$ rpki-client -vvf rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft File: kDo4Q2eaCxBdykhcPWSPPREnL7c.mft (raw, json) Hash identifier: O98dw+SDq3yIA44Y+814vMDxC3QsXS97m53woHobsmE= Subject key identifier: 55:F2:80:EF:3E:F7:63:E4:83:36:88:30:FE:79:FD:03:65:60:19:F3 Authority key identifier: 90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 Certificate issuer: /CN=A914E488/serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Certificate serial: 028B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft Manifest number: 0287 Signing time: Sun 19 Oct 2025 03:48:48 +0000 Manifest this update: Sun 19 Oct 2025 03:48:47 +0000 Manifest next update: Sun 26 Oct 2025 03:48:47 +0000 Files and hashes: 1: kDo4Q2eaCxBdykhcPWSPPREnL7c.crl (hash: EADH47YntVBzctf9VkrbKsAgVazCvq8zQdfFDm2JDcI=) 2: 606EB6AE240911EDBFA59C27C4F9AE02.roa (hash: NNo4SAwO23W3h7iwFhvtQVGgAhn5LQhxSRbEa+xKr7I=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 651 (0x28b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E488, serialNumber=903A3843679A0B105DCA485C3D648F3D11272FB7 Validity Not Before: Oct 19 03:48:47 2025 GMT Not After : Oct 26 03:48:47 2025 GMT Subject: CN=68f45fa0-d12a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:69:2c:e2:44:83:78:1a:c0:c0:e1:e7:fe:0c: 9a:dc:3a:58:d6:fc:84:37:73:86:e9:e4:23:96:cd: 6b:20:a9:ad:a5:a3:e2:81:be:51:89:5d:c1:c6:2d: 9d:83:b9:e0:e7:e2:e0:92:7c:cf:c6:60:c9:71:33: 0f:f8:d5:f8:de:2e:3a:ac:63:6c:dc:ba:7e:66:9e: 01:91:e4:95:99:d9:fd:06:ea:25:71:e7:16:1f:9b: 13:19:c9:ed:26:99:3e:13:3f:ad:5c:f0:af:cd:34: 9b:f2:03:6c:7e:15:b6:a6:23:38:a9:44:52:dc:64: bc:60:28:11:99:33:e8:b0:62:84:7d:d0:60:31:64: e4:3e:d6:ae:af:13:6f:2c:69:73:0a:53:b1:50:cd: 91:f7:4d:17:0f:38:f0:c1:e5:6f:80:0b:7d:e7:e5: ce:64:fe:bd:00:4a:79:e2:dc:22:5a:08:da:fb:fd: 4d:73:bb:6c:44:63:27:ec:bb:dd:37:18:f9:a6:71: 0d:b1:02:be:b3:bb:16:b6:3d:e1:ec:82:34:d8:5f: ac:ca:55:af:82:8e:72:3c:f4:b9:6f:36:71:ae:d1: d0:fa:45:29:af:e2:30:04:69:fa:ce:fc:3a:8f:2a: e8:96:cb:28:bb:eb:45:ab:c1:7c:c1:eb:cf:dd:90: 8c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F2:80:EF:3E:F7:63:E4:83:36:88:30:FE:79:FD:03:65:60:19:F3 X509v3 Authority Key Identifier: keyid:90:3A:38:43:67:9A:0B:10:5D:CA:48:5C:3D:64:8F:3D:11:27:2F:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDo4Q2eaCxBdykhcPWSPPREnL7c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E488/F88698CA240511EDB987B823C4F9AE02/kDo4Q2eaCxBdykhcPWSPPREnL7c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 81:11:4d:c7:74:68:2b:cd:73:d7:1f:26:3e:53:20:d2:81:5c: 45:2b:e2:2c:86:b3:ee:ee:69:8d:c9:dc:87:94:57:6c:f0:3f: 10:91:05:24:5a:46:81:f1:60:c9:81:2e:39:d0:5c:f8:4e:90: 5c:84:ed:65:b2:a0:1a:fc:f0:f9:fc:03:77:84:59:96:ea:63: d9:45:0f:b5:ab:27:c5:aa:53:ff:59:05:6b:5a:12:26:4c:31: 69:c3:40:d9:fa:ef:5f:e5:16:00:9d:a4:67:4e:85:13:df:7f: ec:f4:80:d0:e8:6d:d4:5c:ca:8b:32:27:47:ae:19:1b:a8:96: ef:f0:44:7c:61:20:26:82:37:e3:06:0f:9d:39:b8:af:6d:c8: b6:96:2f:ff:a7:a6:6b:65:a3:05:08:5f:80:9c:06:f4:b5:73: 08:74:b2:19:04:9e:f7:31:3b:a5:38:b9:f6:54:3f:5a:b3:e4: f3:46:53:c1:01:8a:ff:97:78:3d:0e:63:7b:a8:aa:02:5c:80: 06:c3:db:b8:d4:59:55:1f:14:2e:c9:0b:b8:d9:1c:f2:5f:b5: 5b:2c:0e:a6:01:5a:92:02:a3:44:aa:c6:c9:69:4a:2b:f5:62: b3:78:b2:c2:68:1a:a5:fd:d7:3a:8c:0a:88:45:cc:c9:40:31: e4:24:22:43 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU0ODgxMTAvBgNVBAUTKDkwM0EzODQzNjc5QTBCMTA1RENBNDg1QzNENjQ4RjNE MTEyNzJGQjcwHhcNMjUxMDE5MDM0ODQ3WhcNMjUxMDI2MDM0ODQ3WjAYMRYwFAYD VQQDEw02OGY0NWZhMC1kMTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzmks4kSDeBrAwOHn/gya3DpY1vyEN3OG6eQjls1rIKmtpaPigb5RiV3Bxi2d g7ng5+LgknzPxmDJcTMP+NX43i46rGNs3Lp+Zp4BkeSVmdn9BuolcecWH5sTGcnt Jpk+Ez+tXPCvzTSb8gNsfhW2piM4qURS3GS8YCgRmTPosGKEfdBgMWTkPtaurxNv LGlzClOxUM2R900XDzjwweVvgAt95+XOZP69AEp54twiWgja+/1Nc7tsRGMn7Lvd Nxj5pnENsQK+s7sWtj3h7II02F+sylWvgo5yPPS5bzZxrtHQ+kUpr+IwBGn6zvw6 jyrolssou+tFq8F8wevP3ZCMEQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFXygO8+ 92PkgzaIMP55/QNlYBnzMB8GA1UdIwQYMBaAFJA6OENnmgsQXcpIXD1kjz0RJy+3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTQ4OC9GODg2OThDQTI0 MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4QmR5a2hjUFdTUFBSRW5M N2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEbzRRMmVhQ3hCZHlraGNQV1NQUFJFbkw3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTQ4OC9GODg2OThDQTI0MDUxMUVEQjk4N0I4MjNDNEY5QUUwMi9rRG80UTJlYUN4 QmR5a2hjUFdTUFBSRW5MN2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCBEU3HdGgrzXPXHyY+UyDSgVxFK+IshrPu7mmNydyHlFds8D8QkQUk WkaB8WDJgS450Fz4TpBchO1lsqAa/PD5/AN3hFmW6mPZRQ+1qyfFqlP/WQVrWhIm TDFpw0DZ+u9f5RYAnaRnToUT33/s9IDQ6G3UXMqLMidHrhkbqJbv8ER8YSAmgjfj Bg+dObivbci2li//p6ZrZaMFCF+AnAb0tXMIdLIZBJ73MTulOLn2VD9as+TzRlPB AYr/l3g9DmN7qKoCXIAGw9u41FlVHxQuyQu42RzyX7VbLA6mAVqSAqNEqsbJaUor 9WKzeLLCaBql/dc6jAqIRczJQDHkJCJD -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:23 2025 by rpki-client