$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: ejT58RmvYA10e0LTG4l5EGnNqqBxooagjc6IAJdF0Vw= Subject key identifier: C8:6A:47:95:F9:BE:EE:48:AF:41:19:E2:86:2C:C4:81:7B:F9:F2:FE Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0B3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0B32 Signing time: Sat 18 Oct 2025 20:10:49 +0000 Manifest this update: Sat 18 Oct 2025 20:10:48 +0000 Manifest next update: Sat 25 Oct 2025 20:10:48 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: Gt0Z1XUhl9h1nK29dHwGil3+oJcuqmSmulD2SFJBCyY=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: +JzejbKc1NZP24NoPrMtMcVkZZ9hm7s276rW0zhe0b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2874 (0xb3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Oct 18 20:10:48 2025 GMT Not After : Oct 25 20:10:48 2025 GMT Subject: CN=68f3f449-9142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:68:10:a6:a7:1e:94:28:f7:4e:e2:6b:a0:7a: 87:4f:ac:8d:87:6a:32:4d:0e:cf:86:8c:17:5b:cf: ed:d9:4c:f3:78:5a:cc:4a:35:13:cf:34:6d:51:a5: e1:57:44:ad:d5:ee:48:7a:94:70:59:6e:de:e3:70: e9:a8:f3:df:32:58:91:ae:7a:0b:6d:de:b9:ba:3e: f9:87:f5:86:9f:53:e4:16:42:6a:d4:8f:26:c1:1c: 08:4f:88:5d:04:c5:67:cd:ed:04:a6:62:7a:e1:c9: f2:f1:8f:03:e0:16:52:71:46:c1:3a:d5:5d:99:51: 31:e7:81:6f:6f:69:93:64:cb:00:81:04:e7:81:29: 18:0a:1d:33:97:4c:7a:04:1c:aa:c4:61:0e:3f:e4: c2:1a:0b:51:b3:4e:45:17:df:09:eb:85:9d:4d:26: 4c:cb:8e:80:d0:f5:18:5e:1f:2e:c4:5c:20:e3:39: 20:25:ce:df:ec:f3:b2:cb:52:35:bc:e9:44:93:4b: 5b:98:59:e8:ab:df:d7:f8:00:71:64:0b:88:e2:b0: 25:c2:ff:a6:e3:82:0c:02:04:08:bc:a9:01:de:dd: 62:77:48:d4:81:10:53:a9:08:2a:78:53:ee:f2:24: 0f:99:f2:ae:ce:fe:06:18:2d:4d:cc:52:ad:69:36: 69:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:6A:47:95:F9:BE:EE:48:AF:41:19:E2:86:2C:C4:81:7B:F9:F2:FE X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 77:47:aa:d5:62:27:fa:27:b5:b0:08:ff:45:34:d7:b8:77:1f: 2c:e9:6f:b3:5e:dd:60:88:da:0d:71:4d:8a:54:7e:fd:d8:2a: e2:2b:eb:d2:71:bd:ba:91:0f:f0:dd:49:25:80:f4:ed:18:05: af:e0:0c:49:74:64:0a:67:70:a4:da:29:b2:88:25:ff:ad:47: dc:85:64:8c:1d:7b:62:ca:67:89:7b:c9:c5:2e:25:1c:3e:5c: 01:04:28:b7:8d:68:d0:7b:bd:96:a9:74:14:eb:2f:c0:c1:76: f8:9a:57:a2:c5:6e:48:a0:83:73:26:f0:0a:e7:3c:5c:af:09: c2:66:17:23:48:0f:76:ca:c2:82:0f:bb:bd:50:aa:06:f8:98: 18:ba:fe:7a:6d:26:8f:1e:3a:27:6f:5c:90:4e:88:74:db:96: 8a:4d:8f:59:20:91:f2:25:c6:22:63:ea:b8:f6:bb:37:18:8f: 17:66:c8:bf:04:4f:db:31:40:cf:8a:4a:3d:84:98:87:08:e4: 7a:cf:0c:ef:95:92:0b:60:22:d6:26:cb:c2:78:90:3d:2f:e2: 0b:5f:67:71:ae:16:8b:80:e1:a9:31:ee:7f:8f:a5:43:d4:15: d3:7c:42:2e:b6:50:87:c6:78:28:4c:c5:80:92:30:f6:a4:53: de:26:1c:c6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCzowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUxMDE4MjAxMDQ4WhcNMjUxMDI1MjAxMDQ4WjAYMRYwFAYD VQQDEw02OGYzZjQ0OS05MTQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWgQpqcelCj3TuJroHqHT6yNh2oyTQ7PhowXW8/t2UzzeFrMSjUTzzRtUaXh V0St1e5IepRwWW7e43DpqPPfMliRrnoLbd65uj75h/WGn1PkFkJq1I8mwRwIT4hd BMVnze0EpmJ64cny8Y8D4BZScUbBOtVdmVEx54Fvb2mTZMsAgQTngSkYCh0zl0x6 BByqxGEOP+TCGgtRs05FF98J64WdTSZMy46A0PUYXh8uxFwg4zkgJc7f7POyy1I1 vOlEk0tbmFnoq9/X+ABxZAuI4rAlwv+m44IMAgQIvKkB3t1id0jUgRBTqQgqeFPu 8iQPmfKuzv4GGC1NzFKtaTZpRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMhqR5X5 vu5Ir0EZ4oYsxIF7+fL+MB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB3R6rVYif6J7WwCP9FNNe4dx8s6W+zXt1giNoNcU2KVH792CriK+vS cb26kQ/w3UklgPTtGAWv4AxJdGQKZ3Ck2imyiCX/rUfchWSMHXtiymeJe8nFLiUc PlwBBCi3jWjQe72WqXQU6y/AwXb4mleixW5IoINzJvAK5zxcrwnCZhcjSA92ysKC D7u9UKoG+JgYuv56bSaPHjonb1yQToh025aKTY9ZIJHyJcYiY+q49rs3GI8XZsi/ BE/bMUDPiko9hJiHCOR6zwzvlZILYCLWJsvCeJA9L+ILX2dxrhaLgOGpMe5/j6VD 1BXTfEIutlCHxngoTMWAkjD2pFPeJhzG -----END CERTIFICATE-----Generated at Mon Oct 20 09:35:13 2025 by rpki-client