$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft File: KaAJAT90Md42nADKtUcWypNFJtM.mft (raw, json) Hash identifier: m01uo0I2axclMYiAHZantbrpRF8iB+MvIhJZoNZJ89c= Subject key identifier: 96:0C:8F:11:73:CC:4B:C9:11:AA:50:03:D1:58:AA:31:31:71:C4:8F Authority key identifier: 29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 Certificate issuer: /CN=A91651CF/serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft Manifest number: C1 Signing time: Sun 19 Oct 2025 08:58:42 +0000 Manifest this update: Sun 19 Oct 2025 08:58:42 +0000 Manifest next update: Sun 26 Oct 2025 08:58:42 +0000 Files and hashes: 1: KaAJAT90Md42nADKtUcWypNFJtM.crl (hash: CZN4hhTcXGYSVDRXlvJR+BVXE54xdDSMkh65+vjyA/8=) 2: C731AFD03B9A11F0B7924C1FC4F9AE02.roa (hash: 9OijFxAeR1Xs5oJ+COotVbhAxkaxtoAB6g/k9YHqdAY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=29A009013F7431DE369C00CAB54716CA934526D3 Validity Not Before: Oct 19 08:58:42 2025 GMT Not After : Oct 26 08:58:42 2025 GMT Subject: CN=68f4a842-091e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:d1:c1:c6:57:79:10:9e:bd:82:96:46:37:bd: bd:cc:c8:47:f3:15:ad:20:07:2c:6e:33:50:1b:aa: c8:41:95:8e:1e:d3:3d:e4:b8:ae:e4:dc:6a:19:3c: fa:a8:50:c4:a7:da:a4:a3:f4:7e:50:2c:86:ef:cb: f1:7b:5e:9e:d7:48:ba:52:96:c7:67:60:25:ae:29: c4:ea:5f:32:f1:f0:0c:47:ba:15:6a:df:71:85:aa: d5:59:68:b4:96:a1:75:be:04:cf:38:d8:7c:fc:63: 0c:e1:a0:14:0f:42:3a:c5:b0:ec:56:50:55:6e:ba: 11:c0:76:5c:ca:75:3d:26:2d:af:f3:d2:87:63:0f: 92:4c:86:57:62:d6:de:18:e3:f6:23:e7:90:d8:e0: fd:4b:e6:a3:3e:de:77:58:80:b0:e2:56:5e:e4:15: 25:a3:7f:5b:19:e0:20:85:c8:6e:ef:8e:58:2c:d5: 83:ea:01:38:5e:39:84:50:86:44:7e:49:40:e2:38: 6b:1c:60:50:fe:75:e9:3c:1a:82:12:c8:d5:c0:49: aa:06:4c:77:d8:34:5d:ea:bd:50:60:ac:ac:9b:98: 2d:61:a8:60:40:4a:d5:50:52:06:f4:7c:9d:e3:48: 1d:1f:05:ec:9d:1c:c4:52:a7:e3:bf:51:9c:10:ea: 0a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:0C:8F:11:73:CC:4B:C9:11:AA:50:03:D1:58:AA:31:31:71:C4:8F X509v3 Authority Key Identifier: keyid:29:A0:09:01:3F:74:31:DE:36:9C:00:CA:B5:47:16:CA:93:45:26:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KaAJAT90Md42nADKtUcWypNFJtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/3043635C86D711EF854DD47BC4F9AE02/KaAJAT90Md42nADKtUcWypNFJtM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:63:fe:19:f5:fb:7a:94:59:5d:30:2f:5c:3a:59:0a:65:07: 28:eb:15:a8:b2:bb:c4:56:45:53:83:b9:1b:f3:9f:5a:89:44: a3:d0:bf:7e:70:fd:7e:5d:81:14:e7:e9:2f:5c:63:45:46:83: ab:69:06:bd:40:34:b6:fe:ce:8e:18:78:fb:3f:ea:9f:70:a5: 3e:00:aa:3f:ce:10:49:d3:97:a6:ec:ad:5c:e6:70:26:da:9a: c4:b0:30:c5:54:fc:3e:68:48:ff:0f:48:bc:f8:e2:3e:2d:e4: 26:a4:da:39:60:b4:7a:87:80:f9:71:7e:ca:4e:80:db:4b:9e: f1:c4:20:84:99:69:1c:c3:b0:0e:05:a5:d7:f1:6e:42:8f:1d: 65:d8:4d:da:78:a9:e8:17:43:19:c1:08:78:9a:5d:cc:69:62: 53:28:bd:86:f3:06:18:ba:79:9c:15:8f:ec:e2:64:46:35:0b: 35:9f:e5:eb:08:79:81:ff:4b:9e:e3:dd:d8:05:41:c5:3d:7d: ec:c8:41:0f:72:4a:49:af:a7:21:c1:cc:60:0e:8b:25:56:81: 21:1b:f5:1d:cf:b9:f2:92:9f:88:a5:f4:03:58:1f:29:ff:d2: 6e:68:41:8d:21:f1:28:a4:c7:0b:97:82:a0:e1:47:0b:6e:6f: 1e:f8:04:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUxQ0YxMTAvBgNVBAUTKDI5QTAwOTAxM0Y3NDMxREUzNjlDMDBDQUI1NDcxNkNB OTM0NTI2RDMwHhcNMjUxMDE5MDg1ODQyWhcNMjUxMDI2MDg1ODQyWjAYMRYwFAYD VQQDEw02OGY0YTg0Mi0wOTFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl9HBxld5EJ69gpZGN729zMhH8xWtIAcsbjNQG6rIQZWOHtM95Liu5NxqGTz6 qFDEp9qko/R+UCyG78vxe16e10i6UpbHZ2AlrinE6l8y8fAMR7oVat9xharVWWi0 lqF1vgTPONh8/GMM4aAUD0I6xbDsVlBVbroRwHZcynU9Ji2v89KHYw+STIZXYtbe GOP2I+eQ2OD9S+ajPt53WICw4lZe5BUlo39bGeAghchu745YLNWD6gE4XjmEUIZE fklA4jhrHGBQ/nXpPBqCEsjVwEmqBkx32DRd6r1QYKysm5gtYahgQErVUFIG9Hyd 40gdHwXsnRzEUqfjv1GcEOoKyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJYMjxFz zEvJEapQA9FYqjExccSPMB8GA1UdIwQYMBaAFCmgCQE/dDHeNpwAyrVHFsqTRSbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTFDRi8zMDQzNjM1Qzg2 RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1kNDJuQURLdFVjV3lwTkZK dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0thQUpBVDkwTWQ0Mm5BREt0VWNXeXBORkp0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTFDRi8zMDQzNjM1Qzg2RDcxMUVGODU0REQ0N0JDNEY5QUUwMi9LYUFKQVQ5ME1k NDJuQURLdFVjV3lwTkZKdE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDY/4Z9ft6lFldMC9cOlkKZQco6xWosrvEVkVTg7kb859aiUSj0L9+ cP1+XYEU5+kvXGNFRoOraQa9QDS2/s6OGHj7P+qfcKU+AKo/zhBJ05em7K1c5nAm 2prEsDDFVPw+aEj/D0i8+OI+LeQmpNo5YLR6h4D5cX7KToDbS57xxCCEmWkcw7AO BaXX8W5Cjx1l2E3aeKnoF0MZwQh4ml3MaWJTKL2G8wYYunmcFY/s4mRGNQs1n+Xr CHmB/0ue493YBUHFPX3syEEPckpJr6chwcxgDoslVoEhG/Udz7nykp+IpfQDWB8p /9JuaEGNIfEopMcLl4Kg4UcLbm8e+ASL -----END CERTIFICATE-----Generated at Mon Oct 20 16:16:57 2025 by rpki-client