$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: Z1v+37tCJxAX/vYbpP6cxLyUY0ApGwJUvL7l2PcVC0E= Subject key identifier: E7:12:DA:07:D1:88:B4:9C:80:01:46:7D:08:06:0D:F9:51:67:E2:7E Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 017A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 017A Signing time: Sun 19 Oct 2025 06:24:21 +0000 Manifest this update: Sun 19 Oct 2025 06:24:20 +0000 Manifest next update: Sun 26 Oct 2025 06:24:20 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: f4fGI6euWrjd1IqKCazynf1J2cDQvAMMuk4yOSxmEWs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:24:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 378 (0x17a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Oct 19 06:24:20 2025 GMT Not After : Oct 26 06:24:20 2025 GMT Subject: CN=68f48415-ebc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:38:a5:be:60:8e:66:1b:86:97:22:b8:89:fe: 62:d5:91:85:98:b0:04:87:53:f8:99:a7:7d:9e:c6: bb:09:69:a3:a9:62:c7:bd:e4:18:94:4d:d0:ed:47: ec:3b:57:19:89:a0:4c:6d:9b:c1:3a:ac:22:5f:e2: 51:2d:26:32:14:31:aa:9f:dc:18:41:a9:80:e3:69: dc:70:d4:a6:67:41:70:ff:07:a7:15:87:7b:e6:f3: be:a2:d0:3d:9c:4b:f6:8f:32:65:40:48:04:e9:81: 63:cf:dc:6c:10:b3:1f:c5:74:e0:84:b9:ca:d5:17: 16:81:e4:02:73:4f:9e:c4:bf:09:e9:ea:2c:2a:fe: 2a:97:d8:58:34:39:62:46:b0:64:5f:6f:79:15:61: 20:78:a9:4e:21:8a:fc:d4:11:83:5a:10:71:1b:2e: 8b:9d:35:fb:60:bb:85:f4:dd:76:f0:57:51:71:0f: 2f:d7:a8:5f:7e:ba:87:e6:45:45:bf:bd:f6:5e:87: 9c:8f:9b:44:56:e6:09:58:c1:20:4b:69:85:86:b3: f7:70:0d:b9:13:ab:ef:1c:bd:ef:a2:f1:a2:74:24: 16:94:17:7d:44:0f:99:91:9b:19:9d:b2:af:ec:29: e4:9f:db:b3:5d:8f:7b:4a:86:65:66:de:69:48:7d: 96:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:12:DA:07:D1:88:B4:9C:80:01:46:7D:08:06:0D:F9:51:67:E2:7E X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:d7:69:f2:4f:bc:7d:b8:11:1b:5f:d6:a6:dd:c9:97:98:4b: 97:8a:c7:f7:d9:98:1d:eb:eb:ac:6e:7c:12:a3:ff:dd:5b:ed: 29:3d:da:fd:36:47:fb:b7:0c:7a:63:3b:ad:db:55:a8:44:cf: 26:6f:62:7b:39:b9:63:4f:c3:46:81:3d:57:46:72:fe:1a:0e: 41:ac:df:25:cd:23:52:85:ea:22:b1:b6:de:31:e6:d6:0d:4f: 99:2c:ed:0b:9b:07:64:8b:8e:e2:78:66:14:e0:75:b0:02:f7: 7a:f6:ec:29:b3:53:81:81:39:3a:5e:25:0b:1a:f6:74:3f:3c: 97:ef:30:40:51:eb:9c:5c:43:49:0a:f1:bd:81:0d:75:56:66: 89:18:cb:4a:3b:22:9e:38:1b:b8:19:09:e7:98:8b:8a:a5:72: 4b:d4:16:e7:0e:c0:69:a5:66:1d:c7:75:ed:04:9e:e2:6e:87: d0:c5:6a:a9:61:d0:88:9e:02:e9:80:9e:b4:14:0a:d2:05:5a: 50:98:8b:51:9c:10:db:c7:e6:1d:b2:da:13:d2:43:50:42:7c: 82:02:5e:85:19:35:00:ed:6a:1a:42:39:82:30:af:36:9e:a4: 81:5a:2d:d8:38:c7:9b:b5:f0:f1:64:5b:4b:7d:fe:aa:6f:79: 1f:e1:b3:f8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUxMDE5MDYyNDIwWhcNMjUxMDI2MDYyNDIwWjAYMRYwFAYD VQQDEw02OGY0ODQxNS1lYmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAszilvmCOZhuGlyK4if5i1ZGFmLAEh1P4mad9nsa7CWmjqWLHveQYlE3Q7Ufs O1cZiaBMbZvBOqwiX+JRLSYyFDGqn9wYQamA42nccNSmZ0Fw/wenFYd75vO+otA9 nEv2jzJlQEgE6YFjz9xsELMfxXTghLnK1RcWgeQCc0+exL8J6eosKv4ql9hYNDli RrBkX295FWEgeKlOIYr81BGDWhBxGy6LnTX7YLuF9N128FdRcQ8v16hffrqH5kVF v732Xoecj5tEVuYJWMEgS2mFhrP3cA25E6vvHL3vovGidCQWlBd9RA+ZkZsZnbKv 7Cnkn9uzXY97SoZlZt5pSH2WyQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOcS2gfR iLScgAFGfQgGDflRZ+J+MB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+12nyT7x9uBEbX9am3cmXmEuXisf32Zgd6+usbnwSo//dW+0pPdr9 Nkf7twx6Yzut21WoRM8mb2J7ObljT8NGgT1XRnL+Gg5BrN8lzSNSheoisbbeMebW DU+ZLO0Lmwdki47ieGYU4HWwAvd69uwps1OBgTk6XiULGvZ0PzyX7zBAUeucXENJ CvG9gQ11VmaJGMtKOyKeOBu4GQnnmIuKpXJL1BbnDsBppWYdx3XtBJ7ibofQxWqp YdCIngLpgJ60FArSBVpQmItRnBDbx+YdstoT0kNQQnyCAl6FGTUA7WoaQjmCMK82 nqSBWi3YOMebtfDxZFtLff6qb3kf4bP4 -----END CERTIFICATE-----Generated at Tue Oct 21 10:28:13 2025 by rpki-client