$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft File: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft (raw, json) Hash identifier: MGEiQlciDK9dxYBqb/oy1B/vtfYzY6S/GAp1bphvPGI= Subject key identifier: 77:D2:F0:7D:7F:66:8E:4C:37:7A:D7:24:90:A6:15:47:A6:C2:0C:CE Authority key identifier: 28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 Certificate issuer: /CN=A91A7F56/serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Certificate serial: 014C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft Manifest number: 014C Signing time: Sun 19 Oct 2025 06:55:36 +0000 Manifest this update: Sun 19 Oct 2025 06:55:36 +0000 Manifest next update: Sun 26 Oct 2025 06:55:36 +0000 Files and hashes: 1: KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl (hash: lfMshCSnlw89vWsfYrh1JAf3Vk+Qj4PhJGuFVtd4VZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:55:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7F56, serialNumber=281DDA097175C0432943FDE57CA33D28E5073BC4 Validity Not Before: Oct 19 06:55:36 2025 GMT Not After : Oct 26 06:55:36 2025 GMT Subject: CN=68f48b68-87b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:95:14:46:af:a6:ff:84:2d:54:e1:30:f7:bf: 45:6d:5c:a9:19:15:99:92:5d:50:02:da:66:0d:ff: e7:18:3a:24:e0:a3:31:d5:17:b3:98:8b:9e:2c:14: 75:ea:0e:d1:e6:e1:a0:14:8c:d4:ec:17:45:10:6b: b5:3a:e2:58:07:b5:6b:4d:09:53:cd:9d:1e:0f:cc: 53:d0:d0:5f:3f:30:b4:4d:bd:bc:db:83:c5:dc:03: 9b:28:28:40:ec:76:1c:9e:51:bd:46:ce:ed:19:c9: ad:d8:a8:9a:5b:44:21:83:51:00:64:de:1b:bf:c3: 1e:73:c7:71:c3:e1:77:59:09:90:2d:97:e0:66:28: f5:68:df:16:18:c8:63:a7:59:29:6b:f1:dd:08:5f: 91:ce:bc:4a:f8:ab:6b:6c:4c:9c:3b:a9:59:eb:e4: ea:8d:90:73:8b:34:d5:ea:ec:18:60:91:f7:18:23: 38:fe:38:84:23:66:18:d6:5c:09:98:4b:2c:df:e6: 16:da:ef:10:dc:de:73:8f:47:d6:3e:fa:af:4b:45: 0f:0a:fe:4c:c8:67:83:26:11:01:29:d2:c6:66:63: 69:7f:55:4c:9a:6d:50:5f:76:53:93:51:c6:b4:d7: 30:b5:ef:69:08:84:f7:fe:b6:93:c7:b1:0c:58:62: ce:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D2:F0:7D:7F:66:8E:4C:37:7A:D7:24:90:A6:15:47:A6:C2:0C:CE X509v3 Authority Key Identifier: keyid:28:1D:DA:09:71:75:C0:43:29:43:FD:E5:7C:A3:3D:28:E5:07:3B:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7F56/9E1C89A6ACCD11EE81069050C4F9AE02/KB3aCXF1wEMpQ_3lfKM9KOUHO8Q.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:10:69:3b:94:09:44:3b:f4:4e:91:ec:cf:7e:a3:0c:22:17: 55:5b:1b:da:a2:11:78:cc:e5:db:bb:fc:14:37:7d:9c:dd:bd: ef:c9:56:97:f7:fa:be:44:19:96:e6:de:cc:c9:70:cf:34:77: 15:14:31:ea:94:0c:d2:15:9c:6c:5d:a9:42:1b:12:a4:93:c0: e3:e7:48:e3:f0:f2:23:d5:b6:0c:74:fd:f9:a8:da:23:c1:67: 02:96:d3:ad:14:99:2b:61:ca:30:16:b1:2f:83:ba:dd:dd:93: 5d:47:b9:35:15:88:aa:e4:a9:02:e2:72:a2:0b:70:c1:b6:9b: 65:49:69:90:7e:27:7b:b5:a1:5b:0c:29:ce:19:a7:aa:55:e6: 75:92:a7:cf:a7:e8:e2:37:f5:8c:74:09:a0:ad:51:93:b8:e7: 79:1d:eb:6a:04:08:a6:a0:b3:cd:77:52:e9:ea:d4:b0:01:b7: 4b:5f:0d:a4:69:df:87:3e:5d:5e:c7:64:8d:4d:f9:09:28:6b: 26:0b:52:d6:10:a0:93:df:4d:9e:ef:bb:7d:a7:db:b8:43:fc: 72:36:e4:75:ca:43:b2:c9:52:fe:22:23:50:2d:a6:d2:f9:8a: 23:df:85:06:f2:5a:69:3b:fa:e2:37:48:c4:75:6e:7e:a8:1c: e4:63:74:db -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdGNTYxMTAvBgNVBAUTKDI4MUREQTA5NzE3NUMwNDMyOTQzRkRFNTdDQTMzRDI4 RTUwNzNCQzQwHhcNMjUxMDE5MDY1NTM2WhcNMjUxMDI2MDY1NTM2WjAYMRYwFAYD VQQDEw02OGY0OGI2OC04N2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5UURq+m/4QtVOEw979FbVypGRWZkl1QAtpmDf/nGDok4KMx1RezmIueLBR1 6g7R5uGgFIzU7BdFEGu1OuJYB7VrTQlTzZ0eD8xT0NBfPzC0Tb2824PF3AObKChA 7HYcnlG9Rs7tGcmt2KiaW0Qhg1EAZN4bv8Mec8dxw+F3WQmQLZfgZij1aN8WGMhj p1kpa/HdCF+RzrxK+KtrbEycO6lZ6+TqjZBzizTV6uwYYJH3GCM4/jiEI2YY1lwJ mEss3+YW2u8Q3N5zj0fWPvqvS0UPCv5MyGeDJhEBKdLGZmNpf1VMmm1QX3ZTk1HG tNcwte9pCIT3/raTx7EMWGLOuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHfS8H1/ Zo5MN3rXJJCmFUemwgzOMB8GA1UdIwQYMBaAFCgd2glxdcBDKUP95XyjPSjlBzvE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0Y1Ni85RTFDODlBNkFD Q0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdFTXBRXzNsZktNOUtPVUhP OFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tCM2FDWEYxd0VNcFFfM2xmS005S09VSE84US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0Y1Ni85RTFDODlBNkFDQ0QxMUVFODEwNjkwNTBDNEY5QUUwMi9LQjNhQ1hGMXdF TXBRXzNsZktNOUtPVUhPOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAeEGk7lAlEO/ROkezPfqMMIhdVWxvaohF4zOXbu/wUN32c3b3vyVaX 9/q+RBmW5t7MyXDPNHcVFDHqlAzSFZxsXalCGxKkk8Dj50jj8PIj1bYMdP35qNoj wWcCltOtFJkrYcowFrEvg7rd3ZNdR7k1FYiq5KkC4nKiC3DBtptlSWmQfid7taFb DCnOGaeqVeZ1kqfPp+jiN/WMdAmgrVGTuOd5HetqBAimoLPNd1Lp6tSwAbdLXw2k ad+HPl1ex2SNTfkJKGsmC1LWEKCT302e77t9p9u4Q/xyNuR1ykOyyVL+IiNQLabS +Yoj34UG8lppO/riN0jEdW5+qBzkY3Tb -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:40 2025 by rpki-client