$ rpki-client -vvf rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft File: Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft (raw, json) Hash identifier: cq7sSub+zoqnDUWBAFbHFu8yK15yib7cXCleCChzbJM= Subject key identifier: C0:E1:AB:4C:CF:81:30:6F:42:E6:59:FF:08:B0:26:2E:D9:B0:A7:92 Authority key identifier: 2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD Certificate issuer: /CN=A91B80C2/serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Certificate serial: 0131 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft Manifest number: 0121 Signing time: Sun 19 Oct 2025 09:09:50 +0000 Manifest this update: Sun 19 Oct 2025 09:09:50 +0000 Manifest next update: Sun 26 Oct 2025 09:09:50 +0000 Files and hashes: 1: Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl (hash: RysrTqVBHtz2RNwZJRhWOfA1I3E5KYQKLYC0ZAcXLls=) 2: 5B7DA256ACCB11F08E05C84AC4F9AE02.roa (hash: JIk04y36avfxNyJYsMCYG62Md4+/wx7B5wlEtJd+Sg0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:09:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 305 (0x131) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B80C2, serialNumber=2ABA2AA3CB3F94581C5D3D91BA36B8A9D8E8DEAD Validity Not Before: Oct 19 09:09:50 2025 GMT Not After : Oct 26 09:09:50 2025 GMT Subject: CN=68f4aade-d5f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:21:ce:54:1f:ca:ca:b5:27:7c:15:42:56:86: dc:aa:a3:98:49:27:2a:38:3e:7b:8b:46:10:18:f1: d5:78:53:66:7a:dc:c1:af:82:00:1e:fb:f5:d4:1d: b2:e6:0c:64:60:61:e7:a7:96:1c:4b:81:36:9a:3e: a0:31:93:b3:d7:4a:8f:4d:a1:a8:51:bf:27:51:00: 51:97:30:a8:36:28:2a:82:77:a7:12:48:7b:ac:c4: 73:64:68:61:88:c9:80:19:71:ca:20:2f:48:f0:19: 68:1b:ec:49:ae:ac:18:ac:8e:fb:8b:d6:37:67:f4: 2f:bf:b9:ee:56:dc:05:87:d8:12:14:1b:9d:1e:6c: 7d:41:47:8a:73:33:95:86:66:a5:d5:b7:20:b2:60: 9e:86:ea:e4:be:58:3e:49:f9:cd:7f:6f:0b:e9:d7: 78:6f:9f:62:62:0c:82:b7:25:86:04:76:24:0d:c0: 78:e4:29:a5:03:3c:b1:60:3e:d5:2a:90:04:e2:41: de:96:7d:bb:51:47:70:f6:57:14:e1:f4:08:3e:9a: 49:c4:3b:83:4a:01:fd:ce:a6:08:94:b5:a3:0b:9d: 3f:8d:51:07:ec:aa:c8:35:63:b8:01:bd:ea:0a:9b: a8:a3:bf:12:4e:7e:50:d7:71:25:cd:a4:a3:a3:60: fd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E1:AB:4C:CF:81:30:6F:42:E6:59:FF:08:B0:26:2E:D9:B0:A7:92 X509v3 Authority Key Identifier: keyid:2A:BA:2A:A3:CB:3F:94:58:1C:5D:3D:91:BA:36:B8:A9:D8:E8:DE:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Kroqo8s_lFgcXT2Ruja4qdjo3q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B80C2/983E6150171A11EF8657754FC4F9AE02/Kroqo8s_lFgcXT2Ruja4qdjo3q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:7c:10:bc:a9:33:91:a4:2a:68:ef:a7:04:b1:93:7c:da:87: e6:e0:81:67:66:26:2e:49:41:b7:49:a7:1b:d5:fb:0a:45:77: b7:fa:6b:bc:a6:ee:71:8a:84:8e:ea:9d:73:13:60:e0:02:ca: 2f:ee:c2:08:c3:91:32:0d:f2:12:cc:52:c5:92:32:16:6e:9f: f4:c1:e3:a6:b2:5d:a3:40:61:43:49:98:8d:22:a1:bf:b5:58: 4c:0d:90:e1:74:f0:4e:bb:1b:ac:3a:a3:4b:13:5d:bf:0b:e4: 48:38:15:e5:83:03:b0:c4:42:09:0e:19:17:39:c2:28:ea:98: d3:4b:e3:4a:bb:89:20:9f:c4:a8:b4:ef:5e:54:e3:8d:19:39: fc:8a:c9:01:03:99:23:2f:0e:a8:e0:1d:58:cb:a1:99:e3:32: d5:ba:52:ad:59:bc:92:4f:f6:08:54:17:12:eb:3d:8b:8d:d8: ca:1b:bd:94:c4:b5:a1:74:f7:af:ee:2a:ff:f3:df:f5:da:e4: 59:30:ee:2a:86:51:d2:d8:b9:4d:c0:dd:6a:07:52:8c:31:82: 15:bd:f6:36:d0:23:78:b0:26:f1:9b:71:86:92:76:c0:a0:9e: 1a:68:7c:3d:24:dc:c7:e4:13:6f:df:8f:ee:7f:ca:1c:46:2b: 59:c5:54:6a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgwQzIxMTAvBgNVBAUTKDJBQkEyQUEzQ0IzRjk0NTgxQzVEM0Q5MUJBMzZCOEE5 RDhFOERFQUQwHhcNMjUxMDE5MDkwOTUwWhcNMjUxMDI2MDkwOTUwWjAYMRYwFAYD VQQDEw02OGY0YWFkZS1kNWY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvCHOVB/KyrUnfBVCVobcqqOYSScqOD57i0YQGPHVeFNmetzBr4IAHvv11B2y 5gxkYGHnp5YcS4E2mj6gMZOz10qPTaGoUb8nUQBRlzCoNigqgnenEkh7rMRzZGhh iMmAGXHKIC9I8BloG+xJrqwYrI77i9Y3Z/Qvv7nuVtwFh9gSFBudHmx9QUeKczOV hmal1bcgsmCehurkvlg+SfnNf28L6dd4b59iYgyCtyWGBHYkDcB45CmlAzyxYD7V KpAE4kHeln27UUdw9lcU4fQIPppJxDuDSgH9zqYIlLWjC50/jVEH7KrINWO4Ab3q Cpuoo78STn5Q13ElzaSjo2D99QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMDhq0zP gTBvQuZZ/wiwJi7ZsKeSMB8GA1UdIwQYMBaAFCq6KqPLP5RYHF09kbo2uKnY6N6t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODBDMi85ODNFNjE1MDE3 MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xGZ2NYVDJSdWphNHFkam8z cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tyb3FvOHNfbEZnY1hUMlJ1amE0cWRqbzNxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC ODBDMi85ODNFNjE1MDE3MUExMUVGODY1Nzc1NEZDNEY5QUUwMi9Lcm9xbzhzX2xG Z2NYVDJSdWphNHFkam8zcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUfBC8qTORpCpo76cEsZN82ofm4IFnZiYuSUG3Sacb1fsKRXe3+mu8 pu5xioSO6p1zE2DgAsov7sIIw5EyDfISzFLFkjIWbp/0weOmsl2jQGFDSZiNIqG/ tVhMDZDhdPBOuxusOqNLE12/C+RIOBXlgwOwxEIJDhkXOcIo6pjTS+NKu4kgn8So tO9eVOONGTn8iskBA5kjLw6o4B1Yy6GZ4zLVulKtWbyST/YIVBcS6z2LjdjKG72U xLWhdPev7ir/89/12uRZMO4qhlHS2LlNwN1qB1KMMYIVvfY20CN4sCbxm3GGknbA oJ4aaHw9JNzH5BNv34/uf8ocRitZxVRq -----END CERTIFICATE-----Generated at Tue Oct 21 07:55:03 2025 by rpki-client