$ rpki-client -vvf rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft File: KN1yVzxbraKIuDKzmB_0yYsvjFE.mft (raw, json) Hash identifier: JV019OzN6RGs5ecz8gBAh9UBPIaX9Pz9QNI+4eMCQBk= Subject key identifier: 67:C0:7F:77:28:40:22:AB:BB:7A:B4:80:48:AD:24:A7:C4:4F:46:7A Authority key identifier: 28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 Certificate issuer: /CN=A9180174/serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Certificate serial: 053E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft Manifest number: 0538 Signing time: Sun 19 Oct 2025 01:14:42 +0000 Manifest this update: Sun 19 Oct 2025 01:14:42 +0000 Manifest next update: Sun 26 Oct 2025 01:14:42 +0000 Files and hashes: 1: KN1yVzxbraKIuDKzmB_0yYsvjFE.crl (hash: O1M9W9kaEeNek8FgwdgsnNE24/9ghBmkEoCRGRI6yL8=) 2: F6750B60168D11EC89C9CB5DC4F9AE02.roa (hash: 9is5aeB2FzFVh9EnamHZGKMz2wLecoiTResPsgf3D2Q=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:14:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1342 (0x53e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180174, serialNumber=28DD72573C5BADA288B832B3981FF4C98B2F8C51 Validity Not Before: Oct 19 01:14:42 2025 GMT Not After : Oct 26 01:14:42 2025 GMT Subject: CN=68f43b82-18d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:97:1a:9b:cd:f7:fb:bb:19:5e:8b:51:58:81: 7a:38:70:0b:bb:ff:9c:b6:72:cf:fd:95:ed:8a:41: 3a:76:05:80:52:a4:5e:75:82:31:22:03:a2:a2:d1: be:34:fb:e0:34:46:47:db:89:fb:f0:ce:ab:16:a2: df:af:59:26:86:5e:06:65:b8:c3:79:b1:9c:c3:79: fa:9c:22:0e:7b:f6:ed:29:e3:01:99:fa:0c:4e:6f: 3b:d4:ea:de:0b:8d:04:c8:34:66:3b:b1:10:95:04: 6f:92:ce:20:36:6a:89:ca:3f:55:2b:a3:d8:79:9a: 37:f3:f0:62:c2:c4:02:c2:35:c1:50:4d:b7:5f:91: 5c:39:a6:9e:9d:64:90:b3:4b:aa:1c:bc:06:72:b9: f1:c4:71:07:22:a2:d3:12:21:ec:18:b9:c0:56:76: b8:4b:cd:6c:6a:9a:78:28:50:c6:e3:e3:1f:70:41: 87:b3:80:5d:a8:5e:11:e5:da:ee:96:6e:13:4f:50: a3:6a:89:b0:a8:d1:3d:8f:fe:d8:39:c6:94:56:fb: d7:2e:f1:e3:5c:4d:fc:63:96:6f:b0:ee:57:06:44: 7f:e4:7e:ec:79:7e:a5:b0:89:ac:7a:c1:d8:8e:fd: 9a:47:ad:63:36:dc:98:6f:cf:74:9b:92:79:32:0e: 79:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:C0:7F:77:28:40:22:AB:BB:7A:B4:80:48:AD:24:A7:C4:4F:46:7A X509v3 Authority Key Identifier: keyid:28:DD:72:57:3C:5B:AD:A2:88:B8:32:B3:98:1F:F4:C9:8B:2F:8C:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KN1yVzxbraKIuDKzmB_0yYsvjFE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180174/79D6662A168911EC8162580CC4F9AE02/KN1yVzxbraKIuDKzmB_0yYsvjFE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:19:ba:ee:34:d8:9c:bb:56:ec:a8:88:26:26:3a:95:01:08: 25:a3:bc:b3:d5:81:d7:47:74:b7:2e:d5:ba:06:24:ad:17:6e: da:db:69:c5:86:50:0e:d0:9a:26:cb:02:fa:6a:62:d6:f4:0f: e4:a8:5c:3e:e2:83:26:cc:37:45:c3:4c:24:7d:25:c1:e4:c1: c6:bc:cc:c9:f6:e5:24:b2:a9:82:7a:86:d1:07:fe:93:d9:dc: 92:af:78:f4:68:b9:7f:bd:14:c2:f2:45:7c:3a:c5:e4:d8:44: 70:0f:cb:e6:1e:7b:05:0c:b7:11:e5:0c:69:9d:62:40:06:a0: 79:1b:57:16:d0:54:7c:19:c8:ce:28:ba:63:40:ae:eb:0b:56: 6c:40:fc:59:a5:70:f0:9d:39:06:fb:e6:a9:58:e4:fd:bc:b8: 58:37:9a:5f:93:15:7b:34:4d:d3:83:21:c6:b2:80:b2:35:d3: 7a:69:2b:27:00:88:15:9c:6f:12:84:6f:04:cf:d4:fe:56:e1: 36:91:b1:12:66:c2:8a:a5:e6:b7:b7:41:b0:e1:a9:94:ce:2b: 3a:e9:63:0a:93:dc:bb:c3:c7:12:52:86:d8:61:ab:ba:65:10: ba:af:cb:17:19:7e:e3:96:fc:5b:a5:23:22:2f:e4:f7:3e:2c: ca:fe:12:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNzQxMTAvBgNVBAUTKDI4REQ3MjU3M0M1QkFEQTI4OEI4MzJCMzk4MUZGNEM5 OEIyRjhDNTEwHhcNMjUxMDE5MDExNDQyWhcNMjUxMDI2MDExNDQyWjAYMRYwFAYD VQQDEw02OGY0M2I4Mi0xOGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJcam833+7sZXotRWIF6OHALu/+ctnLP/ZXtikE6dgWAUqRedYIxIgOiotG+ NPvgNEZH24n78M6rFqLfr1kmhl4GZbjDebGcw3n6nCIOe/btKeMBmfoMTm871Ore C40EyDRmO7EQlQRvks4gNmqJyj9VK6PYeZo38/BiwsQCwjXBUE23X5FcOaaenWSQ s0uqHLwGcrnxxHEHIqLTEiHsGLnAVna4S81sapp4KFDG4+MfcEGHs4BdqF4R5dru lm4TT1CjaomwqNE9j/7YOcaUVvvXLvHjXE38Y5ZvsO5XBkR/5H7seX6lsImsesHY jv2aR61jNtyYb890m5J5Mg55ZwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfAf3co QCKru3q0gEitJKfET0Z6MB8GA1UdIwQYMBaAFCjdclc8W62iiLgys5gf9MmLL4xR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE3NC83OUQ2NjYyQTE2 ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJhS0l1REt6bUJfMHlZc3Zq RkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tOMXlWenhicmFLSXVES3ptQl8weVlzdmpGRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDE3NC83OUQ2NjYyQTE2ODkxMUVDODE2MjU4MENDNEY5QUUwMi9LTjF5Vnp4YnJh S0l1REt6bUJfMHlZc3ZqRkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBMGbruNNicu1bsqIgmJjqVAQglo7yz1YHXR3S3LtW6BiStF27a22nF hlAO0JomywL6amLW9A/kqFw+4oMmzDdFw0wkfSXB5MHGvMzJ9uUksqmCeobRB/6T 2dySr3j0aLl/vRTC8kV8OsXk2ERwD8vmHnsFDLcR5QxpnWJABqB5G1cW0FR8GcjO KLpjQK7rC1ZsQPxZpXDwnTkG++apWOT9vLhYN5pfkxV7NE3TgyHGsoCyNdN6aSsn AIgVnG8ShG8Ez9T+VuE2kbESZsKKpea3t0Gw4amUzis66WMKk9y7w8cSUobYYau6 ZRC6r8sXGX7jlvxbpSMiL+T3PizK/hKE -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:12 2025 by rpki-client