$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: 3nfF8QwYUJ8jWtGNOC6xI+FKyzGVg755CFrNKq/Svhs= Subject key identifier: 6E:DF:48:59:6F:A1:3E:F0:2D:87:6A:38:38:68:A9:52:0A:6C:55:08 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 02DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 02DA Signing time: Wed 05 Nov 2025 01:24:44 +0000 Manifest this update: Wed 05 Nov 2025 01:24:44 +0000 Manifest next update: Wed 12 Nov 2025 01:24:44 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: ytLB8QiARyhd07WZUu7Z/uYoicTRq95YQHzxHCVTpDU=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: 16sJIK7yDSO7A/N450AB9k39DyJDrn04igY89yyJfys=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Nov 5 01:24:44 2025 GMT Not After : Nov 12 01:24:44 2025 GMT Subject: CN=690aa75c-5aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:37:10:5e:ce:23:ea:90:ed:0d:3d:fd:88:3d: ac:04:ef:5d:1b:80:eb:a4:bc:3f:d0:4a:c1:8d:ed: 53:36:ab:7f:c3:0d:50:a7:f2:64:44:7f:f9:08:59: 61:7f:09:83:54:9f:3c:f8:d1:12:ff:1b:ff:3c:72: 83:68:f8:d1:f0:19:a9:8f:95:b9:d5:0a:c3:05:4a: 9d:28:8b:3d:38:a1:41:54:60:53:72:10:4e:a5:e5: 89:7c:1b:76:f3:56:80:ff:5e:7c:bd:53:bd:8e:a2: 93:02:b4:4a:fa:29:24:6f:a8:b8:d2:cb:43:47:8e: 21:ea:22:f8:55:99:6d:72:a1:fd:f9:9a:37:98:7c: 33:47:0d:1e:68:b3:6b:85:e6:82:65:a5:62:5c:95: ec:f8:a4:5c:de:bc:af:e9:dc:11:3b:81:ce:4c:ee: 88:46:92:eb:1a:52:e0:1e:4b:54:c3:c8:03:06:9c: 28:48:c7:7a:f2:96:7e:a4:3d:4e:5e:e1:93:fa:0a: 36:da:38:4b:4d:71:70:2d:12:c8:2c:6b:af:ec:65: 00:6d:dd:53:ef:40:91:2d:c0:47:cb:6a:fa:72:49: ff:d3:2a:60:c5:4e:a4:3d:8b:4f:69:51:59:4f:bb: ca:92:3a:fb:a9:84:98:1d:d3:51:2b:0f:0e:9a:ad: f5:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:DF:48:59:6F:A1:3E:F0:2D:87:6A:38:38:68:A9:52:0A:6C:55:08 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:1a:b2:ce:b5:8b:d4:02:1c:4c:61:1d:ed:2f:1c:7b:fb:62: 39:a9:df:eb:a6:be:44:0f:7b:67:12:24:bf:af:4f:ee:f2:68: 18:25:f3:1a:c0:e2:80:a0:ce:cb:33:f7:80:d7:94:b6:54:45: fa:a9:9e:5d:0f:9a:23:2a:7c:62:e9:92:74:e6:40:35:40:83: a7:d3:01:2a:53:ea:d8:69:9d:6d:e4:e0:70:b9:0b:34:d5:07: 87:29:76:c3:70:3f:30:68:fe:91:b2:43:98:8d:84:ab:fb:4d: 2f:37:f1:9a:c5:ad:00:14:0c:03:c2:27:d8:8c:b2:47:51:95: 0d:55:6e:c2:de:01:46:23:17:89:4a:72:c7:e0:8c:12:6b:b9: da:88:be:cb:35:c4:fd:24:22:ca:ad:94:c7:28:07:e3:41:81: 71:ce:e6:0f:aa:ec:74:b7:86:ff:e3:76:7a:76:a1:ad:eb:5b: 05:92:d5:74:5f:06:1d:40:16:4c:14:cd:0a:58:c3:44:33:66: e6:54:0a:d1:0d:e5:12:59:ee:5b:ad:b9:8e:fe:dd:3c:61:f3: fa:aa:14:5a:24:eb:80:b8:26:80:55:ae:2a:58:7f:07:cf:c0: 7d:53:3e:6b:16:90:2e:b1:34:fa:8c:67:e8:d3:7e:af:03:7a: 94:2c:eb:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUxMTA1MDEyNDQ0WhcNMjUxMTEyMDEyNDQ0WjAYMRYwFAYD VQQDEw02OTBhYTc1Yy01YWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDcQXs4j6pDtDT39iD2sBO9dG4DrpLw/0ErBje1TNqt/ww1Qp/JkRH/5CFlh fwmDVJ88+NES/xv/PHKDaPjR8Bmpj5W51QrDBUqdKIs9OKFBVGBTchBOpeWJfBt2 81aA/158vVO9jqKTArRK+ikkb6i40stDR44h6iL4VZltcqH9+Zo3mHwzRw0eaLNr heaCZaViXJXs+KRc3ryv6dwRO4HOTO6IRpLrGlLgHktUw8gDBpwoSMd68pZ+pD1O XuGT+go22jhLTXFwLRLILGuv7GUAbd1T70CRLcBHy2r6ckn/0ypgxU6kPYtPaVFZ T7vKkjr7qYSYHdNRKw8Omq31xQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG7fSFlv oT7wLYdqODhoqVIKbFUIMB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRGrLOtYvUAhxMYR3tLxx7+2I5qd/rpr5ED3tnEiS/r0/u8mgYJfMa wOKAoM7LM/eA15S2VEX6qZ5dD5ojKnxi6ZJ05kA1QIOn0wEqU+rYaZ1t5OBwuQs0 1QeHKXbDcD8waP6RskOYjYSr+00vN/Gaxa0AFAwDwifYjLJHUZUNVW7C3gFGIxeJ SnLH4IwSa7naiL7LNcT9JCLKrZTHKAfjQYFxzuYPqux0t4b/43Z6dqGt61sFktV0 XwYdQBZMFM0KWMNEM2bmVArRDeUSWe5brbmO/t08YfP6qhRaJOuAuCaAVa4qWH8H z8B9Uz5rFpAusTT6jGfo036vA3qULOsq -----END CERTIFICATE-----Generated at Wed Nov 5 16:45:24 2025 by rpki-client