$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: A8ohXE/DsLX+Ldu386Vs+DQ9UH2VymEEpypVdEgNyp0= Subject key identifier: D5:9D:41:0D:A0:61:F0:D6:26:A0:1C:0E:E2:97:04:3C:37:88:91:65 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 79 Signing time: Wed 05 Nov 2025 07:06:04 +0000 Manifest this update: Wed 05 Nov 2025 07:06:03 +0000 Manifest next update: Wed 12 Nov 2025 07:06:03 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: cc75llrMR/AFZfriEphTmlVLyBvhaFEhws6att3wi48=) 2: E658E72CB4A611F08CEAB576C4F9AE02.roa (hash: 3K0DVSQ88H0vE5ErqZjrHuBFz3ioSOB+/QcjArPUvp0=) 3: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:06:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Nov 5 07:06:03 2025 GMT Not After : Nov 12 07:06:03 2025 GMT Subject: CN=690af75c-ef9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:e5:3b:db:53:61:4b:46:13:41:8d:ca:b2:8d: 0f:aa:73:e5:2b:1e:4c:e5:b8:67:de:83:00:2f:25: 5f:42:9e:f8:74:c6:df:87:ad:c7:a7:33:01:56:07: 3e:66:75:63:9a:58:99:bc:38:37:df:5c:a9:1e:98: 1f:07:88:09:a3:28:74:81:16:b3:7b:ca:a3:ed:a2: 16:cf:fc:4e:2e:39:11:5e:dc:ab:da:94:6d:a0:7d: bf:c3:7a:17:1c:a5:81:b8:21:19:d6:95:9e:f8:c5: d8:7a:b7:bc:03:09:98:59:b8:69:a2:dc:b1:e5:3d: a8:df:d8:01:d3:f5:54:ed:7b:0e:6f:79:96:d7:b3: 1b:42:40:9f:27:bb:42:52:8f:cb:51:91:56:84:79: c4:9f:05:16:7a:db:c2:5f:22:56:31:0b:ea:d0:4b: 26:af:29:57:c1:5a:ec:3b:4e:14:c5:9b:3e:84:28: 69:24:ff:9c:f1:64:a5:2d:58:46:1e:4e:6f:a4:00: e6:5f:a9:06:72:fa:0d:34:22:e6:54:31:a5:54:43: da:aa:df:c0:0d:73:33:19:bd:81:3f:ae:0d:44:35: 8c:81:53:97:47:c3:e9:41:d5:40:1b:c6:ce:db:fd: ef:4b:37:cd:2d:31:44:70:14:22:b7:80:9e:6c:a7: f1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:9D:41:0D:A0:61:F0:D6:26:A0:1C:0E:E2:97:04:3C:37:88:91:65 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ac:3d:0c:2d:62:ea:fd:6e:19:dd:2e:c8:7c:af:7d:9e:f3:fc: 06:98:17:36:76:16:7f:51:60:64:54:3c:2f:8c:01:f5:bb:b5: 10:69:dc:62:9a:db:55:6d:ab:b6:88:55:4b:ea:24:de:b0:c4: be:92:92:8b:ea:35:b3:83:72:01:74:02:91:ee:eb:ab:a6:69: c5:89:2b:99:d2:c1:d4:12:79:19:0f:a9:26:9a:c4:bd:16:45: 4d:c4:9a:11:3a:9e:6b:58:77:5a:d7:e0:88:1e:f6:fc:af:22: a0:e1:ab:58:94:69:ad:e1:0f:18:12:31:6e:f3:f4:ba:a0:03: 51:14:ed:b3:41:16:84:38:83:eb:6c:a8:8c:57:e7:a2:b2:02: 67:4b:09:bd:03:21:41:8c:30:01:61:a3:4f:9f:09:ed:5c:57: b2:8b:ce:1f:f4:a2:80:ce:40:c7:2f:93:0e:c3:7b:d5:7e:90: 5e:7f:bb:8e:4e:e5:76:7b:b9:b2:00:96:84:a9:0f:62:f6:63: 8d:28:80:8b:4f:4e:57:28:e6:23:aa:d7:49:48:a6:24:4c:71: c4:e2:a2:4d:23:6d:64:1e:66:8a:b5:c8:43:9d:25:8d:75:b0: 16:c2:a7:6c:76:31:4a:47:73:4c:d6:d8:46:6c:9c:10:ac:9b: 24:5f:37:dd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTExMDUwNzA2MDNaFw0yNTExMTIwNzA2MDNaMBgxFjAUBgNV BAMTDTY5MGFmNzVjLWVmOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ5TvbU2FLRhNBjcqyjQ+qc+UrHkzluGfegwAvJV9Cnvh0xt+HrcenMwFWBz5m dWOaWJm8ODffXKkemB8HiAmjKHSBFrN7yqPtohbP/E4uORFe3KvalG2gfb/Dehcc pYG4IRnWlZ74xdh6t7wDCZhZuGmi3LHlPajf2AHT9VTtew5veZbXsxtCQJ8nu0JS j8tRkVaEecSfBRZ628JfIlYxC+rQSyavKVfBWuw7ThTFmz6EKGkk/5zxZKUtWEYe Tm+kAOZfqQZy+g00IuZUMaVUQ9qq38ANczMZvYE/rg1ENYyBU5dHw+lB1UAbxs7b /e9LN80tMURwFCK3gJ5sp/HbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU1Z1BDaBh 8NYmoBwO4pcEPDeIkWUwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKw9DC1i6v1uGd0uyHyvfZ7z/AaYFzZ2Fn9RYGRUPC+MAfW7tRBp3GKa 21Vtq7aIVUvqJN6wxL6SkovqNbODcgF0ApHu66umacWJK5nSwdQSeRkPqSaaxL0W RU3EmhE6nmtYd1rX4Ige9vyvIqDhq1iUaa3hDxgSMW7z9LqgA1EU7bNBFoQ4g+ts qIxX56KyAmdLCb0DIUGMMAFho0+fCe1cV7KLzh/0ooDOQMcvkw7De9V+kF5/u45O 5XZ7ubIAloSpD2L2Y40ogItPTlco5iOq10lIpiRMccTiok0jbWQeZoq1yEOdJY11 sBbCp2x2MUpHc0zW2EZsnBCsmyRfN90= -----END CERTIFICATE-----Generated at Wed Nov 5 15:58:00 2025 by rpki-client