$ rpki-client -vvf rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft File: BYl-c1406PZYdVSprzc0CCziidk.mft (raw, json) Hash identifier: ABMLMzEswPazKGquyN+F/kiVn2Mc3aQhUG5nLhcbyDE= Subject key identifier: 2D:F1:DA:EB:D4:DE:FC:A4:F5:A8:DF:B0:2D:0E:D1:17:34:F0:67:2A Authority key identifier: 05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 Certificate issuer: /CN=A91389E7/serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft Manifest number: 43 Signing time: Sun 19 Oct 2025 10:54:26 +0000 Manifest this update: Sun 19 Oct 2025 10:54:26 +0000 Manifest next update: Sun 26 Oct 2025 10:54:26 +0000 Files and hashes: 1: BYl-c1406PZYdVSprzc0CCziidk.crl (hash: 9rvnOCeeO9Sqspf81S6ora9ywKM4U+ocF23pbnFHuh4=) 2: 2C3D8AAA50B511F09288303CC4F9AE02.roa (hash: BRO70xst4iX7U+BsAkMQkxP1DSIFJqspyvz/A47AIrw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:54:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91389E7, serialNumber=05897E735E34E8F6587554A9AF3734082CE289D9 Validity Not Before: Oct 19 10:54:26 2025 GMT Not After : Oct 26 10:54:26 2025 GMT Subject: CN=68f4c362-4c59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3d:dd:ae:22:82:b6:38:88:09:89:b7:f8:5d: ec:56:84:d9:01:6b:3c:1e:83:7e:d5:94:ed:cf:f9: b4:b3:b3:3f:0f:bb:2d:ab:0a:4a:c7:d3:6c:7c:9b: bf:5a:1b:59:c5:8f:ff:74:bf:71:ef:b3:aa:f5:de: 34:43:25:5c:ee:d4:e9:a2:13:b5:ab:22:0b:92:94: f7:4d:6d:5f:7a:b2:74:ab:96:43:18:76:80:9e:a6: cf:73:2d:da:a8:f9:cc:8f:35:70:aa:83:79:13:61: e3:df:80:f4:70:00:1b:d1:3b:d4:2c:13:57:48:e5: ad:17:c6:06:f4:21:de:dc:9c:dc:7d:3a:34:53:93: 6f:fe:12:f1:87:d6:58:da:9f:a5:c9:b3:81:18:e2: f6:9d:ff:df:33:e3:96:ad:f2:a8:2a:00:7e:1b:1e: a1:45:a7:f1:07:0c:45:e0:87:53:32:28:ed:b7:41: b5:0e:8e:a2:99:d2:b5:4d:ef:cf:e4:c7:fd:17:1f: 9c:71:a5:13:9a:a4:f9:68:c0:88:58:4b:20:7a:8d: 60:68:3c:05:39:3e:e0:57:06:40:21:c3:67:0d:a5: c6:22:e3:5e:aa:7d:4c:f9:dd:5c:ad:5f:d3:40:f0: 2b:89:6c:4d:9f:ed:92:6d:03:0e:a7:90:4a:f7:6e: 59:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F1:DA:EB:D4:DE:FC:A4:F5:A8:DF:B0:2D:0E:D1:17:34:F0:67:2A X509v3 Authority Key Identifier: keyid:05:89:7E:73:5E:34:E8:F6:58:75:54:A9:AF:37:34:08:2C:E2:89:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/BYl-c1406PZYdVSprzc0CCziidk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91389E7/99D28C9C4C0911F09F38B628C4F9AE02/BYl-c1406PZYdVSprzc0CCziidk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:20:32:0d:b6:92:9d:9d:eb:bc:da:47:17:f9:0a:a2:33:40: 62:59:2d:ea:b2:2b:70:49:d9:b1:b9:be:55:81:43:a9:c7:dc: 86:3b:6d:3f:2f:50:b6:a7:b8:8a:b6:d6:3a:5f:d3:51:be:dc: 0e:b1:6d:56:f7:82:20:15:41:12:a2:69:11:fb:6e:5f:1f:75: 70:5b:27:5c:f2:db:32:1d:fd:98:bd:8a:c4:93:32:ef:f4:83: 59:9b:57:12:01:91:03:24:3d:1a:34:56:86:66:c3:e7:50:16: a1:c2:24:78:85:03:14:a2:a2:a1:29:f6:ff:5f:f6:df:c5:8a: a6:83:91:d6:1a:5f:4a:77:d0:99:04:9c:4c:79:46:29:70:fb: 87:da:96:c9:06:3d:42:0b:c1:ad:8b:a7:e6:17:a7:a8:90:f4: d0:1d:fd:c1:0a:4a:e5:7b:73:0a:58:7c:fe:4b:a5:c7:a7:b5: f7:0b:66:8a:a3:55:1b:d4:4b:a6:da:df:c7:c4:2b:15:60:24: df:77:63:aa:f1:69:86:9b:4b:19:d1:5e:a7:fa:a3:c6:ba:f3: ab:31:c0:cf:11:f4:a1:86:c8:37:f5:90:4c:fb:f3:ae:66:61: db:15:03:b0:cc:55:50:a8:b6:af:69:b9:c8:94:c4:12:99:94: 48:42:a0:c3 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODlFNzExMC8GA1UEBRMoMDU4OTdFNzM1RTM0RThGNjU4NzU1NEE5QUYzNzM0MDgy Q0UyODlEOTAeFw0yNTEwMTkxMDU0MjZaFw0yNTEwMjYxMDU0MjZaMBgxFjAUBgNV BAMTDTY4ZjRjMzYyLTRjNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGPd2uIoK2OIgJibf4XexWhNkBazweg37VlO3P+bSzsz8Puy2rCkrH02x8m79a G1nFj/90v3Hvs6r13jRDJVzu1OmiE7WrIguSlPdNbV96snSrlkMYdoCeps9zLdqo +cyPNXCqg3kTYePfgPRwABvRO9QsE1dI5a0Xxgb0Id7cnNx9OjRTk2/+EvGH1lja n6XJs4EY4vad/98z45at8qgqAH4bHqFFp/EHDEXgh1MyKO23QbUOjqKZ0rVN78/k x/0XH5xxpROapPlowIhYSyB6jWBoPAU5PuBXBkAhw2cNpcYi416qfUz53VytX9NA 8CuJbE2f7ZJtAw6nkEr3blmbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQULfHa69Te /KT1qN+wLQ7RFzTwZyowHwYDVR0jBBgwFoAUBYl+c1406PZYdVSprzc0CCziidkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4OUU3Lzk5RDI4QzlDNEMw OTExRjA5RjM4QjYyOEM0RjlBRTAyL0JZbC1jMTQwNlBaWWRWU3ByemMwQ0N6aWlk ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQllsLWMxNDA2UFpZZFZTcHJ6YzBDQ3ppaWRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4 OUU3Lzk5RDI4QzlDNEMwOTExRjA5RjM4QjYyOEM0RjlBRTAyL0JZbC1jMTQwNlBa WWRWU3ByemMwQ0N6aWlkay5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACUgMg22kp2d67zaRxf5CqIzQGJZLeqyK3BJ2bG5vlWBQ6nH3IY7bT8v ULanuIq21jpf01G+3A6xbVb3giAVQRKiaRH7bl8fdXBbJ1zy2zId/Zi9isSTMu/0 g1mbVxIBkQMkPRo0VoZmw+dQFqHCJHiFAxSioqEp9v9f9t/FiqaDkdYaX0p30JkE nEx5Rilw+4falskGPUILwa2Lp+YXp6iQ9NAd/cEKSuV7cwpYfP5LpcentfcLZoqj VRvUS6ba38fEKxVgJN93Y6rxaYabSxnRXqf6o8a686sxwM8R9KGGyDf1kEz7865m YdsVA7DMVVCotq9puciUxBKZlEhCoMM= -----END CERTIFICATE-----Generated at Mon Oct 20 23:35:06 2025 by rpki-client