$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: HyBB1o+55ew5pHukUXAJzv4oTd0P415itqYF1BYl828= Subject key identifier: 99:0C:7A:D1:04:1D:68:05:F6:5E:30:A3:EA:7D:74:2D:58:66:F1:06 Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 102A Signing time: Sat 18 Oct 2025 18:26:28 +0000 Manifest this update: Sat 18 Oct 2025 18:26:27 +0000 Manifest next update: Sat 25 Oct 2025 18:26:27 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: h4eS5/+pQuNxvMMlfTVQiFulBINTmvzHP15ABEQ7Vt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:26:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3679 (0xe5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Oct 18 18:26:27 2025 GMT Not After : Oct 25 18:26:27 2025 GMT Subject: CN=68f3dbd4-4e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0b:93:cc:05:e2:af:71:2f:52:d9:49:cd:3f: f9:2a:ae:dc:28:1e:36:7f:2b:29:2f:ec:c6:a6:37: b5:a8:61:ce:0a:6d:63:7b:75:33:30:40:94:4a:f4: da:64:e5:f4:93:65:65:53:2d:16:01:dd:23:a4:78: 4b:c1:37:ce:74:1a:ca:a5:c4:dd:a3:d6:0d:3c:db: db:77:0f:ec:41:0d:69:ae:19:bd:a7:97:a4:c9:71: cd:4a:35:8e:ba:db:19:79:87:bc:e7:6b:e6:f9:dd: e1:18:70:e2:aa:24:8f:18:af:57:7e:c3:4f:c5:e3: db:9d:3d:a4:ba:ce:7e:d4:e9:aa:bb:09:a0:48:45: ac:35:15:2d:ce:82:c5:47:1d:17:e8:13:f1:97:0f: d3:d1:34:28:75:57:3a:c4:50:3a:d4:66:fe:ff:4a: 8d:d6:e6:42:12:3e:28:21:0e:80:e2:77:24:9a:e8: 6b:d2:46:be:e2:4a:e9:96:3b:11:07:3f:d2:9e:81: e8:74:0e:e3:51:a1:6c:0f:e0:45:c9:88:51:52:17: 9e:8e:4b:cf:a8:61:9a:ec:ff:b1:2f:ee:4f:db:9a: fe:57:5b:be:9e:70:d1:d0:26:5b:b3:2b:74:2f:17: 2c:cd:75:df:c4:db:6f:a5:65:08:b0:32:7b:c4:81: d2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0C:7A:D1:04:1D:68:05:F6:5E:30:A3:EA:7D:74:2D:58:66:F1:06 X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2a:a5:23:ac:46:6c:28:19:38:ec:84:2b:95:3d:44:0c:09:66: 04:d2:fe:ae:2c:15:1c:44:6a:ef:d4:dc:64:bc:50:7a:c8:dd: 3f:13:9e:c2:41:6c:bc:64:6b:f6:0c:88:34:8f:96:92:4c:20: 15:0f:76:60:1e:6b:8c:81:9f:5b:ad:7e:e3:6e:86:0a:89:3a: c0:f7:05:c8:08:3c:0d:d7:ff:c5:ef:6f:3a:07:89:8e:53:c0: f1:76:b0:fe:4d:72:61:98:06:e9:95:ec:6f:a1:60:14:27:dc: f0:28:ea:56:b2:58:90:f4:77:d5:6e:2a:5d:86:a4:db:08:43: 29:21:3f:ab:3c:17:71:a7:65:ae:79:6e:b3:5c:d3:b8:2f:92: a1:29:dc:9b:f4:42:18:8c:b8:29:9a:6b:35:a1:26:de:45:a5: cb:1c:9f:ab:b3:f2:34:0b:19:02:d6:05:a7:f8:f6:25:ac:13: 8e:66:c1:87:12:3f:29:fd:36:b5:99:6e:cc:1e:55:3c:d8:39: f5:5c:0b:6a:59:39:ed:f1:ca:f3:46:a2:eb:91:0c:76:f2:73: da:1a:4a:82:73:c0:9a:17:96:b8:d3:01:e2:77:77:29:c2:8d: fd:c7:c3:8b:db:cb:59:69:db:47:18:24:87:1b:ac:d4:13:96: 2f:14:ab:27 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDl8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUxMDE4MTgyNjI3WhcNMjUxMDI1MTgyNjI3WjAYMRYwFAYD VQQDEw02OGYzZGJkNC00ZTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwuTzAXir3EvUtlJzT/5Kq7cKB42fyspL+zGpje1qGHOCm1je3UzMECUSvTa ZOX0k2VlUy0WAd0jpHhLwTfOdBrKpcTdo9YNPNvbdw/sQQ1prhm9p5ekyXHNSjWO utsZeYe852vm+d3hGHDiqiSPGK9XfsNPxePbnT2kus5+1OmquwmgSEWsNRUtzoLF Rx0X6BPxlw/T0TQodVc6xFA61Gb+/0qN1uZCEj4oIQ6A4nckmuhr0ka+4krpljsR Bz/SnoHodA7jUaFsD+BFyYhRUheejkvPqGGa7P+xL+5P25r+V1u+nnDR0CZbsyt0 LxcszXXfxNtvpWUIsDJ7xIHSXQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJkMetEE HWgF9l4wo+p9dC1YZvEGMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAqpSOsRmwoGTjshCuVPUQMCWYE0v6uLBUcRGrv1NxkvFB6yN0/E57C QWy8ZGv2DIg0j5aSTCAVD3ZgHmuMgZ9brX7jboYKiTrA9wXICDwN1//F7286B4mO U8DxdrD+TXJhmAbplexvoWAUJ9zwKOpWsliQ9HfVbipdhqTbCEMpIT+rPBdxp2Wu eW6zXNO4L5KhKdyb9EIYjLgpmms1oSbeRaXLHJ+rs/I0CxkC1gWn+PYlrBOOZsGH Ej8p/Ta1mW7MHlU82Dn1XAtqWTnt8crzRqLrkQx28nPaGkqCc8CaF5a40wHid3cp wo39x8OL28tZadtHGCSHG6zUE5YvFKsn -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:03 2025 by rpki-client