$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft (raw, json) Hash identifier: v4khwS/LXDbogRjjzlE5Cdd5nQ/+IpAMPtn35lSK/JA= Subject key identifier: DF:CF:B3:CC:3F:D0:D3:73:21:7E:17:70:C3:5E:46:08:57:81:65:2D Authority key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA Certificate issuer: /CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Certificate serial: 082B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft Manifest number: 0824 Signing time: Sat 18 Oct 2025 22:01:27 +0000 Manifest this update: Sat 18 Oct 2025 22:01:27 +0000 Manifest next update: Sat 25 Oct 2025 22:01:27 +0000 Files and hashes: 1: kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl (hash: Dkwa8k4476PLHD0S38cwPTCdiwgXtEdWyGZ0MUhHxZk=) 2: 3CC77D02EE8811EA9225690DC4F9AE02.roa (hash: OLDN/ETZEgU2Ia5DmtJOCvYxeDvefwm7Ut9VsY92Tg8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2091 (0x82b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6503, serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA Validity Not Before: Oct 18 22:01:27 2025 GMT Not After : Oct 25 22:01:27 2025 GMT Subject: CN=68f40e37-3c1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:59:23:75:e8:86:7d:06:b5:d2:0f:e5:1d:1b: d7:a7:68:39:71:52:88:90:04:9d:2c:a3:70:7b:19: 65:45:fa:1c:d7:58:17:34:87:8c:b7:e0:3f:97:39: 8b:c3:f0:4d:4d:43:d7:19:ca:fd:b6:74:64:55:58: a4:9d:9d:96:ff:e6:cb:7f:c1:19:aa:83:e5:c3:c3: 19:66:93:2a:e3:89:40:42:63:95:02:5e:88:ad:0f: 37:03:e9:71:18:bd:34:e6:08:bf:75:ff:df:68:3d: ed:20:fc:ae:eb:4e:45:c4:d2:9e:cd:46:01:e8:68: 14:b6:4e:02:e7:23:b8:cc:9c:10:1b:e7:2a:84:65: 10:b3:ce:d1:56:67:37:18:91:27:fa:53:2d:b8:88: 8d:f2:6e:0e:8a:24:63:d4:f9:b1:8f:23:50:1d:3c: b0:5a:4a:d6:cf:21:12:b9:aa:0e:70:9a:d4:ef:70: ec:8a:4e:85:08:55:dc:dc:bd:3e:00:8e:87:bc:e7: 75:64:b0:28:4d:35:70:e4:2a:30:dc:7a:06:cb:35: 51:60:30:b9:06:c4:4e:f8:5e:c4:09:77:df:c9:d7: 58:c9:2e:0d:c2:a4:72:91:ff:9d:4f:d6:a1:2a:af: 69:f5:04:88:77:2e:4c:22:64:d9:81:cb:ed:43:dc: ff:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:CF:B3:CC:3F:D0:D3:73:21:7E:17:70:C3:5E:46:08:57:81:65:2D X509v3 Authority Key Identifier: keyid:93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:9e:8d:01:a4:75:dc:49:62:80:2c:a5:70:1e:ea:01:b5:5d: bb:9e:61:55:ab:1f:5d:b8:20:bc:8a:e1:36:5d:ff:e6:3e:6f: 1b:92:bb:35:3a:18:b5:d3:3e:a1:92:62:b6:07:a7:f6:41:89: 70:62:e6:e7:2e:8b:84:27:95:0c:97:77:2b:9a:13:91:4d:48: 28:b9:40:a7:63:d2:4b:14:31:a7:e6:21:53:23:09:d0:c8:c0: 65:7b:10:d6:1c:4f:3e:41:49:98:50:2a:6d:2f:28:07:a3:44: 2d:6c:cf:f5:65:20:3e:9f:42:17:76:a6:81:1c:43:b4:c6:a3: c4:26:c6:20:ad:71:5d:c2:8a:74:9a:d7:78:a3:bc:64:74:78: df:a5:3a:d1:aa:c6:f9:34:90:b5:5e:7f:94:b1:12:04:98:86: 15:23:64:13:70:a0:cb:69:ae:3d:bc:a7:5b:97:c5:0d:c6:ca: 01:71:d5:8d:90:b3:10:52:63:b3:5b:c7:dd:00:93:a3:35:c3: 65:1f:07:e7:53:82:98:5c:d9:5d:74:e3:bd:1f:3f:86:17:9f: 02:66:b2:99:29:9c:35:46:83:6e:94:41:a4:82:ca:a6:f9:5a: 45:a3:86:bc:33:8c:85:60:06:3f:07:88:9f:86:72:7e:5a:f8: 96:ca:07:8b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCCswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY1MDMxMTAvBgNVBAUTKDkzM0VGNzI2MDZEOUQ1QjI5RkUzQTQxRjIwQzUyQjIw Q0FGNTU1QkEwHhcNMjUxMDE4MjIwMTI3WhcNMjUxMDI1MjIwMTI3WjAYMRYwFAYD VQQDEw02OGY0MGUzNy0zYzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsFkjdeiGfQa10g/lHRvXp2g5cVKIkASdLKNwexllRfoc11gXNIeMt+A/lzmL w/BNTUPXGcr9tnRkVViknZ2W/+bLf8EZqoPlw8MZZpMq44lAQmOVAl6IrQ83A+lx GL005gi/df/faD3tIPyu605FxNKezUYB6GgUtk4C5yO4zJwQG+cqhGUQs87RVmc3 GJEn+lMtuIiN8m4OiiRj1PmxjyNQHTywWkrWzyESuaoOcJrU73Dsik6FCFXc3L0+ AI6HvOd1ZLAoTTVw5Cow3HoGyzVRYDC5BsRO+F7ECXffyddYyS4NwqRykf+dT9ah Kq9p9QSIdy5MImTZgcvtQ9z/kwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN/Ps8w/ 0NNzIX4XcMNeRghXgWUtMB8GA1UdIwQYMBaAFJM+9yYG2dWyn+OkHyDFKyDK9VW6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjUwMy8wMTU0QjRCNkVF ODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFiS2Y0NlFmSU1VcklNcjFW Ym8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t6NzNKZ2JaMWJLZjQ2UWZJTVVySU1yMVZiby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NjUwMy8wMTU0QjRCNkVFODcxMUVBQjUyQTVDMDlDNEY5QUUwMi9rejczSmdiWjFi S2Y0NlFmSU1VcklNcjFWYm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByno0BpHXcSWKALKVwHuoBtV27nmFVqx9duCC8iuE2Xf/mPm8bkrs1 Ohi10z6hkmK2B6f2QYlwYubnLouEJ5UMl3crmhORTUgouUCnY9JLFDGn5iFTIwnQ yMBlexDWHE8+QUmYUCptLygHo0QtbM/1ZSA+n0IXdqaBHEO0xqPEJsYgrXFdwop0 mtd4o7xkdHjfpTrRqsb5NJC1Xn+UsRIEmIYVI2QTcKDLaa49vKdbl8UNxsoBcdWN kLMQUmOzW8fdAJOjNcNlHwfnU4KYXNlddOO9Hz+GF58CZrKZKZw1RoNulEGkgsqm +VpFo4a8M4yFYAY/B4ifhnJ+WviWygeL -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:12 2025 by rpki-client