$ rpki-client -vvf rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft File: kuYzl488XC0IYKzbDh3VEhAOie8.mft (raw, json) Hash identifier: PmzAj7NPvrDeYrrZ8+WeSHiniDWBJkaX3cJQQRmpGEY= Subject key identifier: BD:69:AB:52:EE:25:54:5F:70:CD:D3:DB:D7:91:A3:83:C9:01:C2:EE Authority key identifier: 92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF Certificate issuer: /CN=A91A15FB/serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Certificate serial: FC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft Manifest number: FA Signing time: Sun 19 Oct 2025 08:04:40 +0000 Manifest this update: Sun 19 Oct 2025 08:04:39 +0000 Manifest next update: Sun 26 Oct 2025 08:04:39 +0000 Files and hashes: 1: kuYzl488XC0IYKzbDh3VEhAOie8.crl (hash: LRAIvXOz3+nImQRENA5CVn44qMqsM2BYdMY3mF1SAbA=) 2: 431868FE2EC811EFBB3A6574C4F9AE02.roa (hash: JX5w2iqj431WRtyZcCgZPVKDStTcP2gabCAwRuPUPtU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 252 (0xfc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A15FB, serialNumber=92E633978F3C5C2D0860ACDB0E1DD512100E89EF Validity Not Before: Oct 19 08:04:39 2025 GMT Not After : Oct 26 08:04:39 2025 GMT Subject: CN=68f49b97-4835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:f6:a0:99:4f:b9:ac:c9:fd:b0:c3:07:c2:25: a1:96:f8:3f:2f:9c:b4:be:9e:01:57:f9:22:db:79: 22:8a:e7:ff:0f:c3:66:6b:77:30:dc:f7:54:fc:c3: 1f:28:45:e8:d0:ce:bd:50:a4:33:8c:3e:c6:e5:c3: 16:64:85:e1:fd:2c:14:0f:83:7d:26:1d:90:f9:c2: bf:45:42:9b:60:3d:c7:7e:3e:e1:24:1d:de:e2:f9: bc:3a:c8:23:e5:29:6a:c2:32:c6:61:6a:0b:f0:b1: 53:de:f9:28:fb:69:19:3d:55:cb:3a:87:74:fb:3e: 94:ca:28:b9:6d:66:1f:c4:dd:22:47:7e:42:19:39: 66:f3:9b:cf:33:94:56:bc:c2:25:a1:1b:52:7d:cf: b4:b6:66:77:d9:d6:a3:40:0e:db:4e:1b:e7:66:22: d1:6d:bb:fc:5c:b4:5b:a8:1d:35:98:e7:a5:fe:41: 4a:6a:85:2f:78:40:e3:39:33:ed:e5:42:ad:2e:0f: ec:d5:99:fe:ce:9b:c6:22:23:00:c5:cc:d0:6e:b1: c7:89:58:8b:22:80:71:6b:28:b5:a3:85:1d:d5:76: bd:02:c2:24:20:b1:ab:5e:86:6f:6f:0d:5f:39:c6: 46:68:53:66:02:36:db:9f:d6:52:01:16:9b:24:82: 93:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:69:AB:52:EE:25:54:5F:70:CD:D3:DB:D7:91:A3:83:C9:01:C2:EE X509v3 Authority Key Identifier: keyid:92:E6:33:97:8F:3C:5C:2D:08:60:AC:DB:0E:1D:D5:12:10:0E:89:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kuYzl488XC0IYKzbDh3VEhAOie8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A15FB/BE88A70C2EC711EF82208273C4F9AE02/kuYzl488XC0IYKzbDh3VEhAOie8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:3b:12:a8:55:83:e3:8f:00:5f:a1:fb:bc:3e:40:37:9a:97: 6e:77:41:b1:f1:8e:4c:f7:d6:d7:74:e1:03:48:d7:a7:53:3f: 42:46:a0:8b:35:f5:9a:c9:f7:ef:75:0a:f4:ea:2c:02:a4:af: fe:c5:6d:ba:39:19:b0:ee:d5:48:1c:ac:cf:ec:48:72:13:94: af:f7:07:f8:2c:08:4e:94:f8:7d:af:15:62:a0:0e:f9:ab:6b: 52:e9:e6:b5:01:f9:93:ef:04:49:2f:29:19:1e:ad:46:b9:aa: cb:87:33:36:28:c5:75:35:5b:7f:fb:5a:05:44:31:58:71:f6: df:77:d1:4c:79:e8:b3:cb:b6:3c:72:be:08:5d:6c:a3:92:07: 21:25:2d:32:7c:b4:ad:90:8c:76:15:47:9a:7c:4b:ef:ed:f8: 13:12:96:ee:96:9d:06:5e:97:d9:63:a2:ce:81:6a:ef:28:ff: f0:fc:55:af:c5:72:53:e5:84:5d:fc:a0:e9:41:cf:e2:5a:9a: 2e:19:70:84:b4:da:40:27:98:2a:5b:6f:f7:02:6e:68:d5:ae: 99:d2:b5:a3:a0:ff:74:de:d6:52:f9:09:e1:dc:71:19:9e:bb: 1b:92:5f:1f:5c:77:9d:a2:1f:a7:61:d2:81:58:a4:97:ce:3d: dd:0a:ac:ea -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE1RkIxMTAvBgNVBAUTKDkyRTYzMzk3OEYzQzVDMkQwODYwQUNEQjBFMURENTEy MTAwRTg5RUYwHhcNMjUxMDE5MDgwNDM5WhcNMjUxMDI2MDgwNDM5WjAYMRYwFAYD VQQDEw02OGY0OWI5Ny00ODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3vagmU+5rMn9sMMHwiWhlvg/L5y0vp4BV/ki23kiiuf/D8Nma3cw3PdU/MMf KEXo0M69UKQzjD7G5cMWZIXh/SwUD4N9Jh2Q+cK/RUKbYD3Hfj7hJB3e4vm8Osgj 5SlqwjLGYWoL8LFT3vko+2kZPVXLOod0+z6Uyii5bWYfxN0iR35CGTlm85vPM5RW vMIloRtSfc+0tmZ32dajQA7bThvnZiLRbbv8XLRbqB01mOel/kFKaoUveEDjOTPt 5UKtLg/s1Zn+zpvGIiMAxczQbrHHiViLIoBxayi1o4Ud1Xa9AsIkILGrXoZvbw1f OcZGaFNmAjbbn9ZSARabJIKT+wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL1pq1Lu JVRfcM3T29eRo4PJAcLuMB8GA1UdIwQYMBaAFJLmM5ePPFwtCGCs2w4d1RIQDonv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTVGQi9CRTg4QTcwQzJF QzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhDMElZS3piRGgzVkVoQU9p ZTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t1WXpsNDg4WEMwSVlLemJEaDNWRWhBT2llOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTVGQi9CRTg4QTcwQzJFQzcxMUVGODIyMDgyNzNDNEY5QUUwMi9rdVl6bDQ4OFhD MElZS3piRGgzVkVoQU9pZTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBaOxKoVYPjjwBfofu8PkA3mpdud0Gx8Y5M99bXdOEDSNenUz9CRqCL NfWayffvdQr06iwCpK/+xW26ORmw7tVIHKzP7EhyE5Sv9wf4LAhOlPh9rxVioA75 q2tS6ea1AfmT7wRJLykZHq1GuarLhzM2KMV1NVt/+1oFRDFYcfbfd9FMeeizy7Y8 cr4IXWyjkgchJS0yfLStkIx2FUeafEvv7fgTEpbulp0GXpfZY6LOgWrvKP/w/FWv xXJT5YRd/KDpQc/iWpouGXCEtNpAJ5gqW2/3Am5o1a6Z0rWjoP903tZS+Qnh3HEZ nrsbkl8fXHedoh+nYdKBWKSXzj3dCqzq -----END CERTIFICATE-----Generated at Mon Oct 20 13:44:49 2025 by rpki-client