$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: IR4wPr7fhPLvFWGj1BlxO8QaWdUlShvb5evRiuWF39I= Subject key identifier: CF:0D:A3:EC:83:70:07:24:EA:0A:96:B7:CB:E6:6D:1F:26:34:18:1F Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 0412 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 040E Signing time: Sat 23 Aug 2025 00:38:08 +0000 Manifest this update: Sat 23 Aug 2025 00:38:07 +0000 Manifest next update: Sat 30 Aug 2025 00:38:07 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: yhKH4O/qiNw4ODbYoDJ9B7BfiwJn77Vq3XXJYoQAhx0=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1042 (0x412) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Aug 23 00:38:07 2025 GMT Not After : Aug 30 00:38:07 2025 GMT Subject: CN=68a90d6f-cd3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:ef:00:31:d9:e5:45:b3:75:2f:dc:b8:9a:de: 49:e4:49:1c:1a:d5:e3:e5:7a:44:93:ef:9c:a9:4d: e4:06:ca:c1:bf:96:db:b3:79:a1:4b:f0:19:e7:83: 06:af:d3:ed:85:5f:dd:72:c2:39:1c:06:06:89:a9: bb:87:fc:be:60:33:79:c3:ef:e6:3e:c0:3c:28:08: c9:ad:ed:c7:5b:c9:10:bb:a7:a7:27:b1:96:96:66: 0c:43:9e:a8:14:ac:c2:7e:74:aa:fa:44:7c:8e:62: 04:d0:20:07:07:98:34:7b:77:87:16:bd:26:9c:81: 53:a2:c8:e6:bb:0d:7b:2e:4f:e3:05:20:b5:4a:89: fa:01:2e:0f:1c:33:1b:dd:8e:b3:d5:43:0d:71:3f: 89:dd:92:33:e6:69:39:a3:f6:d2:67:85:c8:74:40: 7d:76:81:3c:b5:e4:ce:92:f5:30:a7:56:53:39:d6: 2c:8a:d7:30:9c:88:0f:28:a1:96:d7:92:0e:9a:a5: 61:63:4b:50:17:9e:8c:62:47:48:b6:db:da:d8:c9: 2c:b0:41:00:55:8c:f0:47:f7:c0:29:ae:0f:18:80: aa:24:d1:67:c6:c6:8a:ff:13:ec:4e:a7:2f:4e:93: 21:46:2a:12:3f:fb:08:9a:79:a8:26:2c:02:9d:9f: 7c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:0D:A3:EC:83:70:07:24:EA:0A:96:B7:CB:E6:6D:1F:26:34:18:1F X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:24:a3:77:76:a6:48:a8:f4:36:f3:57:7b:12:54:9c:bf:de: 55:46:e2:ef:dc:c0:fe:97:1e:f1:8a:67:2d:d7:98:c3:15:93: 37:59:ab:f9:00:6a:9d:e6:fd:57:1b:f7:14:66:18:ba:95:70: 14:8b:50:ca:02:af:f4:fd:40:ec:e3:bd:cd:f7:d2:55:01:77: a9:b0:9f:b0:5b:9a:8f:a7:b7:90:05:b6:17:ab:c0:8e:a8:86: 5d:69:5d:35:ba:ae:e8:52:a4:39:84:37:07:33:be:48:cd:12: 91:6a:41:17:0d:d7:aa:d6:42:d5:a8:ea:a2:8f:50:54:0f:d0: 44:42:c6:46:e5:96:28:09:e6:6e:65:18:69:c9:94:f8:1e:13: 91:8d:95:dd:eb:c5:3f:e4:50:a1:a8:cf:30:c6:98:8f:62:1c: dd:04:79:f5:90:27:64:b8:8e:ed:76:96:ae:0d:4f:67:27:8f: a5:37:8a:5e:3b:bb:0d:09:ae:9a:89:d9:67:0e:75:5f:9d:55: 77:3a:0f:86:58:ce:b2:f4:c3:5b:11:76:53:60:8b:24:fc:23: 18:e8:1e:cb:18:a8:6a:f4:98:47:ed:e2:de:9c:12:1c:e5:de: 69:12:35:ef:30:f1:8d:eb:99:c9:ed:c1:d1:c0:5a:63:1a:44: 05:2f:f1:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwODIzMDAzODA3WhcNMjUwODMwMDAzODA3WjAYMRYwFAYD VQQDEw02OGE5MGQ2Zi1jZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4u8AMdnlRbN1L9y4mt5J5EkcGtXj5XpEk++cqU3kBsrBv5bbs3mhS/AZ54MG r9PthV/dcsI5HAYGiam7h/y+YDN5w+/mPsA8KAjJre3HW8kQu6enJ7GWlmYMQ56o FKzCfnSq+kR8jmIE0CAHB5g0e3eHFr0mnIFTosjmuw17Lk/jBSC1Son6AS4PHDMb 3Y6z1UMNcT+J3ZIz5mk5o/bSZ4XIdEB9doE8teTOkvUwp1ZTOdYsitcwnIgPKKGW 15IOmqVhY0tQF56MYkdIttva2MkssEEAVYzwR/fAKa4PGICqJNFnxsaK/xPsTqcv TpMhRioSP/sImnmoJiwCnZ98wQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM8No+yD cAck6gqWt8vmbR8mNBgfMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXJKN3dqZIqPQ281d7ElScv95VRuLv3MD+lx7ximct15jDFZM3Wav5 AGqd5v1XG/cUZhi6lXAUi1DKAq/0/UDs473N99JVAXepsJ+wW5qPp7eQBbYXq8CO qIZdaV01uq7oUqQ5hDcHM75IzRKRakEXDdeq1kLVqOqij1BUD9BEQsZG5ZYoCeZu ZRhpyZT4HhORjZXd68U/5FChqM8wxpiPYhzdBHn1kCdkuI7tdpauDU9nJ4+lN4pe O7sNCa6aidlnDnVfnVV3Og+GWM6y9MNbEXZTYIsk/CMY6B7LGKhq9JhH7eLenBIc 5d5pEjXvMPGN65nJ7cHRwFpjGkQFL/E3 -----END CERTIFICATE-----Generated at Sun Aug 24 00:51:22 2025 by rpki-client