$ rpki-client -vvf rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft File: KiZlwxQeS_P9LwBKrimlmHETod8.mft (raw, json) Hash identifier: tqccVS9fQPVdJ3vIi+LzY401rAWPzMMhi07E4btwqBM= Subject key identifier: BF:99:3E:87:41:63:39:EC:71:FC:7C:CB:67:A1:A7:27:B4:83:B9:BC Authority key identifier: 2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF Certificate issuer: /CN=A911972D/serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Certificate serial: 03D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft Manifest number: 03CA Signing time: Sun 19 Oct 2025 02:38:25 +0000 Manifest this update: Sun 19 Oct 2025 02:38:24 +0000 Manifest next update: Sun 26 Oct 2025 02:38:24 +0000 Files and hashes: 1: KiZlwxQeS_P9LwBKrimlmHETod8.crl (hash: 4gItb46gRzlFA5ptBbhRAWJm1v/nRohv2j4CYbc6rkY=) 2: B067CCDCA8C511EC8F560C42C4F9AE02.roa (hash: 3k13Zb4rUCPiQVhmHXmV79sBuRx9W6om0fkw2CRWuLk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 976 (0x3d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911972D, serialNumber=2A2665C3141E4BF3FD2F004AAE29A5987113A1DF Validity Not Before: Oct 19 02:38:24 2025 GMT Not After : Oct 26 02:38:24 2025 GMT Subject: CN=68f44f21-59b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:26:40:86:f2:10:ca:1b:86:01:e4:fe:1a:b6: d7:98:3a:13:f8:1b:03:58:5a:aa:e0:20:0c:e0:2a: 4f:d8:b6:c4:fa:42:a5:3e:7c:38:e7:8f:cf:49:65: ba:b6:4a:50:a0:0c:c2:fd:2e:22:d7:51:6b:a7:81: fc:76:35:07:ef:58:cf:fc:a6:80:5f:49:ff:7a:d4: 68:4c:a8:ee:66:93:f0:69:02:03:ee:e9:e7:a4:59: 79:0f:96:a0:dd:14:11:05:cc:36:04:f1:43:a0:f5: b6:a8:c3:17:6a:01:4a:23:26:cd:a8:5d:76:4a:51: 70:a6:b5:89:e7:8f:0d:7e:18:af:2d:d7:3e:1d:aa: 7f:8b:48:7f:ba:f7:4e:d1:5f:8c:95:3c:42:3b:88: 93:61:98:25:b1:a5:dd:a8:8e:f6:4f:1e:6e:5d:00: d3:6c:51:77:0f:fa:6b:6a:a7:28:9c:b1:74:41:13: 1f:4d:53:5e:f1:0b:54:a2:e6:ff:17:6a:04:83:fe: 46:ae:f0:8d:de:93:6b:5c:86:e4:79:81:67:cd:86: 1a:c5:b9:28:40:5c:31:4d:05:a0:35:dd:32:72:b2: 70:ab:58:93:e6:04:5c:67:18:c2:5e:20:26:24:30: a4:b5:1b:6e:6a:3a:86:e3:46:e7:fe:b5:18:bb:e3: 27:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:99:3E:87:41:63:39:EC:71:FC:7C:CB:67:A1:A7:27:B4:83:B9:BC X509v3 Authority Key Identifier: keyid:2A:26:65:C3:14:1E:4B:F3:FD:2F:00:4A:AE:29:A5:98:71:13:A1:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KiZlwxQeS_P9LwBKrimlmHETod8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911972D/99EE950CA68211ECB4E3EC3AC4F9AE02/KiZlwxQeS_P9LwBKrimlmHETod8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:18:29:1d:98:7c:8e:b3:15:6c:67:6a:7a:6f:5f:95:0b:39: 49:12:d6:be:a7:ad:89:3a:1c:2a:95:14:dd:73:36:f8:64:22: db:04:a0:ad:05:a1:04:7b:fa:e0:83:9e:58:b1:61:c1:c0:d4: 18:bd:56:f3:21:6e:9f:66:4c:ec:b4:6d:6a:2c:1a:92:31:df: 65:81:b9:68:8d:51:e5:bb:02:48:06:0d:09:9b:09:8f:af:45: e8:da:fa:4b:ed:29:d0:fa:df:f8:7a:0e:b2:98:1a:25:27:8b: 81:ea:1f:91:ef:16:95:c9:9c:d1:30:1e:18:a7:b1:29:a8:fb: f2:9c:9e:b0:3f:44:c8:b8:91:38:bd:f1:bb:ce:fa:26:77:ef: d4:41:03:39:66:46:ef:8a:95:fe:34:e8:c4:4a:af:36:7d:df: c7:9c:74:b5:ec:f4:41:b3:30:d4:66:38:99:51:17:6c:41:1d: f4:81:75:db:ae:5d:c2:bc:97:e1:44:d4:e3:d2:8f:83:9d:16: be:6e:b2:6f:40:0c:f2:93:56:b5:0e:5e:4b:91:d9:0d:a9:6c: 39:9b:65:b5:05:69:d7:81:97:7b:1a:db:47:f1:70:8c:24:5d: f2:d2:bf:2f:5d:e7:14:e1:6c:35:f2:00:bb:3b:16:3f:63:65: a2:23:71:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk3MkQxMTAvBgNVBAUTKDJBMjY2NUMzMTQxRTRCRjNGRDJGMDA0QUFFMjlBNTk4 NzExM0ExREYwHhcNMjUxMDE5MDIzODI0WhcNMjUxMDI2MDIzODI0WjAYMRYwFAYD VQQDEw02OGY0NGYyMS01OWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxCZAhvIQyhuGAeT+GrbXmDoT+BsDWFqq4CAM4CpP2LbE+kKlPnw454/PSWW6 tkpQoAzC/S4i11Frp4H8djUH71jP/KaAX0n/etRoTKjuZpPwaQID7unnpFl5D5ag 3RQRBcw2BPFDoPW2qMMXagFKIybNqF12SlFwprWJ548NfhivLdc+Hap/i0h/uvdO 0V+MlTxCO4iTYZglsaXdqI72Tx5uXQDTbFF3D/praqconLF0QRMfTVNe8QtUoub/ F2oEg/5GrvCN3pNrXIbkeYFnzYYaxbkoQFwxTQWgNd0ycrJwq1iT5gRcZxjCXiAm JDCktRtuajqG40bn/rUYu+MnFwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+ZPodB Yznscfx8y2ehpye0g7m8MB8GA1UdIwQYMBaAFComZcMUHkvz/S8ASq4ppZhxE6Hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTcyRC85OUVFOTUwQ0E2 ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNfUDlMd0JLcmltbG1IRVRv ZDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tpWmx3eFFlU19QOUx3QktyaW1sbUhFVG9kOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTcyRC85OUVFOTUwQ0E2ODIxMUVDQjRFM0VDM0FDNEY5QUUwMi9LaVpsd3hRZVNf UDlMd0JLcmltbG1IRVRvZDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDiGCkdmHyOsxVsZ2p6b1+VCzlJEta+p62JOhwqlRTdczb4ZCLbBKCt BaEEe/rgg55YsWHBwNQYvVbzIW6fZkzstG1qLBqSMd9lgblojVHluwJIBg0JmwmP r0Xo2vpL7SnQ+t/4eg6ymBolJ4uB6h+R7xaVyZzRMB4Yp7EpqPvynJ6wP0TIuJE4 vfG7zvomd+/UQQM5ZkbvipX+NOjESq82fd/HnHS17PRBszDUZjiZURdsQR30gXXb rl3CvJfhRNTj0o+DnRa+brJvQAzyk1a1Dl5LkdkNqWw5m2W1BWnXgZd7GttH8XCM JF3y0r8vXecU4Ww18gC7OxY/Y2WiI3Gh -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:00 2025 by rpki-client