$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft File: kS3Nd84XYnPZShzEJZKtBclnamI.mft (raw, json) Hash identifier: BLthYgYZDahPzILTL75nfr3gTdYgi+pUrAc2beTIRf4= Subject key identifier: B0:63:B0:1D:6B:2A:87:E3:C9:64:F9:B2:3D:E0:D7:6E:E9:86:D3:DC Authority key identifier: 91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 Certificate issuer: /CN=A91CA6E6/serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Certificate serial: 01C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft Manifest number: 02D5 Signing time: Sun 19 Oct 2025 05:21:36 +0000 Manifest this update: Sun 19 Oct 2025 05:21:36 +0000 Manifest next update: Sun 26 Oct 2025 05:21:36 +0000 Files and hashes: 1: kS3Nd84XYnPZShzEJZKtBclnamI.crl (hash: CeG0WRSRaBpOoCSk59/8gqlllE/FjRmEks58BeJ4JrA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 456 (0x1c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA6E6, serialNumber=912DCD77CE176273D94A1CC42592AD05C9676A62 Validity Not Before: Oct 19 05:21:36 2025 GMT Not After : Oct 26 05:21:36 2025 GMT Subject: CN=68f47560-8644 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6f:88:f6:be:43:c5:9c:43:24:9f:95:45:cf: c4:50:7d:84:be:41:b1:aa:9e:6a:63:49:83:dd:37: 0a:0b:cd:7a:85:4b:de:86:e2:c6:69:47:5e:04:d1: d6:a2:48:54:7f:7c:23:5c:c6:8f:e2:dd:cc:2c:6c: a0:00:40:38:69:d8:6e:54:09:47:65:6f:73:e5:ff: a1:e0:ca:e5:bd:7b:bd:72:e5:31:c9:28:7c:00:a6: b2:14:71:9d:8d:73:1e:ad:ea:de:63:12:4d:5f:71: 38:70:66:d6:b1:a8:73:a5:be:ce:1e:e2:0f:22:40: 0f:7b:66:ca:5a:40:1d:dd:70:ad:a2:0a:13:94:cc: 89:56:49:ae:65:45:c1:6c:89:ad:d1:00:38:3d:1f: b2:c9:43:d1:65:69:f0:93:e0:4c:87:28:5b:63:e1: 5a:d5:b8:09:1c:df:29:94:b1:37:84:83:91:69:a6: 9c:5a:7d:4e:51:0e:eb:c2:c4:52:c4:9c:d9:af:6b: 3d:e1:eb:67:e5:40:b6:e5:4c:25:27:30:b4:32:f9: 44:50:25:dc:f7:50:b8:5b:ec:17:0d:f2:f3:0b:04: fa:0d:47:43:ed:b6:45:82:6e:db:9e:41:3d:49:e2: 09:09:2a:70:5c:fc:0c:6a:8c:e1:11:a8:15:41:55: a6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:63:B0:1D:6B:2A:87:E3:C9:64:F9:B2:3D:E0:D7:6E:E9:86:D3:DC X509v3 Authority Key Identifier: keyid:91:2D:CD:77:CE:17:62:73:D9:4A:1C:C4:25:92:AD:05:C9:67:6A:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kS3Nd84XYnPZShzEJZKtBclnamI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA6E6/3B83AFE0F0D011ED8050766AC4F9AE02/kS3Nd84XYnPZShzEJZKtBclnamI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a2:ef:34:e0:66:fa:4b:2a:6b:58:99:ac:32:fe:64:95:de:79: 74:cb:45:44:ba:25:be:49:03:8d:82:ce:66:bd:3b:ed:74:d9: b6:b8:9e:ae:d7:23:04:e7:a1:8e:6a:05:9b:34:75:ab:68:eb: 5c:f4:c6:ff:a9:09:0c:91:e9:2f:5a:9b:cb:38:b1:fa:86:02: da:10:33:39:9f:ec:0d:c8:1a:23:94:ac:38:62:72:f9:f0:f7: ff:6d:3f:d7:1d:c4:d9:68:4e:22:f2:af:15:be:b8:a2:35:34: 0e:13:2a:d5:57:de:f4:31:21:a4:7f:93:71:dc:01:7e:f0:70: 4f:3b:5f:db:92:e4:65:f6:75:af:fc:77:f7:72:93:29:22:90: 0c:d6:8d:c7:ee:1c:db:69:4a:3e:31:2e:40:19:f6:72:cc:33: 0f:ae:e7:b1:04:ba:b1:b8:88:31:53:31:b9:cf:db:25:ee:e3: aa:32:bf:42:ec:89:e1:a2:a2:18:5f:03:ed:11:4f:52:f1:5d: a9:4e:81:ca:97:c3:ea:10:01:a0:d9:35:fc:bb:19:02:25:66: 9f:77:82:3f:50:84:e6:b3:1e:79:59:a6:4b:51:61:ab:94:7d: 3c:4f:26:b9:71:02:f2:76:f2:08:33:4a:87:e2:f7:86:39:cf: 27:69:e0:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E2RTYxMTAvBgNVBAUTKDkxMkRDRDc3Q0UxNzYyNzNEOTRBMUNDNDI1OTJBRDA1 Qzk2NzZBNjIwHhcNMjUxMDE5MDUyMTM2WhcNMjUxMDI2MDUyMTM2WjAYMRYwFAYD VQQDEw02OGY0NzU2MC04NjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvG+I9r5DxZxDJJ+VRc/EUH2EvkGxqp5qY0mD3TcKC816hUvehuLGaUdeBNHW okhUf3wjXMaP4t3MLGygAEA4adhuVAlHZW9z5f+h4MrlvXu9cuUxySh8AKayFHGd jXMerereYxJNX3E4cGbWsahzpb7OHuIPIkAPe2bKWkAd3XCtogoTlMyJVkmuZUXB bImt0QA4PR+yyUPRZWnwk+BMhyhbY+Fa1bgJHN8plLE3hIORaaacWn1OUQ7rwsRS xJzZr2s94etn5UC25UwlJzC0MvlEUCXc91C4W+wXDfLzCwT6DUdD7bZFgm7bnkE9 SeIJCSpwXPwMaozhEagVQVWm1wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLBjsB1r KofjyWT5sj3g127phtPcMB8GA1UdIwQYMBaAFJEtzXfOF2Jz2UocxCWSrQXJZ2pi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTZFNi8zQjgzQUZFMEYw RDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFluUFpTaHpFSlpLdEJjbG5h bUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tTM05kODRYWW5QWlNoekVKWkt0QmNsbmFtSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTZFNi8zQjgzQUZFMEYwRDAxMUVEODA1MDc2NkFDNEY5QUUwMi9rUzNOZDg0WFlu UFpTaHpFSlpLdEJjbG5hbUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCi7zTgZvpLKmtYmawy/mSV3nl0y0VEuiW+SQONgs5mvTvtdNm2uJ6u 1yME56GOagWbNHWraOtc9Mb/qQkMkekvWpvLOLH6hgLaEDM5n+wNyBojlKw4YnL5 8Pf/bT/XHcTZaE4i8q8VvriiNTQOEyrVV970MSGkf5Nx3AF+8HBPO1/bkuRl9nWv /Hf3cpMpIpAM1o3H7hzbaUo+MS5AGfZyzDMPruexBLqxuIgxUzG5z9sl7uOqMr9C 7InhoqIYXwPtEU9S8V2pToHKl8PqEAGg2TX8uxkCJWafd4I/UITmsx55WaZLUWGr lH08Tya5cQLydvIIM0qH4veGOc8naeCF -----END CERTIFICATE-----Generated at Mon Oct 20 15:15:20 2025 by rpki-client