$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft File: KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft (raw, json) Hash identifier: GX6t2AqA77IOvSueGH3afhHSZbR+3Q9AIL5oOnSq8XQ= Subject key identifier: DB:C6:39:72:BC:D9:BD:08:C0:1E:D2:8C:2B:66:32:CB:E0:4D:9A:DD Authority key identifier: 2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B Certificate issuer: /CN=A91A4287/serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Certificate serial: 6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft Manifest number: 6E Signing time: Sun 19 Oct 2025 10:15:36 +0000 Manifest this update: Sun 19 Oct 2025 10:15:35 +0000 Manifest next update: Sun 26 Oct 2025 10:15:35 +0000 Files and hashes: 1: KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl (hash: sXb/BGzh5LzA01WKJNkwz3ajScoAhfOLh/LmbAViJ+Q=) 2: 8CC07FC0047211F0A6541526C4F9AE02.roa (hash: PgYYJ9/o38WTea0u5fJFPWCIw+78oj+kOWm1Hogb3eo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4287, serialNumber=2A45A41D60E2F104D3DD39C86F14BC5900883F4B Validity Not Before: Oct 19 10:15:35 2025 GMT Not After : Oct 26 10:15:35 2025 GMT Subject: CN=68f4ba48-0017 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:6e:cf:ea:90:ba:f1:99:2c:59:69:e5:0e:99: f0:f1:30:65:3f:b8:40:c6:1a:05:b2:b5:cf:8f:ea: 9b:84:7d:e6:4f:64:33:7e:60:d1:87:32:4f:f7:96: 76:1d:93:ec:5a:ab:88:11:6b:aa:f3:21:dd:58:c1: 14:51:3f:a6:42:cc:6a:22:4a:1e:1e:7f:52:d2:da: db:f3:f0:0a:da:21:02:78:aa:d2:11:16:bd:29:53: 34:7e:8b:86:c6:78:b2:6b:e4:09:c9:94:bb:15:92: b8:a2:58:a7:e9:07:07:7c:36:a9:14:65:b1:b1:5d: 4d:dd:7a:77:ad:49:a3:04:b3:54:d3:88:3c:6d:26: 83:be:49:c8:e6:eb:01:5f:1c:f1:35:1f:ab:5c:41: c0:25:b1:2b:a1:8d:f2:36:e8:97:80:c6:85:3a:86: 0c:c4:48:ba:72:56:63:06:1c:95:75:b1:3d:f7:e1: 99:1c:d0:f0:11:ad:13:4f:5d:45:4b:20:24:ff:37: 26:d8:25:0d:71:f6:d0:61:27:1c:5e:57:5e:48:c5: 82:41:3a:1b:72:43:e1:ba:1d:c1:e1:c3:7b:07:8a: d6:20:b7:4b:78:5c:e3:90:ab:ad:76:31:3d:aa:ef: 2d:cc:b0:37:fd:96:80:66:3d:4e:37:de:ab:2d:0f: f3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C6:39:72:BC:D9:BD:08:C0:1E:D2:8C:2B:66:32:CB:E0:4D:9A:DD X509v3 Authority Key Identifier: keyid:2A:45:A4:1D:60:E2:F1:04:D3:DD:39:C8:6F:14:BC:59:00:88:3F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KkWkHWDi8QTT3TnIbxS8WQCIP0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4287/37278C16046D11F0B77D0361C4F9AE02/KkWkHWDi8QTT3TnIbxS8WQCIP0s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:58:6d:a4:0d:ac:f8:f6:3c:8f:8f:ab:78:5d:f3:fa:73:aa: 31:1f:97:0b:b4:3e:5f:d6:ad:4a:33:35:b2:2a:e0:4e:94:0d: 43:4d:75:1c:e5:c7:03:36:e5:fa:dd:cb:2e:2f:39:e6:bb:a9: f6:00:ee:14:4d:7c:f0:3f:30:4b:86:77:03:28:5c:67:56:a9: f9:ef:5d:cb:97:ee:6b:72:bc:9c:22:ef:5a:90:08:2a:49:04: 37:b3:02:2e:6b:2e:b6:4c:45:15:ea:e5:d4:cc:8f:37:1b:91: 2e:e5:8f:b0:85:9d:3c:21:9e:78:8a:47:a4:89:17:7a:fe:19: 2f:60:b7:49:88:44:dd:6b:f3:79:ed:d2:14:f3:c0:59:d5:44: 4b:96:ba:d5:cc:76:55:c2:09:0e:bf:98:4c:b8:93:8f:24:b1: 66:be:de:f2:13:0f:d8:91:81:1f:2c:d8:67:33:61:f7:1e:b5: a6:3c:66:9b:1e:45:27:67:8d:ea:28:cd:c7:ee:fd:a9:0e:2a: 99:72:69:75:fb:91:70:81:e5:da:19:44:7a:c5:2f:91:b3:0b: 58:71:a4:a2:c1:34:1a:66:fc:f2:99:bf:b9:e3:94:2c:61:8b: 84:87:9e:29:5e:18:a8:f4:b8:8a:8e:7a:e2:09:c3:7e:ee:5d: cd:b8:7a:2d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDI4NzExMC8GA1UEBRMoMkE0NUE0MUQ2MEUyRjEwNEQzREQzOUM4NkYxNEJDNTkw MDg4M0Y0QjAeFw0yNTEwMTkxMDE1MzVaFw0yNTEwMjYxMDE1MzVaMBgxFjAUBgNV BAMTDTY4ZjRiYTQ4LTAwMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjbs/qkLrxmSxZaeUOmfDxMGU/uEDGGgWytc+P6puEfeZPZDN+YNGHMk/3lnYd k+xaq4gRa6rzId1YwRRRP6ZCzGoiSh4ef1LS2tvz8AraIQJ4qtIRFr0pUzR+i4bG eLJr5AnJlLsVkriiWKfpBwd8NqkUZbGxXU3denetSaMEs1TTiDxtJoO+Scjm6wFf HPE1H6tcQcAlsSuhjfI26JeAxoU6hgzESLpyVmMGHJV1sT334Zkc0PARrRNPXUVL ICT/NybYJQ1x9tBhJxxeV15IxYJBOhtyQ+G6HcHhw3sHitYgt0t4XOOQq612MT2q 7y3MsDf9loBmPU433qstD/PdAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU28Y5crzZ vQjAHtKMK2Yyy+BNmt0wHwYDVR0jBBgwFoAUKkWkHWDi8QTT3TnIbxS8WQCIP0sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0Mjg3LzM3Mjc4QzE2MDQ2 RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFUVDNUbklieFM4V1FDSVAw cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2tXa0hXRGk4UVRUM1RuSWJ4UzhXUUNJUDBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0 Mjg3LzM3Mjc4QzE2MDQ2RDExRjBCNzdEMDM2MUM0RjlBRTAyL0trV2tIV0RpOFFU VDNUbklieFM4V1FDSVAwcy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGlYbaQNrPj2PI+Pq3hd8/pzqjEflwu0Pl/WrUozNbIq4E6UDUNNdRzl xwM25frdyy4vOea7qfYA7hRNfPA/MEuGdwMoXGdWqfnvXcuX7mtyvJwi71qQCCpJ BDezAi5rLrZMRRXq5dTMjzcbkS7lj7CFnTwhnniKR6SJF3r+GS9gt0mIRN1r83nt 0hTzwFnVREuWutXMdlXCCQ6/mEy4k48ksWa+3vITD9iRgR8s2GczYfcetaY8Zpse RSdnjeoozcfu/akOKplyaXX7kXCB5doZRHrFL5GzC1hxpKLBNBpm/PKZv7njlCxh i4SHnileGKj0uIqOeuIJw37uXc24ei0= -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:47 2025 by rpki-client