$ rpki-client -vvf rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft File: kyv2OTHDR-dryQidQb4k9jcPJYI.mft (raw, json) Hash identifier: VFelSVN9kEWz7BtcQ2dEEZ8EUFY4WtTNWK2lAoUIv+M= Subject key identifier: 3B:F2:56:D3:4C:F9:57:49:8D:7A:91:BE:ED:16:71:5F:5E:9D:C0:B4 Authority key identifier: 93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 Certificate issuer: /CN=A919879C/serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Certificate serial: 0293 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft Manifest number: 028F Signing time: Fri 13 Jun 2025 01:06:24 +0000 Manifest this update: Fri 13 Jun 2025 01:06:23 +0000 Manifest next update: Fri 20 Jun 2025 01:06:23 +0000 Files and hashes: 1: kyv2OTHDR-dryQidQb4k9jcPJYI.crl (hash: xWXwga9I8xkST+Mh0v7An4RF+INmwtHCds/i+P9Mfhg=) 2: E7C34456073711ED8BA93630C4F9AE02.roa (hash: kldDMFdCdKUVHMXGUfTfraYPzp89poxoo5pvwA3fx9Y=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Jun 2025 01:06:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919879C, serialNumber=932BF63931C347E76BC9089D41BE24F6370F2582 Validity Not Before: Jun 13 01:06:23 2025 GMT Not After : Jun 20 01:06:23 2025 GMT Subject: CN=684b798f-aa75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:d2:32:a9:be:c8:f2:05:01:09:c1:ee:b5: d4:0c:64:fb:3b:16:34:ff:da:96:18:72:ed:4f:2d: be:3e:e2:bc:b8:1c:a8:a1:1b:b5:48:36:15:da:ab: 54:ef:f9:36:90:29:5f:34:f5:57:4e:26:00:dc:88: f8:17:be:05:93:b9:77:77:0c:fc:a8:80:9b:b4:4c: 6f:e3:f4:61:19:60:28:7d:b3:28:6a:ef:ab:90:1b: c8:a7:9c:d4:e8:d7:ec:1c:b5:6b:f4:83:80:4b:68: c3:c9:07:bf:8a:15:77:f3:01:b0:94:d8:94:ed:58: 65:41:95:18:a9:77:15:7c:c8:5a:cc:51:ff:3b:d3: 2c:bc:9f:a6:cf:3f:a8:2b:7b:6c:82:95:11:0d:19: 91:b1:f8:d0:67:3c:a2:bb:6e:ad:b3:10:b6:50:ab: 81:85:a7:10:f5:a8:7a:b9:2f:0a:3d:95:ec:bf:c5: e8:fb:90:a4:7a:f4:05:15:33:84:93:b0:04:cb:61: 0e:d8:ea:92:13:b1:ca:14:62:a7:b8:ef:77:7a:4d: cd:e2:17:29:5d:3c:ff:5f:e8:b4:27:fe:46:f1:71: b2:96:44:86:97:f2:f2:03:a7:ab:a2:2f:44:4c:71: f3:49:d0:3b:80:4b:ca:04:c5:51:35:46:05:e3:7b: c6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:F2:56:D3:4C:F9:57:49:8D:7A:91:BE:ED:16:71:5F:5E:9D:C0:B4 X509v3 Authority Key Identifier: keyid:93:2B:F6:39:31:C3:47:E7:6B:C9:08:9D:41:BE:24:F6:37:0F:25:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kyv2OTHDR-dryQidQb4k9jcPJYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919879C/E1D20292073411EDB04D372DC4F9AE02/kyv2OTHDR-dryQidQb4k9jcPJYI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:6f:01:51:29:f6:0c:44:4c:89:e7:a2:db:55:05:1a:17:c6: 88:98:44:9c:f2:04:53:93:dc:21:8f:8e:be:3d:ac:9b:d0:a8: 37:bc:b0:11:ee:85:e9:75:95:b1:70:0a:f1:a1:76:8a:e3:14: 92:1a:d4:6f:90:db:72:68:f8:3a:1a:ca:03:5a:00:04:8b:07: 6f:35:6e:f9:82:66:72:e5:89:89:25:e9:e6:20:a5:83:6a:e4: d5:c3:52:b7:42:00:13:83:8f:22:28:f8:9c:ec:58:7e:15:96: de:7b:a2:92:c5:39:ed:ab:43:89:13:11:1d:1d:df:7c:e0:39: 3a:a5:9a:b4:93:50:f7:c2:61:45:9c:19:a1:13:fe:a1:a9:96: 85:8a:6b:9c:4c:08:12:ca:1c:af:b0:50:16:af:52:46:32:18: c9:45:8a:5f:03:eb:27:56:74:9c:02:44:10:a7:77:34:c1:21: 01:e9:1d:f7:1c:16:9d:9a:6f:b5:5e:bc:47:f6:2f:ba:38:d1: e6:3a:0e:4e:4b:12:82:a7:36:5e:60:bb:9b:05:99:64:3d:3b: 27:94:ca:9f:8a:60:06:69:a8:57:69:50:33:bc:ed:04:43:e1: bf:e7:4d:a5:8e:05:74:f8:75:f0:71:2a:a5:ae:22:00:aa:f3: ac:05:aa:d4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTg3OUMxMTAvBgNVBAUTKDkzMkJGNjM5MzFDMzQ3RTc2QkM5MDg5RDQxQkUyNEY2 MzcwRjI1ODIwHhcNMjUwNjEzMDEwNjIzWhcNMjUwNjIwMDEwNjIzWjAYMRYwFAYD VQQDEw02ODRiNzk4Zi1hYTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8DSMqm+yPIFAQnB7rXUDGT7OxY0/9qWGHLtTy2+PuK8uByooRu1SDYV2qtU 7/k2kClfNPVXTiYA3Ij4F74Fk7l3dwz8qICbtExv4/RhGWAofbMoau+rkBvIp5zU 6NfsHLVr9IOAS2jDyQe/ihV38wGwlNiU7VhlQZUYqXcVfMhazFH/O9MsvJ+mzz+o K3tsgpURDRmRsfjQZzyiu26tsxC2UKuBhacQ9ah6uS8KPZXsv8Xo+5CkevQFFTOE k7AEy2EO2OqSE7HKFGKnuO93ek3N4hcpXTz/X+i0J/5G8XGylkSGl/LyA6eroi9E THHzSdA7gEvKBMVRNUYF43vGawIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDvyVtNM +VdJjXqRvu0WcV9encC0MB8GA1UdIwQYMBaAFJMr9jkxw0fna8kInUG+JPY3DyWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5ODc5Qy9FMUQyMDI5MjA3 MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFItZHJ5UWlkUWI0azlqY1BK WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t5djJPVEhEUi1kcnlRaWRRYjRrOWpjUEpZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODc5Qy9FMUQyMDI5MjA3MzQxMUVEQjA0RDM3MkRDNEY5QUUwMi9reXYyT1RIRFIt ZHJ5UWlkUWI0azlqY1BKWUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBUbwFRKfYMREyJ56LbVQUaF8aImESc8gRTk9whj46+Payb0Kg3vLAR 7oXpdZWxcArxoXaK4xSSGtRvkNtyaPg6GsoDWgAEiwdvNW75gmZy5YmJJenmIKWD auTVw1K3QgATg48iKPic7Fh+FZbee6KSxTntq0OJExEdHd984Dk6pZq0k1D3wmFF nBmhE/6hqZaFimucTAgSyhyvsFAWr1JGMhjJRYpfA+snVnScAkQQp3c0wSEB6R33 HBadmm+1XrxH9i+6ONHmOg5OSxKCpzZeYLubBZlkPTsnlMqfimAGaahXaVAzvO0E Q+G/502ljgV0+HXwcSqlriIAqvOsBarU -----END CERTIFICATE-----Generated at Sat Jun 14 19:27:38 2025 by rpki-client