$ rpki-client -vvf rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft File: KYEeHbBovbur-3q2lfhYmL1hjGk.mft (raw, json) Hash identifier: arevBNlt+tELo5+H2FIOOT1GFgGUUGr+e0D5Bj27ATM= Subject key identifier: C3:F1:5C:B7:9E:92:20:06:23:30:18:75:98:09:63:42:B5:79:1D:AE Authority key identifier: 29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 Certificate issuer: /CN=A91B0CAE/serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Certificate serial: 017E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft Manifest number: 017B Signing time: Sun 19 Oct 2025 06:22:00 +0000 Manifest this update: Sun 19 Oct 2025 06:21:59 +0000 Manifest next update: Sun 26 Oct 2025 06:21:59 +0000 Files and hashes: 1: KYEeHbBovbur-3q2lfhYmL1hjGk.crl (hash: uT1sJe8cRaoNXLcVn/5w6AFyPH5oUSu83tOaCNRWDVU=) 2: 0B2052EA6D0D11EEA65D7522C4F9AE02.roa (hash: romYbuiWzdOqklzJCkUsUwW/w4kh63Rd2xMFubLjgPo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:21:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 382 (0x17e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B0CAE, serialNumber=29811E1DB068BDBBABFB7AB695F85898BD618C69 Validity Not Before: Oct 19 06:21:59 2025 GMT Not After : Oct 26 06:21:59 2025 GMT Subject: CN=68f48387-f1cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:ce:16:8e:12:99:db:82:75:76:cf:31:0b:12: c3:b9:43:d7:98:81:06:b9:43:08:08:d6:ff:d0:40: b0:78:78:b3:16:7d:a0:50:3a:eb:04:23:60:11:5b: d3:f1:bc:4c:77:41:45:27:44:9b:3f:17:a5:60:16: 47:94:2c:00:09:00:f8:92:9f:9d:56:a8:fd:db:88: 9e:71:d6:9c:dd:0b:35:08:79:df:5a:c5:3a:1c:33: 7f:88:d4:aa:1d:4d:d7:17:fa:8f:7a:ca:81:4b:6e: 8b:a5:76:94:8c:a8:20:60:0c:4f:44:ee:0f:06:eb: 1c:6d:77:b4:f3:3e:b1:cb:93:9f:37:eb:28:5a:e1: 05:43:97:ee:25:bc:45:7b:c1:c5:ef:3b:ff:69:8c: a2:55:f8:a6:14:bf:e0:fa:37:19:f1:f1:06:19:13: 37:3c:8a:6f:b8:30:5e:a4:58:2c:1b:bc:a8:c3:88: 7a:4a:9b:20:65:d5:57:0a:41:8e:6b:05:a2:99:fc: 78:21:08:fa:41:ea:23:a0:c2:4a:be:2a:6a:d7:77: a2:89:e9:96:1a:f7:cd:a1:64:7d:5c:bf:83:7e:c2: 78:14:6d:e2:cc:69:e4:08:e4:bf:b1:38:5d:6b:db: d9:12:3e:8d:f9:c3:5f:ca:da:df:ce:7e:a6:6a:c0: 12:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:F1:5C:B7:9E:92:20:06:23:30:18:75:98:09:63:42:B5:79:1D:AE X509v3 Authority Key Identifier: keyid:29:81:1E:1D:B0:68:BD:BB:AB:FB:7A:B6:95:F8:58:98:BD:61:8C:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KYEeHbBovbur-3q2lfhYmL1hjGk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B0CAE/7C644EE66A7111EEA5B4CB26C4F9AE02/KYEeHbBovbur-3q2lfhYmL1hjGk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:aa:ad:ce:5b:0d:2a:ac:94:06:f4:8e:3f:19:37:66:fc:66: ca:4a:89:77:3d:20:05:1c:c8:2f:56:49:f6:7a:7d:fc:f4:57: 23:ca:03:e9:fb:75:e6:15:5e:8c:90:cf:39:91:0b:34:d9:62: 4a:c9:f6:f8:b8:5d:7c:95:df:7a:c1:72:95:af:50:f9:9e:62: 9d:d5:dc:c0:73:fc:dd:72:0e:26:27:45:4e:8a:45:cd:12:40: 2f:cf:9b:15:3a:62:fc:35:cd:8c:f6:c0:14:07:24:66:6c:8e: c9:38:b1:41:0c:a0:28:21:1c:08:8c:e7:0f:34:44:b1:c8:04: 54:4b:a0:4d:59:a5:69:12:f4:63:d5:6d:6f:87:38:fa:0f:ba: 74:00:b0:7c:cb:6a:ea:61:0b:08:e0:24:93:71:04:f2:3a:de: fb:58:8b:7f:be:45:63:02:a1:3f:93:3d:73:90:80:a2:52:bb: 7d:47:19:b4:8b:07:38:9f:1f:18:09:36:14:e3:94:52:1a:d7: ec:5f:52:74:5a:cc:3e:8c:13:9f:05:1c:0e:2f:b1:3e:0e:9f: 4a:7a:81:ce:2a:2d:c8:c5:9d:27:23:39:e7:a8:50:cf:9f:dc: d0:25:d5:b8:8b:31:8c:17:bd:50:d2:ef:8d:a1:c2:a5:d2:79: 6d:47:72:d6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjBDQUUxMTAvBgNVBAUTKDI5ODExRTFEQjA2OEJEQkJBQkZCN0FCNjk1Rjg1ODk4 QkQ2MThDNjkwHhcNMjUxMDE5MDYyMTU5WhcNMjUxMDI2MDYyMTU5WjAYMRYwFAYD VQQDEw02OGY0ODM4Ny1mMWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnc4WjhKZ24J1ds8xCxLDuUPXmIEGuUMICNb/0ECweHizFn2gUDrrBCNgEVvT 8bxMd0FFJ0SbPxelYBZHlCwACQD4kp+dVqj924iecdac3Qs1CHnfWsU6HDN/iNSq HU3XF/qPesqBS26LpXaUjKggYAxPRO4PBuscbXe08z6xy5OfN+soWuEFQ5fuJbxF e8HF7zv/aYyiVfimFL/g+jcZ8fEGGRM3PIpvuDBepFgsG7yow4h6SpsgZdVXCkGO awWimfx4IQj6QeojoMJKvipq13eiiemWGvfNoWR9XL+DfsJ4FG3izGnkCOS/sThd a9vZEj6N+cNfytrfzn6masAS7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMPxXLee kiAGIzAYdZgJY0K1eR2uMB8GA1UdIwQYMBaAFCmBHh2waL27q/t6tpX4WJi9YYxp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMENBRS83QzY0NEVFNjZB NzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3ZidXItM3EybGZoWW1MMWhq R2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tZRWVIYkJvdmJ1ci0zcTJsZmhZbUwxaGpHay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MENBRS83QzY0NEVFNjZBNzExMUVFQTVCNENCMjZDNEY5QUUwMi9LWUVlSGJCb3Zi dXItM3EybGZoWW1MMWhqR2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCAqq3OWw0qrJQG9I4/GTdm/GbKSol3PSAFHMgvVkn2en389FcjygPp +3XmFV6MkM85kQs02WJKyfb4uF18ld96wXKVr1D5nmKd1dzAc/zdcg4mJ0VOikXN EkAvz5sVOmL8Nc2M9sAUByRmbI7JOLFBDKAoIRwIjOcPNESxyARUS6BNWaVpEvRj 1W1vhzj6D7p0ALB8y2rqYQsI4CSTcQTyOt77WIt/vkVjAqE/kz1zkICiUrt9Rxm0 iwc4nx8YCTYU45RSGtfsX1J0Wsw+jBOfBRwOL7E+Dp9KeoHOKi3IxZ0nIznnqFDP n9zQJdW4izGMF71Q0u+NocKl0nltR3LW -----END CERTIFICATE-----Generated at Mon Oct 20 05:40:31 2025 by rpki-client