$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft File: KKyX2Zh-eNvuncufA3NcKDvOGGI.mft (raw, json) Hash identifier: ESE19NUSKJENXfN1ej8IOdFCq5u/sWp2v28FAS8SxJ0= Subject key identifier: DA:A5:11:61:68:90:C8:81:FC:EB:8D:55:2F:F5:06:63:8C:EA:87:CF Authority key identifier: 28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 Certificate issuer: /CN=A9157BC3/serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Certificate serial: 0208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft Manifest number: 0205 Signing time: Sun 19 Oct 2025 04:41:59 +0000 Manifest this update: Sun 19 Oct 2025 04:41:59 +0000 Manifest next update: Sun 26 Oct 2025 04:41:59 +0000 Files and hashes: 1: KKyX2Zh-eNvuncufA3NcKDvOGGI.crl (hash: 0aKAVglXfmWAwIWEzOUEx1txbhG7Vi22xjZg3KYA5yY=) 2: 1FCD9DE2926611EDA99A9419C4F9AE02.roa (hash: RqBWzz5uXzyQ1KueU4cHYCTj7govMSTdgiL2egEdolc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BC3, serialNumber=28AC97D9987E78DBEE9DCB9F03735C283BCE1862 Validity Not Before: Oct 19 04:41:59 2025 GMT Not After : Oct 26 04:41:59 2025 GMT Subject: CN=68f46c17-5283 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1a:f8:71:d0:25:cc:49:7c:f0:8b:8d:2e:12: 12:96:25:21:5a:5b:79:41:08:82:fd:ce:b0:9f:d9: a4:46:d4:e7:73:42:a9:97:0a:1b:0f:ee:53:fe:5d: bf:a4:62:ee:43:39:80:d8:85:90:93:37:b6:d0:5e: 22:e3:36:2d:2c:35:61:57:37:f1:5f:6f:37:e2:6f: 29:48:5a:aa:d8:05:57:48:34:4b:96:b2:1d:35:57: da:63:c2:5f:11:84:11:85:4a:c4:56:79:e4:0e:14: 4e:6e:15:31:2a:ac:45:a8:97:70:8b:71:6e:66:67: d9:9b:fb:0b:6c:3e:7e:3b:76:4a:9e:65:2f:ea:58: 4e:4b:cd:6a:f5:66:63:06:3a:de:f0:fd:46:9d:5d: 73:ab:25:ef:f6:13:63:03:e6:35:73:0b:3d:6b:2f: f6:12:52:c4:36:5f:2d:1c:df:08:52:06:97:55:77: 55:be:c5:11:82:d0:bf:2f:ba:5b:35:77:80:3d:d7: 31:73:29:50:01:9b:59:96:2f:e6:91:23:5f:7f:f3: c8:a2:02:70:07:dd:69:42:cf:a7:8e:c4:f4:56:fb: 0f:1d:88:f1:6d:c3:0a:7b:59:0d:e8:7a:db:13:53: 95:1b:37:35:4e:e2:db:cf:e5:a4:bf:64:da:9c:79: 9f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:A5:11:61:68:90:C8:81:FC:EB:8D:55:2F:F5:06:63:8C:EA:87:CF X509v3 Authority Key Identifier: keyid:28:AC:97:D9:98:7E:78:DB:EE:9D:CB:9F:03:73:5C:28:3B:CE:18:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KKyX2Zh-eNvuncufA3NcKDvOGGI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BC3/708E6F68926111EDA5204E64C4F9AE02/KKyX2Zh-eNvuncufA3NcKDvOGGI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:c1:cb:49:35:82:23:8d:ae:18:75:84:aa:23:06:fa:97:72: 55:56:0f:72:b8:7f:5c:08:89:fe:04:62:22:b4:31:6c:a6:aa: 0d:57:f9:ad:ba:9b:e6:34:e4:fb:d4:93:6e:b7:df:9c:d5:9d: 68:fd:69:64:ed:83:b4:d0:e7:c9:2d:17:c7:bf:f0:e9:b6:28: d3:5f:75:4c:48:59:e4:f3:dd:52:9f:d3:e3:bb:ef:76:b6:af: d7:f1:74:91:3a:df:64:bf:bf:6a:87:77:21:31:e8:95:53:ef: 96:aa:71:c9:dc:a1:bc:16:c1:14:fd:df:67:83:2f:23:51:18: 8a:63:c8:39:d5:b1:28:46:50:8b:ae:39:f5:ea:6d:5b:78:d0: d2:37:08:c2:9b:46:c2:c6:50:b7:7b:17:eb:a9:9f:2c:da:7b: a4:5e:d0:32:f9:f5:c4:8a:1b:3c:0b:72:43:26:41:b3:9b:ae: 13:ef:03:2a:99:c9:d3:1d:55:e7:2e:c8:71:ed:28:23:08:8e: 34:03:ce:be:59:d9:05:b2:7a:59:be:a2:a1:dd:d8:92:c3:3e: 0f:53:92:8b:be:e4:a9:4a:07:b7:95:cf:fd:2b:ea:61:22:70: 82:ea:aa:8b:b4:c7:33:20:b5:fa:91:81:55:7e:66:04:06:86: 66:df:75:34 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCQzMxMTAvBgNVBAUTKDI4QUM5N0Q5OTg3RTc4REJFRTlEQ0I5RjAzNzM1QzI4 M0JDRTE4NjIwHhcNMjUxMDE5MDQ0MTU5WhcNMjUxMDI2MDQ0MTU5WjAYMRYwFAYD VQQDEw02OGY0NmMxNy01MjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBr4cdAlzEl88IuNLhISliUhWlt5QQiC/c6wn9mkRtTnc0KplwobD+5T/l2/ pGLuQzmA2IWQkze20F4i4zYtLDVhVzfxX2834m8pSFqq2AVXSDRLlrIdNVfaY8Jf EYQRhUrEVnnkDhRObhUxKqxFqJdwi3FuZmfZm/sLbD5+O3ZKnmUv6lhOS81q9WZj Bjre8P1GnV1zqyXv9hNjA+Y1cws9ay/2ElLENl8tHN8IUgaXVXdVvsURgtC/L7pb NXeAPdcxcylQAZtZli/mkSNff/PIogJwB91pQs+njsT0VvsPHYjxbcMKe1kN6Hrb E1OVGzc1TuLbz+Wkv2TanHmfeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNqlEWFo kMiB/OuNVS/1BmOM6ofPMB8GA1UdIwQYMBaAFCisl9mYfnjb7p3LnwNzXCg7zhhi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JDMy83MDhFNkY2ODky NjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVOdnVuY3VmQTNOY0tEdk9H R0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tLeVgyWmgtZU52dW5jdWZBM05jS0R2T0dHSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 N0JDMy83MDhFNkY2ODkyNjExMUVEQTUyMDRFNjRDNEY5QUUwMi9LS3lYMlpoLWVO dnVuY3VmQTNOY0tEdk9HR0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlwctJNYIjja4YdYSqIwb6l3JVVg9yuH9cCIn+BGIitDFspqoNV/mt upvmNOT71JNut9+c1Z1o/Wlk7YO00OfJLRfHv/DptijTX3VMSFnk891Sn9Pju+92 tq/X8XSROt9kv79qh3chMeiVU++WqnHJ3KG8FsEU/d9ngy8jURiKY8g51bEoRlCL rjn16m1beNDSNwjCm0bCxlC3exfrqZ8s2nukXtAy+fXEihs8C3JDJkGzm64T7wMq mcnTHVXnLshx7SgjCI40A86+WdkFsnpZvqKh3diSwz4PU5KLvuSpSge3lc/9K+ph InCC6qqLtMczILX6kYFVfmYEBoZm33U0 -----END CERTIFICATE-----Generated at Mon Oct 20 08:49:06 2025 by rpki-client