$ rpki-client -vvf rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft File: kTOsvs_e7PTaOiIigng09bc6-qc.mft (raw, json) Hash identifier: obzY/YHqDilDCWKBstT8NS/ib2vpgPoM8spxwJBkz0s= Subject key identifier: A2:C0:E4:34:A0:EB:5A:14:3D:99:18:33:B9:4D:BA:F0:E0:C5:06:79 Authority key identifier: 91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 Certificate issuer: /CN=A91F79A2/serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Certificate serial: FE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft Manifest number: FC Signing time: Sun 19 Oct 2025 08:01:31 +0000 Manifest this update: Sun 19 Oct 2025 08:01:29 +0000 Manifest next update: Sun 26 Oct 2025 08:01:29 +0000 Files and hashes: 1: kTOsvs_e7PTaOiIigng09bc6-qc.crl (hash: kOkN8na772Ha+KX/vsBnP3rloAT79PXfj/1jG8i+noM=) 2: 6B9D491C379A11F0B3AC7740C4F9AE02.roa (hash: RLph3rOI+XvGrIXc+VEb/mig9QwsOBw+jIRI25aGTLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F79A2, serialNumber=9133ACBECFDEECF4DA3A2222827834F5B73AFAA7 Validity Not Before: Oct 19 08:01:29 2025 GMT Not After : Oct 26 08:01:29 2025 GMT Subject: CN=68f49ada-a3cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:b3:1a:49:f4:94:3e:a0:8a:8e:e1:a3:8d:ad: 51:bd:fb:65:27:0c:18:3c:60:bb:38:d5:98:36:9c: 0e:87:4e:e8:7f:6b:90:b0:dd:90:6b:bc:06:09:d8: c5:c2:7c:90:26:38:a5:71:94:7a:3d:7f:89:b1:92: 14:9d:82:f6:67:31:ab:d9:b3:f5:e0:c8:4f:73:76: e4:30:d8:b7:6f:18:25:9f:68:8a:c4:81:58:ee:64: 12:42:dc:14:17:a2:c7:56:68:5a:af:34:35:76:5d: c1:d2:03:b1:19:d5:43:01:f2:ef:32:ba:72:00:55: d5:27:4c:ab:92:80:81:2d:b1:4c:38:64:b5:b0:3e: ae:da:51:09:6c:a0:a1:a5:19:08:63:58:71:cf:a3: 9c:01:4a:7b:97:16:ac:77:35:4a:ff:e5:c2:e7:b8: 37:a2:5b:cf:0b:73:1f:9a:3a:67:06:cc:d0:01:fc: 0f:2f:10:4d:28:50:70:1f:ef:dc:f7:ea:42:69:9c: 51:5d:a9:18:19:66:3d:e4:31:bc:3a:5c:a5:1e:e2: d5:05:bb:07:17:43:53:d2:e6:60:db:4d:16:8d:ff: b3:58:86:86:71:7a:5a:3f:28:06:f1:9a:45:1f:05: 22:43:56:b5:bb:da:4e:e6:dd:e9:0b:00:6e:94:ba: e1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C0:E4:34:A0:EB:5A:14:3D:99:18:33:B9:4D:BA:F0:E0:C5:06:79 X509v3 Authority Key Identifier: keyid:91:33:AC:BE:CF:DE:EC:F4:DA:3A:22:22:82:78:34:F5:B7:3A:FA:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kTOsvs_e7PTaOiIigng09bc6-qc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F79A2/1A05E6EE2D2E11EFA54C8042C4F9AE02/kTOsvs_e7PTaOiIigng09bc6-qc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:21:fb:af:0a:97:12:4a:87:1b:6c:97:6e:34:7e:87:6b:08: 30:d5:53:aa:00:06:b4:19:64:51:19:21:38:6a:59:e7:57:ae: 08:3a:bf:22:72:ae:4b:03:3a:69:53:15:41:aa:48:3f:ba:d3: ee:69:8f:8c:4f:29:6b:f5:71:89:ed:d8:42:27:6d:37:ae:45: 72:0b:51:a6:ad:22:b9:c1:75:a9:14:9a:72:34:af:8d:8b:5a: 5c:9d:63:fd:87:19:df:56:18:e0:77:05:7d:93:db:20:26:90: 70:56:a9:be:72:3e:3d:ac:d2:46:f1:da:58:9b:16:85:be:c9: 7c:fc:e0:6b:5a:46:dd:ac:e8:07:bf:22:28:a6:d2:f4:7b:f4: 28:80:0e:e4:30:09:73:a6:96:9d:4e:a7:a2:92:d9:09:cb:e8: a3:49:ff:94:76:3c:7d:c5:cd:22:8a:ee:39:fb:31:ed:43:ae: 5f:6b:b8:5e:dc:ad:f6:21:40:3f:26:8d:a7:4d:88:9c:0b:95: 22:cc:65:02:81:ef:e0:e7:77:43:cd:4d:f5:02:22:c3:10:bd: 46:42:4c:21:f8:93:2b:e9:87:ff:ca:7d:5d:87:24:b9:fb:9b: 15:5b:58:84:d7:32:58:2a:d0:9a:a2:f3:ae:ef:3b:44:2d:e0: 05:28:fb:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc5QTIxMTAvBgNVBAUTKDkxMzNBQ0JFQ0ZERUVDRjREQTNBMjIyMjgyNzgzNEY1 QjczQUZBQTcwHhcNMjUxMDE5MDgwMTI5WhcNMjUxMDI2MDgwMTI5WjAYMRYwFAYD VQQDEw02OGY0OWFkYS1hM2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA97MaSfSUPqCKjuGjja1RvftlJwwYPGC7ONWYNpwOh07of2uQsN2Qa7wGCdjF wnyQJjilcZR6PX+JsZIUnYL2ZzGr2bP14MhPc3bkMNi3bxgln2iKxIFY7mQSQtwU F6LHVmharzQ1dl3B0gOxGdVDAfLvMrpyAFXVJ0yrkoCBLbFMOGS1sD6u2lEJbKCh pRkIY1hxz6OcAUp7lxasdzVK/+XC57g3olvPC3MfmjpnBszQAfwPLxBNKFBwH+/c 9+pCaZxRXakYGWY95DG8OlylHuLVBbsHF0NT0uZg200Wjf+zWIaGcXpaPygG8ZpF HwUiQ1a1u9pO5t3pCwBulLrhXwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLA5DSg 61oUPZkYM7lNuvDgxQZ5MB8GA1UdIwQYMBaAFJEzrL7P3uz02joiIoJ4NPW3Ovqn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzlBMi8xQTA1RTZFRTJE MkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQVGFPaUlpZ25nMDliYzYt cWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tUT3N2c19lN1BUYU9pSWlnbmcwOWJjNi1xYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzlBMi8xQTA1RTZFRTJEMkUxMUVGQTU0QzgwNDJDNEY5QUUwMi9rVE9zdnNfZTdQ VGFPaUlpZ25nMDliYzYtcWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCJIfuvCpcSSocbbJduNH6Hawgw1VOqAAa0GWRRGSE4alnnV64IOr8i cq5LAzppUxVBqkg/utPuaY+MTylr9XGJ7dhCJ203rkVyC1GmrSK5wXWpFJpyNK+N i1pcnWP9hxnfVhjgdwV9k9sgJpBwVqm+cj49rNJG8dpYmxaFvsl8/OBrWkbdrOgH vyIoptL0e/QogA7kMAlzppadTqeiktkJy+ijSf+Udjx9xc0iiu45+zHtQ65fa7he 3K32IUA/Jo2nTYicC5UizGUCge/g53dDzU31AiLDEL1GQkwh+JMr6Yf/yn1dhyS5 +5sVW1iE1zJYKtCaovOu7ztELeAFKPs8 -----END CERTIFICATE-----Generated at Tue Oct 21 01:42:09 2025 by rpki-client