$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: AbOZVscXOzs43pZEGA7EvJnxtGxSEstf5q0UFeJHAQ8= Subject key identifier: E8:5B:8B:CB:A3:D0:F0:28:F2:F7:15:67:A4:03:6E:03:4E:5C:83:43 Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 0431 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 042D Signing time: Sat 25 Oct 2025 03:20:10 +0000 Manifest this update: Sat 25 Oct 2025 03:20:09 +0000 Manifest next update: Sat 01 Nov 2025 03:20:09 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: drKxOOL727rHVNpxSAfrr1ROtoZsBFSOB490VAyeN3k=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 03:20:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1073 (0x431) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Oct 25 03:20:09 2025 GMT Not After : Nov 1 03:20:09 2025 GMT Subject: CN=68fc41ea-aeca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:66:9d:fb:8f:a5:38:fb:66:c0:00:c2:77:2c: 4b:8b:7c:2e:49:d3:a9:b5:02:cf:b5:70:d2:7c:c2: fb:65:8d:9a:e4:86:32:92:f8:3c:b1:79:4e:e0:4f: 8c:06:7c:d8:9c:74:37:b9:aa:f5:81:45:78:19:de: c7:37:3f:a6:89:71:cf:97:48:93:d7:24:f9:7f:55: 5f:fd:51:18:1f:3b:a3:98:68:e4:71:f6:50:cc:34: a2:05:f9:aa:27:7e:dd:7a:d2:ab:58:07:f3:8f:0b: 49:38:e8:90:14:16:26:89:42:6d:ec:1d:a4:24:3e: b5:8f:ec:61:f1:0a:2d:90:75:39:67:72:83:87:ff: bc:94:7b:be:e8:ea:28:7a:d9:f8:6a:dd:52:ac:66: 9d:2b:64:df:c0:ef:d2:26:3c:af:6d:ed:92:5b:53: 49:1e:5a:16:66:7c:a1:3a:ab:91:de:a4:3c:20:e8: 78:1c:75:35:2e:30:f8:9c:ac:eb:9e:43:38:29:2a: 04:fe:04:44:89:de:5b:29:48:6e:23:3e:17:a6:14: 28:46:fe:29:90:4d:36:a2:81:41:fe:5d:4f:a4:6b: 78:cc:74:41:ac:af:57:1b:c8:43:46:53:69:ea:0e: 8e:34:70:da:a9:96:a8:65:3b:a8:79:a5:fe:6e:cd: 61:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:5B:8B:CB:A3:D0:F0:28:F2:F7:15:67:A4:03:6E:03:4E:5C:83:43 X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:14:90:c5:d9:4c:63:27:70:35:46:32:e5:97:d4:6b:f1:85: 6c:16:60:74:49:2e:e6:ed:14:84:2f:73:fe:2a:59:14:6e:11: 8d:a7:04:d7:29:cc:94:34:91:52:36:0d:a3:08:f5:33:cd:f3: 5f:ef:0b:8a:5d:88:7e:44:73:63:18:3b:46:cc:f0:ca:7a:47: 71:79:2f:0b:a6:1b:f6:7f:9f:b7:97:20:04:bf:44:bf:3f:b7: 2f:4b:f3:b8:9e:e5:d7:c0:07:4a:a4:d6:3e:cc:f4:21:0b:85: b5:d6:f2:97:1e:15:56:36:0e:9b:ed:4c:f5:d8:6a:02:d3:88: a8:37:70:e2:b8:5b:d8:c4:d0:c4:a4:63:14:1d:c7:70:57:31: e9:49:38:3a:b8:60:35:f4:16:70:0c:ef:66:20:7a:48:07:3d: c6:fc:18:94:98:92:f4:cc:83:30:48:2b:e9:0e:a2:38:79:01: 79:df:e5:57:45:02:50:de:d7:b2:41:da:dd:5d:67:15:9a:a4: 59:56:f9:9b:43:4d:c3:f9:6e:37:58:32:54:38:3e:73:f8:37: 90:cf:b6:33:7f:3a:34:4c:bc:01:08:c4:d1:54:53:fe:fb:ce: d6:5f:6b:b8:71:73:e2:b4:dc:9b:87:b3:ae:2c:88:97:33:5a: c8:36:a2:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBDEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUxMDI1MDMyMDA5WhcNMjUxMTAxMDMyMDA5WjAYMRYwFAYD VQQDEw02OGZjNDFlYS1hZWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsWad+4+lOPtmwADCdyxLi3wuSdOptQLPtXDSfML7ZY2a5IYykvg8sXlO4E+M BnzYnHQ3uar1gUV4Gd7HNz+miXHPl0iT1yT5f1Vf/VEYHzujmGjkcfZQzDSiBfmq J37detKrWAfzjwtJOOiQFBYmiUJt7B2kJD61j+xh8QotkHU5Z3KDh/+8lHu+6Ooo etn4at1SrGadK2TfwO/SJjyvbe2SW1NJHloWZnyhOquR3qQ8IOh4HHU1LjD4nKzr nkM4KSoE/gREid5bKUhuIz4XphQoRv4pkE02ooFB/l1PpGt4zHRBrK9XG8hDRlNp 6g6ONHDaqZaoZTuoeaX+bs1hLwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOhbi8uj 0PAo8vcVZ6QDbgNOXINDMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB2FJDF2UxjJ3A1RjLll9Rr8YVsFmB0SS7m7RSEL3P+KlkUbhGNpwTX KcyUNJFSNg2jCPUzzfNf7wuKXYh+RHNjGDtGzPDKekdxeS8Lphv2f5+3lyAEv0S/ P7cvS/O4nuXXwAdKpNY+zPQhC4W11vKXHhVWNg6b7Uz12GoC04ioN3DiuFvYxNDE pGMUHcdwVzHpSTg6uGA19BZwDO9mIHpIBz3G/BiUmJL0zIMwSCvpDqI4eQF53+VX RQJQ3teyQdrdXWcVmqRZVvmbQ03D+W43WDJUOD5z+DeQz7Yzfzo0TLwBCMTRVFP+ +87WX2u4cXPitNybh7OuLIiXM1rINqKF -----END CERTIFICATE-----Generated at Sun Oct 26 20:27:53 2025 by rpki-client