$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: Iz1GR+UtS4z7DFyN0kd9BQQEFo2DNlxRNgYuYVRa2l0= Subject key identifier: D4:2F:80:24:9A:56:0D:61:34:65:F9:9D:C0:6A:EE:B4:C7:7F:98:37 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 0146 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 0144 Signing time: Sun 19 Oct 2025 07:06:14 +0000 Manifest this update: Sun 19 Oct 2025 07:06:14 +0000 Manifest next update: Sun 26 Oct 2025 07:06:14 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: gqsgcnLomBMYraZwXppPNRIMUx0BLjndm4tU4wE+G3Q=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:06:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 326 (0x146) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Oct 19 07:06:14 2025 GMT Not After : Oct 26 07:06:14 2025 GMT Subject: CN=68f48de6-7b88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:28:f2:b3:81:a5:7d:57:74:e0:b7:ed:09:f3: a6:ef:13:de:58:89:5b:d6:0a:9e:26:5d:b9:11:3e: 75:cb:96:b7:64:2e:84:2e:f1:49:54:18:7a:7f:cf: 78:60:57:f7:3d:1c:2b:63:ae:2b:b8:27:2c:6b:ee: db:75:a8:64:84:01:ed:64:68:69:6b:b0:12:ff:48: aa:a7:6b:22:c2:bc:8d:bc:47:76:78:52:ef:43:b0: 3a:80:27:38:d4:a1:61:24:43:56:41:df:cb:40:ab: b8:6f:93:c5:6c:15:16:42:23:9b:fd:28:c3:fc:48: ae:b2:47:e6:5c:f4:a4:77:b4:b5:91:c4:46:9b:2a: c9:49:f3:e1:d4:a8:15:e2:ef:e5:ba:61:b5:84:da: 1f:13:e9:d6:0f:33:ad:a4:bb:b0:f1:90:13:c7:c5: f2:2b:df:66:c2:80:a7:e1:da:95:0f:74:44:32:63: d4:c2:3e:e8:98:f1:1b:bc:54:ae:84:3e:2f:37:d3: 3a:15:3d:74:5f:13:11:e1:af:51:ce:5d:4d:80:49: 4d:4d:5a:c8:67:88:02:22:5d:6a:02:64:3b:09:18: aa:73:5a:60:84:9d:50:3b:13:21:e3:0a:f2:05:22: 70:82:6a:86:7d:e1:3e:5a:32:0a:76:cb:70:42:38: 53:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:2F:80:24:9A:56:0D:61:34:65:F9:9D:C0:6A:EE:B4:C7:7F:98:37 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:3e:7d:2d:51:92:37:56:a5:6a:e9:b1:02:53:89:07:32:74: e8:97:6c:2d:f2:d6:ad:53:ad:c9:aa:80:2d:81:7c:90:45:79: 5f:c0:06:60:1a:04:fd:5c:4b:eb:bb:50:b4:49:85:3c:68:75: ff:0c:8d:d1:4e:c3:19:07:4e:ee:85:b8:16:c3:7b:c2:eb:d1: e7:88:2b:d9:cc:d3:17:42:af:81:e8:af:c5:ac:c6:d0:87:74: 96:a0:a1:0c:37:6e:29:fd:ca:41:19:04:e2:43:e3:d5:a0:25: 84:c8:96:96:82:27:27:d1:92:05:52:4f:c4:c5:25:ef:71:e1: ee:7f:d6:0f:bd:ce:84:14:87:4d:e9:7a:39:ef:19:9e:32:65: e4:36:85:94:9c:63:eb:40:a5:78:ae:2d:09:54:2d:2f:98:03: e4:38:f1:20:45:50:7f:f6:1b:59:71:a6:b1:97:74:b8:08:22: e8:54:51:9c:c3:4e:2e:91:ad:a7:2f:8d:46:53:f8:97:e6:5d: 59:9a:ee:5a:4b:64:18:90:9d:03:d9:df:38:4f:84:93:08:6f: c7:c7:78:fa:a3:73:f2:0c:e8:93:f4:b8:ee:df:a4:b5:3a:a7: 51:a5:2e:db:47:c8:15:2d:a7:6d:ca:9f:9c:e8:41:dd:2a:9c: 5e:37:ed:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUxMDE5MDcwNjE0WhcNMjUxMDI2MDcwNjE0WjAYMRYwFAYD VQQDEw02OGY0OGRlNi03Yjg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArijys4GlfVd04LftCfOm7xPeWIlb1gqeJl25ET51y5a3ZC6ELvFJVBh6f894 YFf3PRwrY64ruCcsa+7bdahkhAHtZGhpa7AS/0iqp2siwryNvEd2eFLvQ7A6gCc4 1KFhJENWQd/LQKu4b5PFbBUWQiOb/SjD/EiuskfmXPSkd7S1kcRGmyrJSfPh1KgV 4u/lumG1hNofE+nWDzOtpLuw8ZATx8XyK99mwoCn4dqVD3REMmPUwj7omPEbvFSu hD4vN9M6FT10XxMR4a9Rzl1NgElNTVrIZ4gCIl1qAmQ7CRiqc1pghJ1QOxMh4wry BSJwgmqGfeE+WjIKdstwQjhTJQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNQvgCSa Vg1hNGX5ncBq7rTHf5g3MB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATPn0tUZI3VqVq6bECU4kHMnTol2wt8tatU63JqoAtgXyQRXlfwAZg GgT9XEvru1C0SYU8aHX/DI3RTsMZB07uhbgWw3vC69HniCvZzNMXQq+B6K/FrMbQ h3SWoKEMN24p/cpBGQTiQ+PVoCWEyJaWgicn0ZIFUk/ExSXvceHuf9YPvc6EFIdN 6Xo57xmeMmXkNoWUnGPrQKV4ri0JVC0vmAPkOPEgRVB/9htZcaaxl3S4CCLoVFGc w04uka2nL41GU/iX5l1Zmu5aS2QYkJ0D2d84T4STCG/Hx3j6o3PyDOiT9Lju36S1 OqdRpS7bR8gVLadtyp+c6EHdKpxeN+1e -----END CERTIFICATE-----Generated at Tue Oct 21 02:26:36 2025 by rpki-client