$ rpki-client -vvf rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft File: KXr2WH-YpJnreNLMrjYW70KfV1A.mft (raw, json) Hash identifier: msFH3ilM0E7z0bza18/bbeJZuJnbWc4T8UcCrP1TFJ0= Subject key identifier: 9B:68:BA:06:52:41:80:75:D6:40:D6:50:B3:AB:43:27:5B:82:90:42 Authority key identifier: 29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 Certificate issuer: /CN=A91411BC/serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Certificate serial: 1370 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft Manifest number: 1367 Signing time: Sat 18 Oct 2025 17:29:02 +0000 Manifest this update: Sat 18 Oct 2025 17:29:01 +0000 Manifest next update: Sat 25 Oct 2025 17:29:01 +0000 Files and hashes: 1: KXr2WH-YpJnreNLMrjYW70KfV1A.crl (hash: syqAYooPe9SojiuxBg3qEl2uxthgCE+Z2y/9U4UXcEk=) 2: B4996A22AC3411E88623474BC4F9AE02.roa (hash: 7JGYiU3kiC6kUGQIsQnoyjTh5wnU3N3mh36JHRhfnlU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:29:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4976 (0x1370) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91411BC, serialNumber=297AF6587F98A499EB78D2CCAE3616EF429F5750 Validity Not Before: Oct 18 17:29:01 2025 GMT Not After : Oct 25 17:29:01 2025 GMT Subject: CN=68f3ce5d-bacd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:75:9d:24:22:80:fe:6b:8e:0b:9b:f8:cd:be: 97:3f:6f:a5:3e:f5:25:98:50:21:e3:62:52:11:7f: 30:9a:d4:bb:31:d7:7c:fd:e9:b1:33:f4:f5:50:4f: 0f:72:be:b7:74:2b:04:6d:6e:e5:42:6c:08:65:9a: 63:e4:c8:11:ff:d9:2c:33:be:86:7e:64:72:28:be: fc:08:52:04:cd:89:58:65:99:ce:61:56:cf:74:10: d4:3d:ef:54:43:5f:c0:fa:07:8b:aa:f5:1d:de:7f: e9:e3:b4:26:13:31:b2:de:dd:77:c1:dd:f6:f0:7c: e8:a9:a9:6b:3b:dc:9a:90:35:84:ea:7c:36:4e:23: 83:84:ab:c1:d3:fd:a4:9a:c0:b4:e0:6c:08:a6:6b: 40:27:08:05:09:58:ec:78:c8:71:5a:fc:be:e5:99: c8:f6:d8:12:d4:8f:12:6e:dd:1c:3c:66:7f:2f:15: cd:a4:70:92:4a:24:3b:ac:78:f5:a7:76:e7:57:e3: 92:7a:92:e2:85:74:ab:eb:bb:73:ec:8a:d4:9a:bd: 9b:08:45:62:21:63:13:da:d2:2b:5b:22:e1:ca:e7: df:2f:f7:90:2f:b0:eb:9d:b7:5e:dc:22:3a:be:8a: 20:88:b6:6d:4f:33:26:00:b2:22:f4:de:30:60:cf: 94:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:68:BA:06:52:41:80:75:D6:40:D6:50:B3:AB:43:27:5B:82:90:42 X509v3 Authority Key Identifier: keyid:29:7A:F6:58:7F:98:A4:99:EB:78:D2:CC:AE:36:16:EF:42:9F:57:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KXr2WH-YpJnreNLMrjYW70KfV1A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91411BC/E3171B02AC3311E8B2069449C4F9AE02/KXr2WH-YpJnreNLMrjYW70KfV1A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:60:00:4e:1e:70:82:65:fb:09:7c:70:cf:a5:28:56:63:93: 02:b6:31:d3:a5:60:5f:48:7c:9e:15:b2:4e:5d:30:c8:68:4c: 3f:d7:08:c3:9a:d9:9b:3e:32:e2:c5:b0:fe:ae:a4:88:31:35: a2:48:ca:cf:af:22:04:12:25:bc:ae:97:38:ad:5e:1e:13:10: 36:01:be:3b:9b:f2:b3:c4:f8:ee:b9:2b:23:32:a0:0c:16:00: 41:74:6c:11:ab:18:ed:bc:27:57:c8:16:42:f8:65:90:db:92: f4:a8:37:7b:5d:7e:d0:6c:75:1a:55:5a:67:1c:c1:56:6d:b6: 9b:b1:f6:e0:25:b9:92:bd:77:2f:0d:71:8e:e3:e5:ca:91:8a: 8e:b7:30:ff:aa:43:b5:de:be:b6:e5:bc:c8:48:4d:34:39:5e: df:b7:64:67:b5:d7:8c:51:22:88:7f:d5:b0:50:4d:ae:3f:ca: ee:cd:86:2c:fd:52:f7:c7:43:ba:44:49:9f:c3:32:23:5c:0e: 36:21:86:f8:9e:de:4a:49:ea:f2:d6:12:a2:b5:a4:18:1e:61: 21:b4:85:3f:f1:36:85:fc:fc:37:61:bd:20:a5:61:53:01:b0: 4f:da:d7:90:56:57:b6:22:2b:1d:7e:25:b6:49:46:7b:36:a2: ae:ee:16:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICE3AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDExQkMxMTAvBgNVBAUTKDI5N0FGNjU4N0Y5OEE0OTlFQjc4RDJDQ0FFMzYxNkVG NDI5RjU3NTAwHhcNMjUxMDE4MTcyOTAxWhcNMjUxMDI1MTcyOTAxWjAYMRYwFAYD VQQDEw02OGYzY2U1ZC1iYWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwXWdJCKA/muOC5v4zb6XP2+lPvUlmFAh42JSEX8wmtS7Mdd8/emxM/T1UE8P cr63dCsEbW7lQmwIZZpj5MgR/9ksM76GfmRyKL78CFIEzYlYZZnOYVbPdBDUPe9U Q1/A+geLqvUd3n/p47QmEzGy3t13wd328HzoqalrO9yakDWE6nw2TiODhKvB0/2k msC04GwIpmtAJwgFCVjseMhxWvy+5ZnI9tgS1I8Sbt0cPGZ/LxXNpHCSSiQ7rHj1 p3bnV+OSepLihXSr67tz7IrUmr2bCEViIWMT2tIrWyLhyuffL/eQL7Drnbde3CI6 voogiLZtTzMmALIi9N4wYM+UnQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJtougZS QYB11kDWULOrQydbgpBCMB8GA1UdIwQYMBaAFCl69lh/mKSZ63jSzK42Fu9Cn1dQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTFCQy9FMzE3MUIwMkFD MzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBKbnJlTkxNcmpZVzcwS2ZW MUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tYcjJXSC1ZcEpucmVOTE1yallXNzBLZlYxQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTFCQy9FMzE3MUIwMkFDMzMxMUU4QjIwNjk0NDlDNEY5QUUwMi9LWHIyV0gtWXBK bnJlTkxNcmpZVzcwS2ZWMUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAwYABOHnCCZfsJfHDPpShWY5MCtjHTpWBfSHyeFbJOXTDIaEw/1wjD mtmbPjLixbD+rqSIMTWiSMrPryIEEiW8rpc4rV4eExA2Ab47m/KzxPjuuSsjMqAM FgBBdGwRqxjtvCdXyBZC+GWQ25L0qDd7XX7QbHUaVVpnHMFWbbabsfbgJbmSvXcv DXGO4+XKkYqOtzD/qkO13r625bzISE00OV7ft2RntdeMUSKIf9WwUE2uP8ruzYYs /VL3x0O6REmfwzIjXA42IYb4nt5KSery1hKitaQYHmEhtIU/8TaF/Pw3Yb0gpWFT AbBP2teQVle2IisdfiW2SUZ7NqKu7hbE -----END CERTIFICATE-----Generated at Mon Oct 20 14:11:14 2025 by rpki-client