$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft File: kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft (raw, json) Hash identifier: P7OJGnudMZY2ZKU1YcRpejhOD+cNzqHTGAWo3q2njf4= Subject key identifier: C4:70:11:4A:AA:39:C9:A4:D1:6C:78:42:4A:26:E0:5A:9C:E2:3F:22 Authority key identifier: 91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 Certificate issuer: /CN=A91BB6E3/serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Certificate serial: 0211 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft Manifest number: 01FC Signing time: Sun 19 Oct 2025 05:00:49 +0000 Manifest this update: Sun 19 Oct 2025 05:00:49 +0000 Manifest next update: Sun 26 Oct 2025 05:00:49 +0000 Files and hashes: 1: kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl (hash: ZEb1IS+rEb4YwKUSE927JAGaXlhlWDX4srDkbkVCEeE=) 2: F96174ECC27D11EDB8226F2DC4F9AE02.roa (hash: kXeNIsHETQcXUic6LYufG6XvgVMVgH9sGtHQdmkZT90=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 529 (0x211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB6E3, serialNumber=919FA819B2FFF145521AF664035278E7E7914A49 Validity Not Before: Oct 19 05:00:49 2025 GMT Not After : Oct 26 05:00:49 2025 GMT Subject: CN=68f47081-3a38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:7e:72:0e:20:80:fc:61:3d:90:11:ec:e8:cd: fc:d0:60:33:88:63:a9:b0:c6:10:ad:7d:c8:cd:8a: 0f:71:59:69:0f:06:97:ce:22:75:81:29:ae:a9:43: 3a:46:5c:1a:e5:fe:d6:4a:50:37:ac:6e:f0:05:d1: 86:9c:19:09:3c:47:6a:97:c1:1b:a0:f2:a1:6e:9b: ba:ea:8d:85:3f:de:82:c0:dd:db:05:36:00:ad:ff: 3b:26:8b:70:97:29:12:29:92:65:16:66:3e:d0:4e: 07:11:ec:58:db:e6:81:e1:b0:4b:d1:f2:07:cc:e4: e6:f6:14:70:b1:cf:a9:db:94:fb:89:38:f6:fb:34: b7:7c:d3:d6:94:f2:f7:8e:3b:15:4d:72:c4:46:19: be:6d:be:7c:0e:93:2a:aa:77:33:ff:5b:5c:ab:d3: f1:32:1a:b9:17:56:59:0c:71:07:5e:ca:63:e1:2f: 44:a6:09:ec:8f:38:0b:69:07:9d:71:ed:a0:47:3a: 49:a2:98:69:0f:e6:42:12:da:37:96:f8:23:1c:13: 40:a6:13:e5:f2:cc:b5:9a:09:f8:84:e3:e2:3d:79: 5a:1e:d9:7e:4b:8c:56:02:4a:1a:ce:73:bf:53:fc: d5:58:26:c9:e8:cb:d4:61:b2:9a:8a:a4:4c:f6:48: b2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:70:11:4A:AA:39:C9:A4:D1:6C:78:42:4A:26:E0:5A:9C:E2:3F:22 X509v3 Authority Key Identifier: keyid:91:9F:A8:19:B2:FF:F1:45:52:1A:F6:64:03:52:78:E7:E7:91:4A:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kZ-oGbL_8UVSGvZkA1J45-eRSkk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB6E3/A22C814CC27511EDB3B4D728C4F9AE02/kZ-oGbL_8UVSGvZkA1J45-eRSkk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:98:03:7c:d9:ac:a5:68:72:61:a9:a2:79:cf:a7:c2:f0:bb: 41:ae:9d:79:6d:57:9d:c5:7a:bb:f2:01:a0:16:f0:f3:c2:0b: 47:68:ee:3e:f7:77:88:0d:bd:11:68:78:e6:9e:c1:3f:a1:65: 5d:26:b4:39:39:28:1d:92:a2:9b:e0:c3:fd:d7:dc:1e:75:f5: 61:89:d3:d6:f9:cf:af:f3:27:f8:34:34:20:90:91:67:79:3c: 89:e3:d5:62:7f:45:30:55:63:74:69:5e:7f:db:47:f2:b0:81: 70:33:8a:12:10:5a:d6:3f:a4:6b:2d:5c:dc:ef:52:61:de:be: 54:3b:71:90:92:e3:15:b0:bf:cc:b8:57:63:bc:c4:e4:93:91: 87:e5:cd:40:03:24:d5:da:64:66:f2:07:e8:fc:02:6d:fb:66: 90:d8:c8:11:9b:fd:8d:bd:1a:99:7f:c7:ea:a0:55:a4:c5:9e: 06:3b:34:2f:51:66:46:2a:a7:60:a4:cd:fc:b1:a0:5c:2b:46: 68:ae:c0:ac:83:88:33:85:26:28:32:84:69:00:64:90:27:54: 7f:b5:a2:6c:78:aa:8a:cb:ad:f5:61:b9:05:23:5f:8d:7e:d0: bd:82:26:22:8c:49:ce:e5:dd:9d:0c:c1:f1:bf:a0:35:8b:d7: 5d:5c:39:a4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2RTMxMTAvBgNVBAUTKDkxOUZBODE5QjJGRkYxNDU1MjFBRjY2NDAzNTI3OEU3 RTc5MTRBNDkwHhcNMjUxMDE5MDUwMDQ5WhcNMjUxMDI2MDUwMDQ5WjAYMRYwFAYD VQQDEw02OGY0NzA4MS0zYTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzX5yDiCA/GE9kBHs6M380GAziGOpsMYQrX3IzYoPcVlpDwaXziJ1gSmuqUM6 Rlwa5f7WSlA3rG7wBdGGnBkJPEdql8EboPKhbpu66o2FP96CwN3bBTYArf87Jotw lykSKZJlFmY+0E4HEexY2+aB4bBL0fIHzOTm9hRwsc+p25T7iTj2+zS3fNPWlPL3 jjsVTXLERhm+bb58DpMqqncz/1tcq9PxMhq5F1ZZDHEHXspj4S9EpgnsjzgLaQed ce2gRzpJophpD+ZCEto3lvgjHBNAphPl8sy1mgn4hOPiPXlaHtl+S4xWAkoaznO/ U/zVWCbJ6MvUYbKaiqRM9kiyVQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMRwEUqq Ocmk0Wx4Qkom4Fqc4j8iMB8GA1UdIwQYMBaAFJGfqBmy//FFUhr2ZANSeOfnkUpJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjZFMy9BMjJDODE0Q0My NzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhVVlNHdlprQTFKNDUtZVJT a2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2taLW9HYkxfOFVWU0d2WmtBMUo0NS1lUlNray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjZFMy9BMjJDODE0Q0MyNzUxMUVEQjNCNEQ3MjhDNEY5QUUwMi9rWi1vR2JMXzhV VlNHdlprQTFKNDUtZVJTa2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXmAN82aylaHJhqaJ5z6fC8LtBrp15bVedxXq78gGgFvDzwgtHaO4+ 93eIDb0RaHjmnsE/oWVdJrQ5OSgdkqKb4MP919wedfVhidPW+c+v8yf4NDQgkJFn eTyJ49Vif0UwVWN0aV5/20fysIFwM4oSEFrWP6RrLVzc71Jh3r5UO3GQkuMVsL/M uFdjvMTkk5GH5c1AAyTV2mRm8gfo/AJt+2aQ2MgRm/2NvRqZf8fqoFWkxZ4GOzQv UWZGKqdgpM38saBcK0ZorsCsg4gzhSYoMoRpAGSQJ1R/taJseKqKy631YbkFI1+N ftC9giYijEnO5d2dDMHxv6A1i9ddXDmk -----END CERTIFICATE-----Generated at Mon Oct 20 04:26:28 2025 by rpki-client