$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft File: kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft (raw, json) Hash identifier: 6Ig8mxUCzq4ggY26JAcfhJ9bnrhFd8cRpxiZOR122cc= Subject key identifier: C1:97:F4:EC:7D:2B:F1:DF:21:3B:F4:7F:2F:E3:AD:6F:81:B1:09:82 Authority key identifier: 90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C Certificate issuer: /CN=A913A7A6/serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Certificate serial: 0A5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft Manifest number: 0A56 Signing time: Sat 18 Oct 2025 20:38:36 +0000 Manifest this update: Sat 18 Oct 2025 20:38:36 +0000 Manifest next update: Sat 25 Oct 2025 20:38:36 +0000 Files and hashes: 1: kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl (hash: WhuSuQmwbTA/mLmEcngd8wxHU9jQawbVhEE3UNLkZ9A=) 2: D4AECB7A701611EF824F7281C4F9AE02.roa (hash: 05sTqgo+Z4rvsk50BgwNBJM+KFLlXu8LZA40jZLQRSk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2653 (0xa5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7A6, serialNumber=907B038ADEC7C3FA9C64930E6419B2FBBAB9C81C Validity Not Before: Oct 18 20:38:36 2025 GMT Not After : Oct 25 20:38:36 2025 GMT Subject: CN=68f3facc-3fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e4:c7:e1:11:5b:d5:39:88:b7:56:17:4e:09: af:13:e6:e5:82:f6:b6:86:5c:38:66:25:33:9a:f7: 29:7c:15:31:9c:a0:c4:40:cc:29:7b:22:60:4c:62: af:2c:7a:eb:4c:b0:2a:6d:e1:92:15:61:5a:23:8e: f6:ec:98:e1:28:53:17:68:4b:2c:a8:1d:b4:bd:97: 7e:73:2a:32:53:55:bd:4c:5c:2b:58:31:66:ae:3b: 5f:a2:3f:cb:ef:a0:dc:a3:d7:d4:b9:83:f4:f3:26: 4e:f2:f3:af:db:a5:30:06:e6:a2:e0:bd:e2:dd:af: 9a:a0:d4:1e:d1:79:d5:90:d1:60:79:d3:1c:f0:5b: e7:8a:8a:80:98:e8:63:24:a6:41:0c:b1:02:a1:5a: a8:4d:59:73:02:f0:8a:41:09:95:00:34:71:d0:e9: 60:df:8a:29:d3:a9:3f:ce:3e:75:10:9d:86:51:fc: c6:a2:94:64:b2:2e:17:7b:de:3b:0e:1f:74:c7:ed: 6f:30:58:9f:49:e3:6a:43:0e:59:94:15:88:2c:06: db:c7:bf:e4:66:58:a7:4d:cf:7c:3e:c4:20:e0:e4: 58:01:61:72:68:49:de:a4:f4:57:b3:46:ef:45:ba: 40:6a:01:ef:03:50:a0:ad:ed:46:40:57:4c:a4:c1: 36:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:97:F4:EC:7D:2B:F1:DF:21:3B:F4:7F:2F:E3:AD:6F:81:B1:09:82 X509v3 Authority Key Identifier: keyid:90:7B:03:8A:DE:C7:C3:FA:9C:64:93:0E:64:19:B2:FB:BA:B9:C8:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kHsDit7Hw_qcZJMOZBmy-7q5yBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7A6/4DB9443A73B611EA9B8C1F5CC4F9AE02/kHsDit7Hw_qcZJMOZBmy-7q5yBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:27:a4:f5:8a:6b:4f:a5:f9:10:c8:e1:64:1a:fa:b5:4e:e9: c8:c1:73:38:ae:a7:97:8c:ca:8a:1e:94:f6:65:10:58:e7:03: 27:92:57:ff:32:16:96:b8:a1:5e:8e:8e:b1:17:fb:e1:a3:e2: c1:e2:0f:1d:7a:b6:2a:29:13:41:61:e7:bd:5e:23:7d:1d:7e: d8:b0:be:4a:f3:62:34:68:c3:4b:2e:02:88:9d:b5:d0:0e:65: dc:d6:6f:b0:b8:97:7c:02:eb:cb:d3:d1:84:0e:e2:6a:c8:35: f6:a7:e1:31:de:a1:ed:3d:8d:b0:3b:36:70:39:2a:be:5e:02: 95:e8:a5:fb:13:98:05:67:8e:08:55:98:b2:47:82:49:a3:54: 3c:e2:24:33:a9:84:58:16:b2:4b:2e:9c:7a:89:2d:e9:90:31: 4d:67:44:f2:41:c1:e9:cf:b1:8c:be:84:8b:65:cf:93:9f:10: 9c:0f:5d:6a:23:1d:b4:70:b3:1d:d8:19:56:a8:57:30:62:8f: 08:cb:a5:2e:50:39:50:d3:51:89:f5:28:67:03:c6:65:54:76: 14:be:e2:81:f1:41:b5:ee:fb:2b:5b:1a:0b:0a:3e:ff:45:73: aa:cd:08:43:81:19:bf:b6:5d:84:9c:85:c4:9f:1b:8c:16:04: 13:b9:6c:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCl0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3QTYxMTAvBgNVBAUTKDkwN0IwMzhBREVDN0MzRkE5QzY0OTMwRTY0MTlCMkZC QkFCOUM4MUMwHhcNMjUxMDE4MjAzODM2WhcNMjUxMDI1MjAzODM2WjAYMRYwFAYD VQQDEw02OGYzZmFjYy0zZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmeTH4RFb1TmIt1YXTgmvE+blgva2hlw4ZiUzmvcpfBUxnKDEQMwpeyJgTGKv LHrrTLAqbeGSFWFaI4727JjhKFMXaEssqB20vZd+cyoyU1W9TFwrWDFmrjtfoj/L 76Dco9fUuYP08yZO8vOv26UwBuai4L3i3a+aoNQe0XnVkNFgedMc8FvnioqAmOhj JKZBDLECoVqoTVlzAvCKQQmVADRx0Olg34op06k/zj51EJ2GUfzGopRksi4Xe947 Dh90x+1vMFifSeNqQw5ZlBWILAbbx7/kZlinTc98PsQg4ORYAWFyaEnepPRXs0bv RbpAagHvA1Cgre1GQFdMpME2TQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMGX9Ox9 K/HfITv0fy/jrW+BsQmCMB8GA1UdIwQYMBaAFJB7A4rex8P6nGSTDmQZsvu6ucgc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdBNi80REI5NDQzQTcz QjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdfcWNaSk1PWkJteS03cTV5 QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tIc0RpdDdId19xY1pKTU9aQm15LTdxNXlCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QTdBNi80REI5NDQzQTczQjYxMUVBOUI4QzFGNUNDNEY5QUUwMi9rSHNEaXQ3SHdf cWNaSk1PWkJteS03cTV5QncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkJ6T1imtPpfkQyOFkGvq1TunIwXM4rqeXjMqKHpT2ZRBY5wMnklf/ MhaWuKFejo6xF/vho+LB4g8derYqKRNBYee9XiN9HX7YsL5K82I0aMNLLgKInbXQ DmXc1m+wuJd8AuvL09GEDuJqyDX2p+Ex3qHtPY2wOzZwOSq+XgKV6KX7E5gFZ44I VZiyR4JJo1Q84iQzqYRYFrJLLpx6iS3pkDFNZ0TyQcHpz7GMvoSLZc+TnxCcD11q Ix20cLMd2BlWqFcwYo8Iy6UuUDlQ01GJ9ShnA8ZlVHYUvuKB8UG17vsrWxoLCj7/ RXOqzQhDgRm/tl2EnIXEnxuMFgQTuWwK -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:54 2025 by rpki-client