$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft File: kBUoySF5F9lWch0caFZlNFvrVv0.mft (raw, json) Hash identifier: RZYEvy2BEg2QRvg4RKXija5GBqX6YcT/ydfCfA3XmIo= Subject key identifier: 5C:1B:D8:FD:56:C5:50:60:C7:12:59:C3:C1:AD:05:52:74:9F:5B:4F Authority key identifier: 90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD Certificate issuer: /CN=A91CFAB9/serialNumber=901528C9217917D956721D1C685665345BEB56FD Certificate serial: 0377 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft Manifest number: 0373 Signing time: Sun 19 Oct 2025 02:33:01 +0000 Manifest this update: Sun 19 Oct 2025 02:33:00 +0000 Manifest next update: Sun 26 Oct 2025 02:33:00 +0000 Files and hashes: 1: kBUoySF5F9lWch0caFZlNFvrVv0.crl (hash: XlN2qnYhJmq6ApaDt9DPsobM68yaORxlScH3F87lWec=) 2: 39A335D6CB3F11ECBEBC9A1DC4F9AE02.roa (hash: NmvW/sg0pEXjTHBegEg6TihBwGGc4JodMMQnzVosHvc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:33:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=901528C9217917D956721D1C685665345BEB56FD Validity Not Before: Oct 19 02:33:00 2025 GMT Not After : Oct 26 02:33:00 2025 GMT Subject: CN=68f44ddd-f3ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:f6:f5:0c:22:17:6a:92:e5:1b:ec:be:88: 62:8a:dc:f6:f7:75:04:94:70:35:89:19:c3:67:2e: 95:66:34:ec:87:56:87:8d:ef:5e:76:c8:3f:ae:09: 35:6e:92:fd:2b:8c:1c:de:ff:3e:14:42:87:1f:22: f6:5e:a2:3f:3b:69:d4:98:0d:71:53:05:2d:7c:79: dd:37:a3:5e:77:70:90:a4:4a:a8:01:ed:62:b8:4e: 43:2e:88:28:38:b1:fe:cd:40:cc:73:fb:f6:69:4e: 87:52:ff:69:b6:ff:7e:e6:a9:61:5a:07:e4:14:52: c0:d4:97:a0:cb:3b:f3:0e:08:71:17:cd:59:d9:eb: 78:c0:42:5b:2a:bc:ac:78:67:fe:bc:d1:fa:e6:98: 32:07:8c:92:71:14:bd:a5:82:e3:8a:f2:ab:b0:73: 54:4e:bd:37:73:d3:24:9f:76:8d:0d:e2:f5:e6:67: b6:d9:13:07:ce:b8:ed:e2:ca:a8:35:3c:c7:ad:38: ac:c7:55:c0:98:f0:dc:9d:19:bb:a2:86:24:a8:2c: 3f:b1:e7:ee:b1:11:5f:c8:f4:5a:df:09:ce:76:fc: 76:9a:3f:29:3e:b7:51:10:da:f7:ac:df:72:bd:18: a6:11:5a:07:e8:06:64:35:31:f8:f7:af:07:e3:30: 32:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:1B:D8:FD:56:C5:50:60:C7:12:59:C3:C1:AD:05:52:74:9F:5B:4F X509v3 Authority Key Identifier: keyid:90:15:28:C9:21:79:17:D9:56:72:1D:1C:68:56:65:34:5B:EB:56:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kBUoySF5F9lWch0caFZlNFvrVv0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/1CD44F9EC77A11ECB9434C2CC4F9AE02/kBUoySF5F9lWch0caFZlNFvrVv0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:af:83:b6:12:d7:fe:14:14:38:06:93:13:15:e7:23:59:8b: eb:3f:13:33:89:9b:9f:ba:10:bd:bb:df:9d:2d:f8:ea:7e:0a: 03:14:a1:33:70:50:90:99:ab:74:1d:5d:a9:fa:b4:e9:6b:08: 02:41:da:50:fc:42:db:dc:c8:35:df:77:80:b3:c5:65:98:12: 66:1a:5e:59:dd:8b:16:30:61:c9:ad:c0:d4:c5:10:53:0a:d0: 05:df:07:db:dd:71:5d:dd:f7:a1:5d:fb:3c:52:39:0d:f6:d4: 10:22:d3:0e:3e:b0:1c:56:9c:68:e3:1b:d3:44:69:79:65:a1: 1c:38:f0:ef:8b:75:3f:3a:c1:9e:a7:7a:e7:98:bf:6c:aa:06: e4:6a:b4:ad:72:6b:ca:1f:0e:57:9c:ac:4f:45:49:08:37:52: 84:ec:ec:c4:89:7d:2e:a5:23:08:fe:fb:09:a3:cf:e2:e8:43: 7e:b2:9c:02:47:51:1a:34:39:a3:fc:9e:f2:57:30:29:c9:b8: c5:b5:11:1f:bb:82:62:19:e5:77:aa:28:27:cb:71:8a:cd:e8: c3:2c:2c:85:1f:7b:b4:85:32:e0:d0:c0:92:cb:70:2e:57:0b: b6:71:50:23:4d:eb:ad:08:89:82:c6:74:df:c9:51:e7:b3:88: 3d:c1:c4:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKDkwMTUyOEM5MjE3OTE3RDk1NjcyMUQxQzY4NTY2NTM0 NUJFQjU2RkQwHhcNMjUxMDE5MDIzMzAwWhcNMjUxMDI2MDIzMzAwWjAYMRYwFAYD VQQDEw02OGY0NGRkZC1mM2VmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqrb29QwiF2qS5Rvsvohiitz293UElHA1iRnDZy6VZjTsh1aHje9edsg/rgk1 bpL9K4wc3v8+FEKHHyL2XqI/O2nUmA1xUwUtfHndN6Ned3CQpEqoAe1iuE5DLogo OLH+zUDMc/v2aU6HUv9ptv9+5qlhWgfkFFLA1JegyzvzDghxF81Z2et4wEJbKrys eGf+vNH65pgyB4yScRS9pYLjivKrsHNUTr03c9Mkn3aNDeL15me22RMHzrjt4sqo NTzHrTisx1XAmPDcnRm7ooYkqCw/sefusRFfyPRa3wnOdvx2mj8pPrdRENr3rN9y vRimEVoH6AZkNTH4968H4zAy1QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFwb2P1W xVBgxxJZw8GtBVJ0n1tPMB8GA1UdIwQYMBaAFJAVKMkheRfZVnIdHGhWZTRb61b9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS8xQ0Q0NEY5RUM3 N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5bFdjaDBjYUZabE5GdnJW djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tCVW95U0Y1RjlsV2NoMGNhRlpsTkZ2clZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS8xQ0Q0NEY5RUM3N0ExMUVDQjk0MzRDMkNDNEY5QUUwMi9rQlVveVNGNUY5 bFdjaDBjYUZabE5GdnJWdjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDJr4O2Etf+FBQ4BpMTFecjWYvrPxMziZufuhC9u9+dLfjqfgoDFKEz cFCQmat0HV2p+rTpawgCQdpQ/ELb3Mg133eAs8VlmBJmGl5Z3YsWMGHJrcDUxRBT CtAF3wfb3XFd3fehXfs8UjkN9tQQItMOPrAcVpxo4xvTRGl5ZaEcOPDvi3U/OsGe p3rnmL9sqgbkarStcmvKHw5XnKxPRUkIN1KE7OzEiX0upSMI/vsJo8/i6EN+spwC R1EaNDmj/J7yVzApybjFtREfu4JiGeV3qigny3GKzejDLCyFH3u0hTLg0MCSy3Au Vwu2cVAjTeutCImCxnTfyVHns4g9wcSc -----END CERTIFICATE-----Generated at Mon Oct 20 21:02:44 2025 by rpki-client