$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft File: kBqfnorkBi5SGbdlLY6f7n7FrjM.mft (raw, json) Hash identifier: 5qfBb6wnS/glPcwsyatyn3ZePzbB89D10VJwBNsWiY0= Subject key identifier: C7:23:9E:45:84:1A:2C:44:86:8B:87:D7:33:3E:06:75:0F:43:54:B9 Authority key identifier: 90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 Certificate issuer: /CN=A91F2CE7/serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Certificate serial: E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft Manifest number: E0 Signing time: Sun 19 Oct 2025 08:28:50 +0000 Manifest this update: Sun 19 Oct 2025 08:28:49 +0000 Manifest next update: Sun 26 Oct 2025 08:28:49 +0000 Files and hashes: 1: kBqfnorkBi5SGbdlLY6f7n7FrjM.crl (hash: O81p0hW2tfJGGHo9ATALEAjFcCtE/c09Pvgm6kgzmdI=) 2: 4C738434ABD011F08EDDF110C4F9AE02.roa (hash: QzMQcl79jMhK/zyugK+WK4417ANs7GPPe+ng/DcUaGM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:28:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2CE7, serialNumber=901A9F9E8AE4062E5219B7652D8E9FEE7EC5AE33 Validity Not Before: Oct 19 08:28:49 2025 GMT Not After : Oct 26 08:28:49 2025 GMT Subject: CN=68f4a141-55c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5b:c5:cb:3b:12:29:75:a3:ee:6d:4c:b2:60: 69:83:47:f8:ba:2a:24:28:bb:c9:52:cd:5c:79:57: 37:54:97:8a:b8:a1:af:9b:0d:a5:3f:46:15:e0:0c: 0e:4b:2a:a0:58:3b:16:a6:93:89:14:05:18:02:e9: c5:9a:e8:a6:ad:46:ce:2e:59:ce:a9:ba:ca:ac:63: ea:6d:8e:05:a7:de:b9:8a:2d:e6:11:6c:87:43:8b: 00:e4:67:16:4d:41:d6:36:a9:0b:1f:8a:c5:7a:71: 69:16:90:a5:e5:08:59:89:54:3c:76:00:66:45:81: 0a:55:d4:51:ff:70:2c:86:1e:6d:9b:12:20:33:a3: 0a:ee:11:3f:e9:d4:fd:8a:e8:76:75:a9:ad:67:7f: 77:e1:f4:7e:5e:ca:71:5c:17:56:65:da:09:db:a4: a5:51:22:b5:5f:0a:71:18:0f:23:14:9c:e8:57:5a: 5f:b3:74:1a:68:fc:ee:70:68:38:e4:73:94:f6:e8: 5e:be:3f:37:c6:3b:34:df:c7:b0:02:c7:39:13:a5: a3:52:33:09:e0:67:b0:ae:ce:e1:de:1b:54:59:c1: 45:81:d9:a7:7c:ba:ef:bc:97:0d:15:14:59:da:c4: 28:36:b2:2b:ba:a6:84:88:cd:20:e9:b0:14:a1:f2: 79:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:23:9E:45:84:1A:2C:44:86:8B:87:D7:33:3E:06:75:0F:43:54:B9 X509v3 Authority Key Identifier: keyid:90:1A:9F:9E:8A:E4:06:2E:52:19:B7:65:2D:8E:9F:EE:7E:C5:AE:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kBqfnorkBi5SGbdlLY6f7n7FrjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2CE7/72F75B985ADD11EF812C923FC4F9AE02/kBqfnorkBi5SGbdlLY6f7n7FrjM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:ef:2d:5b:dc:54:0a:9d:22:a6:7f:32:56:e1:ed:f2:9c:60: 3c:8b:cc:90:51:c5:27:6f:79:76:cd:da:f3:51:4c:ac:5d:4f: be:a0:51:cf:a4:15:f2:dc:b2:65:99:c1:89:64:40:e4:11:04: 04:ef:55:c7:e7:be:1c:ce:de:e7:b7:87:5c:84:c9:ce:aa:60: 78:b5:91:13:9d:0f:24:63:97:21:77:21:bd:52:5a:4c:2d:5e: 90:31:6f:c4:cd:a7:01:09:6b:80:68:5c:0d:db:26:1e:b1:48: 8f:c4:c7:85:6e:b4:00:34:d5:fb:f5:f5:78:94:02:06:c1:0b: df:23:bf:60:59:93:b7:50:7a:11:b3:66:f8:e7:6a:db:7b:64: 55:8f:95:81:ea:f7:81:eb:f5:87:ae:8e:da:cf:7e:32:af:d4: 0f:fe:e0:ae:30:84:3f:fa:36:39:62:20:3d:27:bb:95:8a:d0: f6:fb:41:ff:d7:64:57:64:a2:de:45:a8:b5:1d:98:fe:9a:a0: 00:15:8f:3e:67:ab:4f:c7:61:48:23:cc:2f:ae:8f:7a:63:25: e1:a7:6f:7c:19:ea:d2:72:ee:ff:f9:63:e5:97:f2:c8:f0:bd: 19:d3:f8:b1:5c:73:82:fd:37:3e:32:6f:ff:65:00:34:73:0d: 5a:98:88:05 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJDRTcxMTAvBgNVBAUTKDkwMUE5RjlFOEFFNDA2MkU1MjE5Qjc2NTJEOEU5RkVF N0VDNUFFMzMwHhcNMjUxMDE5MDgyODQ5WhcNMjUxMDI2MDgyODQ5WjAYMRYwFAYD VQQDEw02OGY0YTE0MS01NWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1vFyzsSKXWj7m1MsmBpg0f4uiokKLvJUs1ceVc3VJeKuKGvmw2lP0YV4AwO SyqgWDsWppOJFAUYAunFmuimrUbOLlnOqbrKrGPqbY4Fp965ii3mEWyHQ4sA5GcW TUHWNqkLH4rFenFpFpCl5QhZiVQ8dgBmRYEKVdRR/3Ashh5tmxIgM6MK7hE/6dT9 iuh2damtZ3934fR+XspxXBdWZdoJ26SlUSK1XwpxGA8jFJzoV1pfs3QaaPzucGg4 5HOU9uhevj83xjs038ewAsc5E6WjUjMJ4Gewrs7h3htUWcFFgdmnfLrvvJcNFRRZ 2sQoNrIruqaEiM0g6bAUofJ59wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMcjnkWE GixEhouH1zM+BnUPQ1S5MB8GA1UdIwQYMBaAFJAan56K5AYuUhm3ZS2On+5+xa4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkNFNy83MkY3NUI5ODVB REQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0JpNVNHYmRsTFk2ZjduN0Zy ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCcWZub3JrQmk1U0diZGxMWTZmN243RnJqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkNFNy83MkY3NUI5ODVBREQxMUVGODEyQzkyM0ZDNEY5QUUwMi9rQnFmbm9ya0Jp NVNHYmRsTFk2ZjduN0Zyak0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC37y1b3FQKnSKmfzJW4e3ynGA8i8yQUcUnb3l2zdrzUUysXU++oFHP pBXy3LJlmcGJZEDkEQQE71XH574czt7nt4dchMnOqmB4tZETnQ8kY5chdyG9UlpM LV6QMW/EzacBCWuAaFwN2yYesUiPxMeFbrQANNX79fV4lAIGwQvfI79gWZO3UHoR s2b452rbe2RVj5WB6veB6/WHro7az34yr9QP/uCuMIQ/+jY5YiA9J7uVitD2+0H/ 12RXZKLeRai1HZj+mqAAFY8+Z6tPx2FII8wvro96YyXhp298GerScu7/+WPll/LI 8L0Z0/ixXHOC/Tc+Mm//ZQA0cw1amIgF -----END CERTIFICATE-----Generated at Mon Oct 20 12:42:29 2025 by rpki-client