$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: 9amMWQ1CcwLMVDBGbnodBjddIzoFDCPqB6gsnUupggo= Subject key identifier: 2B:6B:2C:4D:AE:32:C2:F5:A4:2B:7D:EC:BD:FE:23:2A:D4:2B:55:E6 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 042F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 042B Signing time: Sun 19 Oct 2025 02:13:05 +0000 Manifest this update: Sun 19 Oct 2025 02:13:05 +0000 Manifest next update: Sun 26 Oct 2025 02:13:05 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: laKzlKbqeFFA8fHWyKgwQ3jdW3PVntGOMrtYhVn9GEE=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:13:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1071 (0x42f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Oct 19 02:13:05 2025 GMT Not After : Oct 26 02:13:05 2025 GMT Subject: CN=68f44931-dcc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:67:9f:2f:87:2b:70:6d:7b:f4:cd:63:74:d1: ba:9f:fe:78:49:04:92:51:6b:91:bd:fc:8e:20:fe: 28:47:37:f8:e0:b8:d8:dd:71:ba:e9:e6:04:0e:1b: d3:d8:e8:16:ac:81:ee:19:04:eb:e3:9d:bc:a2:7a: 4e:2b:c5:c1:fa:7d:04:bc:b5:8a:2c:83:17:1b:e2: af:21:21:75:fc:04:10:34:4c:bc:48:49:25:c3:79: f3:0e:a0:8f:72:9e:bc:32:52:57:b5:7a:2b:c3:f0: 9c:d6:63:69:68:7e:54:0a:d6:8d:16:a0:21:91:9d: 01:1f:1b:39:04:3e:cf:21:2c:2b:dd:1a:e1:a0:9a: b7:d9:39:17:c3:96:bc:53:38:c7:f4:fe:3d:85:61: 4b:6c:66:a4:e2:75:e7:ce:ab:53:27:9e:c8:ed:9b: 75:e5:46:d1:18:c3:2d:ea:14:db:87:40:cf:a2:d8: c9:92:79:a3:1c:3f:93:71:cd:c3:c2:15:87:85:e0: 1d:55:ec:7e:87:0d:20:1f:3d:e5:a2:3c:d6:9f:6b: 9e:32:ba:d5:cb:f9:6e:84:b0:e2:f2:77:10:86:d8: 3e:00:c9:06:60:af:74:8b:66:f8:a2:ed:ca:4c:be: d8:27:7a:bc:d2:85:3f:e4:c7:49:a4:c1:79:17:23: 5b:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:6B:2C:4D:AE:32:C2:F5:A4:2B:7D:EC:BD:FE:23:2A:D4:2B:55:E6 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f7:68:3e:3c:2d:cb:12:7e:34:82:53:83:5c:97:6d:04:e8: 5f:f6:93:7b:f9:74:67:48:dd:f5:a9:8a:c5:02:31:5e:e9:73: 30:c9:ac:60:21:65:e9:83:c1:ec:c4:ac:22:ca:bb:c0:45:67: 1c:79:4a:58:d5:2f:b1:f1:0b:12:37:b9:4e:05:a4:25:ee:1e: e3:b4:16:69:08:3c:ed:3f:7d:32:b7:70:0e:8f:41:64:5e:8f: 5c:dd:7d:65:76:57:83:ae:00:59:49:e2:01:cf:4e:f0:9d:7a: fe:5b:d7:0a:4b:bd:b5:44:20:a1:4f:94:63:7c:2c:a5:a0:22: 1b:4f:ed:0e:a0:94:0c:0a:02:fa:71:8a:60:75:7f:ca:cc:09: 6c:e9:cd:1b:34:da:85:23:b5:b2:3e:66:ec:a3:e5:24:98:26: c2:3b:06:26:62:db:f5:60:9c:da:60:29:85:ac:9e:09:35:00: 4a:ab:55:1d:c4:63:bd:74:7c:f7:b1:3d:1d:33:ed:76:33:5b: 6d:bf:0d:41:c8:ce:9c:b1:08:e9:f8:b3:46:ae:3f:da:aa:5f: aa:a8:bb:6f:cd:ff:2e:62:64:1b:c6:e5:92:78:23:2e:d0:d0: fa:a1:86:c3:c3:9c:bb:9a:a3:d3:23:9b:89:9d:a5:40:f2:b4: 9f:62:93:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUxMDE5MDIxMzA1WhcNMjUxMDI2MDIxMzA1WjAYMRYwFAYD VQQDEw02OGY0NDkzMS1kY2M1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmefL4crcG179M1jdNG6n/54SQSSUWuRvfyOIP4oRzf44LjY3XG66eYEDhvT 2OgWrIHuGQTr4528onpOK8XB+n0EvLWKLIMXG+KvISF1/AQQNEy8SEklw3nzDqCP cp68MlJXtXorw/Cc1mNpaH5UCtaNFqAhkZ0BHxs5BD7PISwr3RrhoJq32TkXw5a8 UzjH9P49hWFLbGak4nXnzqtTJ57I7Zt15UbRGMMt6hTbh0DPotjJknmjHD+Tcc3D whWHheAdVex+hw0gHz3lojzWn2ueMrrVy/luhLDi8ncQhtg+AMkGYK90i2b4ou3K TL7YJ3q80oU/5MdJpMF5FyNbwwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCtrLE2u MsL1pCt97L3+IyrUK1XmMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB892g+PC3LEn40glODXJdtBOhf9pN7+XRnSN31qYrFAjFe6XMwyaxg IWXpg8HsxKwiyrvARWcceUpY1S+x8QsSN7lOBaQl7h7jtBZpCDztP30yt3AOj0Fk Xo9c3X1ldleDrgBZSeIBz07wnXr+W9cKS721RCChT5RjfCyloCIbT+0OoJQMCgL6 cYpgdX/KzAls6c0bNNqFI7WyPmbso+UkmCbCOwYmYtv1YJzaYCmFrJ4JNQBKq1Ud xGO9dHz3sT0dM+12M1ttvw1ByM6csQjp+LNGrj/aql+qqLtvzf8uYmQbxuWSeCMu 0ND6oYbDw5y7mqPTI5uJnaVA8rSfYpNu -----END CERTIFICATE-----Generated at Mon Oct 20 00:23:37 2025 by rpki-client