$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: hY5SL2BW2gJ3ZuyAPLRYvXIuimRf/1VjWdutTt+hy+k= Subject key identifier: 35:06:56:B2:2C:68:39:A0:FB:A8:F5:F6:CF:76:79:9D:2B:1F:95:67 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02B3 Signing time: Sat 23 Aug 2025 01:43:28 +0000 Manifest this update: Sat 23 Aug 2025 01:43:27 +0000 Manifest next update: Sat 30 Aug 2025 01:43:27 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: XFrWMRfR5Z3u2Jlnh4PDIzeQq3WJX4trIc5uqBxy4Aw=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 01:43:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 695 (0x2b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Aug 23 01:43:27 2025 GMT Not After : Aug 30 01:43:27 2025 GMT Subject: CN=68a91cbf-d1c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:51:7a:87:4b:ce:4f:15:99:2c:83:81:05:49: 55:5e:77:13:67:5d:22:ee:21:6a:14:11:eb:83:ce: 2d:12:d9:b3:78:fc:09:3e:32:58:fc:d2:0d:a3:ad: fc:42:43:a0:11:bb:fb:17:81:5f:cb:82:c2:1e:0f: a5:5d:8d:0b:17:3a:29:1b:62:7d:ba:64:c3:61:21: f5:22:9f:9e:bf:dd:60:62:aa:c5:b5:77:ac:9c:69: 54:39:8e:4f:83:21:53:a1:79:3d:d0:75:c5:b0:66: a8:a3:90:75:06:ca:0d:f6:c6:ba:29:bc:ea:89:2c: f1:53:28:4b:9d:ad:b6:14:fb:03:85:b9:9e:b7:2a: ea:94:11:ef:6f:45:60:94:19:72:c2:f0:91:a2:31: fb:74:24:91:c1:ff:47:66:17:54:ec:f6:cb:ef:59: fc:55:39:ae:8a:3b:ff:c9:bf:c0:92:ed:6d:29:54: a2:d2:d6:70:fe:29:7b:20:67:f5:c0:5e:45:d3:81: f3:b9:fc:58:e1:2a:dc:fb:d1:be:b4:40:2e:86:86: 1d:a2:fd:4d:4e:7a:f7:14:6d:67:f0:da:14:5c:a5: bb:e6:7a:86:80:f7:9d:d2:58:7d:89:a7:dc:52:7a: 26:6a:75:d4:ea:ee:7a:54:71:19:89:78:cc:f0:d5: d1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:06:56:B2:2C:68:39:A0:FB:A8:F5:F6:CF:76:79:9D:2B:1F:95:67 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:cc:6d:71:5d:bf:03:31:a3:20:dd:fc:53:df:fa:8f:de:2c: 25:ed:47:1a:e4:b3:90:cd:64:cf:fb:ed:08:fe:22:5e:90:56: 39:fa:8c:6d:fa:00:69:b5:a1:7b:f2:e0:1e:45:66:56:1b:39: 4d:75:69:d8:e3:6d:85:11:ec:5b:57:b9:f3:86:5f:61:a7:30: 62:6b:fb:25:34:b2:cf:0d:ed:66:e6:28:b8:e9:5f:73:c4:b2: 75:87:28:bb:3b:eb:77:7a:c9:3d:38:77:f6:4b:67:95:9a:4d: 3f:41:3e:ad:46:62:5a:b9:7c:ae:ff:eb:76:f7:ab:59:3a:ff: 44:b4:ba:70:c4:66:45:52:b4:3d:6e:cf:08:0a:d2:f4:1e:d0: 21:55:95:36:d1:71:06:c1:04:f8:61:13:22:41:26:39:11:7d: 91:2d:87:fe:3e:e9:ab:63:2f:d0:35:7b:91:ba:15:16:fd:19: 87:92:0f:84:e5:43:3f:b1:87:ae:80:c6:1d:ac:b3:56:8d:49: 02:82:8d:99:4b:91:18:c0:db:2e:bf:c9:c3:fd:0a:87:64:e2: b3:de:9d:39:1a:78:13:c5:95:b2:01:4e:bd:e1:81:54:6c:17: ca:d9:4c:c0:11:38:4a:d2:a5:47:ec:9a:ac:01:5e:6f:62:54: 53:eb:33:0d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwODIzMDE0MzI3WhcNMjUwODMwMDE0MzI3WjAYMRYwFAYD VQQDEw02OGE5MWNiZi1kMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FF6h0vOTxWZLIOBBUlVXncTZ10i7iFqFBHrg84tEtmzePwJPjJY/NINo638 QkOgEbv7F4Ffy4LCHg+lXY0LFzopG2J9umTDYSH1Ip+ev91gYqrFtXesnGlUOY5P gyFToXk90HXFsGaoo5B1BsoN9sa6KbzqiSzxUyhLna22FPsDhbmetyrqlBHvb0Vg lBlywvCRojH7dCSRwf9HZhdU7PbL71n8VTmuijv/yb/Aku1tKVSi0tZw/il7IGf1 wF5F04HzufxY4Src+9G+tEAuhoYdov1NTnr3FG1n8NoUXKW75nqGgPed0lh9iafc UnomanXU6u56VHEZiXjM8NXRCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDUGVrIs aDmg+6j19s92eZ0rH5VnMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAdzG1xXb8DMaMg3fxT3/qP3iwl7Uca5LOQzWTP++0I/iJekFY5+oxt +gBptaF78uAeRWZWGzlNdWnY422FEexbV7nzhl9hpzBia/slNLLPDe1m5ii46V9z xLJ1hyi7O+t3esk9OHf2S2eVmk0/QT6tRmJauXyu/+t296tZOv9EtLpwxGZFUrQ9 bs8ICtL0HtAhVZU20XEGwQT4YRMiQSY5EX2RLYf+PumrYy/QNXuRuhUW/RmHkg+E 5UM/sYeugMYdrLNWjUkCgo2ZS5EYwNsuv8nD/QqHZOKz3p05GngTxZWyAU694YFU bBfK2UzAEThK0qVH7JqsAV5vYlRT6zMN -----END CERTIFICATE-----Generated at Sun Aug 24 00:42:29 2025 by rpki-client