$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: 3o8gA4jgZFmw/+TGelMxx4H8yLLjhaDntd++WqS+KDE= Subject key identifier: 46:5E:66:20:1D:C9:E0:64:FC:FB:01:FE:76:6A:92:9E:2D:3B:EA:60 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02D2 Signing time: Sun 19 Oct 2025 03:29:13 +0000 Manifest this update: Sun 19 Oct 2025 03:29:12 +0000 Manifest next update: Sun 26 Oct 2025 03:29:12 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: x6ddcgIspc8/AKkba14fiMhU6i+VJjFRNd9qstf+hQ8=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:29:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Oct 19 03:29:12 2025 GMT Not After : Oct 26 03:29:12 2025 GMT Subject: CN=68f45b09-a271 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:53:ef:f3:61:8d:68:31:c6:a6:2e:d1:df:4d: a1:8d:bd:7d:54:3e:96:a2:c9:61:5b:33:52:d0:59: 65:d5:85:96:14:da:92:18:6c:a0:d6:cf:4a:a8:9d: 96:ff:65:e0:25:43:3f:e7:65:47:8e:89:d2:83:da: f7:8d:ff:13:6f:e8:11:22:58:c6:04:ac:8a:43:68: 06:e2:62:a5:42:a3:54:06:66:e6:d7:de:a7:9e:19: 8d:08:e0:1f:66:25:87:88:63:63:fe:f2:0a:10:c1: a0:75:e8:fa:1b:28:7d:ed:12:98:32:74:98:80:f6: fe:29:26:53:e1:86:72:a4:43:b9:bd:0c:7f:bf:6e: 40:8a:9c:8f:f4:df:39:8a:d5:c7:9a:25:18:ba:17: 10:31:24:71:95:ad:a3:87:88:70:f8:88:54:c9:84: 4d:e3:a5:54:7d:6c:b8:ab:64:e6:32:cb:55:da:55: fb:4a:ea:c8:46:f0:52:00:68:18:b8:1b:8e:ea:21: 68:a4:14:a9:26:42:11:74:32:a0:65:09:9a:de:64: 16:c4:5e:66:97:c3:36:86:b7:03:46:34:aa:e8:a2: d8:6c:c4:b3:d0:87:b2:aa:c7:9e:9d:55:e7:f4:7e: 56:20:86:7a:01:c8:f6:65:68:a6:3c:8d:63:1a:e0: 10:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:5E:66:20:1D:C9:E0:64:FC:FB:01:FE:76:6A:92:9E:2D:3B:EA:60 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:f4:fd:31:b3:e2:56:ec:e3:7c:f7:e1:14:5d:7d:b5:17:84: 76:8f:96:83:dc:2b:8e:00:ea:66:30:e6:dd:84:c0:9e:2f:f1: 30:8a:ee:f3:1d:20:a7:68:8c:29:24:6b:8b:b5:93:92:83:22: 59:d0:7c:98:6c:9f:02:57:ed:a2:e4:bc:8b:b8:66:4f:b0:c1: b2:78:6d:bc:78:e4:22:fa:21:fa:2a:19:cf:e0:b9:cb:26:90: 16:c8:d0:2a:cc:8b:4c:2d:f2:4b:e6:8b:bd:16:e0:45:ff:34: 71:81:37:dc:93:d4:f3:46:ab:36:4a:75:00:8d:31:90:b9:97: 07:3a:68:91:2b:c7:a4:0e:60:c2:af:25:52:6d:01:72:1f:e2: 6e:d9:1d:c7:92:12:4e:c0:3d:7c:be:74:da:69:b7:c4:d7:c9: 9e:0e:d1:39:2b:51:f7:37:ef:c1:78:88:6a:11:3a:82:84:6b: ca:23:cc:01:e0:f8:34:be:2a:50:30:eb:68:51:21:d3:98:ae: de:19:9a:2a:bd:a2:39:d7:45:80:ec:51:44:53:5f:ee:20:bb: 65:28:d1:9b:58:33:82:fb:5e:27:f5:0a:1d:f6:49:99:a3:74: 4b:98:fd:dd:2d:ee:da:43:93:14:76:6c:c6:58:84:67:2a:de: 11:a1:44:96 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUxMDE5MDMyOTEyWhcNMjUxMDI2MDMyOTEyWjAYMRYwFAYD VQQDEw02OGY0NWIwOS1hMjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwVPv82GNaDHGpi7R302hjb19VD6WoslhWzNS0Fll1YWWFNqSGGyg1s9KqJ2W /2XgJUM/52VHjonSg9r3jf8Tb+gRIljGBKyKQ2gG4mKlQqNUBmbm196nnhmNCOAf ZiWHiGNj/vIKEMGgdej6Gyh97RKYMnSYgPb+KSZT4YZypEO5vQx/v25AipyP9N85 itXHmiUYuhcQMSRxla2jh4hw+IhUyYRN46VUfWy4q2TmMstV2lX7SurIRvBSAGgY uBuO6iFopBSpJkIRdDKgZQma3mQWxF5ml8M2hrcDRjSq6KLYbMSz0IeyqseenVXn 9H5WIIZ6Acj2ZWimPI1jGuAQOQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEZeZiAd yeBk/PsB/nZqkp4tO+pgMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA29P0xs+JW7ON89+EUXX21F4R2j5aD3CuOAOpmMObdhMCeL/Ewiu7z HSCnaIwpJGuLtZOSgyJZ0HyYbJ8CV+2i5LyLuGZPsMGyeG28eOQi+iH6KhnP4LnL JpAWyNAqzItMLfJL5ou9FuBF/zRxgTfck9TzRqs2SnUAjTGQuZcHOmiRK8ekDmDC ryVSbQFyH+Ju2R3HkhJOwD18vnTaabfE18meDtE5K1H3N+/BeIhqETqChGvKI8wB 4Pg0vipQMOtoUSHTmK7eGZoqvaI510WA7FFEU1/uILtlKNGbWDOC+14n9Qod9kmZ o3RLmP3dLe7aQ5MUdmzGWIRnKt4RoUSW -----END CERTIFICATE-----Generated at Mon Oct 20 13:40:34 2025 by rpki-client