$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft File: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft (raw, json) Hash identifier: vixIaKDbLaQXMt2eXmAuOekDIHGsbqODdAQR4wN+YdI= Subject key identifier: 38:5E:6D:24:18:0B:1F:21:2F:4D:C1:8C:02:51:39:31:95:9D:CA:0E Authority key identifier: 2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 Certificate issuer: /CN=A91F4F00/serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Certificate serial: 07CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft Manifest number: 07C6 Signing time: Sat 18 Oct 2025 22:32:20 +0000 Manifest this update: Sat 18 Oct 2025 22:32:19 +0000 Manifest next update: Sat 25 Oct 2025 22:32:19 +0000 Files and hashes: 1: Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl (hash: +AZgY1YfwiG82N0wDdLBIaKFdIz+CpuuosEcsrNwjow=) 2: 395AFD84135811EB942A3E15C4F9AE02.roa (hash: VTVmiPXci74bD3x9vDrskSMST/OFHNVISI3dme//H6s=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1997 (0x7cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4F00, serialNumber=2B3EE44EA9CB5B81296BB67DF0F546F8AAC8A4B4 Validity Not Before: Oct 18 22:32:19 2025 GMT Not After : Oct 25 22:32:19 2025 GMT Subject: CN=68f41573-8573 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:74:36:68:cf:47:d7:11:70:1d:ac:2e:cb:9f: e0:93:30:59:dc:57:71:37:49:7a:68:1d:9d:ed:52: 6a:3c:93:f9:4f:28:82:1e:a2:30:80:d5:b5:1d:0e: 34:13:47:3b:a2:52:3b:94:58:67:18:9a:fb:ab:3e: c5:2e:f0:8d:75:4d:bc:b2:90:2b:8f:70:80:9b:80: 73:10:90:c1:dc:14:40:f5:06:e3:07:d5:a4:b3:6f: 9c:eb:e7:06:4c:48:ea:b5:f4:66:dc:8a:50:ce:70: 54:92:32:b7:2e:c2:84:e7:45:2d:a2:fc:bd:4a:11: 0a:21:81:93:14:68:de:2b:d1:fd:fb:c6:55:ea:63: ac:c3:c9:7c:32:52:68:c5:ec:a5:d8:fe:97:3a:96: 4d:62:a9:0e:41:d5:96:f4:c0:7f:2d:94:49:f6:5d: cc:6e:8c:a2:58:de:f6:99:9f:e8:08:4f:0a:59:f9: 93:a1:8e:52:d8:94:3f:e5:c1:ba:03:dc:55:91:5a: 41:10:83:11:10:36:47:39:ce:13:8f:af:eb:3f:70: 2b:29:73:6a:ce:26:af:e3:b7:93:28:3b:2e:0f:72: 4c:4b:b7:47:46:c9:8b:07:28:79:f8:e6:0d:7f:04: 6c:74:5a:f5:fa:34:92:a6:b6:7c:a4:80:a6:db:c2: 98:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:5E:6D:24:18:0B:1F:21:2F:4D:C1:8C:02:51:39:31:95:9D:CA:0E X509v3 Authority Key Identifier: keyid:2B:3E:E4:4E:A9:CB:5B:81:29:6B:B6:7D:F0:F5:46:F8:AA:C8:A4:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4F00/3DA69016135711EBA23DA714C4F9AE02/Kz7kTqnLW4Epa7Z98PVG-KrIpLQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:df:ee:47:a4:d4:bc:8a:19:b4:a2:4d:fb:7b:3e:96:12:55: 6e:0b:26:de:a6:9d:61:9b:b6:d9:55:69:00:af:81:79:00:d6: 22:09:c6:56:02:69:25:58:c3:51:52:05:80:19:d0:2c:8a:97: 79:9a:60:71:19:99:09:07:b1:d5:d7:89:f5:19:46:65:aa:87: 58:c4:bf:73:66:f8:8c:42:34:c2:b9:af:cd:5c:fc:1d:ce:7c: a4:0a:63:d2:27:26:f1:92:36:79:33:74:e6:54:75:99:34:fc: 73:73:8b:7b:7a:ad:a3:ff:5d:28:ef:0a:ae:78:39:d4:76:97: e8:3c:5f:35:9d:fc:89:f8:ee:ab:4e:32:82:e4:f2:93:4a:5f: 06:a7:1a:76:03:5e:0f:df:ea:92:a8:e2:b7:0a:53:51:a2:1d: f5:ec:98:fa:ce:a0:10:6c:cc:a8:b1:1e:5e:33:24:69:6a:e5: e7:4c:c4:75:1f:88:dd:9d:1d:6a:0c:69:36:a6:e7:1b:c1:f5: 81:d5:41:c8:07:61:46:0a:9e:90:8c:b9:a4:a5:02:69:7d:ae: 90:25:af:af:b5:48:39:a9:48:11:94:10:26:21:dc:80:d4:db: 09:e5:80:f1:e9:ad:87:4d:f1:e3:34:78:7f:05:f5:86:8c:c0: 28:47:2e:92 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRGMDAxMTAvBgNVBAUTKDJCM0VFNDRFQTlDQjVCODEyOTZCQjY3REYwRjU0NkY4 QUFDOEE0QjQwHhcNMjUxMDE4MjIzMjE5WhcNMjUxMDI1MjIzMjE5WjAYMRYwFAYD VQQDEw02OGY0MTU3My04NTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3Q2aM9H1xFwHawuy5/gkzBZ3FdxN0l6aB2d7VJqPJP5TyiCHqIwgNW1HQ40 E0c7olI7lFhnGJr7qz7FLvCNdU28spArj3CAm4BzEJDB3BRA9QbjB9Wks2+c6+cG TEjqtfRm3IpQznBUkjK3LsKE50Utovy9ShEKIYGTFGjeK9H9+8ZV6mOsw8l8MlJo xeyl2P6XOpZNYqkOQdWW9MB/LZRJ9l3MboyiWN72mZ/oCE8KWfmToY5S2JQ/5cG6 A9xVkVpBEIMREDZHOc4Tj6/rP3ArKXNqziav47eTKDsuD3JMS7dHRsmLByh5+OYN fwRsdFr1+jSSprZ8pICm28KYkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhebSQY Cx8hL03BjAJROTGVncoOMB8GA1UdIwQYMBaAFCs+5E6py1uBKWu2ffD1RviqyKS0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEYwMC8zREE2OTAxNjEz NTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0RXBhN1o5OFBWRy1Lcklw TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t6N2tUcW5MVzRFcGE3Wjk4UFZHLUtySXBMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NEYwMC8zREE2OTAxNjEzNTcxMUVCQTIzREE3MTRDNEY5QUUwMi9LejdrVHFuTFc0 RXBhN1o5OFBWRy1LcklwTFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBZ3+5HpNS8ihm0ok37ez6WElVuCybepp1hm7bZVWkAr4F5ANYiCcZW AmklWMNRUgWAGdAsipd5mmBxGZkJB7HV14n1GUZlqodYxL9zZviMQjTCua/NXPwd znykCmPSJybxkjZ5M3TmVHWZNPxzc4t7eq2j/10o7wqueDnUdpfoPF81nfyJ+O6r TjKC5PKTSl8Gpxp2A14P3+qSqOK3ClNRoh317Jj6zqAQbMyosR5eMyRpauXnTMR1 H4jdnR1qDGk2pucbwfWB1UHIB2FGCp6QjLmkpQJpfa6QJa+vtUg5qUgRlBAmIdyA 1NsJ5YDx6a2HTfHjNHh/BfWGjMAoRy6S -----END CERTIFICATE-----Generated at Mon Oct 20 22:23:51 2025 by rpki-client