$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: HzDiqZSttIMd5S29wr/70VrdWEmBBEZrGaYtwg0BTQo= Subject key identifier: BB:27:25:B3:EF:64:4C:12:26:2C:6A:F4:B1:A6:06:5D:0D:97:42:19 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: E4 Signing time: Sun 19 Oct 2025 08:24:43 +0000 Manifest this update: Sun 19 Oct 2025 08:24:43 +0000 Manifest next update: Sun 26 Oct 2025 08:24:43 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: 3Funr7WBAqOY6Q3G7pR7OL6fvRrjKU6WwHugZpUGOew=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:24:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Oct 19 08:24:43 2025 GMT Not After : Oct 26 08:24:43 2025 GMT Subject: CN=68f4a04b-d47a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:06:7f:12:f4:1e:2e:7f:67:fd:ca:bc:75: 1d:77:ef:e2:81:38:82:57:c0:ba:97:ed:cf:f7:2f: fc:aa:e3:22:b4:eb:b8:93:cf:5f:21:ba:96:f3:d7: b9:e3:17:a8:16:d4:ca:62:01:88:31:7b:13:7e:82: b6:ba:b5:e1:2a:d2:28:25:2b:00:73:b1:3a:a1:71: 8e:ff:ab:2c:bd:f1:8a:50:34:3f:01:e3:d8:56:64: 29:e7:9d:21:d7:90:c2:2b:e5:e2:30:2f:c1:eb:bb: 58:8b:3c:6c:13:a8:4d:b1:c4:c9:fe:39:dc:02:3e: a7:ac:28:ae:82:a2:50:47:25:f5:c4:a2:b4:28:89: e8:8c:9b:84:87:67:df:19:5c:ad:9c:f5:76:07:9f: 5b:32:50:28:c3:42:cb:0b:80:08:48:85:a7:bc:59: d3:d8:38:c4:08:a0:c9:81:4f:21:14:ca:8b:af:14: 54:7d:e5:ed:d2:93:53:05:2d:22:4a:5b:37:6f:f3: c6:45:39:cf:5e:7b:48:0a:bb:36:70:b2:5b:12:6f: 6c:68:1c:ca:e7:da:34:a2:c5:9b:52:82:be:3f:5c: c3:aa:85:f0:9a:98:d3:2c:db:3e:9f:4f:ea:62:26: 63:a3:53:13:95:f3:60:1d:1d:67:2b:46:71:83:e2: 12:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:27:25:B3:EF:64:4C:12:26:2C:6A:F4:B1:A6:06:5D:0D:97:42:19 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:ce:83:e9:9d:30:c0:32:59:19:cf:69:98:06:21:30:3e:aa: cd:b3:9b:09:2d:aa:72:1e:94:55:2e:79:53:1a:7a:34:f1:3a: 66:88:f4:30:75:24:85:eb:88:cc:25:b7:88:fa:96:59:9d:fa: 25:f6:58:aa:3b:72:84:f0:62:be:55:11:38:54:ed:d5:75:b3: 94:b3:e9:8e:18:68:67:d7:3f:5b:48:7e:a9:14:98:9a:33:a8: fb:25:af:77:d9:84:d1:41:68:a2:c1:5c:93:4d:62:ee:71:36: 14:cb:fa:f9:3e:96:7e:db:1d:27:48:ff:8c:16:10:72:d6:2a: b9:5c:a7:8f:49:b2:fa:59:23:49:f1:44:3f:0f:df:9a:1a:c0: e9:a7:54:9b:f8:cc:03:8c:b6:62:c7:55:5b:58:08:2c:4d:16: 69:9a:dc:85:8c:69:0a:f2:0a:0c:bf:e1:55:a3:60:35:1e:13: 8c:59:3a:89:bf:a0:cc:42:ad:e6:d3:d1:a4:97:e8:c8:97:20: 4c:58:28:20:bd:06:03:3a:db:3a:c4:ee:c3:5b:00:17:fa:00: fe:d6:9e:bf:95:ea:eb:b4:05:66:b2:0c:1e:0d:62:6d:79:e5: 5a:a1:46:a8:ee:69:49:9e:b1:38:82:aa:de:0f:5e:94:02:31: a8:4f:d0:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUxMDE5MDgyNDQzWhcNMjUxMDI2MDgyNDQzWjAYMRYwFAYD VQQDEw02OGY0YTA0Yi1kNDdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06gGfxL0Hi5/Z/3KvHUdd+/igTiCV8C6l+3P9y/8quMitOu4k89fIbqW89e5 4xeoFtTKYgGIMXsTfoK2urXhKtIoJSsAc7E6oXGO/6ssvfGKUDQ/AePYVmQp550h 15DCK+XiMC/B67tYizxsE6hNscTJ/jncAj6nrCiugqJQRyX1xKK0KInojJuEh2ff GVytnPV2B59bMlAow0LLC4AISIWnvFnT2DjECKDJgU8hFMqLrxRUfeXt0pNTBS0i Sls3b/PGRTnPXntICrs2cLJbEm9saBzK59o0osWbUoK+P1zDqoXwmpjTLNs+n0/q YiZjo1MTlfNgHR1nK0Zxg+ISaQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsnJbPv ZEwSJixq9LGmBl0Nl0IZMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCIzoPpnTDAMlkZz2mYBiEwPqrNs5sJLapyHpRVLnlTGno08TpmiPQw dSSF64jMJbeI+pZZnfol9liqO3KE8GK+VRE4VO3VdbOUs+mOGGhn1z9bSH6pFJia M6j7Ja932YTRQWiiwVyTTWLucTYUy/r5PpZ+2x0nSP+MFhBy1iq5XKePSbL6WSNJ 8UQ/D9+aGsDpp1Sb+MwDjLZix1VbWAgsTRZpmtyFjGkK8goMv+FVo2A1HhOMWTqJ v6DMQq3m09Gkl+jIlyBMWCggvQYDOts6xO7DWwAX+gD+1p6/lerrtAVmsgweDWJt eeVaoUao7mlJnrE4gqreD16UAjGoT9Ct -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:36 2025 by rpki-client