$ rpki-client -vvf rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft File: kB-Ykfv38n1Bah7gazGwFlquHcU.mft (raw, json) Hash identifier: 72Lcv1pHFW5MW5Fc80cR4WwWOmqsJpDoSZi96tc3hhM= Subject key identifier: E8:39:9E:E7:5E:AF:B6:07:84:A0:A6:5D:7B:AA:6B:98:DC:3F:F4:8F Authority key identifier: 90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 Certificate issuer: /CN=A9132D93/serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Certificate serial: 041B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft Manifest number: 0417 Signing time: Tue 09 Sep 2025 00:26:58 +0000 Manifest this update: Tue 09 Sep 2025 00:26:58 +0000 Manifest next update: Tue 16 Sep 2025 00:26:58 +0000 Files and hashes: 1: kB-Ykfv38n1Bah7gazGwFlquHcU.crl (hash: ng+kWoExiUyKzDBO5KjmxOn5JzRayIKKb/aasRfQeZU=) 2: 4E0503CA7F3F11ECBB0EA972C4F9AE02.roa (hash: zGO+SfCUiN93pLbUpzCLUs56wrah6tVni3k+tYi9qSM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:26:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1051 (0x41b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132D93, serialNumber=901F9891FBF7F27D416A1EE06B31B0165AAE1DC5 Validity Not Before: Sep 9 00:26:58 2025 GMT Not After : Sep 16 00:26:58 2025 GMT Subject: CN=68bf7452-bbe8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9e:17:1c:bd:dc:99:91:4a:94:e1:6c:61:14: e1:86:1c:cf:51:ed:10:93:80:35:7a:6e:c8:f3:ed: 84:18:7e:7d:cb:3f:ef:67:9b:f1:95:a4:a2:2a:9a: 6a:65:e5:0e:9a:2b:cd:1b:6e:f8:72:aa:55:d0:88: 91:e9:d7:9d:b5:e7:c6:4e:77:8c:0f:be:85:c0:40: 9c:7b:38:07:8c:35:7b:88:92:41:30:a8:95:42:7d: f4:21:a8:43:53:69:99:48:87:43:74:3c:3b:ea:c6: d1:cd:e9:b8:5e:cf:2d:ae:eb:b3:1e:4d:16:cf:63: a5:04:63:e4:ea:57:8d:22:c3:f1:07:5c:71:ae:cf: d3:9e:84:1c:dc:da:d5:f5:cb:0f:bf:57:4b:df:b1: 3f:3d:92:1a:8a:bc:bd:07:cd:f7:17:2c:96:00:d6: 2f:dc:a2:c8:62:e0:5b:72:5f:a5:1c:64:47:02:59: 15:ca:bd:84:16:04:49:f8:8a:f0:9d:39:3f:18:e7: 62:97:bd:5d:10:0d:2f:d2:07:ca:16:28:2c:e6:2e: b9:28:88:c0:6e:40:92:2c:c4:cb:08:f1:b5:e8:2f: ee:d5:39:20:72:53:86:39:54:da:1d:4f:1e:2e:0b: 01:d5:0e:ef:f3:0b:53:86:8b:20:75:cb:07:08:60: c6:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:39:9E:E7:5E:AF:B6:07:84:A0:A6:5D:7B:AA:6B:98:DC:3F:F4:8F X509v3 Authority Key Identifier: keyid:90:1F:98:91:FB:F7:F2:7D:41:6A:1E:E0:6B:31:B0:16:5A:AE:1D:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kB-Ykfv38n1Bah7gazGwFlquHcU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132D93/0F874A747F3D11EC8A1DCC71C4F9AE02/kB-Ykfv38n1Bah7gazGwFlquHcU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:7d:6f:e8:46:29:5f:0a:35:d6:0b:7b:25:08:47:e3:10:fb: 49:c5:92:00:2b:02:a5:94:d9:ef:22:76:2f:67:e7:5b:59:e2: 05:20:78:f1:94:92:81:9e:68:b3:4a:74:62:12:36:31:56:17: 2e:85:a0:4b:20:79:b2:f5:fd:56:65:3f:cc:c4:64:f6:61:60: f3:ae:f7:73:ab:e7:04:6a:d3:af:29:60:cb:b8:eb:30:dc:7a: 99:16:ca:e5:a9:77:93:d9:5a:e4:3f:ce:4c:36:aa:70:0c:97: d1:6f:40:44:3d:78:b7:a6:8a:42:ac:eb:76:15:04:54:0b:da: 8f:bd:c9:77:c2:26:58:ed:71:5b:1f:d3:25:46:27:d6:0f:e5: 61:55:1a:16:ad:d9:f7:8a:6d:b1:fe:25:8a:a5:ec:48:42:d5: de:1b:53:b1:76:a0:0b:ea:46:2c:cd:69:cb:af:30:f5:5c:6f: 2f:75:b9:cb:b2:70:ed:5e:af:9e:54:5c:e6:33:82:91:c4:6e: 92:d0:8b:56:97:1d:34:67:37:90:42:6e:f0:48:7b:0a:ef:17: d5:aa:44:c0:39:af:a9:6f:b6:de:42:51:48:21:38:55:93:dd: 04:6f:aa:e5:02:1d:f5:3c:cd:06:b2:e2:46:01:9b:13:93:56: 1f:80:5b:47 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEOTMxMTAvBgNVBAUTKDkwMUY5ODkxRkJGN0YyN0Q0MTZBMUVFMDZCMzFCMDE2 NUFBRTFEQzUwHhcNMjUwOTA5MDAyNjU4WhcNMjUwOTE2MDAyNjU4WjAYMRYwFAYD VQQDEw02OGJmNzQ1Mi1iYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAup4XHL3cmZFKlOFsYRThhhzPUe0Qk4A1em7I8+2EGH59yz/vZ5vxlaSiKppq ZeUOmivNG274cqpV0IiR6dedtefGTneMD76FwECcezgHjDV7iJJBMKiVQn30IahD U2mZSIdDdDw76sbRzem4Xs8truuzHk0Wz2OlBGPk6leNIsPxB1xxrs/TnoQc3NrV 9csPv1dL37E/PZIairy9B833FyyWANYv3KLIYuBbcl+lHGRHAlkVyr2EFgRJ+Irw nTk/GOdil71dEA0v0gfKFigs5i65KIjAbkCSLMTLCPG16C/u1TkgclOGOVTaHU8e LgsB1Q7v8wtThosgdcsHCGDGLQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOg5nude r7YHhKCmXXuqa5jcP/SPMB8GA1UdIwQYMBaAFJAfmJH79/J9QWoe4GsxsBZarh3F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkQ5My8wRjg3NEE3NDdG M0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2MzhuMUJhaDdnYXpHd0ZscXVI Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tCLVlrZnYzOG4xQmFoN2dhekd3RmxxdUhjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkQ5My8wRjg3NEE3NDdGM0QxMUVDOEExRENDNzFDNEY5QUUwMi9rQi1Za2Z2Mzhu MUJhaDdnYXpHd0ZscXVIY1UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBXfW/oRilfCjXWC3slCEfjEPtJxZIAKwKllNnvInYvZ+dbWeIFIHjx lJKBnmizSnRiEjYxVhcuhaBLIHmy9f1WZT/MxGT2YWDzrvdzq+cEatOvKWDLuOsw 3HqZFsrlqXeT2VrkP85MNqpwDJfRb0BEPXi3popCrOt2FQRUC9qPvcl3wiZY7XFb H9MlRifWD+VhVRoWrdn3im2x/iWKpexIQtXeG1OxdqAL6kYszWnLrzD1XG8vdbnL snDtXq+eVFzmM4KRxG6S0ItWlx00ZzeQQm7wSHsK7xfVqkTAOa+pb7beQlFIIThV k90Eb6rlAh31PM0GsuJGAZsTk1YfgFtH -----END CERTIFICATE-----Generated at Tue Sep 9 07:53:30 2025 by rpki-client