$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: Kjv6p2xjhaC2T+byESSOwGlSgEiPenNS4lIj88fyDrQ= Subject key identifier: 66:4D:C1:1E:C6:90:B4:64:52:5F:DA:95:76:AA:06:4C:3B:E9:11:47 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 029D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 0299 Signing time: Thu 03 Jul 2025 01:57:20 +0000 Manifest this update: Thu 03 Jul 2025 01:57:19 +0000 Manifest next update: Thu 10 Jul 2025 01:57:19 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: vITekp+TdMsTWzWi74T/J6EFt1acSMAqVHHSBACZnlU=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 01:57:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 669 (0x29d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Jul 3 01:57:19 2025 GMT Not After : Jul 10 01:57:19 2025 GMT Subject: CN=6865e37f-cd8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cd:4c:7f:06:c5:9c:20:d0:4a:b3:0d:1e:46: 28:fc:21:19:33:7b:2f:46:64:b1:7a:0f:13:9e:4f: f3:81:2f:56:ce:60:03:54:3c:56:7c:d9:c0:e5:b5: 80:93:c3:a6:9d:42:61:94:13:3b:99:ea:81:ca:fd: 3d:f5:77:87:fb:80:44:99:2b:ad:0f:ec:1c:4c:88: 2a:37:ca:a9:f8:bc:ef:e5:14:42:36:b5:e7:de:05: 06:84:49:47:66:b7:17:df:ed:2d:02:be:ae:46:cc: 04:ab:ce:51:1e:31:be:4f:e4:86:27:3e:7b:55:68: 32:43:e8:5b:b7:ca:b3:1e:5a:8d:37:20:7d:62:ed: f8:94:7c:52:3c:22:36:cf:2b:05:9f:03:3c:26:41: e8:81:84:fb:45:b6:20:f9:80:19:62:bb:e1:8c:db: ff:77:38:8c:9e:6d:5f:9b:1a:db:7e:cd:71:63:8f: 50:7f:cb:85:4c:d4:23:70:bf:6b:90:a9:bb:ef:bd: 16:36:ba:5e:28:9a:b1:71:63:95:91:e9:39:4b:32: fb:e3:a6:30:6a:90:81:a5:4c:6f:d3:ba:8a:72:68: ca:41:2f:87:1a:e7:1c:88:99:20:22:f8:35:77:7d: 6a:81:07:4a:d9:99:5f:fc:1c:f9:73:93:aa:c1:81: e3:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:4D:C1:1E:C6:90:B4:64:52:5F:DA:95:76:AA:06:4C:3B:E9:11:47 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:3a:d3:a1:02:66:46:30:8e:6a:ac:45:c1:03:1e:b3:43:12: b0:a1:11:36:2a:01:9d:5b:ef:4a:5d:37:77:08:a5:33:de:e6: ac:61:1c:c2:ce:a8:b9:05:81:bd:01:1f:83:29:68:17:46:d8: ce:00:64:8a:fb:19:9f:91:01:4c:97:eb:97:91:7b:ed:4e:06: 85:6d:c4:44:44:4b:df:f2:e1:f4:f4:37:07:cb:95:54:fb:5e: 4e:ff:ab:7c:14:10:05:a9:56:6d:65:94:56:6a:22:8b:6d:62: 34:e0:c3:df:ff:9e:c5:af:5f:df:9a:45:61:5a:ef:15:d4:a5: 6e:90:63:03:11:fc:48:61:e0:03:9e:fc:50:5f:b1:d4:25:a0: c0:34:46:06:2f:86:49:f5:79:68:84:6b:46:cb:41:e5:3d:49: a9:80:15:6c:60:25:31:e4:d1:a2:6f:d7:d6:1b:43:e6:5d:f2: 82:c9:16:b7:ea:14:b9:29:a9:32:43:68:5f:e0:92:b6:6e:73: 42:4a:d0:ad:c0:2c:e0:57:68:76:91:7f:e5:ff:82:79:2e:5b: ad:dd:fb:a5:3b:5b:1c:0a:a6:89:75:8b:41:3c:aa:26:71:cf: cd:4a:39:37:93:dd:52:6a:75:6e:b3:a1:c6:8e:08:3b:c1:6c: 19:0b:d0:d1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwNzAzMDE1NzE5WhcNMjUwNzEwMDE1NzE5WjAYMRYwFAYD VQQDEw02ODY1ZTM3Zi1jZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAns1MfwbFnCDQSrMNHkYo/CEZM3svRmSxeg8Tnk/zgS9WzmADVDxWfNnA5bWA k8OmnUJhlBM7meqByv099XeH+4BEmSutD+wcTIgqN8qp+Lzv5RRCNrXn3gUGhElH ZrcX3+0tAr6uRswEq85RHjG+T+SGJz57VWgyQ+hbt8qzHlqNNyB9Yu34lHxSPCI2 zysFnwM8JkHogYT7RbYg+YAZYrvhjNv/dziMnm1fmxrbfs1xY49Qf8uFTNQjcL9r kKm7770WNrpeKJqxcWOVkek5SzL746YwapCBpUxv07qKcmjKQS+HGucciJkgIvg1 d31qgQdK2Zlf/Bz5c5OqwYHj0QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZNwR7G kLRkUl/alXaqBkw76RFHMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFOtOhAmZGMI5qrEXBAx6zQxKwoRE2KgGdW+9KXTd3CKUz3uasYRzC zqi5BYG9AR+DKWgXRtjOAGSK+xmfkQFMl+uXkXvtTgaFbcREREvf8uH09DcHy5VU +15O/6t8FBAFqVZtZZRWaiKLbWI04MPf/57Fr1/fmkVhWu8V1KVukGMDEfxIYeAD nvxQX7HUJaDANEYGL4ZJ9XlohGtGy0HlPUmpgBVsYCUx5NGib9fWG0PmXfKCyRa3 6hS5KakyQ2hf4JK2bnNCStCtwCzgV2h2kX/l/4J5Llut3fulO1scCqaJdYtBPKom cc/NSjk3k91SanVus6HGjgg7wWwZC9DR -----END CERTIFICATE-----Generated at Thu Jul 3 06:11:11 2025 by rpki-client