$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft File: kIDbUP8LdD_6MredDdXDGQIdbiQ.mft (raw, json) Hash identifier: nAxtuN/iTfWHtWgx7iT3RauOIa8wkjU6Q8GmV6lzjRo= Subject key identifier: D2:A1:D6:43:A7:AF:71:F0:AA:09:C9:3C:A3:B7:6F:EC:E5:27:F2:30 Authority key identifier: 90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 Certificate issuer: /CN=A91B5377/serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Certificate serial: 93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft Manifest number: 93 Signing time: Sun 19 Oct 2025 09:41:41 +0000 Manifest this update: Sun 19 Oct 2025 09:41:40 +0000 Manifest next update: Sun 26 Oct 2025 09:41:40 +0000 Files and hashes: 1: kIDbUP8LdD_6MredDdXDGQIdbiQ.crl (hash: LvhgUMjsJA48AYNXkadb2z/VHaHSM1qWoBosgDP8/yQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:41:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 147 (0x93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5377, serialNumber=9080DB50FF0B743FFA32B79D0DD5C319021D6E24 Validity Not Before: Oct 19 09:41:40 2025 GMT Not After : Oct 26 09:41:40 2025 GMT Subject: CN=68f4b254-d83e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:93:12:ba:6b:7d:2a:b9:f4:7c:df:ab:3c:8e: ca:15:ff:d1:2d:ad:e4:e8:80:fd:99:17:78:27:ff: 29:e3:fc:f2:ca:4a:98:2e:0a:fe:f4:f3:83:ff:76: 92:fa:85:bf:de:b1:de:18:26:d6:db:de:ca:cf:99: b3:2f:4e:75:cb:66:c4:77:c8:a7:c9:c6:50:75:d3: c7:de:1a:f1:56:51:18:00:06:a6:56:d2:0c:fa:36: 3e:62:bb:16:b4:60:84:a7:20:53:52:f1:f8:a1:2d: 46:92:fe:c7:8b:39:b8:b2:f6:8a:60:e6:9e:32:59: cd:a3:d9:d8:5d:f6:e5:fa:50:19:17:8f:2c:08:85: 08:88:8c:08:a9:44:65:93:93:4c:f5:fc:e1:3a:be: a8:bc:a5:40:16:cb:15:8e:52:92:f4:f0:c0:92:c9: c5:32:62:be:dd:58:5e:b2:df:ff:76:7c:40:1e:23: 2c:d8:b2:52:74:24:17:9e:9a:b1:af:1b:80:13:b8: 1a:b2:94:10:81:45:20:88:f9:9d:ec:c9:61:b2:36: d7:a9:5c:bc:97:f7:07:86:6b:d3:70:f5:32:a8:68: b0:d6:5f:d3:01:1e:3b:d3:d0:9e:3c:88:a9:41:94: 58:5a:46:84:c2:fe:98:c7:9c:04:a9:e8:7b:6d:ff: 10:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:A1:D6:43:A7:AF:71:F0:AA:09:C9:3C:A3:B7:6F:EC:E5:27:F2:30 X509v3 Authority Key Identifier: keyid:90:80:DB:50:FF:0B:74:3F:FA:32:B7:9D:0D:D5:C3:19:02:1D:6E:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kIDbUP8LdD_6MredDdXDGQIdbiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5377/F3C44A78CC5811EF99985D86C4F9AE02/kIDbUP8LdD_6MredDdXDGQIdbiQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:47:ba:d2:25:5f:f8:dd:fb:cd:a0:1e:75:f6:80:2e:41:49: 4f:4f:c6:a2:e6:b7:5a:57:61:de:17:11:44:a3:9c:de:e6:b8: 7d:6d:82:76:bd:19:c5:65:7b:98:80:ea:25:eb:d2:b5:d1:bf: cc:0d:ea:5a:b9:26:b8:1c:53:e5:c7:36:46:fc:39:d5:ee:2d: 0d:b7:f4:36:4a:02:5f:03:a1:ba:61:f9:50:94:ea:68:02:9f: f1:a2:9a:c6:20:bf:ce:3a:2f:ce:68:1e:3a:ac:da:33:91:d9: 9f:b5:ea:2b:d2:31:43:4e:51:1e:d5:b8:6c:b3:6d:e0:72:df: 2b:23:83:ce:f4:e0:37:4b:2e:a4:c8:f9:a6:9c:19:c0:d5:4d: bc:c7:16:41:c0:89:59:48:67:e3:60:96:53:54:51:05:d3:e6: b6:6c:21:08:f6:cb:17:1f:31:08:c4:ed:c3:be:94:f6:d1:ec: 38:d4:05:36:f3:37:a3:c3:3e:dc:06:04:94:48:35:ea:a6:62: c2:fa:49:12:50:c7:50:cc:93:9c:78:2d:d8:06:7f:4c:43:8b: 1b:4b:b3:a7:2d:70:de:e8:cc:e6:e5:5c:2e:2d:0e:99:36:d8: 7e:4e:2d:5b:7d:d1:0a:fc:ad:be:85:42:63:93:48:d1:e3:74: f8:1d:08:cf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUzNzcxMTAvBgNVBAUTKDkwODBEQjUwRkYwQjc0M0ZGQTMyQjc5RDBERDVDMzE5 MDIxRDZFMjQwHhcNMjUxMDE5MDk0MTQwWhcNMjUxMDI2MDk0MTQwWjAYMRYwFAYD VQQDEw02OGY0YjI1NC1kODNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAypMSumt9Krn0fN+rPI7KFf/RLa3k6ID9mRd4J/8p4/zyykqYLgr+9POD/3aS +oW/3rHeGCbW297Kz5mzL051y2bEd8inycZQddPH3hrxVlEYAAamVtIM+jY+YrsW tGCEpyBTUvH4oS1Gkv7Hizm4svaKYOaeMlnNo9nYXfbl+lAZF48sCIUIiIwIqURl k5NM9fzhOr6ovKVAFssVjlKS9PDAksnFMmK+3Vhest//dnxAHiMs2LJSdCQXnpqx rxuAE7gaspQQgUUgiPmd7MlhsjbXqVy8l/cHhmvTcPUyqGiw1l/TAR4709CePIip QZRYWkaEwv6Yx5wEqeh7bf8QKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNKh1kOn r3HwqgnJPKO3b+zlJ/IwMB8GA1UdIwQYMBaAFJCA21D/C3Q/+jK3nQ3VwxkCHW4k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTM3Ny9GM0M0NEE3OEND NTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGREXzZNcmVkRGRYREdRSWRi aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tJRGJVUDhMZERfNk1yZWREZFhER1FJZGJpUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NTM3Ny9GM0M0NEE3OENDNTgxMUVGOTk5ODVEODZDNEY5QUUwMi9rSURiVVA4TGRE XzZNcmVkRGRYREdRSWRiaVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkR7rSJV/43fvNoB519oAuQUlPT8ai5rdaV2HeFxFEo5ze5rh9bYJ2 vRnFZXuYgOol69K10b/MDepauSa4HFPlxzZG/DnV7i0Nt/Q2SgJfA6G6YflQlOpo Ap/xoprGIL/OOi/OaB46rNozkdmfteor0jFDTlEe1bhss23gct8rI4PO9OA3Sy6k yPmmnBnA1U28xxZBwIlZSGfjYJZTVFEF0+a2bCEI9ssXHzEIxO3DvpT20ew41AU2 8zejwz7cBgSUSDXqpmLC+kkSUMdQzJOceC3YBn9MQ4sbS7OnLXDe6Mzm5VwuLQ6Z Nth+Ti1bfdEK/K2+hUJjk0jR43T4HQjP -----END CERTIFICATE-----Generated at Mon Oct 20 01:45:32 2025 by rpki-client