$ rpki-client -vvf rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft File: KtPYi16OCwUUGjvJL4XkJzoFYqE.mft (raw, json) Hash identifier: EMhlm0AuQ4g4Gi0kSPfjeBcZgypK0IWchv1SVscl1zk= Subject key identifier: 6E:1F:E6:8C:3E:41:D0:14:6A:BC:AE:FE:11:70:16:21:3D:6B:04:06 Authority key identifier: 2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 Certificate issuer: /CN=A9132F27/serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Certificate serial: 014E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft Manifest number: 014C Signing time: Wed 05 Nov 2025 04:24:48 +0000 Manifest this update: Wed 05 Nov 2025 04:24:47 +0000 Manifest next update: Wed 12 Nov 2025 04:24:47 +0000 Files and hashes: 1: KtPYi16OCwUUGjvJL4XkJzoFYqE.crl (hash: hkCXhN6dpNDd2VGdNYjnK6r04rA/vkX0LrfKB/WgRNw=) 2: 1D74CCE2BB6D11EEB670B00CC4F9AE02.roa (hash: c7azquHGHrdqjZWXwOVhESd2h6ZSF7h+7L/HwU2cJDw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:24:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 334 (0x14e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132F27, serialNumber=2AD3D88B5E8E0B05141A3BC92F85E4273A0562A1 Validity Not Before: Nov 5 04:24:47 2025 GMT Not After : Nov 12 04:24:47 2025 GMT Subject: CN=690ad190-2ba7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e5:38:19:2b:4a:55:9a:62:5e:73:17:61:51: 21:f3:b1:47:51:04:dd:7c:a9:28:81:8b:5d:17:26: 37:1e:b9:aa:fa:a4:8a:ad:16:1f:42:6e:ae:7d:19: 33:8a:c6:5c:76:03:0a:86:6c:d3:60:32:a3:66:d6: 05:2b:bb:00:d9:80:cb:d9:ce:3d:6f:9d:8c:a9:b0: 35:f9:6e:16:cf:77:bc:74:58:6d:38:d5:6f:e8:3b: 2f:78:a7:6e:09:3c:4b:69:e1:b4:c8:b1:09:72:10: 42:45:c1:2e:93:70:41:8d:3b:b7:13:65:c5:18:19: 42:09:d8:5b:8e:f9:f1:4f:14:ff:17:e0:fa:18:43: 35:e2:74:68:b6:3f:3a:d5:5b:a1:b4:07:64:d9:dd: a5:c6:58:68:54:e6:ed:66:ed:e0:61:2f:60:4b:20: 54:cc:95:88:4a:a2:6f:c6:2f:8b:45:0f:fd:ff:cf: 41:55:e0:58:f8:c8:b9:f9:00:cb:8f:4f:bd:c0:2b: 0b:cd:21:b0:3e:af:04:df:3d:4c:29:43:15:dc:c1: a4:c9:36:52:94:a2:56:1e:6a:65:5e:1b:12:fd:cb: d2:85:b9:00:91:1d:4b:e1:68:10:20:1e:90:45:aa: 85:65:04:eb:b7:c0:ca:ff:ef:0b:9e:ab:1e:70:19: fe:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:1F:E6:8C:3E:41:D0:14:6A:BC:AE:FE:11:70:16:21:3D:6B:04:06 X509v3 Authority Key Identifier: keyid:2A:D3:D8:8B:5E:8E:0B:05:14:1A:3B:C9:2F:85:E4:27:3A:05:62:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KtPYi16OCwUUGjvJL4XkJzoFYqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132F27/7ACDF9AABB6C11EEA680AE6DC4F9AE02/KtPYi16OCwUUGjvJL4XkJzoFYqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:55:7b:ec:e2:05:01:83:36:f1:e2:56:0e:52:75:db:96:de: c7:7c:19:07:03:cd:80:55:dc:2a:40:70:99:3a:ba:f0:0b:8f: 4a:48:10:a2:74:8a:68:ca:3d:b2:97:54:ce:1e:fb:84:d6:85: c4:2f:25:5a:4e:1d:da:ef:eb:41:54:87:5c:50:3a:a3:67:eb: dc:dd:bd:64:0b:05:9b:7b:a3:eb:5f:89:8c:c1:41:82:30:28: f4:eb:ff:96:c8:f2:36:e5:a2:ec:aa:42:c5:95:1f:52:93:d4: 1a:0b:16:aa:f2:59:52:53:c6:e1:21:1b:1b:fc:be:11:cf:7f: d6:53:f0:ef:77:07:6d:16:6e:e3:6b:34:00:d0:5d:8b:35:b5: 1e:98:d9:ad:d4:89:19:ed:9b:22:41:88:46:0d:b6:fa:da:45: 47:63:48:7a:9e:6d:dc:78:00:7b:20:36:e2:ce:72:db:98:a0: 58:a2:20:00:a5:5d:04:27:9e:a0:d8:f7:ad:a5:ac:b9:a9:40: 8d:f9:51:a1:34:91:9a:2b:5a:f7:91:09:bc:f0:0b:1c:1f:01: 90:9b:60:4a:ce:01:b6:7d:5c:a0:b7:2f:90:cc:0d:a2:fb:a9: c1:36:47:6d:46:ec:79:f1:50:a9:a2:b6:21:03:a5:10:e6:de: 60:f8:63:1a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAU4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJGMjcxMTAvBgNVBAUTKDJBRDNEODhCNUU4RTBCMDUxNDFBM0JDOTJGODVFNDI3 M0EwNTYyQTEwHhcNMjUxMTA1MDQyNDQ3WhcNMjUxMTEyMDQyNDQ3WjAYMRYwFAYD VQQDEw02OTBhZDE5MC0yYmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtOU4GStKVZpiXnMXYVEh87FHUQTdfKkogYtdFyY3Hrmq+qSKrRYfQm6ufRkz isZcdgMKhmzTYDKjZtYFK7sA2YDL2c49b52MqbA1+W4Wz3e8dFhtONVv6DsveKdu CTxLaeG0yLEJchBCRcEuk3BBjTu3E2XFGBlCCdhbjvnxTxT/F+D6GEM14nRotj86 1VuhtAdk2d2lxlhoVObtZu3gYS9gSyBUzJWISqJvxi+LRQ/9/89BVeBY+Mi5+QDL j0+9wCsLzSGwPq8E3z1MKUMV3MGkyTZSlKJWHmplXhsS/cvShbkAkR1L4WgQIB6Q RaqFZQTrt8DK/+8LnqsecBn+hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4f5ow+ QdAUaryu/hFwFiE9awQGMB8GA1UdIwQYMBaAFCrT2ItejgsFFBo7yS+F5Cc6BWKh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkYyNy83QUNERjlBQUJC NkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3VVVHanZKTDRYa0p6b0ZZ cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t0UFlpMTZPQ3dVVUdqdkpMNFhrSnpvRllxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MkYyNy83QUNERjlBQUJCNkMxMUVFQTY4MEFFNkRDNEY5QUUwMi9LdFBZaTE2T0N3 VVVHanZKTDRYa0p6b0ZZcUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCgVXvs4gUBgzbx4lYOUnXblt7HfBkHA82AVdwqQHCZOrrwC49KSBCi dIpoyj2yl1TOHvuE1oXELyVaTh3a7+tBVIdcUDqjZ+vc3b1kCwWbe6PrX4mMwUGC MCj06/+WyPI25aLsqkLFlR9Sk9QaCxaq8llSU8bhIRsb/L4Rz3/WU/DvdwdtFm7j azQA0F2LNbUemNmt1IkZ7ZsiQYhGDbb62kVHY0h6nm3ceAB7IDbiznLbmKBYoiAA pV0EJ56g2Petpay5qUCN+VGhNJGaK1r3kQm88AscHwGQm2BKzgG2fVygty+QzA2i +6nBNkdtRux58VCporYhA6UQ5t5g+GMa -----END CERTIFICATE-----Generated at Wed Nov 5 23:48:51 2025 by rpki-client