$ rpki-client -vvf rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft File: kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft (raw, json) Hash identifier: 5dz5ncEr6eahvsvXl9AwrGbfS6HF+n40K6hcZQWMIS8= Subject key identifier: A1:D0:7D:89:4D:94:F9:66:B6:81:AF:6B:2D:FB:4A:DD:59:5E:41:DA Authority key identifier: 90:21:BE:FF:3B:63:EE:72:48:B9:0D:DA:A5:DD:BF:A7:E3:12:1C:D9 Certificate issuer: /CN=A91113A5/serialNumber=9021BEFF3B63EE7248B90DDAA5DDBFA7E3121CD9 Certificate serial: 42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft Manifest number: 42 Signing time: Sun 19 Oct 2025 10:53:49 +0000 Manifest this update: Sun 19 Oct 2025 10:53:48 +0000 Manifest next update: Sun 26 Oct 2025 10:53:48 +0000 Files and hashes: 1: kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl (hash: QeQS3ao5XAy5Ims7zjM0QpmPt8TfP1ER3QXJ9/pbis0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:53:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66 (0x42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91113A5, serialNumber=9021BEFF3B63EE7248B90DDAA5DDBFA7E3121CD9 Validity Not Before: Oct 19 10:53:48 2025 GMT Not After : Oct 26 10:53:48 2025 GMT Subject: CN=68f4c33c-7280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:42:a8:b9:f3:50:93:48:d4:d4:73:2d:b1:12: 19:ff:b8:03:72:fd:e0:a7:d5:39:85:8a:32:01:57: 20:c0:9a:b2:56:db:37:4b:46:70:0d:ba:e6:e0:1f: e6:ff:91:e5:99:e8:83:6f:6b:3f:f4:29:cc:b4:4f: 88:0b:22:9f:3b:8f:50:89:2f:0f:d6:04:c0:34:8c: ce:05:42:04:17:fd:70:4f:1b:5e:2c:86:f8:04:26: 8e:b0:04:d1:fd:31:2e:f1:02:49:48:26:2e:d7:d4: fc:1f:45:b2:cb:39:f8:2e:1b:8e:6b:b8:32:cd:77: f1:c8:03:ac:be:33:cf:ce:7e:9a:f2:1b:a9:d9:f4: f4:06:aa:7e:65:97:cf:fe:68:f2:e2:0c:d7:36:df: 2f:04:29:32:99:38:7a:49:45:db:71:57:b9:44:0f: 37:bd:57:30:5f:6c:f8:88:53:ef:25:8b:4f:55:93: 9a:eb:18:a1:74:ae:7a:48:ad:3c:4b:da:4c:3e:55: af:64:49:c4:88:73:b7:97:55:2f:3d:b9:c0:07:1e: c3:25:57:57:95:26:1c:be:fe:c3:ee:a7:e1:9e:ba: aa:86:45:94:17:b3:ef:64:33:b5:a7:3e:ac:25:53: c3:bc:16:bb:31:21:30:dc:01:54:55:80:0e:6d:2e: 83:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D0:7D:89:4D:94:F9:66:B6:81:AF:6B:2D:FB:4A:DD:59:5E:41:DA X509v3 Authority Key Identifier: keyid:90:21:BE:FF:3B:63:EE:72:48:B9:0D:DA:A5:DD:BF:A7:E3:12:1C:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCG-_ztj7nJIuQ3apd2_p-MSHNk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91113A5/E57F35924B7711F0B1CB9E27C4F9AE02/kCG-_ztj7nJIuQ3apd2_p-MSHNk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 75:99:be:55:3b:c7:1a:d7:b2:46:27:fd:65:80:bc:6c:51:33: da:2f:a8:80:27:15:0e:10:05:cf:53:eb:7a:6a:38:61:71:44: 20:90:6b:f7:3a:6c:85:93:18:86:1e:cb:fb:07:bf:a7:3e:5a: 7a:df:58:5d:82:89:3c:4b:0b:88:4f:35:72:a0:8e:ec:ca:72: e9:f0:b6:7c:8a:37:be:07:cd:28:05:b8:2c:c7:3c:76:9b:b6: 38:fb:d8:75:d2:39:b9:01:96:51:83:02:83:88:47:0b:13:22: 7d:3f:be:88:77:c8:15:98:39:aa:11:df:a5:12:01:4f:a1:e1: 29:49:24:c4:86:8b:2a:b6:8d:8c:1b:7e:9e:fa:b2:23:30:2f: 16:1e:11:90:c8:a2:5f:a1:07:fb:14:85:e5:f6:8a:80:49:a0: 39:2b:8c:1f:fd:6b:23:e3:96:ef:4f:e7:6a:b3:7b:4c:9b:81: e6:50:9b:34:54:04:dc:11:fe:eb:95:c0:d5:9b:9e:21:c9:a7: 21:c9:38:43:4d:7b:f3:10:e9:8a:41:4b:f8:16:50:27:a9:a8: 16:22:7e:e3:78:8d:d0:74:5c:3b:9b:12:02:5a:76:1f:dc:41: e0:99:9b:7e:48:8f:0b:32:e4:2a:18:68:60:15:0b:e5:94:c4: f9:b8:e9:8c -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTNBNTExMC8GA1UEBRMoOTAyMUJFRkYzQjYzRUU3MjQ4QjkwRERBQTVEREJGQTdF MzEyMUNEOTAeFw0yNTEwMTkxMDUzNDhaFw0yNTEwMjYxMDUzNDhaMBgxFjAUBgNV BAMTDTY4ZjRjMzNjLTcyODAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCTQqi581CTSNTUcy2xEhn/uANy/eCn1TmFijIBVyDAmrJW2zdLRnANuubgH+b/ keWZ6INvaz/0Kcy0T4gLIp87j1CJLw/WBMA0jM4FQgQX/XBPG14shvgEJo6wBNH9 MS7xAklIJi7X1PwfRbLLOfguG45ruDLNd/HIA6y+M8/OfpryG6nZ9PQGqn5ll8/+ aPLiDNc23y8EKTKZOHpJRdtxV7lEDze9VzBfbPiIU+8li09Vk5rrGKF0rnpIrTxL 2kw+Va9kScSIc7eXVS89ucAHHsMlV1eVJhy+/sPup+GeuqqGRZQXs+9kM7WnPqwl U8O8FrsxITDcAVRVgA5tLoNpAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUodB9iU2U +Wa2ga9rLftK3VleQdowHwYDVR0jBBgwFoAUkCG+/ztj7nJIuQ3apd2/p+MSHNkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExM0E1L0U1N0YzNTkyNEI3 NzExRjBCMUNCOUUyN0M0RjlBRTAyL2tDRy1fenRqN25KSXVRM2FwZDJfcC1NU0hO ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0NHLV96dGo3bkpJdVEzYXBkMl9wLU1TSE5rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEx M0E1L0U1N0YzNTkyNEI3NzExRjBCMUNCOUUyN0M0RjlBRTAyL2tDRy1fenRqN25K SXVRM2FwZDJfcC1NU0hOay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHWZvlU7xxrXskYn/WWAvGxRM9ovqIAnFQ4QBc9T63pqOGFxRCCQa/c6 bIWTGIYey/sHv6c+WnrfWF2CiTxLC4hPNXKgjuzKcunwtnyKN74HzSgFuCzHPHab tjj72HXSObkBllGDAoOIRwsTIn0/voh3yBWYOaoR36USAU+h4SlJJMSGiyq2jYwb fp76siMwLxYeEZDIol+hB/sUheX2ioBJoDkrjB/9ayPjlu9P52qze0ybgeZQmzRU BNwR/uuVwNWbniHJpyHJOENNe/MQ6YpBS/gWUCepqBYifuN4jdB0XDubEgJadh/c QeCZm35Ijwsy5CoYaGAVC+WUxPm46Yw= -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:44 2025 by rpki-client