$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: 7u3PWoGRCN58RgJKe9P8hd/ThaWv1X1dAGjb7Gnx7W8= Subject key identifier: AB:A3:B6:23:FB:39:54:68:19:61:B8:F4:41:39:6D:70:6A:AB:40:61 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02D9 Signing time: Mon 03 Nov 2025 01:16:59 +0000 Manifest this update: Mon 03 Nov 2025 01:16:58 +0000 Manifest next update: Mon 10 Nov 2025 01:16:58 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: A/6glGxCPd5Y2/mp+AMzqqHWt+v+ma4i50fw1NmXqIU=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:16:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Nov 3 01:16:58 2025 GMT Not After : Nov 10 01:16:58 2025 GMT Subject: CN=6908028b-0654 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:46:9a:04:a8:50:87:bc:aa:e7:80:1f:6e:16: e4:60:25:91:d6:ea:56:74:ff:7c:d7:06:b0:8f:b3: e1:cb:48:80:df:8b:31:2e:8b:a7:07:47:21:b7:eb: 12:da:1b:07:99:8d:a3:33:ea:0a:44:b0:6a:5a:c2: 4f:61:6c:55:34:30:4b:33:26:14:dc:5b:8e:df:41: e1:b8:66:27:f0:6b:7f:c7:2d:51:ca:61:e7:47:2f: 7a:5b:dd:d1:d9:fb:70:03:88:02:9b:3e:0d:95:af: 4e:35:f0:b2:fe:2a:3a:1b:9c:b7:e2:05:99:c7:6d: a1:72:0c:51:85:df:a0:5d:07:4f:e5:88:2b:cf:fd: ea:fe:d5:bb:57:56:ef:28:c8:a5:31:4a:f7:7b:fb: 5d:09:d3:d7:60:78:b9:58:e9:97:74:82:80:6a:68: 12:d1:2a:1d:35:d8:b6:1b:44:11:88:3f:35:7c:70: a2:88:94:6a:f6:be:89:a9:bf:9f:91:4c:be:82:67: a9:3c:01:3b:26:79:6f:20:e7:50:4f:49:ca:9c:6b: 6c:d5:93:7f:a8:96:2e:3f:0d:3c:bd:3e:c5:25:4a: 53:c9:4f:66:cc:46:e3:b4:44:80:74:57:71:23:16: de:f0:53:8b:04:8c:66:d8:00:84:21:56:13:21:8f: 6c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A3:B6:23:FB:39:54:68:19:61:B8:F4:41:39:6D:70:6A:AB:40:61 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 04:19:5e:9a:e9:23:ea:1d:87:64:a3:c9:33:ef:ce:fe:3d:32: 66:3b:77:97:df:77:75:ef:5c:6e:94:5c:e8:36:22:e1:6c:d4: 17:9c:b9:7f:d2:3e:18:6a:ad:5e:07:0a:67:c8:c1:d0:cf:81: 68:e5:6e:07:ad:fa:a2:bc:b5:73:98:1b:6d:d2:a0:c8:86:28: 89:36:15:5a:bb:a2:46:8b:43:00:71:88:61:9b:40:97:65:fe: 38:27:ef:20:83:88:5f:51:22:27:49:4e:89:cc:7c:fa:3e:1a: 53:48:ad:46:ef:7b:87:13:ef:ab:ec:51:36:a8:25:78:0b:7d: 5e:de:b8:41:50:b0:f1:c1:fd:f5:03:56:b1:45:8a:e8:d0:63: 9c:5e:02:c0:3d:2d:39:8a:a5:f3:59:1c:79:36:fd:05:8b:04: bf:d0:f7:69:83:96:08:76:a9:88:3e:08:c3:a3:0e:0b:77:5c: 82:3c:ed:76:62:80:08:1e:63:70:28:53:ce:b4:62:23:43:1e: 9f:c0:c4:6f:48:cf:ec:ea:1d:23:a7:24:bb:67:fa:03:1f:e6: 1e:29:d2:3e:6b:25:d7:4e:29:a5:b9:fb:cb:99:9a:b4:15:f9: 55:0a:6b:c8:3b:23:7b:56:29:9b:2d:12:3c:a2:4d:17:2c:20: 96:1d:0e:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUxMTAzMDExNjU4WhcNMjUxMTEwMDExNjU4WjAYMRYwFAYD VQQDEw02OTA4MDI4Yi0wNjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAokaaBKhQh7yq54AfbhbkYCWR1upWdP981wawj7Phy0iA34sxLounB0cht+sS 2hsHmY2jM+oKRLBqWsJPYWxVNDBLMyYU3FuO30HhuGYn8Gt/xy1RymHnRy96W93R 2ftwA4gCmz4Nla9ONfCy/io6G5y34gWZx22hcgxRhd+gXQdP5Ygrz/3q/tW7V1bv KMilMUr3e/tdCdPXYHi5WOmXdIKAamgS0SodNdi2G0QRiD81fHCiiJRq9r6Jqb+f kUy+gmepPAE7JnlvIOdQT0nKnGts1ZN/qJYuPw08vT7FJUpTyU9mzEbjtESAdFdx Ixbe8FOLBIxm2ACEIVYTIY9srQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKujtiP7 OVRoGWG49EE5bXBqq0BhMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAEGV6a6SPqHYdko8kz787+PTJmO3eX33d171xulFzoNiLhbNQXnLl/ 0j4Yaq1eBwpnyMHQz4Fo5W4HrfqivLVzmBtt0qDIhiiJNhVau6JGi0MAcYhhm0CX Zf44J+8gg4hfUSInSU6JzHz6PhpTSK1G73uHE++r7FE2qCV4C31e3rhBULDxwf31 A1axRYro0GOcXgLAPS05iqXzWRx5Nv0FiwS/0Pdpg5YIdqmIPgjDow4Ld1yCPO12 YoAIHmNwKFPOtGIjQx6fwMRvSM/s6h0jpyS7Z/oDH+YeKdI+ayXXTimlufvLmZq0 FflVCmvIOyN7VimbLRI8ok0XLCCWHQ6h -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:27 2025 by rpki-client