$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft File: KZYjJd4LreTcndvFdq4ncBK8N1g.mft (raw, json) Hash identifier: H6yM6Pw4h0ukRcM3STyy/UoMCWDVOSCDMLG6xkC9JRo= Subject key identifier: 26:83:D5:D7:AE:0D:84:18:03:D6:7C:C8:82:47:92:5B:2B:00:F4:DA Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1AAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft Manifest number: 1A8B Signing time: Sat 18 Oct 2025 16:42:37 +0000 Manifest this update: Sat 18 Oct 2025 16:42:37 +0000 Manifest next update: Sat 25 Oct 2025 16:42:37 +0000 Files and hashes: 1: KZYjJd4LreTcndvFdq4ncBK8N1g.crl (hash: Rmpa5UvA8cx7mGioytzJ2OIWBV/aaL7FjJLX1SMFGeo=) 2: B201496EF3A311EC8804FE09C4F9AE02.roa (hash: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM=) 3: 442A935E2F1F11F0A35F5757C4F9AE02.roa (hash: D4FdDOMn9kYOe8wUYl/7g0SwBt2d9VcBYOrZDNcFK0M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:42:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6829 (0x1aad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: Oct 18 16:42:37 2025 GMT Not After : Oct 25 16:42:37 2025 GMT Subject: CN=68f3c37d-dbd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:8e:7a:5b:6f:9e:b0:93:15:88:64:55:14:02: ef:9b:ca:66:31:cf:5a:f2:42:57:42:a7:48:70:ae: b4:9d:20:fb:a8:d4:c1:59:b6:43:a4:32:f9:6f:f4: b7:8d:b8:df:61:48:1a:ba:a9:40:78:7d:4c:db:42: 57:4b:f9:57:d9:37:60:88:90:c8:25:72:80:aa:ec: 64:57:68:36:e6:82:14:6c:9a:04:28:12:bf:44:99: c4:25:29:85:a8:a1:f9:e2:6f:dd:0d:9e:fd:a8:dd: f4:3a:c0:81:f1:de:ad:90:57:fe:07:19:ad:c0:9a: 08:ae:6a:48:b8:77:9f:fe:e1:93:a7:49:77:6d:83: 30:48:d5:0a:af:38:c0:af:70:46:32:e7:11:39:60: 8c:44:86:3b:e6:d1:f0:f8:b6:47:66:e1:04:ed:81: 66:16:c3:dc:ea:26:0f:70:73:a4:05:a7:44:37:92: 96:af:90:74:9b:4c:77:a7:a3:ed:30:2a:68:c0:6c: 63:ae:d2:7a:e1:17:c1:2f:1d:49:5e:d6:29:38:ac: bd:c0:3d:ad:75:f1:fd:e5:d8:a1:13:c2:e3:db:a3: ab:cf:c4:0e:fb:ce:ee:46:d4:75:d9:29:f5:d9:f7: 2f:8e:39:f6:a8:83:7d:6b:0b:4e:ed:0c:29:dd:1e: e9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:83:D5:D7:AE:0D:84:18:03:D6:7C:C8:82:47:92:5B:2B:00:F4:DA X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:f8:18:b4:82:ac:fa:28:9e:43:97:be:68:57:f5:49:93:8b: c2:33:e7:5c:ac:17:68:25:15:69:d3:9b:35:c6:33:e4:04:7c: 25:7f:05:83:df:dd:6b:67:1e:14:81:25:dd:2e:3c:a5:bd:74: 23:6d:a2:c5:a6:a8:ea:72:21:ac:07:3d:19:b7:bd:73:ca:5f: ff:f2:a9:bb:e7:9d:7f:a9:31:74:64:e9:7f:77:bb:46:5f:e5: 39:6c:97:9a:06:3f:9d:be:0e:d9:ec:d5:ae:30:ce:72:db:f0: 40:20:b1:49:1e:37:62:8c:1c:08:88:38:04:0c:31:8e:50:43: 98:d0:d4:e6:ac:fb:58:2e:bc:93:14:a5:35:0c:5d:07:f8:45: 75:8c:9e:dd:40:9d:61:8b:84:44:27:22:86:2f:db:00:e8:c4: d2:df:46:50:a5:46:36:72:03:2e:99:b7:06:c1:78:25:cd:0f: 07:3a:ae:c1:76:07:aa:8c:35:e2:c7:fb:1d:0e:84:3e:46:e9: 48:92:fb:2a:cd:e2:f4:da:11:d2:e4:80:3e:d4:2a:16:cc:1c: 86:b6:90:ec:ec:f7:8b:7d:dc:cf:f7:d4:c7:58:e4:96:1d:86: 4d:8f:1f:27:44:db:44:57:f3:3d:df:3a:cf:ea:e1:10:01:4c: ec:75:75:60 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjUxMDE4MTY0MjM3WhcNMjUxMDI1MTY0MjM3WjAYMRYwFAYD VQQDEw02OGYzYzM3ZC1kYmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuo56W2+esJMViGRVFALvm8pmMc9a8kJXQqdIcK60nSD7qNTBWbZDpDL5b/S3 jbjfYUgauqlAeH1M20JXS/lX2TdgiJDIJXKAquxkV2g25oIUbJoEKBK/RJnEJSmF qKH54m/dDZ79qN30OsCB8d6tkFf+BxmtwJoIrmpIuHef/uGTp0l3bYMwSNUKrzjA r3BGMucROWCMRIY75tHw+LZHZuEE7YFmFsPc6iYPcHOkBadEN5KWr5B0m0x3p6Pt MCpowGxjrtJ64RfBLx1JXtYpOKy9wD2tdfH95dihE8Lj26Orz8QO+87uRtR12Sn1 2fcvjjn2qIN9awtO7Qwp3R7pQQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCaD1deu DYQYA9Z8yIJHklsrAPTaMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 REEyRC84MzgzNjIwQTUwRDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJl VGNuZHZGZHE0bmNCSzhOMWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCL+Bi0gqz6KJ5Dl75oV/VJk4vCM+dcrBdoJRVp05s1xjPkBHwlfwWD 391rZx4UgSXdLjylvXQjbaLFpqjqciGsBz0Zt71zyl//8qm7551/qTF0ZOl/d7tG X+U5bJeaBj+dvg7Z7NWuMM5y2/BAILFJHjdijBwIiDgEDDGOUEOY0NTmrPtYLryT FKU1DF0H+EV1jJ7dQJ1hi4REJyKGL9sA6MTS30ZQpUY2cgMumbcGwXglzQ8HOq7B dgeqjDXix/sdDoQ+RulIkvsqzeL02hHS5IA+1CoWzByGtpDs7PeLfdzP99THWOSW HYZNjx8nRNtEV/M93zrP6uEQAUzsdXVg -----END CERTIFICATE-----Generated at Mon Oct 20 16:47:41 2025 by rpki-client