$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: aDFNG1FfewvjU/MXoWUGM0keaCVErb5MwW5izQiHu2Q= Subject key identifier: 76:A5:5F:66:27:02:49:FE:FE:A4:61:9D:F2:5C:CD:A9:F5:81:15:41 Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02CF Signing time: Sun 19 Oct 2025 03:32:08 +0000 Manifest this update: Sun 19 Oct 2025 03:32:08 +0000 Manifest next update: Sun 26 Oct 2025 03:32:08 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: ROIzttZHmmgpugyz2EOtAwWK5wGkeDvu+0LmTl6RbqE=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: Sdc1sOHrwKDGZqW0ILPwFUzKSKTDUensRtaAvqeeJxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:32:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 729 (0x2d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Oct 19 03:32:08 2025 GMT Not After : Oct 26 03:32:08 2025 GMT Subject: CN=68f45bb8-cb6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5a:f4:08:4a:f8:84:24:cb:a4:07:c3:4a:8a: cb:72:1e:3e:01:0c:d4:59:7e:e1:5a:28:71:d0:9c: d4:58:10:e3:86:0d:87:30:d1:8c:e4:78:13:b3:d7: 46:9d:8a:66:66:4e:3f:85:3e:08:4c:da:99:fe:59: 39:63:19:33:45:b4:21:e8:c5:eb:ac:06:34:cc:f4: 7f:14:ce:19:15:a1:c8:fe:f6:55:94:8f:bf:be:b1: 4b:89:bf:41:17:dd:96:2d:e5:f1:14:49:a3:e8:00: e4:22:54:1a:5d:68:84:cf:1f:ed:4c:96:cc:57:82: 76:13:98:82:b1:e0:78:4c:3d:6b:e0:0a:cb:dc:4d: f7:f8:d9:90:28:c8:6f:cc:e7:33:39:0e:c2:e3:f8: f2:06:b8:32:ca:2f:a6:88:44:33:70:83:ff:12:6c: c1:17:6e:2e:0c:52:df:4a:df:c5:ee:48:fd:7d:c6: 17:c3:1f:89:f1:30:2e:69:12:55:67:24:39:b9:ab: 04:7c:44:56:20:24:e3:d1:27:09:b5:2a:f0:18:6b: 47:71:08:86:18:15:6b:0a:28:a9:7b:b6:42:1a:89: 1c:d3:8f:ef:a3:8c:df:89:59:6e:3a:e5:12:9a:9a: 0d:a3:0b:a8:cd:68:45:8d:54:a5:c6:21:8f:1a:68: 2b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A5:5F:66:27:02:49:FE:FE:A4:61:9D:F2:5C:CD:A9:F5:81:15:41 X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:86:e7:3c:c6:4a:d2:39:54:72:29:db:67:7b:94:62:3a:46: cd:5f:a7:6e:ab:63:7b:eb:6b:a7:41:60:8f:8e:ce:f1:43:5a: 61:77:b8:bb:f7:2c:b2:81:61:69:86:98:63:92:03:94:d2:75: 19:90:05:df:bf:e3:f5:c3:a4:a8:b1:03:61:01:92:1e:0a:79: b2:d1:67:42:53:ac:c8:6e:63:ec:22:d3:ea:46:91:cb:5c:68: 12:9b:c8:3d:73:85:45:12:66:47:d9:92:54:04:be:d4:fd:32: cc:3c:30:78:a1:ac:f5:88:39:9a:80:62:53:e0:d5:3f:7e:f8: 48:a9:3d:bb:b4:4d:1e:21:f5:d8:13:c6:ea:2f:38:a5:ba:30: d1:f6:3e:00:8f:9d:65:28:3c:9f:f3:12:1e:8d:dc:4b:46:75: 17:aa:1a:e1:29:0f:66:59:f7:c0:db:53:15:b7:80:8d:4c:36: 80:a0:4e:8c:1d:87:77:c4:f6:79:6f:ac:ff:79:88:64:4e:0d: d2:85:ee:ef:6c:64:4f:c6:25:e1:77:e7:74:80:26:de:df:66: 62:eb:64:e6:97:89:d4:20:11:8d:b7:b9:1f:bd:cb:c5:e1:1a: 52:79:da:d2:53:2e:e1:b5:03:2b:f2:c6:74:13:ba:45:00:97: d4:48:15:3d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUxMDE5MDMzMjA4WhcNMjUxMDI2MDMzMjA4WjAYMRYwFAYD VQQDEw02OGY0NWJiOC1jYjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlr0CEr4hCTLpAfDSorLch4+AQzUWX7hWihx0JzUWBDjhg2HMNGM5HgTs9dG nYpmZk4/hT4ITNqZ/lk5YxkzRbQh6MXrrAY0zPR/FM4ZFaHI/vZVlI+/vrFLib9B F92WLeXxFEmj6ADkIlQaXWiEzx/tTJbMV4J2E5iCseB4TD1r4ArL3E33+NmQKMhv zOczOQ7C4/jyBrgyyi+miEQzcIP/EmzBF24uDFLfSt/F7kj9fcYXwx+J8TAuaRJV ZyQ5uasEfERWICTj0ScJtSrwGGtHcQiGGBVrCiipe7ZCGokc04/vo4zfiVluOuUS mpoNowuozWhFjVSlxiGPGmgrhwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHalX2Yn Akn+/qRhnfJczan1gRVBMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0huc8xkrSOVRyKdtne5RiOkbNX6duq2N762unQWCPjs7xQ1phd7i7 9yyygWFphphjkgOU0nUZkAXfv+P1w6SosQNhAZIeCnmy0WdCU6zIbmPsItPqRpHL XGgSm8g9c4VFEmZH2ZJUBL7U/TLMPDB4oaz1iDmagGJT4NU/fvhIqT27tE0eIfXY E8bqLzilujDR9j4Aj51lKDyf8xIejdxLRnUXqhrhKQ9mWffA21MVt4CNTDaAoE6M HYd3xPZ5b6z/eYhkTg3She7vbGRPxiXhd+d0gCbe32Zi62Tml4nUIBGNt7kfvcvF 4RpSedrSUy7htQMr8sZ0E7pFAJfUSBU9 -----END CERTIFICATE-----Generated at Mon Oct 20 16:13:48 2025 by rpki-client