$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: 6Iy1b2hS5b5NC1TCkh9D7F3TDKZKvaFDVV4KkBZQEVQ= Subject key identifier: BB:18:41:C2:23:A8:36:44:8A:74:84:AE:0E:1B:F1:22:1C:2B:18:18 Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: 0106 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: 0104 Signing time: Mon 03 Nov 2025 05:00:21 +0000 Manifest this update: Mon 03 Nov 2025 05:00:20 +0000 Manifest next update: Mon 10 Nov 2025 05:00:20 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: hH+AvboqMdDSLyx+r5SUCWpjs7ffa0pMrl+Vy5j5XF0=) 2: 6B9D491C379A11F0B3AC7740C4F9AE02.roa (hash: RLph3rOI+XvGrIXc+VEb/mig9QwsOBw+jIRI25aGTLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 262 (0x106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: Nov 3 05:00:20 2025 GMT Not After : Nov 10 05:00:20 2025 GMT Subject: CN=690836e5-bfe7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:45:8b:fb:fb:d5:f6:2c:19:b2:0d:7f:6d:91: 7e:30:e5:0c:ae:9e:f3:5e:fd:77:e7:84:9f:9c:a0: 1c:83:c0:a7:f2:88:ce:7b:18:ec:13:aa:24:4e:45: 23:d7:37:44:f8:f6:1a:4f:a1:72:e1:da:05:0b:17: 44:b7:ad:b1:32:70:b0:69:01:fd:c1:dc:9a:e7:73: e6:4e:39:32:59:6c:be:ba:a6:5c:79:cb:94:a5:07: 7e:43:ef:ff:fd:b0:99:8c:18:89:94:95:74:17:bd: e7:ff:2c:ca:be:6d:35:92:50:0a:43:b2:df:46:f8: dc:81:17:93:8a:b6:3d:aa:e6:4f:d7:16:44:bd:1e: bd:1f:d0:d5:d3:72:71:2f:f5:fc:d2:00:da:e6:9d: f8:90:82:e7:39:0a:2a:68:3a:b6:bf:4c:db:d4:18: f5:01:3b:86:18:c8:da:c5:1d:cc:56:62:22:5c:10: 6c:70:df:c4:25:5d:86:01:61:a2:0e:39:94:22:e7: 3f:f0:d2:b5:e7:d6:a4:e7:47:88:99:0d:da:4d:09: 1d:5b:59:15:5f:fe:2f:fc:03:d3:e2:ce:21:16:26: c4:4a:8a:3d:81:24:7c:b8:a4:cd:81:db:cf:00:9f: 11:89:96:25:56:da:78:8a:7b:e9:d2:23:43:df:48: 19:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:18:41:C2:23:A8:36:44:8A:74:84:AE:0E:1B:F1:22:1C:2B:18:18 X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:52:5b:18:96:b5:f8:1c:bc:23:ea:49:d8:aa:ef:72:79:9f: 9e:c3:a5:30:6b:3c:51:7e:7f:02:f4:8c:a4:25:4c:c5:f9:0b: 51:cd:24:b7:f5:b0:df:64:25:e9:d3:13:b9:73:20:6a:3a:f2: 2b:ed:b3:5c:d5:08:94:d5:38:53:ec:09:c3:8e:0e:56:b0:42: ed:ad:a0:ab:94:5d:bf:a1:9a:cd:64:5e:1d:fc:d6:ec:3d:4c: f9:c7:66:88:c7:27:f8:41:c6:54:40:00:9a:ab:7e:47:2b:c3: 12:89:41:51:dc:93:ed:1d:cf:86:fe:d8:fc:b4:3c:71:d7:ec: 65:65:56:27:11:a8:4b:1f:95:10:03:19:4b:63:a3:a7:d6:46: cf:b5:7f:28:a1:f7:19:af:00:e6:14:4a:2f:f0:e2:54:e8:e7: b8:7d:02:61:c2:20:07:1a:29:e1:bd:99:1d:87:87:6a:be:d1: 0e:08:03:40:27:50:24:fe:31:f3:c6:a9:42:d2:f1:be:2c:6a: 10:d5:a1:40:4b:7e:0e:e4:a7:4f:17:f1:26:e9:03:c3:f3:33: f1:91:9f:0a:72:2e:cf:05:a1:e8:89:04:38:25:90:15:e1:5d: 3c:36:d3:cb:16:bf:23:95:04:39:3b:46:18:ea:e5:27:77:d2: ef:43:5a:9e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUxMTAzMDUwMDIwWhcNMjUxMTEwMDUwMDIwWjAYMRYwFAYD VQQDEw02OTA4MzZlNS1iZmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl0WL+/vV9iwZsg1/bZF+MOUMrp7zXv1354SfnKAcg8Cn8ojOexjsE6okTkUj 1zdE+PYaT6Fy4doFCxdEt62xMnCwaQH9wdya53PmTjkyWWy+uqZcecuUpQd+Q+// /bCZjBiJlJV0F73n/yzKvm01klAKQ7LfRvjcgReTirY9quZP1xZEvR69H9DV03Jx L/X80gDa5p34kILnOQoqaDq2v0zb1Bj1ATuGGMjaxR3MVmIiXBBscN/EJV2GAWGi DjmUIuc/8NK159ak50eImQ3aTQkdW1kVX/4v/APT4s4hFibESoo9gSR8uKTNgdvP AJ8RiZYlVtp4invp0iND30gZiwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsYQcIj qDZEinSErg4b8SIcKxgYMB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgUlsYlrX4HLwj6knYqu9yeZ+ew6UwazxRfn8C9IykJUzF+QtRzSS3 9bDfZCXp0xO5cyBqOvIr7bNc1QiU1ThT7AnDjg5WsELtraCrlF2/oZrNZF4d/Nbs PUz5x2aIxyf4QcZUQACaq35HK8MSiUFR3JPtHc+G/tj8tDxx1+xlZVYnEahLH5UQ AxlLY6On1kbPtX8oofcZrwDmFEov8OJU6Oe4fQJhwiAHGinhvZkdh4dqvtEOCANA J1Ak/jHzxqlC0vG+LGoQ1aFAS34O5KdPF/Em6QPD8zPxkZ8Kci7PBaHoiQQ4JZAV 4V08NtPLFr8jlQQ5O0YY6uUnd9LvQ1qe -----END CERTIFICATE-----Generated at Wed Nov 5 01:23:29 2025 by rpki-client