$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft File: KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft (raw, json) Hash identifier: d3Xlt5UzN8wjKA9WD335StFIelBoK2efR+UjSwd0tMA= Subject key identifier: 8C:9A:EF:36:FD:BF:9D:56:C7:AB:0D:C2:3D:20:AF:93:C7:7D:49:FB Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0EEC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft Manifest number: 0E9C Signing time: Mon 20 Oct 2025 18:16:15 +0000 Manifest this update: Mon 20 Oct 2025 18:16:15 +0000 Manifest next update: Mon 27 Oct 2025 18:16:15 +0000 Files and hashes: 1: KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl (hash: i78NiO39l7iAJbksBAJpxZbBGhc8iw1wRqWu8/5PLLI=) 2: 433917A83D8211EEA0E4DD46C4F9AE02.roa (hash: h1piDIbFbu2D+AHr+FNeuVa8V0LAf8dUKVxZfkw96aI=) 3: 5915642864AB11EEBFD54F2EC4F9AE02.roa (hash: wbUo+m2N2pVjNOlqoJ9Ve/RDUUkR0+GFezmtrgOfh+0=) 4: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (hash: DsQ8k2r18shy7gg+hUBL2SO8HUEFyNSKHtxB+WEbNG4=) 5: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (hash: hPUFimj9BE3+BwwQ7RyTBe4Kb4UDlyO5v1n1M99BRDE=) 6: DED77BB2FA2F11EF98728875C4F9AE02.roa (hash: uul2CdaEoquPtSKMLPmrjkbQbRp1WUkF6rtkLx9zg64=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3820 (0xeec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C, serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Oct 20 18:16:15 2025 GMT Not After : Oct 27 18:16:15 2025 GMT Subject: CN=68f67c6f-d420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:97:80:7a:c7:f7:3c:fb:74:b3:59:22:2c:bc: c1:cb:93:e8:82:37:74:86:68:3f:af:62:f8:ce:8a: 08:95:cc:a3:de:8f:96:ab:a7:58:c1:df:0e:12:6a: ae:11:89:95:f8:1e:a8:6a:16:b4:a0:c4:86:07:9d: 89:ce:59:0a:c6:e3:d9:58:a9:60:d7:9d:d4:08:d2: 0a:6c:71:77:f8:e5:0f:69:3e:fd:25:89:f2:d5:fe: d6:1d:9f:e2:5b:a7:a6:64:63:dd:b3:53:2c:bb:49: 48:92:30:fb:5f:d6:41:d2:3f:cf:2a:55:20:09:4b: a4:ba:1b:c9:5f:4b:7a:ea:63:66:00:ee:51:a0:68: d4:a1:0f:af:02:3b:17:e8:b3:2c:2b:38:d5:75:65: 7c:0b:db:51:57:8c:4b:9f:44:ab:7a:03:24:75:e4: 02:c5:6e:c4:45:4d:1d:46:1a:2c:8a:32:6b:ab:5e: 6c:41:a3:54:13:da:b3:15:98:05:db:4b:58:70:c0: 0e:06:28:79:dd:df:91:fd:12:df:b7:2a:61:be:29: b0:01:d4:2d:cc:b8:53:5a:dc:c3:da:21:3e:ef:ee: da:64:db:0a:a1:9e:93:4d:6b:9a:e0:40:d9:f4:f9: 53:36:f4:21:03:ba:2e:89:01:86:ce:90:48:eb:0f: 09:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:9A:EF:36:FD:BF:9D:56:C7:AB:0D:C2:3D:20:AF:93:C7:7D:49:FB X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:b9:6c:f3:62:82:10:a3:e3:61:0b:17:20:e7:2a:c7:85:89: 37:ee:05:54:1c:01:56:f1:95:8a:5a:b6:fe:e8:12:af:fe:99: 29:b1:6c:1c:da:a2:44:fe:75:12:ab:98:37:ec:87:28:4b:27: b1:f1:9b:b0:e3:97:e0:10:98:5b:3a:1a:c0:93:dd:ca:a9:0a: e6:36:02:42:5f:e7:5f:d9:8f:ab:51:f7:e2:a5:26:47:ce:be: 41:c5:8e:90:33:40:c3:b9:71:5e:ec:60:f4:fc:fb:64:a1:26: 88:e9:f9:27:c1:63:79:5d:93:30:8a:4c:4e:56:b9:4f:88:67: c0:0b:b5:90:63:3e:80:c3:7d:54:ec:b2:94:23:e2:64:f5:86: 43:0c:30:76:ad:5d:25:67:ef:0a:1e:c5:a9:98:c2:7b:74:c5: 30:ce:96:6c:9e:cf:b9:44:a0:5b:5d:ae:77:aa:9d:b0:16:c0: fe:06:8d:b6:99:03:99:e6:e2:a4:db:e4:69:1b:52:2f:a0:16: 6a:f9:14:cc:ed:da:fc:53:65:e2:d3:91:86:c4:13:6f:96:7e: 02:7c:37:f2:fc:c1:26:a3:0a:3d:95:a8:92:96:5b:f7:19:27: 01:04:99:c0:5a:a2:b2:bb:6f:e0:36:df:67:c0:86:ac:40:95: 5b:15:2c:c4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjUxMDIwMTgxNjE1WhcNMjUxMDI3MTgxNjE1WjAYMRYwFAYD VQQDEw02OGY2N2M2Zi1kNDIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJeAesf3PPt0s1kiLLzBy5Pogjd0hmg/r2L4zooIlcyj3o+Wq6dYwd8OEmqu EYmV+B6oaha0oMSGB52JzlkKxuPZWKlg153UCNIKbHF3+OUPaT79JYny1f7WHZ/i W6emZGPds1Msu0lIkjD7X9ZB0j/PKlUgCUukuhvJX0t66mNmAO5RoGjUoQ+vAjsX 6LMsKzjVdWV8C9tRV4xLn0SregMkdeQCxW7ERU0dRhosijJrq15sQaNUE9qzFZgF 20tYcMAOBih53d+R/RLftyphvimwAdQtzLhTWtzD2iE+7+7aZNsKoZ6TTWua4EDZ 9PlTNvQhA7ouiQGGzpBI6w8JAwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIya7zb9 v51Wx6sNwj0gr5PHfUn7MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODY4Qy8zRkI5MzM2OEE5REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2 QmNZN3RXYmlBOFVkeEY0ckkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBauWzzYoIQo+NhCxcg5yrHhYk37gVUHAFW8ZWKWrb+6BKv/pkpsWwc 2qJE/nUSq5g37IcoSyex8Zuw45fgEJhbOhrAk93KqQrmNgJCX+df2Y+rUffipSZH zr5BxY6QM0DDuXFe7GD0/PtkoSaI6fknwWN5XZMwikxOVrlPiGfAC7WQYz6Aw31U 7LKUI+Jk9YZDDDB2rV0lZ+8KHsWpmMJ7dMUwzpZsns+5RKBbXa53qp2wFsD+Bo22 mQOZ5uKk2+RpG1IvoBZq+RTM7dr8U2Xi05GGxBNvln4CfDfy/MEmowo9laiSllv3 GScBBJnAWqKyu2/gNt9nwIasQJVbFSzE -----END CERTIFICATE-----Generated at Tue Oct 21 04:55:08 2025 by rpki-client