$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft File: KTvwacT02DHu52nVsTnjAh2zSwA.mft (raw, json) Hash identifier: 2pYK9YtMXs3xz1qMYtnT8HTDQkW9RnaYTnKMOWmb5vw= Subject key identifier: EC:0A:D1:C0:3B:2E:55:A3:3C:26:9F:68:28:28:0E:99:AE:E4:EF:86 Authority key identifier: 29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 Certificate issuer: /CN=A91CE65A/serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Certificate serial: F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft Manifest number: EE Signing time: Sun 19 Oct 2025 08:22:49 +0000 Manifest this update: Sun 19 Oct 2025 08:22:48 +0000 Manifest next update: Sun 26 Oct 2025 08:22:48 +0000 Files and hashes: 1: KTvwacT02DHu52nVsTnjAh2zSwA.crl (hash: cCVG5XwuVGutvEAVS3kycm/fGXnY/lb0nEkXrY8iyoI=) 2: 62959E66682B11F09ECB0C24C4F9AE02.roa (hash: QteYiqxagttieW0gH2HjsmgjmoFz+n9ylxq8eEuUcDA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:22:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE65A, serialNumber=293BF069C4F4D831EEE769D5B139E3021DB34B00 Validity Not Before: Oct 19 08:22:48 2025 GMT Not After : Oct 26 08:22:48 2025 GMT Subject: CN=68f49fd9-9c28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3c:27:69:58:70:8e:55:5f:cf:e9:55:3c:9b: 76:be:64:a3:94:80:82:cc:ac:33:fd:50:4d:c2:04: 3e:fa:65:fc:96:45:02:1c:e6:95:cc:31:12:fd:da: ab:a4:6c:cd:85:b2:f9:7a:20:96:78:1a:9a:aa:b7: a3:79:13:5d:34:6f:6a:39:42:9b:11:a7:21:14:8c: 1f:22:29:53:41:29:65:1d:b7:8b:ea:c7:2c:03:3a: 17:67:6a:c9:2c:b6:47:86:84:e5:38:dd:98:08:42: 20:48:13:8a:d5:6c:a4:86:f1:a0:af:00:fe:f1:53: 2d:4c:c7:86:22:ad:c6:a4:aa:5d:0b:75:64:b7:7d: 8b:aa:b6:53:7c:38:9d:07:b8:b6:96:3a:20:b8:70: 75:79:1e:b4:08:47:c3:5c:1e:ec:54:1b:50:b3:25: cc:2d:66:b8:28:55:a1:10:dc:24:80:5d:b4:d6:6a: 49:b3:9e:81:38:98:f2:86:90:79:d0:cd:f4:09:c8: 1f:98:55:dd:af:3a:40:da:a1:56:a0:25:29:b0:d4: 87:e3:36:a7:32:6b:97:40:4f:a7:9a:ac:5b:ec:be: e6:a1:d3:b3:7e:5e:40:20:a6:16:04:4d:b9:20:57: 5c:34:67:51:c8:f4:8e:5f:62:21:52:56:ce:87:66: ce:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:0A:D1:C0:3B:2E:55:A3:3C:26:9F:68:28:28:0E:99:AE:E4:EF:86 X509v3 Authority Key Identifier: keyid:29:3B:F0:69:C4:F4:D8:31:EE:E7:69:D5:B1:39:E3:02:1D:B3:4B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KTvwacT02DHu52nVsTnjAh2zSwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE65A/66E6FE36497A11EFAF551842C4F9AE02/KTvwacT02DHu52nVsTnjAh2zSwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 48:44:96:44:df:00:2c:f7:7d:1c:21:f4:0d:45:79:bf:f2:50: 19:ce:ba:27:c0:3b:c8:1b:44:42:4d:78:f1:1f:d2:36:85:7c: fd:97:a3:1c:43:ad:ea:84:07:b6:2c:5f:97:52:56:66:f2:1f: bb:f7:60:7c:56:ec:c2:d1:10:33:81:2b:38:a6:2f:2e:9b:51: 21:81:e7:7c:f7:9b:f5:93:7e:3e:4c:dc:1a:4e:58:b8:60:b8: a6:43:46:ef:9f:bc:73:e4:6c:89:3b:7c:70:3c:5d:25:f2:88: bb:a0:06:a1:b5:ff:35:a7:0a:60:90:33:ef:dc:d5:ba:f4:4a: 10:09:e2:0e:e0:c1:bf:8f:1d:9c:65:99:11:97:5f:c2:d1:45: 59:2d:a8:fe:a6:65:cc:ae:e7:21:63:24:31:29:7d:c6:f2:62: d7:03:b8:fe:75:92:9c:7d:5c:e2:25:11:5f:45:27:c9:47:3d: 8e:9e:a7:da:7a:9a:49:83:14:fc:84:2c:f7:0e:1a:19:f9:2a: 8e:ac:fe:2b:45:3f:11:6a:3e:38:1b:05:28:50:ff:0d:e9:95: ea:8b:c3:70:41:d4:11:9c:47:b3:00:92:6d:b4:89:ec:da:4b: 2d:7d:ec:35:e8:ab:5d:ea:3b:c5:69:f9:a5:fb:76:b9:4f:32: 08:ea:5d:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U2NUExMTAvBgNVBAUTKDI5M0JGMDY5QzRGNEQ4MzFFRUU3NjlENUIxMzlFMzAy MURCMzRCMDAwHhcNMjUxMDE5MDgyMjQ4WhcNMjUxMDI2MDgyMjQ4WjAYMRYwFAYD VQQDEw02OGY0OWZkOS05YzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDwnaVhwjlVfz+lVPJt2vmSjlICCzKwz/VBNwgQ++mX8lkUCHOaVzDES/dqr pGzNhbL5eiCWeBqaqrejeRNdNG9qOUKbEachFIwfIilTQSllHbeL6scsAzoXZ2rJ LLZHhoTlON2YCEIgSBOK1WykhvGgrwD+8VMtTMeGIq3GpKpdC3Vkt32LqrZTfDid B7i2ljoguHB1eR60CEfDXB7sVBtQsyXMLWa4KFWhENwkgF201mpJs56BOJjyhpB5 0M30CcgfmFXdrzpA2qFWoCUpsNSH4zanMmuXQE+nmqxb7L7modOzfl5AIKYWBE25 IFdcNGdRyPSOX2IhUlbOh2bOMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOwK0cA7 LlWjPCafaCgoDpmu5O+GMB8GA1UdIwQYMBaAFCk78GnE9Ngx7udp1bE54wIds0sA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTY1QS82NkU2RkUzNjQ5 N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJESHU1Mm5Wc1RuakFoMnpT d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tUdndhY1QwMkRIdTUyblZzVG5qQWgyelN3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTY1QS82NkU2RkUzNjQ5N0ExMUVGQUY1NTE4NDJDNEY5QUUwMi9LVHZ3YWNUMDJE SHU1Mm5Wc1RuakFoMnpTd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBIRJZE3wAs930cIfQNRXm/8lAZzronwDvIG0RCTXjxH9I2hXz9l6Mc Q63qhAe2LF+XUlZm8h+792B8VuzC0RAzgSs4pi8um1Ehged895v1k34+TNwaTli4 YLimQ0bvn7xz5GyJO3xwPF0l8oi7oAahtf81pwpgkDPv3NW69EoQCeIO4MG/jx2c ZZkRl1/C0UVZLaj+pmXMruchYyQxKX3G8mLXA7j+dZKcfVziJRFfRSfJRz2Onqfa eppJgxT8hCz3DhoZ+SqOrP4rRT8Raj44GwUoUP8N6ZXqi8NwQdQRnEezAJJttIns 2kstfew16Ktd6jvFafml+3a5TzII6l1x -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:00 2025 by rpki-client