$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: yzylxacbzSokdTL5NvELk7LWvB64+pF8tIXvcYZoSxY= Subject key identifier: 7D:2C:88:DC:A7:BC:FA:BD:07:83:49:35:C9:C7:9A:8F:EA:58:22:21 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 0129 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 0127 Signing time: Sat 23 Aug 2025 04:48:49 +0000 Manifest this update: Sat 23 Aug 2025 04:48:48 +0000 Manifest next update: Sat 30 Aug 2025 04:48:48 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: /2JdHk2pXo0LhR05WaNsct2RRukqeyf5juisVcZ3ECU=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Aug 23 04:48:48 2025 GMT Not After : Aug 30 04:48:48 2025 GMT Subject: CN=68a94830-b301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:25:7a:fd:3c:d2:64:5a:e8:ab:de:70:61:5b: fe:31:13:ce:3e:7d:19:82:c8:06:8e:cb:c8:95:84: 5a:86:53:fe:aa:2d:64:9d:a9:78:29:39:04:64:36: 30:85:09:51:04:22:2f:44:2e:12:a2:36:91:1e:cd: 30:5a:f3:f2:ee:db:bd:56:b9:c6:22:6c:7f:cb:3e: 9a:b9:c8:90:aa:4f:a2:00:3e:e7:f2:9d:5a:fc:aa: 9a:5b:fa:4b:7c:69:9b:08:ce:a5:67:3e:e8:54:d4: 6d:77:8c:74:42:01:be:82:4c:ad:29:ef:16:b9:c2: 82:32:53:b7:dd:a1:57:3c:6f:c2:c5:57:50:23:88: 86:5a:ec:57:20:b3:d6:cb:82:ff:67:d5:9c:25:57: 45:59:59:2f:19:5e:45:3e:aa:3b:fa:f7:fd:58:f3: 28:27:ee:6a:ae:ad:d6:3e:ae:c1:fa:d5:3f:50:cf: d8:1b:5b:13:ff:98:fd:80:1c:64:90:7a:29:c7:09: 42:2f:1b:23:95:98:c3:01:a9:4e:03:8a:29:32:37: e7:b5:74:96:b3:26:cd:78:18:49:b8:81:d0:ba:ce: 7e:9e:fe:ab:3c:c5:60:b3:50:15:30:c4:0b:2d:de: c7:53:8a:51:59:21:60:6c:fc:05:7e:b2:80:c6:c6: f5:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:2C:88:DC:A7:BC:FA:BD:07:83:49:35:C9:C7:9A:8F:EA:58:22:21 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:29:e6:7a:b8:21:98:2f:f9:6d:20:f0:c3:75:36:85:12:0e: da:1b:f8:5a:fb:1e:65:8c:0d:38:a6:86:45:8c:5c:9c:ca:9f: 28:1d:78:5a:ea:b4:8f:bb:94:53:ef:90:57:4f:5b:fe:87:de: 8b:4b:7c:e8:1d:d3:8c:2f:45:1f:f0:5f:e5:95:d1:79:a6:ee: c0:b0:d0:f8:68:03:b2:54:9e:98:d7:67:ed:ce:a0:a6:10:19: 1b:5d:7f:9c:55:53:be:42:6f:9a:b9:8c:c1:7b:36:7c:b0:1c: 96:4d:14:ba:a7:2a:14:59:8d:77:94:a9:8c:cd:36:2d:05:e1: 75:a7:74:33:2b:91:3e:b2:fb:1e:13:ac:01:ab:99:2e:ef:da: 2a:e5:d5:3e:9d:8b:b4:86:be:64:0f:be:29:42:22:25:3c:2d: 1d:80:51:d9:76:47:3b:e5:0a:8f:d0:8a:01:07:4e:88:49:65: eb:d6:68:33:83:4f:92:ae:5c:04:ef:68:16:cd:42:28:09:1f: f8:73:1b:2b:dc:6e:47:a3:85:0a:cb:37:ad:bd:b4:89:f3:5f: bc:4f:59:70:ea:ff:62:b0:cb:2f:4e:87:bf:4d:88:1a:32:53: 74:aa:36:f0:f4:00:50:8c:5e:ed:ab:44:78:36:45:4b:2f:a0: ce:8d:d3:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwODIzMDQ0ODQ4WhcNMjUwODMwMDQ0ODQ4WjAYMRYwFAYD VQQDEw02OGE5NDgzMC1iMzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviV6/TzSZFroq95wYVv+MRPOPn0ZgsgGjsvIlYRahlP+qi1knal4KTkEZDYw hQlRBCIvRC4SojaRHs0wWvPy7tu9VrnGImx/yz6auciQqk+iAD7n8p1a/KqaW/pL fGmbCM6lZz7oVNRtd4x0QgG+gkytKe8WucKCMlO33aFXPG/CxVdQI4iGWuxXILPW y4L/Z9WcJVdFWVkvGV5FPqo7+vf9WPMoJ+5qrq3WPq7B+tU/UM/YG1sT/5j9gBxk kHopxwlCLxsjlZjDAalOA4opMjfntXSWsybNeBhJuIHQus5+nv6rPMVgs1AVMMQL Ld7HU4pRWSFgbPwFfrKAxsb1NQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH0siNyn vPq9B4NJNcnHmo/qWCIhMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAyKeZ6uCGYL/ltIPDDdTaFEg7aG/ha+x5ljA04poZFjFycyp8oHXha 6rSPu5RT75BXT1v+h96LS3zoHdOML0Uf8F/lldF5pu7AsND4aAOyVJ6Y12ftzqCm EBkbXX+cVVO+Qm+auYzBezZ8sByWTRS6pyoUWY13lKmMzTYtBeF1p3QzK5E+svse E6wBq5ku79oq5dU+nYu0hr5kD74pQiIlPC0dgFHZdkc75QqP0IoBB06ISWXr1mgz g0+SrlwE72gWzUIoCR/4cxsr3G5Ho4UKyzetvbSJ81+8T1lw6v9isMsvToe/TYga MlN0qjbw9ABQjF7tq0R4NkVLL6DOjdOH -----END CERTIFICATE-----Generated at Sat Aug 23 12:41:59 2025 by rpki-client