$ rpki-client -vvf rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft File: KTzh3tGmQEsAssDM-z886vshpQg.mft (raw, json) Hash identifier: xeGzxDUvCz1wxMP0sYWUafw3SBsrjr2S/i83+F7uqwc= Subject key identifier: 12:7C:9A:EB:DE:01:77:C5:63:F8:63:40:02:71:08:93:2C:B4:A5:86 Authority key identifier: 29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 Certificate issuer: /CN=A91790EC/serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft Manifest number: F0 Signing time: Sun 19 Oct 2025 08:14:31 +0000 Manifest this update: Sun 19 Oct 2025 08:14:30 +0000 Manifest next update: Sun 26 Oct 2025 08:14:30 +0000 Files and hashes: 1: KTzh3tGmQEsAssDM-z886vshpQg.crl (hash: BZCNKddJQMTLlZ6dTKYnOtF3g98xWpCr+zq1JSFPIiI=) 2: 81AA7D1A3E5811EFAE13B943C4F9AE02.roa (hash: WIZmU+L0O9RcMZGa4g5/Y6rLFYKaR2VClhlEkEMS/7E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:14:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790EC, serialNumber=293CE1DED1A6404B00B2C0CCFB3F3CEAFB21A508 Validity Not Before: Oct 19 08:14:30 2025 GMT Not After : Oct 26 08:14:30 2025 GMT Subject: CN=68f49de7-f2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ed:ff:ac:5b:9b:3c:e6:3b:b9:09:e4:d0:78: 7f:4a:3a:47:19:67:e4:e9:6d:02:b3:58:05:a1:0d: e8:da:98:76:47:83:d7:c1:c1:4e:14:3e:79:03:43: 94:41:d3:4e:b4:e0:b5:bb:28:dd:14:98:17:dc:d5: 14:b2:a5:30:ca:a5:b4:ef:cd:2e:f8:dd:3a:c4:0e: 81:7c:31:fc:cd:89:39:e3:65:51:4c:a0:37:80:e8: 47:13:24:12:da:c4:4f:bc:94:47:f5:56:d4:ac:0e: 29:3e:9f:82:35:cb:03:ee:8d:01:a2:e4:d9:3d:54: b2:ef:d0:d3:25:af:35:9f:b3:c3:0d:89:ae:90:ac: f0:ab:df:72:b1:f6:5f:e4:27:45:aa:55:e3:b8:45: 55:28:51:67:48:5b:21:4f:4c:8a:58:95:6a:58:21: 19:a7:f8:81:fe:92:8a:4f:0d:09:b6:96:33:48:92: 18:9b:f1:42:1b:3b:1b:8f:36:03:7e:bf:87:78:27: 7b:bd:26:60:23:83:39:33:54:f0:ef:cf:f1:b2:2b: ad:89:d8:3a:8f:9a:26:68:4f:bb:9b:4d:31:8f:ea: cf:62:58:9c:e0:38:57:3e:37:d6:a8:a3:5e:1b:51: 25:f1:1d:4a:4f:97:38:5f:e4:da:29:e1:b0:54:a7: 28:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:7C:9A:EB:DE:01:77:C5:63:F8:63:40:02:71:08:93:2C:B4:A5:86 X509v3 Authority Key Identifier: keyid:29:3C:E1:DE:D1:A6:40:4B:00:B2:C0:CC:FB:3F:3C:EA:FB:21:A5:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTzh3tGmQEsAssDM-z886vshpQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790EC/24B8BFE03E5811EF996DA321C4F9AE02/KTzh3tGmQEsAssDM-z886vshpQg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:64:23:3a:49:69:aa:80:0c:97:07:c9:21:e9:12:02:3b:35: 0d:4e:35:cf:d3:0b:27:85:2f:ab:0b:f5:ce:ed:c7:85:36:8a: 51:37:64:2c:f2:19:f7:36:a3:44:b6:ff:7f:6b:65:b0:eb:4e: 5e:af:0f:a0:99:b7:6f:ec:95:8e:40:44:7d:85:8c:bf:fc:92: 90:61:78:35:c6:72:28:a9:77:20:39:8f:b8:02:16:a8:0b:1c: 8d:a9:de:c1:e6:5b:4d:3b:f2:f2:35:e2:ed:83:b6:8d:3e:6b: e5:9d:df:ab:fa:77:9b:9b:0e:27:fe:4e:0d:db:bd:1f:ad:bb: f5:7d:79:f7:b8:da:52:d9:a0:bf:c0:5f:19:c9:7c:b9:bf:18: cd:aa:8c:12:5b:8e:d1:63:59:b6:b1:e7:28:b0:86:03:37:3d: 93:80:41:2b:c3:67:9b:13:7e:08:e6:86:dc:ab:e4:ef:d0:e0: 6e:b0:7d:7e:01:50:f7:ae:d4:af:91:07:22:f7:76:ee:6e:a6: 61:0b:45:27:92:f3:a6:2f:07:19:db:7d:9c:35:75:17:96:9d: 55:4a:fd:24:3f:7d:f7:be:13:62:a6:4b:4c:ae:92:67:87:f1: 57:67:b8:12:d0:4d:4f:16:37:22:ef:ab:33:f0:5d:19:c8:47: 17:72:80:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwRUMxMTAvBgNVBAUTKDI5M0NFMURFRDFBNjQwNEIwMEIyQzBDQ0ZCM0YzQ0VB RkIyMUE1MDgwHhcNMjUxMDE5MDgxNDMwWhcNMjUxMDI2MDgxNDMwWjAYMRYwFAYD VQQDEw02OGY0OWRlNy1mMmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvu3/rFubPOY7uQnk0Hh/SjpHGWfk6W0Cs1gFoQ3o2ph2R4PXwcFOFD55A0OU QdNOtOC1uyjdFJgX3NUUsqUwyqW0780u+N06xA6BfDH8zYk542VRTKA3gOhHEyQS 2sRPvJRH9VbUrA4pPp+CNcsD7o0BouTZPVSy79DTJa81n7PDDYmukKzwq99ysfZf 5CdFqlXjuEVVKFFnSFshT0yKWJVqWCEZp/iB/pKKTw0JtpYzSJIYm/FCGzsbjzYD fr+HeCd7vSZgI4M5M1Tw78/xsiutidg6j5omaE+7m00xj+rPYlic4DhXPjfWqKNe G1El8R1KT5c4X+TaKeGwVKcowQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBJ8muve AXfFY/hjQAJxCJMstKWGMB8GA1UdIwQYMBaAFCk84d7RpkBLALLAzPs/POr7IaUI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBFQy8yNEI4QkZFMDNF NTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFFc0Fzc0RNLXo4ODZ2c2hw UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUemgzdEdtUUVzQXNzRE0tejg4NnZzaHBRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTBFQy8yNEI4QkZFMDNFNTgxMUVGOTk2REEzMjFDNEY5QUUwMi9LVHpoM3RHbVFF c0Fzc0RNLXo4ODZ2c2hwUWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBtZCM6SWmqgAyXB8kh6RICOzUNTjXP0wsnhS+rC/XO7ceFNopRN2Qs 8hn3NqNEtv9/a2Ww605erw+gmbdv7JWOQER9hYy//JKQYXg1xnIoqXcgOY+4Ahao CxyNqd7B5ltNO/LyNeLtg7aNPmvlnd+r+nebmw4n/k4N270frbv1fXn3uNpS2aC/ wF8ZyXy5vxjNqowSW47RY1m2secosIYDNz2TgEErw2ebE34I5obcq+Tv0OBusH1+ AVD3rtSvkQci93bubqZhC0UnkvOmLwcZ232cNXUXlp1VSv0kP333vhNipktMrpJn h/FXZ7gS0E1PFjci76sz8F0ZyEcXcoDk -----END CERTIFICATE-----Generated at Mon Oct 20 14:03:26 2025 by rpki-client