$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: GeMpRG6o9D0f4JPuJNcO6XZJ0+Zx20uDraT+45MsoU8= Subject key identifier: E5:00:22:9B:8B:FF:50:D1:96:59:DF:4B:A3:7F:2E:E8:AC:F5:F0:12 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02AC Signing time: Sat 09 Aug 2025 02:02:42 +0000 Manifest this update: Sat 09 Aug 2025 02:02:41 +0000 Manifest next update: Sat 16 Aug 2025 02:02:41 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: gJDAc90HBIlfqc5tMJIeJdNlqucdQcjF1k3lUMQHwRo=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Aug 9 02:02:41 2025 GMT Not After : Aug 16 02:02:41 2025 GMT Subject: CN=6896ac41-6009 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:19:0b:fb:39:d0:65:29:b4:20:b5:11:f4:a7: 86:b1:fe:98:98:8d:6b:b4:6b:c9:b5:75:56:ab:c3: 04:0b:cd:9c:3d:5d:b5:b5:0e:90:48:29:0b:4a:06: 46:36:f8:b5:7e:73:f2:d7:93:3a:31:f2:63:35:a8: 15:07:92:6d:28:8b:20:f1:c2:b3:b7:73:7d:36:fa: 05:fc:b0:ef:e3:6b:a3:1a:d7:b4:f2:2b:aa:21:77: 22:3b:b1:31:54:db:57:a7:ed:3e:43:a7:e9:07:63: 59:b5:3a:1c:70:cb:2e:a1:a6:f3:1c:05:f0:28:e4: 97:71:6c:4a:02:60:6e:a9:ec:73:a9:7b:e4:ad:fd: 87:d9:d5:4d:27:92:5e:e9:3b:25:9f:6f:fb:3a:5e: 57:00:9f:59:f5:82:76:19:57:30:fa:77:dd:d4:7b: 3d:a7:4d:88:cb:24:4f:62:f6:db:7e:e4:f1:b0:0e: 20:ce:cc:7f:d7:01:a9:e1:8d:47:e3:cb:b2:09:be: d9:c5:ed:63:78:f0:ff:60:a8:7f:04:54:96:34:d3: 31:b5:1d:d7:a7:0c:43:1e:29:21:bd:39:72:64:91: 9e:ae:b4:3f:d9:f8:99:dc:17:6c:5b:16:5f:e4:85: fd:2f:cc:02:97:14:85:42:fe:16:75:ef:85:0d:23: c8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:00:22:9B:8B:FF:50:D1:96:59:DF:4B:A3:7F:2E:E8:AC:F5:F0:12 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c7:bb:e7:ff:ed:43:7a:57:52:34:0f:34:f3:f1:a0:7d:33:38: 4e:09:dc:c1:35:ab:25:c9:de:e0:82:69:d0:58:31:7e:84:f7: 4e:af:05:f6:de:bc:1a:78:e2:41:ec:9f:d7:64:9c:fd:1e:56: 0a:52:67:8d:d2:5e:64:07:81:9b:70:3a:25:09:eb:e6:c4:6f: 1a:00:75:7b:e8:7f:9a:c1:df:85:9d:f4:0a:0c:2b:4c:88:38: f7:01:38:03:79:98:79:59:2e:b7:f5:c2:53:b1:47:41:67:74: 74:f3:3d:02:e0:cf:3a:81:e0:af:da:49:21:c6:64:11:63:31: ca:e8:d1:70:d0:55:ea:60:30:f0:53:1d:29:0d:c2:22:08:52: 2d:96:51:16:18:36:3f:7a:7d:35:01:00:b4:c8:8b:1e:13:5c: 5c:f9:16:b6:b1:b8:29:db:80:06:25:4a:78:4e:68:a5:25:f9: bd:41:12:67:a5:ff:be:71:6f:c9:07:29:bb:1c:8e:5e:04:26: ae:69:2f:1b:6d:43:95:81:26:92:bb:6b:fd:d9:03:f9:5f:4e: cf:b7:62:e3:bf:6b:d2:5f:f8:e1:a2:f3:98:cc:ab:9c:6f:29: 0d:e0:11:a7:2b:6d:64:32:08:f7:a3:ed:44:de:88:07:ef:c7: 97:04:80:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICArAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwODA5MDIwMjQxWhcNMjUwODE2MDIwMjQxWjAYMRYwFAYD VQQDEw02ODk2YWM0MS02MDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvBkL+znQZSm0ILUR9KeGsf6YmI1rtGvJtXVWq8MEC82cPV21tQ6QSCkLSgZG Nvi1fnPy15M6MfJjNagVB5JtKIsg8cKzt3N9NvoF/LDv42ujGte08iuqIXciO7Ex VNtXp+0+Q6fpB2NZtToccMsuoabzHAXwKOSXcWxKAmBuqexzqXvkrf2H2dVNJ5Je 6Tsln2/7Ol5XAJ9Z9YJ2GVcw+nfd1Hs9p02IyyRPYvbbfuTxsA4gzsx/1wGp4Y1H 48uyCb7Zxe1jePD/YKh/BFSWNNMxtR3XpwxDHikhvTlyZJGerrQ/2fiZ3BdsWxZf 5IX9L8wClxSFQv4Wde+FDSPIvwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOUAIpuL /1DRllnfS6N/Luis9fASMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDHu+f/7UN6V1I0DzTz8aB9MzhOCdzBNaslyd7ggmnQWDF+hPdOrwX2 3rwaeOJB7J/XZJz9HlYKUmeN0l5kB4GbcDolCevmxG8aAHV76H+awd+FnfQKDCtM iDj3ATgDeZh5WS639cJTsUdBZ3R08z0C4M86geCv2kkhxmQRYzHK6NFw0FXqYDDw Ux0pDcIiCFItllEWGDY/en01AQC0yIseE1xc+Ra2sbgp24AGJUp4TmilJfm9QRJn pf++cW/JBym7HI5eBCauaS8bbUOVgSaSu2v92QP5X07Pt2Ljv2vSX/jhovOYzKuc bykN4BGnK21kMgj3o+1E3ogH78eXBIAY -----END CERTIFICATE-----Generated at Sun Aug 10 05:43:36 2025 by rpki-client