$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft File: rs-kglLctVxfHrOBKIztw-b4YnQ.mft (raw, json) Hash identifier: Xt7aFdJNWzQlRlpbi2h2Lpb1fWnne2RO+W8su9Q07aE= Subject key identifier: 14:E6:78:10:94:5E:A0:7D:FF:C1:85:B1:34:5A:D4:CC:81:E2:2B:BB Authority key identifier: AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 Certificate issuer: /CN=A91356BA/serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Certificate serial: D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft Manifest number: D7 Signing time: Sun 19 Oct 2025 08:41:20 +0000 Manifest this update: Sun 19 Oct 2025 08:41:20 +0000 Manifest next update: Sun 26 Oct 2025 08:41:20 +0000 Files and hashes: 1: rs-kglLctVxfHrOBKIztw-b4YnQ.crl (hash: BT9Un2gQUOYbZGVDEWys3YqL3A1Vk/WT0HZB9jPi3Og=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:41:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BA, serialNumber=AECFA48252DCB55C5F1EB381288CEDC3E6F86274 Validity Not Before: Oct 19 08:41:20 2025 GMT Not After : Oct 26 08:41:20 2025 GMT Subject: CN=68f4a430-c487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:6f:4b:d9:29:2b:1f:b2:bd:91:15:30:89:bb: 25:fd:c2:99:82:42:ae:35:26:b9:82:27:f7:73:11: a7:e0:4e:3f:b2:e4:fd:e0:1b:8d:5d:a4:35:1f:a8: ba:55:b9:3d:bc:15:cd:14:9f:22:ac:e1:62:d1:e5: 54:a1:cc:9b:b4:a1:02:db:73:98:4b:e4:01:c0:81: ff:4d:cd:73:03:8d:5b:fe:d4:73:03:83:b8:74:45: d4:cf:1c:ae:c1:1b:bd:fd:bb:ca:81:dd:a7:e8:41: 9d:b9:77:7d:29:59:82:ce:8b:43:56:93:38:8e:8c: e0:e5:a0:60:f7:b7:fc:15:93:4f:83:12:c9:b6:30: 9f:3a:00:aa:76:f6:57:ef:32:84:a6:37:5b:6c:6f: bb:55:64:93:05:cc:d4:a8:a9:c0:04:78:5a:66:8c: d6:07:e4:40:49:73:2c:d0:bf:dc:e2:00:a5:e9:83: e8:c3:e4:59:78:03:fa:c2:32:3b:6b:3e:9e:14:bb: ae:55:86:05:6b:c5:11:66:92:77:ce:95:ad:74:a4: 6f:c6:bd:ce:c2:92:47:3b:52:25:fe:3f:d2:e5:13: c5:c0:c6:e8:c3:5c:ee:e5:f0:ff:1a:c5:80:e2:0f: 41:d0:db:fb:a5:d2:1b:05:34:a3:d7:b7:dc:73:d5: 60:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E6:78:10:94:5E:A0:7D:FF:C1:85:B1:34:5A:D4:CC:81:E2:2B:BB X509v3 Authority Key Identifier: keyid:AE:CF:A4:82:52:DC:B5:5C:5F:1E:B3:81:28:8C:ED:C3:E6:F8:62:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rs-kglLctVxfHrOBKIztw-b4YnQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BA/264521D2690511EFAD230464C4F9AE02/rs-kglLctVxfHrOBKIztw-b4YnQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:95:e3:ab:7f:d2:d4:16:80:61:b7:0d:5c:19:da:db:a9:b1: d8:69:94:22:19:d8:0e:93:e9:61:46:08:33:78:95:9e:5a:dc: 02:13:bd:63:da:2e:93:e7:b1:28:27:ed:86:39:2c:1d:db:8b: c1:e1:06:c6:ab:43:2c:5b:00:00:0d:c2:ce:79:11:fe:72:54: 36:eb:3e:71:7e:1a:3e:72:ca:dc:ed:8e:40:4d:16:4b:1f:9d: 46:87:ff:fa:3a:6c:64:0c:f3:c8:10:78:bb:6c:61:9d:e9:b5: dc:62:c0:9c:06:9d:d6:7c:05:a9:a6:72:3b:65:a1:32:34:a8: 88:d6:34:5c:12:ea:da:88:23:f3:38:fb:1d:80:17:c4:6a:61: b7:82:6f:71:13:72:33:48:9c:65:21:30:10:97:5d:a7:a1:37: 23:60:5f:c9:6e:50:e0:b0:42:36:d6:6b:79:ff:a6:31:02:31: c6:04:5e:85:99:32:89:5d:e8:8f:7a:3f:b0:49:8c:f5:de:2e: 91:3f:66:7a:37:30:82:02:a4:27:ee:65:0d:26:eb:23:78:ac: fd:c1:fe:e3:3e:db:b7:66:9a:f1:46:48:37:35:90:96:fa:ce: f0:88:57:65:55:40:5f:c5:ab:4d:cf:10:d9:f1:6a:54:44:56: c9:4f:94:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkExMTAvBgNVBAUTKEFFQ0ZBNDgyNTJEQ0I1NUM1RjFFQjM4MTI4OENFREMz RTZGODYyNzQwHhcNMjUxMDE5MDg0MTIwWhcNMjUxMDI2MDg0MTIwWjAYMRYwFAYD VQQDEw02OGY0YTQzMC1jNDg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq29L2SkrH7K9kRUwibsl/cKZgkKuNSa5gif3cxGn4E4/suT94BuNXaQ1H6i6 Vbk9vBXNFJ8irOFi0eVUocybtKEC23OYS+QBwIH/Tc1zA41b/tRzA4O4dEXUzxyu wRu9/bvKgd2n6EGduXd9KVmCzotDVpM4jozg5aBg97f8FZNPgxLJtjCfOgCqdvZX 7zKEpjdbbG+7VWSTBczUqKnABHhaZozWB+RASXMs0L/c4gCl6YPow+RZeAP6wjI7 az6eFLuuVYYFa8URZpJ3zpWtdKRvxr3OwpJHO1Il/j/S5RPFwMbow1zu5fD/GsWA 4g9B0Nv7pdIbBTSj17fcc9VgfQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBTmeBCU XqB9/8GFsTRa1MyB4iu7MB8GA1UdIwQYMBaAFK7PpIJS3LVcXx6zgSiM7cPm+GJ0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQS8yNjQ1MjFEMjY5 MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RWeGZIck9CS0l6dHctYjRZ blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JzLWtnbExjdFZ4ZkhyT0JLSXp0dy1iNFluUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NTZCQS8yNjQ1MjFEMjY5MDUxMUVGQUQyMzA0NjRDNEY5QUUwMi9ycy1rZ2xMY3RW eGZIck9CS0l6dHctYjRZblEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBkleOrf9LUFoBhtw1cGdrbqbHYaZQiGdgOk+lhRggzeJWeWtwCE71j 2i6T57EoJ+2GOSwd24vB4QbGq0MsWwAADcLOeRH+clQ26z5xfho+csrc7Y5ATRZL H51Gh//6OmxkDPPIEHi7bGGd6bXcYsCcBp3WfAWppnI7ZaEyNKiI1jRcEuraiCPz OPsdgBfEamG3gm9xE3IzSJxlITAQl12noTcjYF/JblDgsEI21mt5/6YxAjHGBF6F mTKJXeiPej+wSYz13i6RP2Z6NzCCAqQn7mUNJusjeKz9wf7jPtu3ZprxRkg3NZCW +s7wiFdlVUBfxatNzxDZ8WpURFbJT5Qa -----END CERTIFICATE-----Generated at Mon Oct 20 14:13:40 2025 by rpki-client