$ rpki-client -vvf rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft File: knWZPcnEM_JdNYCsd-OV0GaWSD0.mft (raw, json) Hash identifier: d8cdTDSMp09vhhz4Rnak7gTUquPD6vqQrqXDOt2b+TA= Subject key identifier: F1:0D:2D:57:78:7D:EF:62:1F:8B:9D:E8:1F:22:4C:EB:00:44:A6:01 Authority key identifier: 92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D Certificate issuer: /CN=A91276A3/serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Certificate serial: 0731 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft Manifest number: 0728 Signing time: Sat 18 Oct 2025 23:11:03 +0000 Manifest this update: Sat 18 Oct 2025 23:11:02 +0000 Manifest next update: Sat 25 Oct 2025 23:11:02 +0000 Files and hashes: 1: knWZPcnEM_JdNYCsd-OV0GaWSD0.crl (hash: GWZwTWu9669WDakVMxHz2JPDVuTIKHzy0Klt5dHFmKU=) 2: 57BAE77C517D11EB8949D438C4F9AE02.roa (hash: W8Pbilr3L/+CfQDONlD1s3S+g13SAXBwRt28BIl7t2I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:11:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1841 (0x731) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276A3, serialNumber=9275993DC9C433F25D3580AC77E395D06696483D Validity Not Before: Oct 18 23:11:02 2025 GMT Not After : Oct 25 23:11:02 2025 GMT Subject: CN=68f41e86-06b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f9:14:71:1c:37:5e:81:0d:21:43:c2:3c:b7: b6:37:01:89:31:6a:c0:22:9a:c3:51:69:f0:f2:95: 3b:f7:7e:a3:cc:61:7e:a1:d3:97:51:d6:fe:5c:f7: b3:f8:e9:80:b1:c2:cc:44:0f:89:57:e3:55:55:d9: b5:7b:de:82:e5:f8:2f:73:0a:b0:3a:30:3c:23:e2: a7:3a:5c:88:e5:d8:08:77:0c:f8:8e:3d:44:39:33: b0:09:4a:87:ad:24:bc:fb:a4:8d:44:e1:c5:59:fc: 2a:1b:9e:8d:cb:2b:fd:10:1b:08:9a:ef:be:39:1e: 13:03:90:89:90:3f:d4:01:df:94:70:51:c4:ab:dc: c9:9d:b2:5d:52:37:cf:94:65:9a:4a:7c:82:c9:ae: 3b:9d:a1:ca:1c:bb:d9:02:15:d7:e5:f5:6a:25:38: f2:c5:49:06:86:5c:f2:17:23:69:81:c2:7f:50:c5: 61:b0:5a:5d:bf:0a:c9:b3:96:b8:23:29:37:0d:1d: a4:0d:fd:27:cb:fd:56:a9:22:ad:ed:d6:8f:31:76: ac:ca:6c:4f:10:37:2e:77:db:fe:c9:06:ed:ea:f7: a6:47:b7:fe:20:bd:e9:a3:36:3f:7b:4f:d7:b1:6d: d2:f9:39:99:39:98:63:7a:59:4f:5a:30:9b:e8:c9: 1a:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0D:2D:57:78:7D:EF:62:1F:8B:9D:E8:1F:22:4C:EB:00:44:A6:01 X509v3 Authority Key Identifier: keyid:92:75:99:3D:C9:C4:33:F2:5D:35:80:AC:77:E3:95:D0:66:96:48:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/knWZPcnEM_JdNYCsd-OV0GaWSD0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276A3/8320BD1C517B11EB86C2D736C4F9AE02/knWZPcnEM_JdNYCsd-OV0GaWSD0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:ec:ff:b8:ec:1c:20:64:55:d1:05:68:ae:fd:c7:d8:23:50: d0:23:34:ae:b0:4a:cf:da:38:a4:18:2b:05:6f:fc:68:ad:2f: 75:ec:58:59:f4:8e:52:cc:b9:46:e8:54:0b:f2:fd:42:bc:a6: be:14:86:31:f6:d2:4f:99:cf:58:50:ff:60:23:54:30:d4:3f: 25:bf:fd:7e:cd:5e:cb:a5:d3:a8:90:0e:6e:e6:67:69:73:8b: c1:63:b6:c2:de:4c:f3:1b:a2:ad:1c:ec:5e:95:0b:c2:f5:51: 83:b3:0c:40:a3:a1:f9:03:92:36:89:a0:bb:db:b7:29:a3:d4: 05:08:5d:d6:c0:4d:21:ba:8e:b2:78:5c:50:06:4e:11:7d:94: 01:5c:f0:52:cd:b1:f3:91:62:b8:30:e4:b0:9f:0e:bb:7d:dc: b0:8e:df:b7:a1:4a:49:74:da:5d:09:03:63:eb:d1:96:a8:99: ab:a3:2c:cd:5b:46:22:6e:74:f5:01:2f:26:a3:b5:a2:9c:e0: 22:ce:34:c4:36:3c:fb:16:0d:b7:5b:05:9e:57:21:a8:73:cc: 7e:5c:14:ef:ea:59:83:59:5d:21:4b:4c:d8:f6:d6:fc:41:1c: 0f:c7:3b:be:d1:1e:91:b8:78:26:13:de:de:80:22:ef:e4:1a: 64:3d:33:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBzEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2QTMxMTAvBgNVBAUTKDkyNzU5OTNEQzlDNDMzRjI1RDM1ODBBQzc3RTM5NUQw NjY5NjQ4M0QwHhcNMjUxMDE4MjMxMTAyWhcNMjUxMDI1MjMxMTAyWjAYMRYwFAYD VQQDEw02OGY0MWU4Ni0wNmIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/kUcRw3XoENIUPCPLe2NwGJMWrAIprDUWnw8pU7936jzGF+odOXUdb+XPez +OmAscLMRA+JV+NVVdm1e96C5fgvcwqwOjA8I+KnOlyI5dgIdwz4jj1EOTOwCUqH rSS8+6SNROHFWfwqG56Nyyv9EBsImu++OR4TA5CJkD/UAd+UcFHEq9zJnbJdUjfP lGWaSnyCya47naHKHLvZAhXX5fVqJTjyxUkGhlzyFyNpgcJ/UMVhsFpdvwrJs5a4 Iyk3DR2kDf0ny/1WqSKt7daPMXasymxPEDcud9v+yQbt6vemR7f+IL3pozY/e0/X sW3S+TmZOZhjellPWjCb6MkanQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPENLVd4 fe9iH4ud6B8iTOsARKYBMB8GA1UdIwQYMBaAFJJ1mT3JxDPyXTWArHfjldBmlkg9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZBMy84MzIwQkQxQzUx N0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1fSmROWUNzZC1PVjBHYVdT RDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tuV1pQY25FTV9KZE5ZQ3NkLU9WMEdhV1NEMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzZBMy84MzIwQkQxQzUxN0IxMUVCODZDMkQ3MzZDNEY5QUUwMi9rbldaUGNuRU1f SmROWUNzZC1PVjBHYVdTRDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBC7P+47BwgZFXRBWiu/cfYI1DQIzSusErP2jikGCsFb/xorS917FhZ 9I5SzLlG6FQL8v1CvKa+FIYx9tJPmc9YUP9gI1Qw1D8lv/1+zV7LpdOokA5u5mdp c4vBY7bC3kzzG6KtHOxelQvC9VGDswxAo6H5A5I2iaC727cpo9QFCF3WwE0huo6y eFxQBk4RfZQBXPBSzbHzkWK4MOSwnw67fdywjt+3oUpJdNpdCQNj69GWqJmroyzN W0YibnT1AS8mo7WinOAizjTENjz7Fg23WwWeVyGoc8x+XBTv6lmDWV0hS0zY9tb8 QRwPxzu+0R6RuHgmE97egCLv5BpkPTNO -----END CERTIFICATE-----Generated at Mon Oct 20 08:56:34 2025 by rpki-client