:98:7b:cf:59:80:ee:f7:16:9a:15:90:46:06: b4:97:8c:b0:af:83:19:d9:bd:6b:23:98:71:db:19: cc:ad:7a:46:b7:12:de:70:8f:e5:44:f7:96:56:ef: 53:39:4b:0c:e3:7d:ca:f8:f3:c5:08:af:30:84:1c: 07:b5:c1:43:8f:c3:fc:2a:85:6d:18:9d:18:b3:cf: f7:34:1f:fb:40:06:9e:25:0d:63:ed:3c:d2:72:67: 1d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F6:F4:BF:F7:01:95:82:D5:F3:E0:52:84:F2:FC:33:86:D4:7F:25 X509v3 Authority Key Identifier: keyid:2A:59:B9:6C:30:A5:5F:BD:61:D2:23:03:73:CE:B8:9D:1D:B0:1A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Klm5bDClX71h0iMDc864nR2wGos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F523F/4EBA6B32B05311EF9C2B8D3FC4F9AE02/Klm5bDClX71h0iMDc864nR2wGos.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:76:60:0a:47:86:88:7e:1f:2b:bc:9a:92:61:7c:63:db:66: f9:d1:3b:4a:38:c8:90:cd:0f:1c:89:44:ac:df:82:22:b6:98: 59:61:59:b6:5f:b2:cb:bf:a1:8e:73:46:18:2b:5f:16:e5:2b: 9f:89:99:b5:9f:ab:42:7d:3f:71:9e:bc:d7:56:69:ed:76:00: 67:30:e2:71:94:9f:79:1b:a9:15:c8:06:d4:d4:8b:30:43:2a: 25:93:15:7c:e5:d7:5a:aa:44:fb:02:f3:7d:3e:18:bd:41:23: 6e:0e:f9:99:9c:d1:14:84:06:85:71:a3:0b:d4:30:e2:92:a0: 8a:90:f6:59:bc:83:de:e2:43:af:ef:b3:71:85:54:64:e2:d3: 60:5d:f8:7e:e0:52:26:81:73:7d:43:eb:fb:46:d7:e6:63:0d: 49:bc:69:4b:fc:c9:b7:40:44:de:d5:b4:10:e0:dd:9d:19:01: df:d2:f0:e0:11:92:58:6c:98:28:88:75:c8:a7:d2:cd:a1:74: fb:ee:d7:51:9b:43:40:ed:a3:fe:e3:57:3b:6e:cf:b6:01:db: 4d:e8:34:65:b6:18:b3:60:3f:ff:b5:09:d1:f3:11:f7:ce:3d: df:52:a6:b4:ce:46:81:0a:8d:3e:d4:a6:a4:67:45:97:70:af: c0:69:3b:48 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICALAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUyM0YxMTAvBgNVBAUTKDJBNTlCOTZDMzBBNTVGQkQ2MUQyMjMwMzczQ0VCODlE MURCMDFBOEIwHhcNMjUxMTAzMDYwOTI3WhcNMjUxMTEwMDYwOTI3WjAYMRYwFAYD VQQDEw02OTA4NDcxNy1mNjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAumMddbV/UQSbrKBzK1dr+kfvScR4/MPy391QpeJCwY9+cIOpZMBMBhxBw+UY fn59pG85wxSzRfi3gQ+YCbbJeIeNEPMZck4AjZiMF33SPxzN2kXDxOorM4gti+4A 4mWAFC87XtE755zMibBSmlecZwqRhh6x2ueV4M+SZUSgw6uur4mk6k+suRdrYKuU vUEH/ZXDdeEWScgWLD+Q/HBer/HPmlpiiph7z1mA7vcWmhWQRga0l4ywr4MZ2b1r I5hx2xnMrXpGtxLecI/lRPeWVu9TOUsM433K+PPFCK8whBwHtcFDj8P8KoVtGJ0Y s8/3NB/7QAaeJQ1j7TzScmcd7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB/29L/3 AZWC1fPgUoTy/DOG1H8lMB8GA1UdIwQYMBaAFCpZuWwwpV+9YdIjA3POuJ0dsBqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTIzRi80RUJBNkIzMkIw NTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3MWgwaU1EYzg2NG5SMndH b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tsbTViRENsWDcxaDBpTURjODY0blIyd0dvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTIzRi80RUJBNkIzMkIwNTMxMUVGOUMyQjhEM0ZDNEY5QUUwMi9LbG01YkRDbFg3 MWgwaU1EYzg2NG5SMndHb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3dmAKR4aIfh8rvJqSYXxj22b50TtKOMiQzQ8ciUSs34IitphZYVm2 X7LLv6GOc0YYK18W5SufiZm1n6tCfT9xnrzXVmntdgBnMOJxlJ95G6kVyAbU1Isw QyolkxV85ddaqkT7AvN9Phi9QSNuDvmZnNEUhAaFcaML1DDikqCKkPZZvIPe4kOv 77NxhVRk4tNgXfh+4FImgXN9Q+v7RtfmYw1JvGlL/Mm3QETe1bQQ4N2dGQHf0vDg EZJYbJgoiHXIp9LNoXT77tdRm0NA7aP+41c7bs+2AdtN6DRlthizYD//tQnR8xH3 zj3fUqa0zkaBCo0+1KakZ0WXcK/AaTtI -----END CERTIFICATE-----Generated at Tue Nov 4 21:16:31 2025 by rpki-client