$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: JsPamwkHWP9Vqivzcta0afQGfh28w+yt/Vi37Joywtk= Subject key identifier: C0:18:36:BC:63:6A:80:A9:1E:80:41:4B:D8:91:8E:CA:23:F5:3D:E9 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 028F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 028B Signing time: Thu 05 Jun 2025 01:27:15 +0000 Manifest this update: Thu 05 Jun 2025 01:27:14 +0000 Manifest next update: Thu 12 Jun 2025 01:27:14 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: pbC5sWeJeUc4gxU8bVGY6S0B9n1Ac4FIWQTHWalAOH8=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:27:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 655 (0x28f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Jun 5 01:27:14 2025 GMT Not After : Jun 12 01:27:14 2025 GMT Subject: CN=6840f272-0d00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a6:76:2c:9b:b5:f9:04:68:6e:39:94:c3:2b: cd:df:64:2f:15:36:c5:24:83:27:d4:5e:43:fa:36: 54:8c:b2:78:68:ed:c5:32:c5:cf:fd:ae:e8:5a:94: a5:87:37:68:fb:9e:61:5d:e3:7b:69:c4:5c:fe:f0: 9f:01:9f:0c:b1:55:6e:1c:de:8a:82:17:a8:33:f7: 5f:57:2d:13:74:37:a4:70:dd:e3:7d:d5:87:f5:c4: 22:93:29:71:21:1c:68:bb:42:e9:aa:75:f3:56:a4: f9:b5:75:28:59:01:9c:ce:63:39:49:ad:93:1f:8b: 4f:d8:aa:e0:6d:20:25:7f:e8:5f:1c:34:06:ed:ca: a4:ba:dd:8d:d6:95:9f:08:fc:21:2a:ce:99:85:d8: c2:43:62:65:62:8f:e7:f2:61:83:72:85:4c:ff:80: e3:fb:c1:b4:73:03:52:ce:b3:93:e8:05:1d:e4:6e: a2:c8:c3:73:db:63:65:99:24:16:1d:dd:12:db:89: df:c6:e6:9e:bd:69:0b:cb:c1:49:b2:e8:51:36:bd: fc:e3:61:78:31:ea:bc:64:af:3a:a9:df:eb:4e:5d: ad:45:f3:41:6d:9a:f1:e3:1e:41:1f:99:c9:4f:1f: f5:34:94:e9:83:bb:4e:bd:0e:c9:80:1f:96:fd:50: a6:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:18:36:BC:63:6A:80:A9:1E:80:41:4B:D8:91:8E:CA:23:F5:3D:E9 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:42:66:96:c4:23:e2:b6:f0:86:2f:c7:fa:75:2a:3d:d1:80: 72:bd:57:86:18:3f:6b:6c:3e:b4:0f:91:c0:fc:2a:15:a3:7f: 2f:fe:6e:b6:15:06:2b:4f:bc:c2:ee:99:6f:7f:8b:b9:5c:d1: 4e:af:3b:ca:71:f7:09:32:7b:7f:15:93:76:e4:43:8c:a0:eb: b5:bd:25:ff:51:9e:2b:1c:3c:f5:47:3a:fe:58:a8:49:80:60: 62:8a:5a:49:df:00:fc:77:af:f7:5b:6c:2c:7f:0c:3a:29:64: 83:02:d0:ca:6f:24:9b:32:a8:51:23:bd:ae:8c:5d:a6:f7:53: 25:19:ec:c6:b7:70:54:8f:14:fb:8e:ca:cd:96:fe:b4:cc:cf: 56:78:5f:8a:41:b9:53:dc:f1:75:44:a4:eb:c0:6c:f1:3d:2e: f7:73:a2:22:0d:0e:cd:7c:f4:84:a3:44:93:75:af:96:5a:a8: 38:c6:ee:68:60:b5:be:36:91:21:60:a2:4a:f0:88:24:0c:f8: a9:ba:d2:fb:45:13:8a:fe:02:c5:99:99:4b:8b:35:48:c7:79: 67:63:24:55:88:68:27:9d:35:06:69:f2:6c:50:17:ef:4b:2e: da:c4:21:5e:6e:96:9c:84:95:57:f6:47:3c:f4:9c:44:2c:83: 35:47:1f:ca -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAo8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwNjA1MDEyNzE0WhcNMjUwNjEyMDEyNzE0WjAYMRYwFAYD VQQDEw02ODQwZjI3Mi0wZDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoaZ2LJu1+QRobjmUwyvN32QvFTbFJIMn1F5D+jZUjLJ4aO3FMsXP/a7oWpSl hzdo+55hXeN7acRc/vCfAZ8MsVVuHN6KgheoM/dfVy0TdDekcN3jfdWH9cQikylx IRxou0LpqnXzVqT5tXUoWQGczmM5Sa2TH4tP2KrgbSAlf+hfHDQG7cqkut2N1pWf CPwhKs6ZhdjCQ2JlYo/n8mGDcoVM/4Dj+8G0cwNSzrOT6AUd5G6iyMNz22NlmSQW Hd0S24nfxuaevWkLy8FJsuhRNr3842F4Meq8ZK86qd/rTl2tRfNBbZrx4x5BH5nJ Tx/1NJTpg7tOvQ7JgB+W/VCmmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAYNrxj aoCpHoBBS9iRjsoj9T3pMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCaQmaWxCPitvCGL8f6dSo90YByvVeGGD9rbD60D5HA/CoVo38v/m62 FQYrT7zC7plvf4u5XNFOrzvKcfcJMnt/FZN25EOMoOu1vSX/UZ4rHDz1Rzr+WKhJ gGBiilpJ3wD8d6/3W2wsfww6KWSDAtDKbySbMqhRI72ujF2m91MlGezGt3BUjxT7 jsrNlv60zM9WeF+KQblT3PF1RKTrwGzxPS73c6IiDQ7NfPSEo0STda+WWqg4xu5o YLW+NpEhYKJK8IgkDPiputL7RROK/gLFmZlLizVIx3lnYyRViGgnnTUGafJsUBfv Sy7axCFebpachJVX9kc89JxELIM1Rx/K -----END CERTIFICATE-----Generated at Thu Jun 5 19:58:12 2025 by rpki-client