$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: x5Ey/BHtGONaeLqFA5o3enNJRLNXoOa1vNQVfRWJ/cg= Subject key identifier: 94:97:8A:8F:EA:14:CB:C0:25:63:E2:74:A0:24:36:44:E4:2D:6B:EC Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 02D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 02D0 Signing time: Sun 19 Oct 2025 03:28:54 +0000 Manifest this update: Sun 19 Oct 2025 03:28:53 +0000 Manifest next update: Sun 26 Oct 2025 03:28:53 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: 3FifRSQNMaU9p9VegnMpLgc/X0+xRQzrTAH82CHZduc=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: tggayaLto8CAWEhkFDTMAXvd1HSZb+GtdD7dZmQyKpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:28:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 724 (0x2d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Oct 19 03:28:53 2025 GMT Not After : Oct 26 03:28:53 2025 GMT Subject: CN=68f45af5-401e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:88:c2:1f:20:95:27:e5:f8:46:de:be:ec:fd: 0c:1e:9a:4e:72:43:05:4b:a2:76:d4:b7:94:89:cd: 9b:1c:f9:fa:e9:08:ce:ff:65:3a:e8:b3:48:2e:cf: a2:0f:df:52:10:1a:fe:b3:fb:0e:4e:33:73:89:39: 38:d4:5f:91:eb:1d:57:a4:cc:de:07:8e:0e:79:01: 66:a4:da:d3:01:5b:dd:02:70:38:d0:bf:d4:d7:97: b2:10:43:62:65:37:8f:c2:b4:6d:8e:94:56:d9:23: 80:cd:08:0b:49:ef:fa:b0:79:ff:3a:c2:64:f2:14: fd:25:59:47:be:40:60:25:a2:2a:35:fc:dd:4f:00: ef:d8:e3:63:95:dd:45:55:72:7f:46:6e:ce:fc:67: 05:db:f8:b7:18:2c:b8:aa:8d:59:8e:3a:14:4f:89: df:d5:fd:a5:43:fc:16:3c:e5:42:d1:0c:0b:9e:c1: 10:d5:94:1b:78:56:d8:77:dc:9c:c7:48:bd:df:55: 3d:03:41:3c:78:70:96:53:0f:02:24:bb:12:9c:25: d9:8a:b5:b0:a4:53:c0:18:38:bb:0e:e0:34:6c:a6: dc:0f:d8:fa:2d:2f:17:a3:6e:a6:b0:65:d2:f6:d5: 4c:71:71:b9:be:a2:cc:2f:ec:eb:9d:f5:4c:b7:ea: e0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:97:8A:8F:EA:14:CB:C0:25:63:E2:74:A0:24:36:44:E4:2D:6B:EC X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:a6:10:a7:da:81:b7:68:ef:18:9c:2e:c0:00:58:9d:ce:ec: c7:88:f9:bf:32:19:61:49:97:2e:37:c6:16:f5:94:0e:1c:5f: a8:11:00:e5:5e:d5:db:07:ec:c4:36:bb:65:96:80:8b:5d:d3: df:cb:62:4a:1b:64:43:05:87:05:18:83:31:9e:6d:cc:df:ab: 97:7b:88:11:9c:3e:ac:b9:93:4d:a3:27:fe:ac:e5:8b:b5:5e: 57:f5:72:70:3d:a3:a9:a6:15:72:e0:b6:fb:9e:ad:86:a4:ce: 51:32:2c:92:fe:a0:ee:94:b4:af:6a:6f:15:40:7a:5a:e4:64: 3b:60:e6:28:ed:af:bd:67:af:5e:05:c2:fc:6b:81:4e:be:70: d0:be:09:12:07:78:0b:9f:8c:f6:d2:a0:e9:92:79:96:7b:7e: 7e:e0:5c:7e:06:d2:7a:a6:a0:f4:08:40:f2:27:0a:c4:a8:b5: 6d:0b:95:c0:eb:d1:d2:fc:72:ea:a4:0d:a3:e8:a4:0b:8b:49: 6b:5d:32:dd:52:0c:6e:a2:7b:30:d1:13:d7:4f:33:1e:4d:62: e7:9c:42:e4:bb:cf:73:8c:bf:e2:b1:92:41:81:ec:eb:b2:a7: 3b:7b:ec:29:49:77:e9:0d:e9:f1:d6:fd:cc:41:74:ef:67:99: 9c:95:f2:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUxMDE5MDMyODUzWhcNMjUxMDI2MDMyODUzWjAYMRYwFAYD VQQDEw02OGY0NWFmNS00MDFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3YjCHyCVJ+X4Rt6+7P0MHppOckMFS6J21LeUic2bHPn66QjO/2U66LNILs+i D99SEBr+s/sOTjNziTk41F+R6x1XpMzeB44OeQFmpNrTAVvdAnA40L/U15eyEENi ZTePwrRtjpRW2SOAzQgLSe/6sHn/OsJk8hT9JVlHvkBgJaIqNfzdTwDv2ONjld1F VXJ/Rm7O/GcF2/i3GCy4qo1ZjjoUT4nf1f2lQ/wWPOVC0QwLnsEQ1ZQbeFbYd9yc x0i931U9A0E8eHCWUw8CJLsSnCXZirWwpFPAGDi7DuA0bKbcD9j6LS8Xo26msGXS 9tVMcXG5vqLML+zrnfVMt+rgCQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJSXio/q FMvAJWPidKAkNkTkLWvsMB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCXphCn2oG3aO8YnC7AAFidzuzHiPm/MhlhSZcuN8YW9ZQOHF+oEQDl XtXbB+zENrtlloCLXdPfy2JKG2RDBYcFGIMxnm3M36uXe4gRnD6suZNNoyf+rOWL tV5X9XJwPaOpphVy4Lb7nq2GpM5RMiyS/qDulLSvam8VQHpa5GQ7YOYo7a+9Z69e BcL8a4FOvnDQvgkSB3gLn4z20qDpknmWe35+4Fx+BtJ6pqD0CEDyJwrEqLVtC5XA 69HS/HLqpA2j6KQLi0lrXTLdUgxuonsw0RPXTzMeTWLnnELku89zjL/isZJBgezr sqc7e+wpSXfpDenx1v3MQXTvZ5mclfLg -----END CERTIFICATE-----Generated at Mon Oct 20 13:51:32 2025 by rpki-client