$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: m6V5KCr7iqr+0gUNHdqB3MMl1RfIpAKxh06tyUiFDug= Subject key identifier: BA:10:43:0E:16:97:69:F2:92:4E:D7:E2:3F:E9:E3:82:90:27:C8:E1 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 0130 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 012E Signing time: Fri 05 Sep 2025 04:57:45 +0000 Manifest this update: Fri 05 Sep 2025 04:57:45 +0000 Manifest next update: Fri 12 Sep 2025 04:57:45 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: TqKwUf6NKdGym3RL9G1Ho137YtiebgLOyU/NymU7lYU=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:57:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Sep 5 04:57:45 2025 GMT Not After : Sep 12 04:57:45 2025 GMT Subject: CN=68ba6dc9-cd5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:36:ec:30:0f:09:98:bd:1b:f8:f5:e3:b2:a2: 4a:fe:0a:07:b8:71:53:0d:3d:75:af:81:fd:a8:5e: ff:ad:94:3d:6e:87:ea:7e:b6:bd:7f:f9:9b:ec:7b: bf:3c:0f:f5:57:07:fd:27:75:12:2a:fd:1d:f4:8e: 97:ed:da:b9:49:ef:60:94:64:65:eb:3c:50:13:13: b1:fc:7c:2d:31:96:79:d2:99:cf:1f:cc:e6:ca:b6: fd:17:a4:e2:41:2e:1e:71:60:df:81:db:32:fe:75: 1a:62:d6:d4:c3:50:ca:af:7f:b7:6c:33:31:9e:8b: ff:67:50:5f:a3:a6:c5:46:65:02:69:f1:4a:7e:d8: a9:23:7a:fe:6b:f0:68:0f:ad:2b:2b:b0:36:43:42: d3:b9:19:f6:5f:07:14:2e:02:79:e1:0a:8e:09:ce: e3:f7:c0:f9:1d:98:58:7f:a5:b6:f8:09:b9:8b:51: 12:b0:06:e8:3b:67:c8:21:b0:bd:18:3d:59:e7:54: c5:e8:31:0a:65:bc:e7:e8:a2:37:0c:7f:43:8d:5c: 0f:aa:d3:94:8b:40:9c:af:96:b2:3a:c1:d4:7b:8d: e8:cb:ca:52:58:2d:3c:52:4e:50:c9:4c:3a:21:d7: 89:46:63:bb:0b:2e:c5:8e:f5:22:51:94:55:ba:33: 5a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:10:43:0E:16:97:69:F2:92:4E:D7:E2:3F:E9:E3:82:90:27:C8:E1 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:d2:a4:ae:72:94:b7:4c:82:0f:e1:29:d5:36:b4:68:52:9b: f7:58:94:43:e4:6a:26:a8:4b:44:d6:4b:95:f8:43:0d:65:49: 45:c6:d5:03:21:72:ce:04:3b:2b:4e:e9:51:b3:96:f7:dd:ba: 7e:b1:48:da:b6:42:d5:9c:c7:e0:2c:bc:c9:25:dc:d0:6e:66: 36:c7:ee:25:12:d0:16:60:99:2f:44:fe:46:d1:4a:db:49:d0: 06:c6:5c:7c:7b:35:78:60:b5:b7:9f:83:6c:d1:01:66:d0:71: c4:78:7a:49:90:d7:09:62:29:53:cf:87:8f:92:23:61:1a:bc: 2c:fd:49:3e:01:8a:34:8f:1a:8d:7c:3d:72:3f:7f:d3:a1:e4: 0c:a9:79:86:27:ba:d5:80:88:b8:01:7d:0e:71:1f:39:42:f3: 01:d5:40:8c:43:d8:62:1d:bb:2f:1f:32:65:91:c6:7a:fe:10: 7d:b9:65:66:e7:8e:4b:77:52:5a:b6:f5:9a:d8:10:da:b7:b5: 8b:cb:d4:ef:4d:ac:16:79:78:06:68:2a:35:ee:a9:c3:a0:a2: 23:6d:92:de:e2:6f:56:2f:99:dd:f9:19:72:ff:a9:84:fe:87: d7:c4:da:c3:76:3a:32:a8:0e:4e:19:26:cb:9d:27:65:7c:cc: 7a:51:ba:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUwOTA1MDQ1NzQ1WhcNMjUwOTEyMDQ1NzQ1WjAYMRYwFAYD VQQDEw02OGJhNmRjOS1jZDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnzbsMA8JmL0b+PXjsqJK/goHuHFTDT11r4H9qF7/rZQ9bofqfra9f/mb7Hu/ PA/1Vwf9J3USKv0d9I6X7dq5Se9glGRl6zxQExOx/HwtMZZ50pnPH8zmyrb9F6Ti QS4ecWDfgdsy/nUaYtbUw1DKr3+3bDMxnov/Z1Bfo6bFRmUCafFKftipI3r+a/Bo D60rK7A2Q0LTuRn2XwcULgJ54QqOCc7j98D5HZhYf6W2+Am5i1ESsAboO2fIIbC9 GD1Z51TF6DEKZbzn6KI3DH9DjVwPqtOUi0Ccr5ayOsHUe43oy8pSWC08Uk5QyUw6 IdeJRmO7Cy7FjvUiUZRVujNaswIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLoQQw4W l2nykk7X4j/p44KQJ8jhMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB30qSucpS3TIIP4SnVNrRoUpv3WJRD5GomqEtE1kuV+EMNZUlFxtUD IXLOBDsrTulRs5b33bp+sUjatkLVnMfgLLzJJdzQbmY2x+4lEtAWYJkvRP5G0Urb SdAGxlx8ezV4YLW3n4Ns0QFm0HHEeHpJkNcJYilTz4ePkiNhGrws/Uk+AYo0jxqN fD1yP3/ToeQMqXmGJ7rVgIi4AX0OcR85QvMB1UCMQ9hiHbsvHzJlkcZ6/hB9uWVm 545Ld1JatvWa2BDat7WLy9TvTawWeXgGaCo17qnDoKIjbZLe4m9WL5nd+Rly/6mE /ofXxNrDdjoyqA5OGSbLnSdlfMx6Ubow -----END CERTIFICATE-----Generated at Sat Sep 6 21:30:33 2025 by rpki-client