$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: /JEuldZwP3Y/2L7UGKeJpiJ1/mpuHlhQDhenGc8ev90= Subject key identifier: 13:4B:48:4F:DC:FD:A7:AA:7F:29:03:5F:D9:C6:53:E2:E7:F8:C5:09 Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0ECF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0EBE Signing time: Sat 18 Oct 2025 18:16:49 +0000 Manifest this update: Sat 18 Oct 2025 18:16:48 +0000 Manifest next update: Sat 25 Oct 2025 18:16:48 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: k1MRo3tr+mg4//0hO+znfaTZBGRpvMG6kbt13Uo4+ns=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:16:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3791 (0xecf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Oct 18 18:16:48 2025 GMT Not After : Oct 25 18:16:48 2025 GMT Subject: CN=68f3d990-558a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:f1:db:21:fd:af:96:91:90:2f:1f:13:75: 4f:e5:c9:ff:d7:02:d0:4a:78:63:34:2a:51:f3:f6: c3:b6:9b:a9:8d:25:28:d3:37:2b:12:6e:89:d5:aa: dc:59:66:52:7c:75:9b:0a:15:80:37:1c:54:96:3b: 35:fd:dc:7a:f4:8d:93:b4:4d:53:68:39:88:8e:ad: 2c:b5:22:fe:56:07:44:f4:25:e0:29:5c:be:86:26: 13:57:3a:3b:a7:be:e3:be:b0:ca:24:95:8c:06:b1: 31:79:a6:7f:14:9d:d4:85:7b:4f:7f:d4:82:6b:31: c6:90:60:eb:b3:0c:c0:ee:b6:7f:55:a9:8d:77:b5: ae:93:2e:03:13:a3:d7:1a:18:fa:13:5d:c1:22:b9: ec:ce:16:e7:c7:05:92:42:a2:8c:da:89:00:6c:29: a2:eb:20:87:95:8f:42:d2:cb:30:a1:e3:5a:81:7c: 05:87:b1:9e:54:39:1c:9c:4b:cb:0f:eb:18:a4:70: 21:52:93:43:ce:6c:f5:a0:d0:ed:ec:ae:1f:47:38: 6b:6a:e3:e3:0e:4f:18:f9:51:b2:74:6e:d7:2f:88: 58:db:03:84:4b:51:0d:f5:de:7e:cb:34:a6:76:54: 5a:44:e7:8a:dc:a0:f1:6f:35:93:8b:8b:99:10:07: 4e:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:4B:48:4F:DC:FD:A7:AA:7F:29:03:5F:D9:C6:53:E2:E7:F8:C5:09 X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 23:2e:d3:f2:73:9f:49:cd:07:83:7e:fd:d1:04:33:40:0a:a4: c1:5a:9c:39:92:23:80:a8:c2:0a:d8:f4:e2:bd:1e:5c:01:7e: 77:31:c6:11:bd:5b:1c:32:20:e2:ce:69:cb:bc:87:fd:cf:d6: a9:c6:85:ef:b4:d1:a0:d7:ee:73:77:f7:10:9a:c7:30:f3:76: 14:86:86:1c:ed:4a:e4:08:59:8b:a0:eb:ed:dc:84:00:24:6c: 88:d3:25:ae:fa:05:cf:bc:e0:5e:2e:ac:93:ec:ac:9a:1b:99: b2:f9:27:ba:52:39:a4:3a:3e:11:41:4b:49:19:49:50:aa:43: dd:5f:d0:de:97:58:d3:f4:3d:2c:66:e3:a3:3c:3a:ea:25:e7: 21:cd:f8:79:d3:0f:19:27:a5:6a:b2:29:5f:92:46:0a:91:6b: 86:83:68:6e:ce:b5:63:20:99:3b:46:9e:0f:f8:dc:7e:17:1d: d1:c2:4b:fd:fe:38:3a:aa:08:47:49:a1:3d:28:5a:bd:25:71: d5:7c:4a:62:f5:8c:4c:f7:a3:1c:97:bd:29:ea:5a:fa:3c:d9: 67:85:93:d5:fb:6d:11:c0:00:86:81:13:f1:8a:8f:a9:2e:31: 59:3e:28:17:06:b9:44:40:e8:1c:ae:16:6e:69:5b:7d:1d:b7: d1:0d:23:0a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUxMDE4MTgxNjQ4WhcNMjUxMDI1MTgxNjQ4WjAYMRYwFAYD VQQDEw02OGYzZDk5MC01NThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0Lx2yH9r5aRkC8fE3VP5cn/1wLQSnhjNCpR8/bDtpupjSUo0zcrEm6J1arc WWZSfHWbChWANxxUljs1/dx69I2TtE1TaDmIjq0stSL+VgdE9CXgKVy+hiYTVzo7 p77jvrDKJJWMBrExeaZ/FJ3UhXtPf9SCazHGkGDrswzA7rZ/VamNd7Wuky4DE6PX Ghj6E13BIrnszhbnxwWSQqKM2okAbCmi6yCHlY9C0sswoeNagXwFh7GeVDkcnEvL D+sYpHAhUpNDzmz1oNDt7K4fRzhrauPjDk8Y+VGydG7XL4hY2wOES1EN9d5+yzSm dlRaROeK3KDxbzWTi4uZEAdOPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBNLSE/c /aeqfykDX9nGU+Ln+MUJMB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAjLtPyc59JzQeDfv3RBDNACqTBWpw5kiOAqMIK2PTivR5cAX53McYR vVscMiDizmnLvIf9z9apxoXvtNGg1+5zd/cQmscw83YUhoYc7UrkCFmLoOvt3IQA JGyI0yWu+gXPvOBeLqyT7KyaG5my+Se6UjmkOj4RQUtJGUlQqkPdX9Del1jT9D0s ZuOjPDrqJechzfh50w8ZJ6VqsilfkkYKkWuGg2huzrVjIJk7Rp4P+Nx+Fx3Rwkv9 /jg6qghHSaE9KFq9JXHVfEpi9YxM96Mcl70p6lr6PNlnhZPV+20RwACGgRPxio+p LjFZPigXBrlEQOgcrhZuaVt9HbfRDSMK -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:19 2025 by rpki-client