$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft File: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft (raw, json) Hash identifier: E96vlncJuvxs+WJxLvicxzc39wmYt1EzqZfgBLlfXhM= Subject key identifier: 1F:97:4D:ED:B4:F3:86:D2:9B:0F:9E:2A:E0:42:B4:CF:C9:DF:BA:15 Authority key identifier: 92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 Certificate issuer: /CN=A91FDCFE/serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Certificate serial: 043C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft Manifest number: 0430 Signing time: Sun 19 Oct 2025 02:14:13 +0000 Manifest this update: Sun 19 Oct 2025 02:14:13 +0000 Manifest next update: Sun 26 Oct 2025 02:14:13 +0000 Files and hashes: 1: kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl (hash: izildeNbVA/bYxEgCIxu+JcHYtjk7CrrsYk/Fm3Pqwo=) 2: 8AB7936E5FF111F092635949C4F9AE02.roa (hash: ZKGRhr8pcRlZGuDYruEwy7xDWFkv+Zae+rNW87nRb4Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:14:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1084 (0x43c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDCFE, serialNumber=92AC4FBE170EA9DF89F0C8318C3CD45F93A52334 Validity Not Before: Oct 19 02:14:13 2025 GMT Not After : Oct 26 02:14:13 2025 GMT Subject: CN=68f44975-1bbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7f:26:64:46:7b:6e:a3:3f:15:ab:7c:ac:3a: 97:be:22:f0:6b:02:9f:84:aa:5e:5c:6c:c1:a3:c4: 8b:e3:51:62:30:45:ca:12:80:ac:9d:3e:aa:70:1a: 37:9f:ec:e4:47:1d:a0:2a:ec:a8:67:b9:a1:33:48: c0:6d:0c:14:f7:c9:84:0f:7f:a0:3b:69:3d:ff:d1: 30:49:9e:79:3a:67:0b:30:a0:87:ff:5a:8b:cc:df: a8:09:aa:bd:ea:9b:e5:a0:ae:a7:97:76:e5:88:ce: 82:70:bb:ca:66:83:27:ec:54:c8:c8:b5:b5:9b:e4: 4d:ad:b4:1d:74:33:92:53:c6:c9:95:e3:f7:81:77: cb:2e:2c:38:6d:98:74:5e:b9:80:42:f8:31:52:fc: ea:51:aa:d8:a2:ff:82:86:c0:cc:7a:24:7e:9e:a0: 5c:f6:90:06:26:66:26:a3:87:66:08:1b:dd:16:84: 61:49:71:1c:a0:9f:b5:84:ec:eb:98:53:cc:02:c8: 42:1d:e1:45:08:72:a1:ac:be:b3:c6:c8:0e:73:cf: 90:66:88:9c:e5:f9:8d:ff:d1:31:e5:58:8b:d1:a0: a7:14:5c:21:65:ca:f5:05:b8:5f:94:3a:cd:d4:41: 1f:94:1f:3e:19:e4:83:01:7e:5e:79:ca:b1:76:c8: b5:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:97:4D:ED:B4:F3:86:D2:9B:0F:9E:2A:E0:42:B4:CF:C9:DF:BA:15 X509v3 Authority Key Identifier: keyid:92:AC:4F:BE:17:0E:A9:DF:89:F0:C8:31:8C:3C:D4:5F:93:A5:23:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCFE/96505B2480E411ECB92DCB4DC4F9AE02/kqxPvhcOqd-J8MgxjDzUX5OlIzQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:96:4b:81:3f:98:ff:04:3f:62:94:6d:e2:fd:2a:e7:82:4d: d7:da:6b:4f:8a:5d:3a:11:86:31:3b:7e:dd:bb:8f:36:d5:1c: f9:39:6d:40:68:54:08:87:4e:0d:25:98:df:eb:5d:b3:d6:d6: 30:a0:0f:bc:74:d9:c5:89:46:66:70:20:3b:94:e1:3b:6f:3f: 79:db:16:f5:6a:84:b8:9a:6a:5f:dd:0c:8a:07:92:b4:53:ed: 51:22:a8:df:b2:a7:8f:0a:6a:f5:ac:54:2e:67:c9:7a:3a:72: f7:a2:fd:37:b3:e1:8c:9e:77:99:46:37:47:97:71:51:af:b9: df:0a:28:dd:9d:54:f5:71:df:64:c2:f0:b9:63:fd:9c:7e:fd: a7:6c:b8:b0:ec:a4:76:ad:59:82:6c:52:71:28:f6:99:c0:77: 3d:8a:90:8d:65:08:1d:50:f1:7d:b7:65:d4:bc:bf:66:8b:5b: b7:fa:6c:69:a7:d3:9c:22:49:79:c9:f3:72:bb:54:42:44:c0: fb:fd:64:87:03:0a:d7:0c:81:0a:2b:56:7f:01:6b:f2:93:32: 66:13:0b:da:89:e6:cf:59:08:78:2f:2a:bb:4c:89:3b:e7:4f: 96:c5:34:9e:e4:dd:0f:6d:3e:1d:1a:46:fa:43:73:63:c6:da: d7:43:3d:24 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDRkUxMTAvBgNVBAUTKDkyQUM0RkJFMTcwRUE5REY4OUYwQzgzMThDM0NENDVG OTNBNTIzMzQwHhcNMjUxMDE5MDIxNDEzWhcNMjUxMDI2MDIxNDEzWjAYMRYwFAYD VQQDEw02OGY0NDk3NS0xYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApH8mZEZ7bqM/Fat8rDqXviLwawKfhKpeXGzBo8SL41FiMEXKEoCsnT6qcBo3 n+zkRx2gKuyoZ7mhM0jAbQwU98mED3+gO2k9/9EwSZ55OmcLMKCH/1qLzN+oCaq9 6pvloK6nl3bliM6CcLvKZoMn7FTIyLW1m+RNrbQddDOSU8bJleP3gXfLLiw4bZh0 XrmAQvgxUvzqUarYov+ChsDMeiR+nqBc9pAGJmYmo4dmCBvdFoRhSXEcoJ+1hOzr mFPMAshCHeFFCHKhrL6zxsgOc8+QZoic5fmN/9Ex5ViL0aCnFFwhZcr1BbhflDrN 1EEflB8+GeSDAX5eecqxdsi1EQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB+XTe20 84bSmw+eKuBCtM/J37oVMB8GA1UdIwQYMBaAFJKsT74XDqnfifDIMYw81F+TpSM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENGRS85NjUwNUIyNDgw RTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3FkLUo4TWd4akR6VVg1T2xJ elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2txeFB2aGNPcWQtSjhNZ3hqRHpVWDVPbEl6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RENGRS85NjUwNUIyNDgwRTQxMUVDQjkyRENCNERDNEY5QUUwMi9rcXhQdmhjT3Fk LUo4TWd4akR6VVg1T2xJelEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3lkuBP5j/BD9ilG3i/Srngk3X2mtPil06EYYxO37du4821Rz5OW1A aFQIh04NJZjf612z1tYwoA+8dNnFiUZmcCA7lOE7bz952xb1aoS4mmpf3QyKB5K0 U+1RIqjfsqePCmr1rFQuZ8l6OnL3ov03s+GMnneZRjdHl3FRr7nfCijdnVT1cd9k wvC5Y/2cfv2nbLiw7KR2rVmCbFJxKPaZwHc9ipCNZQgdUPF9t2XUvL9mi1u3+mxp p9OcIkl5yfNyu1RCRMD7/WSHAwrXDIEKK1Z/AWvykzJmEwvaiebPWQh4Lyq7TIk7 50+WxTSe5N0PbT4dGkb6Q3NjxtrXQz0k -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:20 2025 by rpki-client