$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft File: KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft (raw, json) Hash identifier: 9xP4SWC34mLk4U2Ow43Fz5clyR6IcM3XZkyVApEXm2s= Subject key identifier: C8:27:47:08:97:A8:AC:51:63:55:B9:1B:49:51:6F:25:9D:2E:D4:CC Authority key identifier: 29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C Certificate issuer: /CN=A91A3456/serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Certificate serial: 0B5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft Manifest number: 0B54 Signing time: Sat 18 Oct 2025 20:02:10 +0000 Manifest this update: Sat 18 Oct 2025 20:02:10 +0000 Manifest next update: Sat 25 Oct 2025 20:02:10 +0000 Files and hashes: 1: KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl (hash: 8AvpbEItWXS/1LCq8sasYFUqwSiATrvjb4yKtuEhoI8=) 2: 496096EE41A311EABAADCE0AC4F9AE02.roa (hash: PulA86jFfi+mSmGrurNlPPzi/J9i4GAt5gWrp9tpCBs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:02:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2907 (0xb5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3456, serialNumber=290C4010FADC476947E0093F43F7004F0D7C5C1C Validity Not Before: Oct 18 20:02:10 2025 GMT Not After : Oct 25 20:02:10 2025 GMT Subject: CN=68f3f242-ce3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:65:0c:82:22:d0:01:84:c1:ff:a4:2c:da:ce: b8:da:0c:63:02:f8:ee:c7:d3:bf:9a:47:fa:fc:fe: ee:b0:4e:a7:d1:58:9b:32:7a:8c:74:1d:33:ad:69: b6:f3:a4:df:a5:16:71:e8:4e:24:59:c9:ce:c9:9a: 6d:00:81:50:84:80:55:2c:81:93:91:bc:cc:b9:13: 5c:3a:67:e6:ed:2b:b9:ab:1e:e0:79:3a:78:75:b3: 99:49:a8:be:bb:58:ea:9b:1b:ef:8c:83:98:7c:94: 68:7e:bd:9a:d9:65:89:f6:67:1d:b2:1c:31:46:04: f3:51:cd:eb:6e:27:30:a3:16:95:97:4d:b4:26:89: ce:7a:19:c8:c3:f9:f4:4b:c1:7c:21:8b:f1:83:33: 50:17:f1:47:d2:5e:4e:16:8a:93:6c:8e:70:68:4d: e5:5f:55:68:8d:3b:9c:4f:32:12:3c:58:5f:68:a4: 78:1f:44:fd:1f:be:fb:c6:79:6a:cd:e4:a5:31:2f: 07:19:e5:3a:a3:cc:de:b5:98:6e:36:1a:39:18:57: 96:16:8e:ba:1f:14:73:c5:13:45:21:16:b1:af:6a: a4:f9:c0:95:59:fb:1b:45:42:68:52:65:46:b6:05: 24:e6:c9:c4:b6:f0:fc:e8:2d:df:d6:ab:36:19:24: 42:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:27:47:08:97:A8:AC:51:63:55:B9:1B:49:51:6F:25:9D:2E:D4:CC X509v3 Authority Key Identifier: keyid:29:0C:40:10:FA:DC:47:69:47:E0:09:3F:43:F7:00:4F:0D:7C:5C:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQxAEPrcR2lH4Ak_Q_cATw18XBw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3456/6C27F25A41A111EAA47D1E86C4F9AE02/KQxAEPrcR2lH4Ak_Q_cATw18XBw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:c1:ef:d1:d4:b3:b5:bd:1a:e8:17:25:b8:ea:b6:e6:f8:1d: 8d:7c:3f:4f:ff:ee:2f:4c:ee:f5:d9:be:c5:66:7b:ab:91:34: e9:17:e0:d6:37:bb:4b:f5:7e:fa:61:ff:55:24:73:e1:17:70: 91:12:19:8f:98:25:80:8f:79:4a:7b:66:31:a1:50:65:ff:bb: 59:be:fc:6b:81:d1:1e:d3:1f:2a:0d:4d:16:7e:62:cd:54:5f: 6e:38:fa:05:f8:3b:99:0d:53:a1:3c:56:cb:0d:6e:7f:0e:d3: e7:10:d2:80:f1:52:18:92:03:eb:d1:42:74:65:af:cd:9e:ce: 31:67:4f:44:cf:e1:8b:17:4f:0f:04:8e:9c:c4:97:78:d9:21: dd:2e:63:bf:5d:ed:a6:2f:e9:56:16:20:68:6a:75:8b:98:ab: ab:cc:22:8a:98:c1:dc:64:e7:bd:5b:f8:2b:39:06:06:8a:10: ff:ce:fc:6c:75:b2:89:ec:1d:fd:f3:e9:89:86:a4:68:94:e3: f1:5f:93:54:e2:ad:c8:30:7c:74:5b:53:b5:42:a3:1d:8c:5d: 02:c2:6f:c0:70:7d:2a:02:79:66:c7:37:38:1e:a9:d7:ec:e9: 1f:bb:11:93:98:a9:60:76:eb:49:d4:d7:3d:d0:2b:6d:df:0a: a9:6a:2a:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM0NTYxMTAvBgNVBAUTKDI5MEM0MDEwRkFEQzQ3Njk0N0UwMDkzRjQzRjcwMDRG MEQ3QzVDMUMwHhcNMjUxMDE4MjAwMjEwWhcNMjUxMDI1MjAwMjEwWjAYMRYwFAYD VQQDEw02OGYzZjI0Mi1jZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGUMgiLQAYTB/6Qs2s642gxjAvjux9O/mkf6/P7usE6n0VibMnqMdB0zrWm2 86TfpRZx6E4kWcnOyZptAIFQhIBVLIGTkbzMuRNcOmfm7Su5qx7geTp4dbOZSai+ u1jqmxvvjIOYfJRofr2a2WWJ9mcdshwxRgTzUc3rbicwoxaVl020JonOehnIw/n0 S8F8IYvxgzNQF/FH0l5OFoqTbI5waE3lX1VojTucTzISPFhfaKR4H0T9H777xnlq zeSlMS8HGeU6o8zetZhuNho5GFeWFo66HxRzxRNFIRaxr2qk+cCVWfsbRUJoUmVG tgUk5snEtvD86C3f1qs2GSRCnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMgnRwiX qKxRY1W5G0lRbyWdLtTMMB8GA1UdIwQYMBaAFCkMQBD63EdpR+AJP0P3AE8NfFwc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzQ1Ni82QzI3RjI1QTQx QTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1IybEg0QWtfUV9jQVR3MThY QncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tReEFFUHJjUjJsSDRBa19RX2NBVHcxOFhCdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzQ1Ni82QzI3RjI1QTQxQTExMUVBQTQ3RDFFODZDNEY5QUUwMi9LUXhBRVByY1Iy bEg0QWtfUV9jQVR3MThYQncubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBnwe/R1LO1vRroFyW46rbm+B2NfD9P/+4vTO712b7FZnurkTTpF+DW N7tL9X76Yf9VJHPhF3CREhmPmCWAj3lKe2YxoVBl/7tZvvxrgdEe0x8qDU0WfmLN VF9uOPoF+DuZDVOhPFbLDW5/DtPnENKA8VIYkgPr0UJ0Za/Nns4xZ09Ez+GLF08P BI6cxJd42SHdLmO/Xe2mL+lWFiBoanWLmKurzCKKmMHcZOe9W/grOQYGihD/zvxs dbKJ7B398+mJhqRolOPxX5NU4q3IMHx0W1O1QqMdjF0Cwm/AcH0qAnlmxzc4HqnX 7OkfuxGTmKlgdutJ1Nc90Ctt3wqpairo -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:21 2025 by rpki-client