$ rpki-client -vvf rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft File: kDfAsp43CSqDhSzkuIW3dqfB47Y.mft (raw, json) Hash identifier: /4DBFv7uWm1VmFt8JDTkBbjlvMyWGfnxiaj5jDb3y6c= Subject key identifier: 8E:B3:F2:F0:78:93:0D:05:6A:89:F7:07:27:23:A9:1D:4D:A7:F8:BC Authority key identifier: 90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 Certificate issuer: /CN=A91957D1/serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Certificate serial: 0165 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft Manifest number: 0161 Signing time: Sun 19 Oct 2025 06:45:51 +0000 Manifest this update: Sun 19 Oct 2025 06:45:50 +0000 Manifest next update: Sun 26 Oct 2025 06:45:50 +0000 Files and hashes: 1: kDfAsp43CSqDhSzkuIW3dqfB47Y.crl (hash: 7tgydjgmV88AvqJ1+Uj2TV15LmdQjTJblw2lWkUxRwc=) 2: 72CE4D80958411EEB3748B58C4F9AE02.roa (hash: GyK0WIBreUywAdxh5kO624MwwPbx0zTO9wpPeKdWbNg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:45:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957D1, serialNumber=9037C0B29E37092A83852CE4B885B776A7C1E3B6 Validity Not Before: Oct 19 06:45:50 2025 GMT Not After : Oct 26 06:45:50 2025 GMT Subject: CN=68f4891e-ec16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b7:7d:71:e5:ca:d0:90:6c:3a:24:ca:76:a8: 79:ef:cd:f7:29:a2:ae:89:48:a3:4c:cd:7b:ea:59: f8:61:3f:32:35:73:5e:af:21:58:b5:d4:58:08:c6: 7a:05:96:50:99:23:46:55:a7:2e:1d:6a:4f:14:8a: a0:dc:91:71:d1:69:94:50:cb:c3:9b:4f:32:2b:d8: f0:3f:62:e9:bb:05:71:f8:d5:ca:c7:f2:7c:c4:26: af:84:55:d8:56:60:c5:5c:fa:59:2e:45:9b:f2:df: 24:bd:e2:6e:5b:b6:95:ba:d0:79:19:68:ff:da:35: 9d:96:22:69:70:f1:74:40:bb:81:07:bf:20:bb:d8: 8d:a3:8f:7c:e3:9d:ac:30:33:fe:c2:67:84:58:a9: f0:f5:85:27:c2:2c:88:03:bb:2a:3e:d9:a3:0a:66: c7:f3:4a:11:3a:f8:1d:7d:33:21:de:10:0c:c5:c6: a3:fe:ce:86:ae:d2:8a:9b:dd:da:99:64:a1:4a:95: c6:56:55:58:f5:6d:84:c3:2c:ae:3c:ce:13:dd:e7: 23:e8:c4:72:2d:30:c1:2e:4e:47:34:86:25:ff:9f: 6c:68:ed:62:0e:9c:8a:30:9f:e1:ec:ee:d5:f5:ef: e4:02:63:d7:d8:bd:64:c5:0a:ae:aa:b2:f1:9f:3a: 29:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:B3:F2:F0:78:93:0D:05:6A:89:F7:07:27:23:A9:1D:4D:A7:F8:BC X509v3 Authority Key Identifier: keyid:90:37:C0:B2:9E:37:09:2A:83:85:2C:E4:B8:85:B7:76:A7:C1:E3:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kDfAsp43CSqDhSzkuIW3dqfB47Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957D1/F053779493BD11EE81F80A52C4F9AE02/kDfAsp43CSqDhSzkuIW3dqfB47Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:fd:55:9f:ea:e9:5d:0c:e5:c4:87:25:36:8e:2b:ff:c5:1b: c7:b0:f0:e1:e6:31:4e:2c:2e:10:39:34:a3:51:4a:3d:a6:33: 70:b2:12:51:5a:71:e9:82:a7:98:a1:48:ac:24:b2:8b:20:35: cd:f0:99:68:63:8c:dc:8b:49:2e:8d:48:26:06:18:1c:15:87: 78:a6:fe:29:70:de:0c:bb:1c:d2:66:a5:ec:9b:a2:93:b0:60: e5:82:78:92:be:0c:ea:3d:77:fd:01:fa:06:ed:52:b6:b4:a2: 6b:4a:cc:43:01:5f:c3:6e:f2:8a:25:44:59:23:ca:c0:10:84: 3c:87:01:50:bf:5d:86:6d:ac:ca:75:7f:46:ca:a5:88:17:ef: d2:bd:f6:5d:a3:09:52:93:34:0e:30:76:6c:c3:50:0c:3a:77: 7b:d3:e9:ab:f4:e3:5d:fa:e0:fd:9e:b6:d6:c6:ff:62:61:8c: bf:3f:cf:f1:42:4c:ac:3e:ae:9c:ac:56:f5:83:a2:c2:88:fa: 4e:75:1f:1c:d3:f8:a6:c2:ae:18:46:d1:0a:47:76:4f:ab:cf: 3b:d7:e7:f3:1c:a4:38:21:9a:1a:91:e9:a8:38:69:d7:fc:56: 1c:5f:28:5f:ec:88:f3:97:f4:3b:8c:4b:82:95:67:11:fb:ea: b3:b5:cf:40 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3RDExMTAvBgNVBAUTKDkwMzdDMEIyOUUzNzA5MkE4Mzg1MkNFNEI4ODVCNzc2 QTdDMUUzQjYwHhcNMjUxMDE5MDY0NTUwWhcNMjUxMDI2MDY0NTUwWjAYMRYwFAYD VQQDEw02OGY0ODkxZS1lYzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7d9ceXK0JBsOiTKdqh57833KaKuiUijTM176ln4YT8yNXNeryFYtdRYCMZ6 BZZQmSNGVacuHWpPFIqg3JFx0WmUUMvDm08yK9jwP2LpuwVx+NXKx/J8xCavhFXY VmDFXPpZLkWb8t8kveJuW7aVutB5GWj/2jWdliJpcPF0QLuBB78gu9iNo498452s MDP+wmeEWKnw9YUnwiyIA7sqPtmjCmbH80oROvgdfTMh3hAMxcaj/s6GrtKKm93a mWShSpXGVlVY9W2EwyyuPM4T3ecj6MRyLTDBLk5HNIYl/59saO1iDpyKMJ/h7O7V 9e/kAmPX2L1kxQquqrLxnzopmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI6z8vB4 kw0Faon3BycjqR1Np/i8MB8GA1UdIwQYMBaAFJA3wLKeNwkqg4Us5LiFt3anweO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdEMS9GMDUzNzc5NDkz QkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NTcURoU3prdUlXM2RxZkI0 N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tEZkFzcDQzQ1NxRGhTemt1SVczZHFmQjQ3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTdEMS9GMDUzNzc5NDkzQkQxMUVFODFGODBBNTJDNEY5QUUwMi9rRGZBc3A0M0NT cURoU3prdUlXM2RxZkI0N1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCV/VWf6uldDOXEhyU2jiv/xRvHsPDh5jFOLC4QOTSjUUo9pjNwshJR WnHpgqeYoUisJLKLIDXN8JloY4zci0kujUgmBhgcFYd4pv4pcN4MuxzSZqXsm6KT sGDlgniSvgzqPXf9AfoG7VK2tKJrSsxDAV/DbvKKJURZI8rAEIQ8hwFQv12GbazK dX9GyqWIF+/SvfZdowlSkzQOMHZsw1AMOnd70+mr9ONd+uD9nrbWxv9iYYy/P8/x QkysPq6crFb1g6LCiPpOdR8c0/imwq4YRtEKR3ZPq8871+fzHKQ4IZoakemoOGnX /FYcXyhf7Ijzl/Q7jEuClWcR++qztc9A -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:59 2025 by rpki-client