$ rpki-client -vvf rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft File: _-KgNynzLTIiepnJJRWMgspUuVc.mft (raw, json) Hash identifier: YWYpQx1MFf754NMC8SLUJ82ierRG3dEyK51XG+6z1oo= Subject key identifier: 17:40:D3:0D:BD:71:52:CF:FD:9E:D7:0D:A7:BD:68:7A:54:73:AD:61 Authority key identifier: FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 Certificate issuer: /CN=A917225D/serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Certificate serial: 34FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft Manifest number: 34E8 Signing time: Sat 18 Oct 2025 14:25:23 +0000 Manifest this update: Sat 18 Oct 2025 14:25:22 +0000 Manifest next update: Sat 25 Oct 2025 14:25:22 +0000 Files and hashes: 1: _-KgNynzLTIiepnJJRWMgspUuVc.crl (hash: 7qK2/6qtqLJOGZxnc4FGPYiMBSBrQrXE1TBnvYAp+1M=) 2: A0121BD4871711EA924C6626C4F9AE02.roa (hash: TsmW3wUGCspNY1UcKJcNnUuuDH7qDphY3UYVmmAdbDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:25:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13562 (0x34fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917225D, serialNumber=FFE2A03729F32D32227A99C925158C82CA54B957 Validity Not Before: Oct 18 14:25:22 2025 GMT Not After : Oct 25 14:25:22 2025 GMT Subject: CN=68f3a352-3ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:78:5c:b4:20:11:bc:77:18:3d:95:e1:fb:19: db:a0:e7:98:51:3f:1f:1d:2e:b0:c4:db:e0:00:d8: 6f:d4:10:3c:93:8f:34:cf:25:d1:5a:54:8e:04:d7: 6f:39:ea:54:c3:b9:12:53:55:69:63:ba:9a:c9:7c: db:8c:d6:28:f0:4b:76:5f:7d:40:72:72:72:cf:27: 8c:5b:c1:a6:7d:a9:e0:11:c4:a5:07:8d:3f:7b:48: 62:ee:92:5f:79:10:3f:14:a2:19:b2:c3:aa:d9:2c: 83:c5:1f:ac:10:31:02:6d:52:81:58:a8:b3:07:68: 19:40:99:e2:31:46:4f:c4:2f:a7:c7:a1:43:e1:02: bd:98:38:25:78:ce:a5:94:b7:41:bf:22:a8:6f:f7: 46:82:dd:5f:57:95:e9:0a:a0:71:e2:99:0c:98:b9: 7c:d2:9d:63:f9:12:50:56:f4:a0:75:fc:92:66:a4: c2:d8:f0:6c:40:04:1c:77:38:60:c1:06:ed:6b:02: 65:44:75:72:75:fb:87:eb:a6:5e:15:7e:61:8b:1d: bc:85:4f:c6:30:06:1b:3f:4d:31:9b:b0:01:84:c4: 72:a8:45:ac:b3:58:25:04:4d:ea:ef:54:78:ee:c8: 3f:4d:d1:93:6a:bd:07:05:de:77:1c:fb:54:2a:2c: a8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:40:D3:0D:BD:71:52:CF:FD:9E:D7:0D:A7:BD:68:7A:54:73:AD:61 X509v3 Authority Key Identifier: keyid:FF:E2:A0:37:29:F3:2D:32:22:7A:99:C9:25:15:8C:82:CA:54:B9:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_-KgNynzLTIiepnJJRWMgspUuVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917225D/1F5508301D8411E2917BD0D908B02CD2/_-KgNynzLTIiepnJJRWMgspUuVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:af:30:d0:f1:10:12:60:1d:d9:60:6a:bc:ec:b5:38:b4:12: 17:c9:d6:31:dd:f6:e8:33:19:09:76:cf:e9:1f:69:f7:93:f9: 68:00:b1:6e:df:34:27:a4:19:f7:d8:ad:1b:36:71:96:b6:3e: c2:91:a1:f6:5b:a3:7e:68:89:b3:22:50:64:90:34:0a:89:c3: de:59:c1:57:85:84:a5:11:8c:4e:ca:68:b0:e5:4e:eb:c9:47: 26:ad:d8:27:8d:0f:05:49:2a:74:e2:c8:83:8e:39:da:f9:2d: 18:5e:a9:66:f9:18:bc:9f:13:7d:34:6d:27:15:7d:9f:ab:94: 5d:ed:47:b3:59:20:32:ed:da:af:f7:20:88:b5:6e:46:da:cc: 05:73:a0:fb:15:73:3f:e0:df:3d:cc:b4:2d:0e:8c:0c:14:25: 7a:a1:74:bc:98:34:7e:73:75:4b:bd:b6:be:bf:d2:7c:de:e7: 6e:a9:97:9c:be:3b:d7:df:44:10:eb:83:7d:98:21:71:e2:bd: 03:2e:db:60:60:01:63:b2:be:9f:10:9a:30:24:ad:fa:9a:74: 10:f8:4d:37:2c:98:00:e4:a8:86:49:24:3c:56:1c:37:d8:04: be:83:ac:39:6f:22:51:f3:8c:2f:05:01:dd:92:11:b3:dd:e2: cb:cc:08:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzIyNUQxMTAvBgNVBAUTKEZGRTJBMDM3MjlGMzJEMzIyMjdBOTlDOTI1MTU4Qzgy Q0E1NEI5NTcwHhcNMjUxMDE4MTQyNTIyWhcNMjUxMDI1MTQyNTIyWjAYMRYwFAYD VQQDEw02OGYzYTM1Mi0zZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApnhctCARvHcYPZXh+xnboOeYUT8fHS6wxNvgANhv1BA8k480zyXRWlSOBNdv OepUw7kSU1VpY7qayXzbjNYo8Et2X31AcnJyzyeMW8GmfangEcSlB40/e0hi7pJf eRA/FKIZssOq2SyDxR+sEDECbVKBWKizB2gZQJniMUZPxC+nx6FD4QK9mDgleM6l lLdBvyKob/dGgt1fV5XpCqBx4pkMmLl80p1j+RJQVvSgdfySZqTC2PBsQAQcdzhg wQbtawJlRHVydfuH66ZeFX5hix28hU/GMAYbP00xm7ABhMRyqEWss1glBE3q71R4 7sg/TdGTar0HBd53HPtUKiyodwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBdA0w29 cVLP/Z7XDae9aHpUc61hMB8GA1UdIwQYMBaAFP/ioDcp8y0yInqZySUVjILKVLlX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjI1RC8xRjU1MDgzMDFE ODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxUSWllcG5KSlJXTWdzcFV1 VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18tS2dOeW56TFRJaWVwbkpKUldNZ3NwVXVWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MjI1RC8xRjU1MDgzMDFEODQxMUUyOTE3QkQwRDkwOEIwMkNEMi9fLUtnTnluekxU SWllcG5KSlJXTWdzcFV1VmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMrzDQ8RASYB3ZYGq87LU4tBIXydYx3fboMxkJds/pH2n3k/loALFu 3zQnpBn32K0bNnGWtj7CkaH2W6N+aImzIlBkkDQKicPeWcFXhYSlEYxOymiw5U7r yUcmrdgnjQ8FSSp04siDjjna+S0YXqlm+Ri8nxN9NG0nFX2fq5Rd7UezWSAy7dqv 9yCItW5G2swFc6D7FXM/4N89zLQtDowMFCV6oXS8mDR+c3VLvba+v9J83uduqZec vjvX30QQ64N9mCFx4r0DLttgYAFjsr6fEJowJK36mnQQ+E03LJgA5KiGSSQ8Vhw3 2AS+g6w5byJR84wvBQHdkhGz3eLLzAhz -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:27 2025 by rpki-client