$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft File: kfPcWc0PodJBy3h1fR2qksKsn2A.mft (raw, json) Hash identifier: 4uSmngp9W6JaFrrHv5azt+U0Am97VY5jjgJEB62c0jQ= Subject key identifier: 69:F3:00:68:94:B0:B1:D6:14:5E:B6:EE:25:F9:72:D7:51:C7:48:E2 Authority key identifier: 91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 Certificate issuer: /CN=A91A0432/serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Certificate serial: 03DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft Manifest number: 03D3 Signing time: Sun 19 Oct 2025 02:36:56 +0000 Manifest this update: Sun 19 Oct 2025 02:36:56 +0000 Manifest next update: Sun 26 Oct 2025 02:36:56 +0000 Files and hashes: 1: kfPcWc0PodJBy3h1fR2qksKsn2A.crl (hash: BO0Di+IPuLfmYTL8EU1EWM3UxEhPN87vzW1l+rXcGFU=) 2: 4114509A597511EFA2B79A84C4F9AE02.roa (hash: 8U+UsiCXDKifnoegufsPJKGalX6CUXoFX96X70pYMYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:36:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0432, serialNumber=91F3DC59CD0FA1D241CB78757D1DAA92C2AC9F60 Validity Not Before: Oct 19 02:36:56 2025 GMT Not After : Oct 26 02:36:56 2025 GMT Subject: CN=68f44ec8-4f89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d9:1e:1e:c3:54:25:f9:d8:27:af:0e:59:71: f4:f0:8a:1b:93:ee:aa:74:0a:5a:fd:fc:d2:68:4a: 80:ec:b7:fd:00:80:39:86:d5:36:b5:5f:14:f6:74: 36:f7:de:9b:f0:1c:41:0f:05:e0:47:3f:53:79:a0: 14:18:30:4a:2b:b1:5b:c4:29:04:e1:67:b0:80:d3: 3a:ac:d3:82:bb:08:52:aa:4e:df:db:b8:bd:4d:b5: d5:7a:c7:11:75:8c:fc:2a:af:2a:2d:34:eb:92:28: 95:70:0d:9b:8d:c4:b4:4b:8a:1d:00:7a:1c:bb:25: 90:71:eb:25:cf:ad:d4:48:e6:ea:7f:f3:3b:71:aa: c3:39:b2:01:ad:1c:cc:51:7f:79:74:8f:fe:f7:05: e3:c4:83:c6:25:f1:8c:06:57:74:45:51:1c:b8:9a: 6f:bf:77:be:7e:6c:4d:6f:6c:9a:9e:25:85:95:48: ea:fe:a5:59:df:ab:71:d6:43:3c:ac:e7:37:13:b7: 83:1f:2c:cf:c7:a5:d3:01:5a:8b:7f:31:da:8c:29: 8c:f2:07:82:d2:d6:5a:36:ab:38:d0:41:9e:79:ec: 02:04:c3:77:ef:0d:ae:f5:91:7c:e0:b8:7a:d8:2e: 26:c1:09:95:39:73:90:fb:51:7a:37:82:de:0f:78: c8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F3:00:68:94:B0:B1:D6:14:5E:B6:EE:25:F9:72:D7:51:C7:48:E2 X509v3 Authority Key Identifier: keyid:91:F3:DC:59:CD:0F:A1:D2:41:CB:78:75:7D:1D:AA:92:C2:AC:9F:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kfPcWc0PodJBy3h1fR2qksKsn2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0432/F5BF699CA4CA11ECAC4E5744C4F9AE02/kfPcWc0PodJBy3h1fR2qksKsn2A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:a8:27:42:10:13:a6:ef:9e:32:cc:4d:d6:a9:8f:60:d1:52: 5d:66:28:92:79:a2:7e:c6:01:ef:5e:16:a8:9f:8c:36:8d:54: 2e:9b:ce:04:89:14:68:96:87:e9:94:54:8f:a9:b8:ca:2b:cc: 85:08:ab:ba:9b:e4:8a:20:03:48:13:11:2c:0a:8a:a0:1f:a8: 18:e3:07:01:3c:9a:90:1f:48:02:31:62:ab:33:ec:df:f9:9e: be:ae:6d:a0:50:35:33:50:69:5e:af:e2:84:a1:1e:c6:8c:5d: 3e:ee:d0:16:20:2a:bb:01:46:bd:6b:08:96:84:0b:9f:07:72: 2f:33:67:95:b0:66:64:80:ec:31:ea:3a:ab:23:13:05:91:85: b6:63:2f:43:d2:d9:d9:7d:4c:40:fe:16:bb:ce:be:90:ff:e3: a9:8a:7b:06:33:dc:96:eb:a9:bd:c4:2c:39:56:41:6e:70:7e: dd:8a:e2:81:80:a9:91:e7:0c:d0:5e:47:c1:ba:00:42:35:96: f9:c9:ef:e2:11:ad:54:c1:2b:50:05:33:50:c7:16:8f:72:e0: 08:4b:0b:e2:a8:94:9a:54:ef:93:3b:55:d9:4b:02:95:b5:fe: 2b:cd:5e:79:a8:6e:ce:dd:04:a5:c3:3b:3a:83:5d:5a:f6:4f: de:76:3b:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA0MzIxMTAvBgNVBAUTKDkxRjNEQzU5Q0QwRkExRDI0MUNCNzg3NTdEMURBQTky QzJBQzlGNjAwHhcNMjUxMDE5MDIzNjU2WhcNMjUxMDI2MDIzNjU2WjAYMRYwFAYD VQQDEw02OGY0NGVjOC00Zjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNkeHsNUJfnYJ68OWXH08Iobk+6qdApa/fzSaEqA7Lf9AIA5htU2tV8U9nQ2 996b8BxBDwXgRz9TeaAUGDBKK7FbxCkE4WewgNM6rNOCuwhSqk7f27i9TbXVescR dYz8Kq8qLTTrkiiVcA2bjcS0S4odAHocuyWQceslz63USObqf/M7carDObIBrRzM UX95dI/+9wXjxIPGJfGMBld0RVEcuJpvv3e+fmxNb2yaniWFlUjq/qVZ36tx1kM8 rOc3E7eDHyzPx6XTAVqLfzHajCmM8geC0tZaNqs40EGeeewCBMN37w2u9ZF84Lh6 2C4mwQmVOXOQ+1F6N4LeD3jIzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGnzAGiU sLHWFF627iX5ctdRx0jiMB8GA1UdIwQYMBaAFJHz3FnND6HSQct4dX0dqpLCrJ9g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDQzMi9GNUJGNjk5Q0E0 Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9kSkJ5M2gxZlIycWtzS3Nu MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tmUGNXYzBQb2RKQnkzaDFmUjJxa3NLc24yQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDQzMi9GNUJGNjk5Q0E0Q0ExMUVDQUM0RTU3NDRDNEY5QUUwMi9rZlBjV2MwUG9k SkJ5M2gxZlIycWtzS3NuMkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEqCdCEBOm754yzE3WqY9g0VJdZiiSeaJ+xgHvXhaon4w2jVQum84E iRRolofplFSPqbjKK8yFCKu6m+SKIANIExEsCoqgH6gY4wcBPJqQH0gCMWKrM+zf +Z6+rm2gUDUzUGler+KEoR7GjF0+7tAWICq7AUa9awiWhAufB3IvM2eVsGZkgOwx 6jqrIxMFkYW2Yy9D0tnZfUxA/ha7zr6Q/+OpinsGM9yW66m9xCw5VkFucH7diuKB gKmR5wzQXkfBugBCNZb5ye/iEa1UwStQBTNQxxaPcuAISwviqJSaVO+TO1XZSwKV tf4rzV55qG7O3QSlwzs6g11a9k/edjuk -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:57 2025 by rpki-client