$ rpki-client -vvf rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft File: kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft (raw, json) Hash identifier: 2V17k8Cdshgj8v40AdFWtchWObJrBJDPMq671nXRuUI= Subject key identifier: AB:29:6B:D2:15:B6:85:E9:65:EA:0A:EC:9E:93:1A:82:0F:2B:7A:5F Authority key identifier: 90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 Certificate issuer: /CN=A91A014A/serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Certificate serial: 021E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft Manifest number: 021A Signing time: Sun 19 Oct 2025 04:26:10 +0000 Manifest this update: Sun 19 Oct 2025 04:26:09 +0000 Manifest next update: Sun 26 Oct 2025 04:26:09 +0000 Files and hashes: 1: kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl (hash: whKVT7pUcaZk2UygpV47ae6PXQZ+i5okgSm32a0oVo8=) 2: 203FA37E750611ED95126872C4F9AE02.roa (hash: dipdNfnJaJs6s5CVnvO1Wlubse6AOUfgpacGaixKSoQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:26:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A014A, serialNumber=90BD1DF13A991C31F1184D511AF30316FC002102 Validity Not Before: Oct 19 04:26:09 2025 GMT Not After : Oct 26 04:26:09 2025 GMT Subject: CN=68f46861-1b89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:50:09:eb:fe:57:e4:a6:d0:b8:0c:0b:a8:8f: 00:cd:f1:02:bc:e7:d2:52:e2:e3:c1:18:40:bd:15: 66:c0:94:a3:49:8c:43:bc:17:a2:02:f4:54:7e:0b: 91:41:17:1b:f5:c8:0b:47:c2:41:2d:4b:41:7d:d9: 14:bf:98:5e:09:17:95:78:3b:47:ed:61:92:43:b0: e3:bd:17:e6:7f:21:9e:02:f3:3e:41:67:97:03:a3: 40:ee:9d:b9:29:18:13:92:9a:f2:0b:8b:d7:a3:ee: 28:3b:76:fe:6e:43:af:e8:43:da:b8:0d:3e:1c:f5: 69:a2:5c:3f:95:93:bc:fe:e8:f3:98:5b:96:68:fd: fb:4b:f4:4d:3a:d9:30:e3:09:25:da:cc:e2:68:3d: d4:c7:86:ee:0d:74:0e:59:19:ff:10:0a:ef:c8:c1: 6b:09:03:da:c7:b7:b9:bc:04:9c:99:c8:53:af:a2: 3a:cf:56:ea:41:fd:2f:f9:81:ec:dd:a1:e2:e7:9c: 08:6a:2c:d7:6c:06:ca:78:dd:7d:26:1c:ab:b3:cb: 11:40:cd:d1:5e:e8:45:ec:74:9d:06:92:89:5b:54: 81:10:31:06:bb:90:b2:52:5b:39:3d:4d:c9:b0:71: 1b:dd:95:5b:49:0d:2b:c6:95:56:1a:7d:e1:88:85: 55:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:29:6B:D2:15:B6:85:E9:65:EA:0A:EC:9E:93:1A:82:0F:2B:7A:5F X509v3 Authority Key Identifier: keyid:90:BD:1D:F1:3A:99:1C:31:F1:18:4D:51:1A:F3:03:16:FC:00:21:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kL0d8TqZHDHxGE1RGvMDFvwAIQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A014A/CC07DAB674FF11EDAB9C9075C4F9AE02/kL0d8TqZHDHxGE1RGvMDFvwAIQI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:a2:c3:27:b2:92:9d:c6:93:e4:3f:e2:5d:ae:f4:47:8a:4f: f9:bb:da:bc:3b:6c:59:27:ac:8c:aa:38:65:bf:c5:5f:4f:53: a4:09:d2:dd:f8:80:a0:34:00:34:fe:8d:86:66:fb:7a:bc:ed: 57:2d:7a:d2:57:c4:41:04:dd:e4:47:62:5a:b6:32:bc:cd:85: 5d:da:1f:dc:6f:07:fd:ab:e7:84:35:4a:1d:c5:31:46:cb:6c: 2d:16:39:b8:7f:15:b2:67:05:7c:1d:a1:24:37:17:10:e7:dc: bd:43:ac:b6:59:a3:ce:84:1c:01:e1:d5:3b:25:b3:68:36:df: 67:e7:2f:ad:3f:7d:5e:c2:25:06:6a:ed:48:0e:cd:71:fe:ea: 41:27:52:5b:58:56:c9:b1:0a:cb:f4:32:31:54:6f:f2:62:fd: 85:2c:ed:a9:aa:fa:9b:86:11:67:12:78:e0:02:cb:e1:63:6a: c1:a1:ca:fb:ec:ab:f5:08:17:89:9b:c5:85:b0:75:da:90:af: a2:94:85:00:6a:d9:5c:e4:73:cb:25:8b:26:bb:d6:16:c4:39: 8b:2f:48:de:1e:47:88:16:1a:e6:8e:2b:c1:d3:3a:9d:6c:cb: 63:e8:eb:8e:ac:04:de:57:bc:a6:71:77:44:1a:29:21:85:90: 57:ab:bf:07 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAxNEExMTAvBgNVBAUTKDkwQkQxREYxM0E5OTFDMzFGMTE4NEQ1MTFBRjMwMzE2 RkMwMDIxMDIwHhcNMjUxMDE5MDQyNjA5WhcNMjUxMDI2MDQyNjA5WjAYMRYwFAYD VQQDEw02OGY0Njg2MS0xYjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVAJ6/5X5KbQuAwLqI8AzfECvOfSUuLjwRhAvRVmwJSjSYxDvBeiAvRUfguR QRcb9cgLR8JBLUtBfdkUv5heCReVeDtH7WGSQ7DjvRfmfyGeAvM+QWeXA6NA7p25 KRgTkpryC4vXo+4oO3b+bkOv6EPauA0+HPVpolw/lZO8/ujzmFuWaP37S/RNOtkw 4wkl2sziaD3Ux4buDXQOWRn/EArvyMFrCQPax7e5vAScmchTr6I6z1bqQf0v+YHs 3aHi55wIaizXbAbKeN19Jhyrs8sRQM3RXuhF7HSdBpKJW1SBEDEGu5CyUls5PU3J sHEb3ZVbSQ0rxpVWGn3hiIVVDQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKspa9IV toXpZeoK7J6TGoIPK3pfMB8GA1UdIwQYMBaAFJC9HfE6mRwx8RhNURrzAxb8ACEC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDE0QS9DQzA3REFCNjc0 RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhESHhHRTFSR3ZNREZ2d0FJ UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tMMGQ4VHFaSERIeEdFMVJHdk1ERnZ3QUlRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDE0QS9DQzA3REFCNjc0RkYxMUVEQUI5QzkwNzVDNEY5QUUwMi9rTDBkOFRxWkhE SHhHRTFSR3ZNREZ2d0FJUUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaosMnspKdxpPkP+JdrvRHik/5u9q8O2xZJ6yMqjhlv8VfT1OkCdLd +ICgNAA0/o2GZvt6vO1XLXrSV8RBBN3kR2JatjK8zYVd2h/cbwf9q+eENUodxTFG y2wtFjm4fxWyZwV8HaEkNxcQ59y9Q6y2WaPOhBwB4dU7JbNoNt9n5y+tP31ewiUG au1IDs1x/upBJ1JbWFbJsQrL9DIxVG/yYv2FLO2pqvqbhhFnEnjgAsvhY2rBocr7 7Kv1CBeJm8WFsHXakK+ilIUAatlc5HPLJYsmu9YWxDmLL0jeHkeIFhrmjivB0zqd bMtj6OuOrATeV7ymcXdEGikhhZBXq78H -----END CERTIFICATE-----Generated at Mon Oct 20 04:07:58 2025 by rpki-client