$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft File: 2kcnine73_Ktn5igEaKnoufNYNg.mft (raw, json) Hash identifier: XXVuBhHNGrmaPj+CxaGdvoGpIiWjBJ376usdhgtTtOg= Subject key identifier: A2:88:5A:A3:D1:42:49:D7:A6:C9:12:1B:4E:1E:8A:1A:BD:AC:77:C3 Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft Manifest number: EB Signing time: Mon 03 Nov 2025 05:18:57 +0000 Manifest this update: Mon 03 Nov 2025 05:18:57 +0000 Manifest next update: Mon 10 Nov 2025 05:18:56 +0000 Files and hashes: 1: 2kcnine73_Ktn5igEaKnoufNYNg.crl (hash: g720ZZAZ2fEkXPati7LXg9FJNQaAsvpsgwGEtzfVS+I=) 2: 05A966C652DB11EF990CB840C4F9AE02.roa (hash: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Nov 3 05:18:57 2025 GMT Not After : Nov 10 05:18:56 2025 GMT Subject: CN=69083b41-5db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:a5:4d:1d:a4:ad:be:36:5a:9c:68:cd:71:78: 60:84:61:ef:b8:0c:f4:90:8d:aa:df:92:ea:57:39: c5:62:05:96:7d:11:86:87:78:b2:95:10:da:e5:5f: 32:96:3b:da:cb:b1:84:a1:82:8b:65:09:22:e6:51: 52:a9:8b:21:ff:3a:92:9e:06:4b:6b:a3:80:75:ff: b6:4b:5b:16:04:2b:f0:2a:19:d0:77:1a:86:d5:03: 39:fa:9e:4d:db:cd:f1:35:78:e0:7a:1f:cd:a6:c9: cd:08:53:70:2a:cd:b2:9f:cb:e5:bb:50:81:03:4f: 3a:5a:2e:0f:63:ba:18:a0:45:60:f6:32:12:08:53: a1:2b:97:49:c3:74:68:e7:cb:c0:f6:e7:98:5b:ce: 15:77:b1:e9:00:0b:d0:2f:42:30:d1:ad:9d:da:4b: c8:2b:80:87:26:c8:df:8e:de:a7:dd:06:20:52:f5: 7b:c6:4a:df:cd:38:ab:0c:d5:f3:26:53:d2:9e:0d: 0d:81:c0:c5:d5:fd:bd:f8:64:d9:8d:93:16:32:ba: 3c:f0:6c:d6:02:ce:ae:3c:2f:48:c4:91:89:95:0e: 21:07:4f:68:4e:2c:3c:07:51:8e:20:dc:da:20:b6: 99:9a:02:f5:d1:4c:cc:5c:11:9f:12:f6:46:f3:75: be:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:88:5A:A3:D1:42:49:D7:A6:C9:12:1B:4E:1E:8A:1A:BD:AC:77:C3 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:66:bf:90:0a:e6:79:e3:cb:96:20:ad:b4:aa:a5:e9:78:4e: 36:33:c7:27:15:31:01:6e:a8:ac:68:a8:86:bf:12:b9:85:3c: 73:11:36:26:e9:60:29:37:87:3d:f9:8f:9f:3a:0a:9a:ef:22: 17:25:19:6d:a0:db:4e:aa:81:b5:e7:a2:48:1d:e4:1f:34:1e: 6a:01:38:a5:ca:70:9c:7f:9f:db:63:76:c7:91:15:37:b3:e8: b1:b3:1e:53:5e:05:3c:e1:aa:84:c1:b9:8a:a7:c0:66:c6:a4: eb:31:51:56:c1:74:5f:90:de:0c:da:b1:6a:2f:9a:ff:a0:fa: 8d:b7:bc:4d:fd:81:a7:c2:23:b0:31:ed:d2:fe:d4:af:df:95: fb:ec:61:b3:71:17:1d:79:6f:91:ad:28:c7:19:84:37:f6:30: 87:36:ec:99:8b:c9:3b:e7:03:6f:38:e7:ce:14:dd:5b:ea:55: 1f:9d:9f:87:e7:b7:33:7a:c1:67:73:ce:54:9f:b3:7b:bf:65: 93:3a:99:d6:da:b0:42:09:0b:7c:51:c5:d9:f8:40:b2:69:7f: e1:55:1e:ed:42:c7:06:94:38:d7:7e:28:46:6c:e0:2e:83:25: 2f:d5:b7:da:bc:6e:b8:35:5c:00:b4:8a:b9:6b:5e:54:1b:e3: fb:8d:0f:65 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUxMTAzMDUxODU3WhcNMjUxMTEwMDUxODU2WjAYMRYwFAYD VQQDEw02OTA4M2I0MS01ZGI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnKVNHaStvjZanGjNcXhghGHvuAz0kI2q35LqVznFYgWWfRGGh3iylRDa5V8y ljvay7GEoYKLZQki5lFSqYsh/zqSngZLa6OAdf+2S1sWBCvwKhnQdxqG1QM5+p5N 283xNXjgeh/NpsnNCFNwKs2yn8vlu1CBA086Wi4PY7oYoEVg9jISCFOhK5dJw3Ro 58vA9ueYW84Vd7HpAAvQL0Iw0a2d2kvIK4CHJsjfjt6n3QYgUvV7xkrfzTirDNXz JlPSng0NgcDF1f29+GTZjZMWMro88GzWAs6uPC9IxJGJlQ4hB09oTiw8B1GOINza ILaZmgL10UzMXBGfEvZG83W+oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKKIWqPR QknXpskSG04eihq9rHfDMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTNCRS83NzQxNjE0QzUyRDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNf S3RuNWlnRWFLbm91Zk5ZTmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDBZr+QCuZ548uWIK20qqXpeE42M8cnFTEBbqisaKiGvxK5hTxzETYm 6WApN4c9+Y+fOgqa7yIXJRltoNtOqoG156JIHeQfNB5qATilynCcf5/bY3bHkRU3 s+ixsx5TXgU84aqEwbmKp8BmxqTrMVFWwXRfkN4M2rFqL5r/oPqNt7xN/YGnwiOw Me3S/tSv35X77GGzcRcdeW+RrSjHGYQ39jCHNuyZi8k75wNvOOfOFN1b6lUfnZ+H 57czesFnc85Un7N7v2WTOpnW2rBCCQt8UcXZ+ECyaX/hVR7tQscGlDjXfihGbOAu gyUv1bfavG64NVwAtIq5a15UG+P7jQ9l -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:40 2025 by rpki-client