$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft File: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft (raw, json) Hash identifier: 3aWeqs30hmvtt18Wk8VQ9BorS1jzqwZebjYysUULS6c= Subject key identifier: F4:EB:6A:7C:95:54:8E:5D:3E:9C:25:85:96:E4:13:B7:98:42:88:05 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft Manifest number: 6D Signing time: Sun 19 Oct 2025 10:21:10 +0000 Manifest this update: Sun 19 Oct 2025 10:21:09 +0000 Manifest next update: Sun 26 Oct 2025 10:21:09 +0000 Files and hashes: 1: kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl (hash: IQRslKCXO6lRG2jjOw4w1b8Fh/x55GmkEBgYLTr4r2E=) 2: DA700744185511F09304D972C4F9AE02.roa (hash: MiqFluIC5BNSTT1867bwbDdwUanVh/INLvZrWpn+wqs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:21:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Oct 19 10:21:09 2025 GMT Not After : Oct 26 10:21:09 2025 GMT Subject: CN=68f4bb95-9bed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d9:6d:1a:94:ac:89:89:e3:30:0a:39:28:91: a5:67:ec:75:85:04:0f:8c:07:f9:81:92:b1:56:f0: d6:3f:da:88:4e:70:df:28:c3:6c:4f:da:d8:65:93: f3:81:82:bd:6e:24:16:a5:ad:01:ed:69:7f:ca:36: a0:6a:91:d9:ab:8a:76:49:a9:d9:c0:c4:29:e5:4b: ff:fb:9d:3f:53:00:ef:60:14:43:2a:04:84:ad:65: c9:f5:31:3d:27:64:7d:52:af:4c:6d:27:05:d7:7d: 54:39:26:be:1b:79:0b:b1:14:f4:92:9e:75:2b:45: 55:bc:95:b9:fb:8f:85:28:18:5b:34:ab:3a:8f:3e: 31:ff:b4:f8:e2:ec:86:45:17:cc:84:2c:22:33:2a: 4a:1e:b0:8a:4e:c1:ae:47:ed:99:07:5a:cf:99:a1: 9e:0f:25:af:b5:1d:cd:57:33:3d:b0:1a:da:97:df: bb:75:51:70:1f:4e:65:0e:ee:11:10:46:af:74:e3: 39:99:7d:d8:fc:01:a1:6a:89:35:0d:4a:66:2b:c8: 44:09:57:b7:3e:40:06:b4:78:a2:8c:e2:ba:29:c4: f8:89:31:ae:fe:33:c9:b4:11:6e:95:7e:6e:f8:9a: 9a:24:fe:56:47:64:94:ae:42:52:09:a5:e1:86:0c: 7e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:EB:6A:7C:95:54:8E:5D:3E:9C:25:85:96:E4:13:B7:98:42:88:05 X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:bb:cb:05:45:89:1b:8f:90:06:94:95:3e:81:ee:60:84:4f: 15:24:f5:c3:65:be:78:c8:ee:ff:e9:73:78:20:e4:9c:f6:9f: 31:2a:dd:e8:e1:8c:4b:c4:da:d3:69:06:d4:21:59:0a:bd:38: 70:8c:e2:8b:78:bb:55:16:1d:2b:67:95:8b:4d:1a:dc:81:62: 34:0a:07:43:4e:c9:b6:ff:69:c5:3e:7c:7d:29:8a:74:c5:cc: 84:42:e7:eb:0f:67:e0:fb:97:31:ac:90:8d:67:aa:a2:bc:a9: aa:b8:33:6f:ae:37:a3:34:71:fe:46:0e:5f:ba:10:30:f9:42: bc:cb:21:54:ed:92:da:c4:6f:d6:00:45:e5:4c:4c:01:df:86: 2f:2c:1c:b6:04:56:a0:01:37:81:e0:c3:39:de:62:7e:71:41: 1a:70:77:e6:5e:d1:00:e9:9e:21:11:76:c6:1f:54:9a:48:30: 12:87:74:2d:c8:61:c9:51:50:23:03:df:04:80:32:84:da:6c: b8:47:d6:5f:6d:c0:1c:46:90:0e:13:80:8f:45:e0:eb:58:b7: 59:33:cb:d2:6d:79:92:fe:c7:08:66:c7:86:a1:7b:5f:38:b8: 88:0d:0e:65:9d:05:cd:2d:9c:d4:6c:d4:a6:0c:b2:f8:5c:05: 05:68:fa:c4 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTEwMTkxMDIxMDlaFw0yNTEwMjYxMDIxMDlaMBgxFjAUBgNV BAMTDTY4ZjRiYjk1LTliZWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDK2W0alKyJieMwCjkokaVn7HWFBA+MB/mBkrFW8NY/2ohOcN8ow2xP2thlk/OB gr1uJBalrQHtaX/KNqBqkdmrinZJqdnAxCnlS//7nT9TAO9gFEMqBIStZcn1MT0n ZH1Sr0xtJwXXfVQ5Jr4beQuxFPSSnnUrRVW8lbn7j4UoGFs0qzqPPjH/tPji7IZF F8yELCIzKkoesIpOwa5H7ZkHWs+ZoZ4PJa+1Hc1XMz2wGtqX37t1UXAfTmUO7hEQ Rq904zmZfdj8AaFqiTUNSmYryEQJV7c+QAa0eKKM4ropxPiJMa7+M8m0EW6Vfm74 mpok/lZHZJSuQlIJpeGGDH7tAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU9OtqfJVU jl0+nCWFluQTt5hCiAUwHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZG NUI5LzUyMDJEMDI4MERGOTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQy VktDdTdvZ1RFNUUweDdRay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADm7ywVFiRuPkAaUlT6B7mCETxUk9cNlvnjI7v/pc3gg5Jz2nzEq3ejh jEvE2tNpBtQhWQq9OHCM4ot4u1UWHStnlYtNGtyBYjQKB0NOybb/acU+fH0pinTF zIRC5+sPZ+D7lzGskI1nqqK8qaq4M2+uN6M0cf5GDl+6EDD5QrzLIVTtktrEb9YA ReVMTAHfhi8sHLYEVqABN4HgwzneYn5xQRpwd+Ze0QDpniERdsYfVJpIMBKHdC3I YclRUCMD3wSAMoTabLhH1l9twBxGkA4TgI9F4OtYt1kzy9JteZL+xwhmx4ahe184 uIgNDmWdBc0tnNRs1KYMsvhcBQVo+sQ= -----END CERTIFICATE-----Generated at Mon Oct 20 12:41:23 2025 by rpki-client