$ rpki-client -vvf rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft File: KrJDLDrVEo7XPpnEYNBhH69NIg4.mft (raw, json) Hash identifier: QjBSL80MJ0rV3qMUOoqR3QgvY4dNUTkOyoh8MVeHkVo= Subject key identifier: 45:2F:89:2F:11:F0:5F:55:CC:29:34:CD:32:A7:82:23:7F:A8:14:F6 Authority key identifier: 2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E Certificate issuer: /CN=A9153850/serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Certificate serial: 88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft Manifest number: 7D Signing time: Sun 19 Oct 2025 10:14:06 +0000 Manifest this update: Sun 19 Oct 2025 10:14:05 +0000 Manifest next update: Sun 26 Oct 2025 10:14:05 +0000 Files and hashes: 1: KrJDLDrVEo7XPpnEYNBhH69NIg4.crl (hash: oM/4CV2FLUeCU8RtM3n1XdjmIZ7zn7I1HkD1W1MDitI=) 2: FC7F121AAA6F11F0BCFEBD63C4F9AE02.roa (hash: ACjymaT82Ts20I3seIpJ3qFJasSA4FVf/+MM9Q+0Im8=) 3: D6246110AA6F11F0AD515C63C4F9AE02.roa (hash: RGGyK8DspBxTZffeC/YcsDxozPm/op0sIdvWa7dUrhw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:14:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 136 (0x88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153850, serialNumber=2AB2432C3AD5128ED73E99C460D0611FAF4D220E Validity Not Before: Oct 19 10:14:05 2025 GMT Not After : Oct 26 10:14:05 2025 GMT Subject: CN=68f4b9ee-88a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:3f:ce:37:70:b3:d2:ed:04:6a:c9:5d:d6: 7d:d3:48:3e:6f:74:a4:0b:e9:fc:4b:1e:c6:bc:b9: 22:2d:2a:43:54:7b:e1:8b:33:aa:a4:85:40:fb:b6: f9:8d:68:af:bc:cf:ad:17:ca:68:9d:c9:ea:13:ad: 78:de:98:d9:0c:8e:96:51:91:f6:d5:e8:ad:33:e3: af:18:68:62:7d:c1:88:64:a7:7c:a7:fb:b1:05:24: e3:fd:b5:16:28:f0:04:f0:50:e5:4c:a3:48:d1:5e: 1b:5f:0f:b1:04:94:f8:34:42:18:eb:99:9f:86:4a: 29:1c:00:7a:e9:1a:28:91:2b:d0:b7:1a:33:83:cf: 92:18:d0:68:29:0a:67:a5:58:78:14:9f:40:84:73: 91:bc:1d:b4:82:9c:71:f2:c6:e6:cd:0a:3c:68:6e: 0f:5f:66:6c:5a:61:18:12:fa:c2:7b:69:f9:49:8c: 24:99:49:31:8d:95:f0:1f:8e:24:17:f2:c2:a2:1b: f4:69:eb:60:97:11:0b:93:ec:74:42:a4:a0:5f:d7: f2:4e:ca:21:37:a0:16:73:3c:33:94:d3:44:4d:0c: d6:8e:af:61:ea:bb:6a:3f:ac:90:af:af:04:3c:96: 92:44:c0:f6:59:93:2c:48:3a:c7:9c:94:82:07:88: 75:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:2F:89:2F:11:F0:5F:55:CC:29:34:CD:32:A7:82:23:7F:A8:14:F6 X509v3 Authority Key Identifier: keyid:2A:B2:43:2C:3A:D5:12:8E:D7:3E:99:C4:60:D0:61:1F:AF:4D:22:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KrJDLDrVEo7XPpnEYNBhH69NIg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153850/7B3B37D4018611F0B05B4C59C4F9AE02/KrJDLDrVEo7XPpnEYNBhH69NIg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 33:53:b1:ee:23:8a:1e:fa:0d:50:2c:be:a2:68:fc:dc:92:84: 77:20:6c:fd:99:4e:db:f4:7a:32:d0:41:7d:8d:67:d7:b8:8c: 12:5f:62:d4:85:08:19:26:b0:26:8b:64:b6:4c:89:31:b8:5b: 72:6d:d4:14:b8:4d:71:09:38:5f:48:02:84:b5:77:1f:e7:f6: da:c5:24:10:c2:f7:1a:61:1a:24:af:eb:60:9b:9b:f8:a8:04: b2:a7:b3:7f:a1:d6:7f:04:2f:eb:0e:0e:0f:3f:c0:91:fc:c4: 99:29:df:b0:74:01:e9:d7:07:cb:cb:2c:10:87:44:5d:0e:51: 27:2e:d8:05:f1:1e:b4:83:95:96:31:0d:6d:2e:0e:5e:a1:99: e5:64:59:61:0b:0a:11:8f:3a:f9:72:0d:32:6b:bd:e2:dd:21: 3d:d2:3e:b6:ed:50:ee:32:b5:77:88:2e:95:9b:7f:eb:a2:b7: fb:a1:da:da:b8:a5:54:8a:40:a0:33:9c:bd:87:bb:d5:8e:15: dc:d2:bd:89:41:04:4b:c0:f5:15:54:54:05:64:60:8a:52:51: ac:7d:85:40:ee:0b:cd:14:0d:93:87:c3:96:e2:6f:a5:07:71: 30:aa:d0:6b:15:a8:5a:4e:81:c0:43:96:43:48:f8:3a:e9:e1: 59:79:03:d9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM4NTAxMTAvBgNVBAUTKDJBQjI0MzJDM0FENTEyOEVENzNFOTlDNDYwRDA2MTFG QUY0RDIyMEUwHhcNMjUxMDE5MTAxNDA1WhcNMjUxMDI2MTAxNDA1WjAYMRYwFAYD VQQDEw02OGY0YjllZS04OGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtuA/zjdws9LtBGrJXdZ900g+b3SkC+n8Sx7GvLkiLSpDVHvhizOqpIVA+7b5 jWivvM+tF8poncnqE6143pjZDI6WUZH21eitM+OvGGhifcGIZKd8p/uxBSTj/bUW KPAE8FDlTKNI0V4bXw+xBJT4NEIY65mfhkopHAB66RookSvQtxozg8+SGNBoKQpn pVh4FJ9AhHORvB20gpxx8sbmzQo8aG4PX2ZsWmEYEvrCe2n5SYwkmUkxjZXwH44k F/LCohv0aetglxELk+x0QqSgX9fyTsohN6AWczwzlNNETQzWjq9h6rtqP6yQr68E PJaSRMD2WZMsSDrHnJSCB4h1ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEUviS8R 8F9VzCk0zTKngiN/qBT2MB8GA1UdIwQYMBaAFCqyQyw61RKO1z6ZxGDQYR+vTSIO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Mzg1MC83QjNCMzdENDAx ODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVvN1hQcG5FWU5CaEg2OU5J ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tySkRMRHJWRW83WFBwbkVZTkJoSDY5TklnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 Mzg1MC83QjNCMzdENDAxODYxMUYwQjA1QjRDNTlDNEY5QUUwMi9LckpETERyVkVv N1hQcG5FWU5CaEg2OU5JZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAzU7HuI4oe+g1QLL6iaPzckoR3IGz9mU7b9Hoy0EF9jWfXuIwSX2LU hQgZJrAmi2S2TIkxuFtybdQUuE1xCThfSAKEtXcf5/baxSQQwvcaYRokr+tgm5v4 qASyp7N/odZ/BC/rDg4PP8CR/MSZKd+wdAHp1wfLyywQh0RdDlEnLtgF8R60g5WW MQ1tLg5eoZnlZFlhCwoRjzr5cg0ya73i3SE90j627VDuMrV3iC6Vm3/rorf7odra uKVUikCgM5y9h7vVjhXc0r2JQQRLwPUVVFQFZGCKUlGsfYVA7gvNFA2Th8OW4m+l B3EwqtBrFahaToHAQ5ZDSPg66eFZeQPZ -----END CERTIFICATE-----Generated at Tue Oct 21 05:02:11 2025 by rpki-client