$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft File: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft (raw, json) Hash identifier: hSc99hIJ4qENx7qayrS9XeKT4S9KQtcbRI7HEQ8qvmI= Subject key identifier: B5:A3:84:19:10:5F:45:71:6D:17:15:33:6C:F5:70:42:66:01:7B:4D Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 104C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft Manifest number: 103B Signing time: Sat 18 Oct 2025 17:59:27 +0000 Manifest this update: Sat 18 Oct 2025 17:59:26 +0000 Manifest next update: Sat 25 Oct 2025 17:59:26 +0000 Files and hashes: 1: KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl (hash: +WHhT5x88vJR+TfGhElwi+PIG5quvVR8DKxsFTOwbSY=) 2: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (hash: fPoBgkYnMh4IMhrB/TA39+M1O1OAHZFrtUEJDkMooUg=) 3: EF66DDE4E46A11EB9552D31BC4F9AE02.roa (hash: ucL3j8TnFmy+7V5qbIqZDaLy79WcFoXLeH1a5In6i8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4172 (0x104c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22, serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Oct 18 17:59:26 2025 GMT Not After : Oct 25 17:59:26 2025 GMT Subject: CN=68f3d57f-558a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ef:e3:97:5f:ff:91:30:00:44:5b:17:78:42: 53:8b:4f:27:f5:82:03:7d:e9:e9:66:56:30:44:f4: cd:c4:72:05:ae:5e:f5:6d:dd:e7:47:00:f7:5d:1b: c0:69:31:1e:6a:6a:3c:39:f2:dd:13:21:29:e1:0d: 98:30:9e:d9:a5:96:a1:3e:c0:d4:77:c1:3a:29:e3: a0:37:07:ef:aa:46:5b:25:fe:23:29:27:d4:fa:6a: 8f:05:f7:07:69:3c:9e:21:c1:7f:23:e4:0b:ab:ef: f3:fe:c1:91:89:e7:10:f6:c1:b1:73:3f:7f:1d:e1: ab:5c:85:8d:02:ef:a0:2f:33:ab:a9:57:06:e3:69: 8f:a2:39:e8:7f:15:6c:8e:7f:a1:5c:b2:3b:d0:bb: 04:7e:2e:5a:c9:0f:c2:db:77:48:36:00:a6:69:9e: 94:27:41:be:45:06:80:5c:bf:45:00:5a:f8:bb:18: 3d:89:36:ff:65:31:aa:f2:25:7e:72:ed:8c:5f:28: 3b:14:c8:69:bb:29:35:60:91:33:37:9c:44:a3:51: 54:85:48:0a:71:29:cb:c6:dc:08:1a:03:fd:fb:17: ba:9f:f7:db:6f:9b:53:0c:5d:d9:c8:9a:37:f7:8a: a8:fc:ff:79:81:2c:6c:cd:9d:34:98:23:cb:44:3d: e1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:A3:84:19:10:5F:45:71:6D:17:15:33:6C:F5:70:42:66:01:7B:4D X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:dd:eb:30:e3:35:db:32:74:9a:71:bb:21:4c:77:59:28:68: 98:6d:04:09:5f:7e:95:cc:02:82:33:e8:92:2a:84:86:fb:56: f6:9d:87:2c:60:e7:7d:69:16:1b:7e:63:c6:dd:64:57:c1:96: de:3d:68:ed:66:ca:70:57:cd:e1:1b:d9:b1:66:a6:c6:6f:a6: e6:38:b1:38:e0:e1:dc:42:16:cf:86:66:cc:97:d3:9d:51:52: 8b:b3:a9:73:fd:e3:67:87:ad:52:1e:5e:67:36:15:9a:9d:64: 81:0b:78:0b:bd:b7:e9:00:76:31:49:77:b0:39:5f:ed:5d:a6: 8f:31:de:1b:28:06:0a:b2:d5:46:bf:e4:d1:39:2a:f4:d2:15: 7b:17:68:b4:d4:9b:22:b8:ff:e4:0c:a1:51:b1:b7:c3:2c:e7: 05:60:00:3f:02:27:ee:85:bf:ee:c4:27:cc:a2:bf:f3:48:79: c3:e2:2c:0e:ae:14:a5:54:24:21:c3:a7:22:b4:0a:4d:b7:54: cf:3a:49:ea:a1:89:b5:e0:25:e8:84:e6:80:34:15:9b:19:2e: 3c:9a:c1:86:53:d9:3a:ee:71:b7:2d:89:58:1d:b8:9a:07:00: 97:d5:d9:12:f4:7f:aa:8a:8c:d2:b8:16:98:8c:6a:b7:d5:38: 3d:80:43:d3 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEEwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjUxMDE4MTc1OTI2WhcNMjUxMDI1MTc1OTI2WjAYMRYwFAYD VQQDEw02OGYzZDU3Zi01NThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4+/jl1//kTAARFsXeEJTi08n9YIDfenpZlYwRPTNxHIFrl71bd3nRwD3XRvA aTEeamo8OfLdEyEp4Q2YMJ7ZpZahPsDUd8E6KeOgNwfvqkZbJf4jKSfU+mqPBfcH aTyeIcF/I+QLq+/z/sGRiecQ9sGxcz9/HeGrXIWNAu+gLzOrqVcG42mPojnofxVs jn+hXLI70LsEfi5ayQ/C23dINgCmaZ6UJ0G+RQaAXL9FAFr4uxg9iTb/ZTGq8iV+ cu2MXyg7FMhpuyk1YJEzN5xEo1FUhUgKcSnLxtwIGgP9+xe6n/fbb5tTDF3ZyJo3 94qo/P95gSxszZ00mCPLRD3h2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLWjhBkQ X0VxbRcVM2z1cEJmAXtNMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB Q0MyMi82OTA2QzZGQTRDNzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxo M0ZVS2xKSk52Ty03WjJsTDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCz3esw4zXbMnSacbshTHdZKGiYbQQJX36VzAKCM+iSKoSG+1b2nYcs YOd9aRYbfmPG3WRXwZbePWjtZspwV83hG9mxZqbGb6bmOLE44OHcQhbPhmbMl9Od UVKLs6lz/eNnh61SHl5nNhWanWSBC3gLvbfpAHYxSXewOV/tXaaPMd4bKAYKstVG v+TROSr00hV7F2i01JsiuP/kDKFRsbfDLOcFYAA/Aifuhb/uxCfMor/zSHnD4iwO rhSlVCQhw6citApNt1TPOknqoYm14CXohOaANBWbGS48msGGU9k67nG3LYlYHbia BwCX1dkS9H+qiozSuBaYjGq31Tg9gEPT -----END CERTIFICATE-----Generated at Mon Oct 20 16:32:25 2025 by rpki-client