$ rpki-client -vvf rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft File: kTOGkN66V4znOCGKniIIVNG1J18.mft (raw, json) Hash identifier: AGVONcMSyJ+dqa5uqovyB8gsItAqsEcZdjM6+Yqpong= Subject key identifier: CC:AE:51:FA:23:FD:20:07:5C:61:40:59:BF:AC:74:32:0D:F6:87:98 Authority key identifier: 91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F Certificate issuer: /CN=A91F605B/serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Certificate serial: 0498 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft Manifest number: 0485 Signing time: Wed 05 Nov 2025 00:13:54 +0000 Manifest this update: Wed 05 Nov 2025 00:13:54 +0000 Manifest next update: Wed 12 Nov 2025 00:13:54 +0000 Files and hashes: 1: kTOGkN66V4znOCGKniIIVNG1J18.crl (hash: zm9B7KHQSHF03kljox58+QRP7JPOBtnZOXWUvLxZdeQ=) 2: E7DBA61CA1FA11EF9696DF59C4F9AE02.roa (hash: 346r3b4w4VthONfD4bZWfxOP9wmeXPFHqji5dvclr0k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:13:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F605B, serialNumber=91338690DEBA578CE738218A9E220854D1B5275F Validity Not Before: Nov 5 00:13:54 2025 GMT Not After : Nov 12 00:13:54 2025 GMT Subject: CN=690a96c2-223c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:be:e6:0e:46:31:56:d5:f2:e0:f4:b6:84:43: 96:77:a1:0e:58:bc:74:3c:e7:1d:be:39:c1:51:3b: 44:4c:52:1f:37:3c:52:63:00:0a:49:24:6e:4e:cd: 0f:6f:b1:99:9f:1c:98:f1:d9:d2:94:41:51:f7:b9: 5a:17:33:76:93:78:70:bf:88:d2:be:54:5a:9f:5d: 42:d9:c9:32:51:2d:87:53:32:68:65:8b:2a:86:4a: c1:7d:f0:28:03:41:a9:24:14:c8:b1:43:38:e1:f6: 11:2b:6b:67:bd:df:fd:2e:a8:bc:21:aa:f4:a2:a6: f2:20:13:21:39:ce:e5:a8:96:12:94:de:4d:71:f5: da:18:ac:82:16:6f:af:23:ad:a6:d2:90:7d:30:da: ef:bd:f4:57:6c:ef:81:60:cb:34:08:2d:5a:9b:b4: 64:94:90:a5:13:ff:5c:c1:1d:6c:88:26:c1:4c:eb: 97:13:92:b9:f2:4c:2b:cb:fe:e8:33:ed:82:be:04: 10:eb:96:9f:d7:0d:27:9a:fd:90:65:c7:5c:03:96: 8f:35:46:cb:d6:0b:3e:2e:21:20:8c:f1:cc:8e:52: 88:b7:b9:53:fb:be:10:96:a6:be:7f:d8:c3:f2:1c: ed:9c:d8:19:4a:fd:07:c9:ae:a2:fa:b7:f3:21:32: 43:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AE:51:FA:23:FD:20:07:5C:61:40:59:BF:AC:74:32:0D:F6:87:98 X509v3 Authority Key Identifier: keyid:91:33:86:90:DE:BA:57:8C:E7:38:21:8A:9E:22:08:54:D1:B5:27:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kTOGkN66V4znOCGKniIIVNG1J18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F605B/9817D27264CC11EC96D4A558C4F9AE02/kTOGkN66V4znOCGKniIIVNG1J18.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:16:7e:0b:39:ae:e7:fd:dd:ad:ce:cf:76:bc:c1:72:83:b4: f2:de:6c:f3:47:0e:61:36:02:11:df:ca:fb:ea:8a:38:0b:2e: d4:65:7a:bf:7a:09:d1:f3:7b:3c:08:3b:37:c9:14:3e:cf:60: 15:91:e7:2e:f0:d3:9b:9b:31:74:6f:65:65:d5:b8:59:29:db: 2c:f8:50:46:a7:54:e5:36:5d:54:96:76:60:f3:f8:87:ab:d8: ad:d2:ea:b6:26:fa:b8:1f:c3:be:65:d9:e1:95:b0:42:ee:f5: 9d:bf:b1:fb:e6:af:c1:04:69:c9:46:55:cb:0a:48:f3:49:a9: 3a:35:4c:62:f4:53:e6:a8:b7:10:7e:ed:f5:6b:2d:4c:1f:78: dd:2e:c8:b3:a4:ff:1a:e3:5e:7e:f3:25:d4:0f:9c:41:5f:e1: 7f:21:7b:b7:b1:97:06:bf:74:a7:14:ae:40:60:85:6f:45:3c: e9:dc:8c:40:f3:90:8b:0c:5f:89:38:fd:b4:d8:43:d1:c6:3a: 97:d1:c7:b4:a3:63:0b:d4:1d:7f:03:7b:2e:ab:0a:db:ca:d6: 63:b2:07:79:7b:cb:26:c7:1f:f7:22:3e:d0:cd:da:dc:64:3a: c4:67:0b:bc:7e:b9:ed:1a:9e:d2:17:61:07:cf:f5:80:c5:1e: ec:04:05:0e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYwNUIxMTAvBgNVBAUTKDkxMzM4NjkwREVCQTU3OENFNzM4MjE4QTlFMjIwODU0 RDFCNTI3NUYwHhcNMjUxMTA1MDAxMzU0WhcNMjUxMTEyMDAxMzU0WjAYMRYwFAYD VQQDEw02OTBhOTZjMi0yMjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzL7mDkYxVtXy4PS2hEOWd6EOWLx0POcdvjnBUTtETFIfNzxSYwAKSSRuTs0P b7GZnxyY8dnSlEFR97laFzN2k3hwv4jSvlRan11C2ckyUS2HUzJoZYsqhkrBffAo A0GpJBTIsUM44fYRK2tnvd/9Lqi8Iar0oqbyIBMhOc7lqJYSlN5NcfXaGKyCFm+v I62m0pB9MNrvvfRXbO+BYMs0CC1am7RklJClE/9cwR1siCbBTOuXE5K58kwry/7o M+2CvgQQ65af1w0nmv2QZcdcA5aPNUbL1gs+LiEgjPHMjlKIt7lT+74Qlqa+f9jD 8hztnNgZSv0Hya6i+rfzITJD3wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMyuUfoj /SAHXGFAWb+sdDIN9oeYMB8GA1UdIwQYMBaAFJEzhpDeuleM5zghip4iCFTRtSdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjA1Qi85ODE3RDI3MjY0 Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0em5PQ0dLbmlJSVZORzFK MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tUT0drTjY2VjR6bk9DR0tuaUlJVk5HMUoxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NjA1Qi85ODE3RDI3MjY0Q0MxMUVDOTZENEE1NThDNEY5QUUwMi9rVE9Ha042NlY0 em5PQ0dLbmlJSVZORzFKMTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCoFn4LOa7n/d2tzs92vMFyg7Ty3mzzRw5hNgIR38r76oo4Cy7UZXq/ egnR83s8CDs3yRQ+z2AVkecu8NObmzF0b2Vl1bhZKdss+FBGp1TlNl1UlnZg8/iH q9it0uq2Jvq4H8O+ZdnhlbBC7vWdv7H75q/BBGnJRlXLCkjzSak6NUxi9FPmqLcQ fu31ay1MH3jdLsizpP8a415+8yXUD5xBX+F/IXu3sZcGv3SnFK5AYIVvRTzp3IxA 85CLDF+JOP202EPRxjqX0ce0o2ML1B1/A3suqwrbytZjsgd5e8smxx/3Ij7Qzdrc ZDrEZwu8frntGp7SF2EHz/WAxR7sBAUO -----END CERTIFICATE-----Generated at Wed Nov 5 10:08:03 2025 by rpki-client