$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: RmXO/pP4Zh2pvMmVZXQfH4mXxNRaFPC59cd7ZZtR5io= Subject key identifier: 37:8C:FB:D4:4A:F0:2D:05:EC:38:4D:47:F8:94:65:60:9B:99:19:14 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: D5 Signing time: Fri 19 Sep 2025 06:13:15 +0000 Manifest this update: Fri 19 Sep 2025 06:13:14 +0000 Manifest next update: Fri 26 Sep 2025 06:13:14 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: cbDj6mdyjJnhbssvS1OmwQkwDy5yXM4lshxd9LH1CZI=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:13:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Sep 19 06:13:14 2025 GMT Not After : Sep 26 06:13:14 2025 GMT Subject: CN=68ccf47a-644a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:16:11:91:68:b6:70:53:25:b8:88:01:3a:a1: c9:57:57:85:cc:d6:d4:7b:8f:02:a9:94:ff:b6:11: f2:b5:31:50:2a:b6:17:13:ca:71:21:8b:a8:c3:50: 20:1e:f0:3b:cb:a6:46:ad:fe:62:6b:b6:10:fe:25: 62:98:58:6e:a2:af:56:92:ad:c5:30:f9:c5:92:32: 3b:8a:f0:8e:40:1c:ff:7e:c3:23:24:e2:8b:1f:f1: e3:71:88:45:cc:17:e3:db:49:26:a0:a7:a6:4a:1b: 77:d8:85:9d:82:a7:db:4e:c9:15:08:64:65:ea:4d: 94:be:6f:3e:ac:e8:e5:68:26:d0:55:1c:42:fd:8c: c9:d4:24:d4:64:0f:1b:32:f7:39:b9:ee:ac:0e:47: 48:3b:92:94:7c:64:e2:af:99:d7:c0:e1:a3:b0:39: 3e:e8:21:a3:3c:bc:c4:c1:0e:3f:5f:09:6e:6c:b6: f1:42:03:b5:89:16:17:dc:12:c3:60:1c:ee:8e:d3: 6e:72:37:fd:c4:a0:5f:4e:65:8a:8c:22:4c:f6:d3: 60:c6:00:e6:52:71:3b:58:60:83:20:01:c2:e9:12: 8d:e1:4b:76:06:ea:9a:ba:0b:17:6a:23:a1:19:e7: 5d:2a:91:75:46:3c:1a:e5:54:e8:08:9a:78:cf:6a: 48:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:8C:FB:D4:4A:F0:2D:05:EC:38:4D:47:F8:94:65:60:9B:99:19:14 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:d1:1a:0a:90:97:d2:bc:e9:e0:c4:fe:d2:c0:61:df:57:dc: 9b:50:cf:30:1f:53:c1:b1:4e:6b:ae:43:04:fb:cb:10:7a:71: dd:60:e2:f7:bc:8a:e7:14:83:a0:2d:f8:87:e0:ad:8a:e2:ce: 9a:53:2f:ba:47:fe:b1:9f:5a:4b:c9:6e:31:18:eb:24:7a:e5: 89:aa:65:a4:1f:87:b7:a3:85:7e:7f:fd:d8:43:64:4d:f6:67: 3d:89:86:6b:84:8e:0a:39:e8:86:2c:bd:eb:a9:26:49:58:a8: db:9d:d9:b9:1e:c1:97:cb:0d:04:1b:18:9d:0a:91:61:1f:84: 73:9f:f3:3d:73:49:db:98:a9:9e:91:52:69:81:18:26:92:89: 27:0c:84:c3:6d:a0:ec:b1:38:e9:37:90:c4:6d:2f:be:75:94: 67:a5:2f:5f:c0:f9:58:31:a9:a6:07:f8:d4:d6:6d:4c:f8:ff: c0:5c:6a:e3:e4:0b:2a:7c:46:31:bd:35:26:4b:36:8a:91:bb: 71:08:84:77:b5:db:77:ef:32:17:a2:8f:3c:9e:c3:9e:c7:f3: 1d:fc:7b:28:0f:55:ba:1d:ac:8f:dc:54:14:9b:e7:bd:22:44: 08:e8:0c:52:8d:05:55:99:1c:4a:02:b5:6b:c3:5d:1b:95:0c: 17:9e:67:7f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwOTE5MDYxMzE0WhcNMjUwOTI2MDYxMzE0WjAYMRYwFAYD VQQDEw02OGNjZjQ3YS02NDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3xYRkWi2cFMluIgBOqHJV1eFzNbUe48CqZT/thHytTFQKrYXE8pxIYuow1Ag HvA7y6ZGrf5ia7YQ/iVimFhuoq9Wkq3FMPnFkjI7ivCOQBz/fsMjJOKLH/HjcYhF zBfj20kmoKemSht32IWdgqfbTskVCGRl6k2Uvm8+rOjlaCbQVRxC/YzJ1CTUZA8b Mvc5ue6sDkdIO5KUfGTir5nXwOGjsDk+6CGjPLzEwQ4/XwlubLbxQgO1iRYX3BLD YBzujtNucjf9xKBfTmWKjCJM9tNgxgDmUnE7WGCDIAHC6RKN4Ut2BuqaugsXaiOh GeddKpF1Rjwa5VToCJp4z2pIcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeM+9RK 8C0F7DhNR/iUZWCbmRkUMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBl0RoKkJfSvOngxP7SwGHfV9ybUM8wH1PBsU5rrkME+8sQenHdYOL3 vIrnFIOgLfiH4K2K4s6aUy+6R/6xn1pLyW4xGOskeuWJqmWkH4e3o4V+f/3YQ2RN 9mc9iYZrhI4KOeiGLL3rqSZJWKjbndm5HsGXyw0EGxidCpFhH4Rzn/M9c0nbmKme kVJpgRgmkoknDITDbaDssTjpN5DEbS++dZRnpS9fwPlYMammB/jU1m1M+P/AXGrj 5AsqfEYxvTUmSzaKkbtxCIR3tdt37zIXoo88nsOex/Md/HsoD1W6HayP3FQUm+e9 IkQI6AxSjQVVmRxKArVrw10blQwXnmd/ -----END CERTIFICATE-----Generated at Fri Sep 19 11:57:45 2025 by rpki-client