$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft File: KQN7v5LysPTDMKHN1KdiVs16VCI.mft (raw, json) Hash identifier: 6fnpD8mTGeLNWzLRbopaDM2zLyxVBaBmeP3ACW608fo= Subject key identifier: C7:24:DB:3B:49:C4:07:96:D9:67:08:BB:3D:8A:91:16:EC:46:C9:16 Authority key identifier: 29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 Certificate issuer: /CN=A91E9B89/serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Certificate serial: D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft Manifest number: D4 Signing time: Sun 19 Oct 2025 09:12:30 +0000 Manifest this update: Sun 19 Oct 2025 09:12:29 +0000 Manifest next update: Sun 26 Oct 2025 09:12:29 +0000 Files and hashes: 1: KQN7v5LysPTDMKHN1KdiVs16VCI.crl (hash: dOhTuK80DjQeFN9AaInsaDAMr6cpXPYFwFG/CYyTvMM=) 2: 2025BD6C6C3311EF99E0EF34C4F9AE02.roa (hash: EkH7NGdtLzD6VnZqtvPSOcqvmB0pZ+aCYQgXfVmLWFM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:12:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9B89, serialNumber=29037BBF92F2B0F4C330A1CDD4A76256CD7A5422 Validity Not Before: Oct 19 09:12:29 2025 GMT Not After : Oct 26 09:12:29 2025 GMT Subject: CN=68f4ab7e-7352 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9f:d7:91:fc:c5:65:79:0b:69:4d:92:4e:d2: c5:52:cd:e5:6b:01:55:ad:e3:67:4b:02:13:ad:ce: 6c:0a:47:a5:e0:32:36:6e:22:0e:9e:38:10:c1:1d: 79:5e:81:ac:cb:50:cc:53:bd:62:a5:d4:18:c6:5d: 95:a0:b5:33:09:27:5f:2a:83:41:ff:6b:23:c1:5b: 99:a4:0d:80:fa:ab:56:50:a0:dd:37:f9:d3:26:2a: 40:53:fe:43:5b:1e:a3:73:7b:ed:d9:b9:53:41:a1: 59:5f:79:b7:1a:9b:b2:58:8d:0b:a9:79:96:8f:f4: 12:02:11:62:13:f1:06:89:cf:2e:1e:ce:4e:7b:8b: 34:14:89:92:aa:0a:c1:24:15:0c:56:3b:dc:89:29: 76:c3:42:30:66:80:30:40:d5:47:44:ad:26:54:67: ce:12:f2:73:ef:e9:f6:94:dd:3f:6f:9f:dd:6f:b8: 6f:d0:00:18:11:c3:4c:2e:2f:e5:9f:96:d5:90:47: 5d:ca:68:04:87:41:64:37:3b:e5:50:c8:e1:95:cc: 03:ef:f8:e0:1d:20:6a:6b:a3:36:cf:93:d9:8d:4b: 93:23:b3:58:90:98:50:ef:53:00:f0:0f:66:6b:4b: 95:28:b8:83:5b:00:39:d5:5b:fd:ab:7f:b6:01:74: 57:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:24:DB:3B:49:C4:07:96:D9:67:08:BB:3D:8A:91:16:EC:46:C9:16 X509v3 Authority Key Identifier: keyid:29:03:7B:BF:92:F2:B0:F4:C3:30:A1:CD:D4:A7:62:56:CD:7A:54:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KQN7v5LysPTDMKHN1KdiVs16VCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9B89/4367C20E6C1811EFAB6B690CC4F9AE02/KQN7v5LysPTDMKHN1KdiVs16VCI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d3:3c:f8:4f:bc:23:20:81:9e:a6:c7:24:87:06:bc:26:a1:1c: 83:49:cc:4e:f8:fc:3a:44:c4:86:81:d0:2a:86:fc:01:0a:0b: 54:7a:2d:06:42:a4:50:4d:2a:da:98:1e:97:eb:fa:7f:dc:01: 67:c3:68:78:96:4c:13:29:78:c5:1d:e6:68:c2:be:59:69:e0: c1:fa:aa:5f:4b:3b:56:95:b3:21:9e:ad:94:6d:80:ad:e3:77: c2:13:70:ff:5c:21:6c:b0:8a:b8:aa:bc:c0:d6:4f:6c:b3:5a: f5:39:b5:66:bd:1b:3c:0a:b5:fb:bd:7c:60:d6:de:71:1e:da: 71:7f:14:76:42:6c:24:29:0b:86:4b:98:4e:4f:86:20:90:fd: 8d:04:63:a3:dc:98:a6:b7:cf:53:82:7a:61:fa:5f:6e:85:7d: ca:97:9d:25:d0:ed:2e:72:68:73:e0:27:44:99:38:8a:0b:6a: 71:d1:b2:c0:3a:e6:b2:60:c0:96:77:97:54:0b:11:1f:ba:9c: 63:05:de:8d:a3:b5:13:b0:e4:6f:15:f3:b9:26:9f:d4:ef:8f: be:19:35:b8:eb:2f:4a:62:2a:56:3d:12:50:7f:27:af:de:78: 57:be:54:e8:a3:f4:a6:b0:19:9a:63:ed:bf:0f:a2:e9:e7:7b: 95:b3:54:a5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlCODkxMTAvBgNVBAUTKDI5MDM3QkJGOTJGMkIwRjRDMzMwQTFDREQ0QTc2MjU2 Q0Q3QTU0MjIwHhcNMjUxMDE5MDkxMjI5WhcNMjUxMDI2MDkxMjI5WjAYMRYwFAYD VQQDEw02OGY0YWI3ZS03MzUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuJ/XkfzFZXkLaU2STtLFUs3lawFVreNnSwITrc5sCkel4DI2biIOnjgQwR15 XoGsy1DMU71ipdQYxl2VoLUzCSdfKoNB/2sjwVuZpA2A+qtWUKDdN/nTJipAU/5D Wx6jc3vt2blTQaFZX3m3GpuyWI0LqXmWj/QSAhFiE/EGic8uHs5Oe4s0FImSqgrB JBUMVjvciSl2w0IwZoAwQNVHRK0mVGfOEvJz7+n2lN0/b5/db7hv0AAYEcNMLi/l n5bVkEddymgEh0FkNzvlUMjhlcwD7/jgHSBqa6M2z5PZjUuTI7NYkJhQ71MA8A9m a0uVKLiDWwA51Vv9q3+2AXRXmwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMck2ztJ xAeW2WcIuz2KkRbsRskWMB8GA1UdIwQYMBaAFCkDe7+S8rD0wzChzdSnYlbNelQi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUI4OS80MzY3QzIwRTZD MTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQVERNS0hOMUtkaVZzMTZW Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tRTjd2NUx5c1BURE1LSE4xS2RpVnMxNlZDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUI4OS80MzY3QzIwRTZDMTgxMUVGQUI2QjY5MENDNEY5QUUwMi9LUU43djVMeXNQ VERNS0hOMUtkaVZzMTZWQ0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDTPPhPvCMggZ6mxySHBrwmoRyDScxO+Pw6RMSGgdAqhvwBCgtUei0G QqRQTSramB6X6/p/3AFnw2h4lkwTKXjFHeZowr5ZaeDB+qpfSztWlbMhnq2UbYCt 43fCE3D/XCFssIq4qrzA1k9ss1r1ObVmvRs8CrX7vXxg1t5xHtpxfxR2QmwkKQuG S5hOT4YgkP2NBGOj3Jimt89Tgnph+l9uhX3Kl50l0O0ucmhz4CdEmTiKC2px0bLA OuayYMCWd5dUCxEfupxjBd6No7UTsORvFfO5Jp/U74++GTW46y9KYipWPRJQfyev 3nhXvlToo/SmsBmaY+2/D6Lp53uVs1Sl -----END CERTIFICATE-----Generated at Sun Oct 19 23:33:07 2025 by rpki-client