$ rpki-client -vvf rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft File: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft (raw, json) Hash identifier: K2j55okfC+G9AVBGnPoF2nagLD15qv8peIeKBJUGkBc= Subject key identifier: BF:90:E4:74:95:71:25:32:55:DC:A6:31:E2:26:14:89:4D:A2:78:8B Authority key identifier: D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 Certificate issuer: /CN=A91A822F/serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft Manifest number: 011E Signing time: Sat 11 Oct 2025 07:58:09 +0000 Manifest this update: Sat 11 Oct 2025 07:58:08 +0000 Manifest next update: Sat 18 Oct 2025 07:58:08 +0000 Files and hashes: 1: 2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl (hash: TJnxo9yft3QcrsXFU42/IikNsLqI7eOIAbO9gIsFLZ0=) 2: B04338609E8811F09A69050AC4F9AE02.roa (hash: 0XVtpLEu6mzH4OrnlrOYyiblJIwpUeCvabkFn8jxbN4=) 3: E46DBE449E8811F0A343880AC4F9AE02.roa (hash: 09qMEc1nAzT4e4OGyHGlymxMMsFzVDFV6geJgZgwtG4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 07:58:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A822F, serialNumber=D9872C193E18DC151FE3EF9E29AFE83121B24D10 Validity Not Before: Oct 11 07:58:08 2025 GMT Not After : Oct 18 07:58:08 2025 GMT Subject: CN=68ea0e10-bd33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4e:c3:06:25:df:61:56:fc:80:3c:e2:9b:ac: d8:d5:7a:b9:0d:8b:a8:51:ff:f2:c3:c1:7f:d7:1b: 5b:3e:77:47:b2:ac:6e:3a:30:d1:e8:62:72:46:80: df:f6:5a:2d:a6:4e:8e:3d:e4:91:de:f0:6f:c1:a7: 18:f9:56:f9:f0:5e:8e:a5:12:99:9c:a0:dd:c8:ef: 90:52:30:be:6e:57:dc:c3:59:87:e1:81:6d:59:27: c7:ab:21:1c:45:c2:f3:2a:2c:1c:a5:de:94:3a:7d: 27:bd:e4:34:f9:e2:09:8d:2b:e6:fc:11:05:37:1e: 0a:47:00:c5:9e:95:4f:b0:ed:35:cb:d2:40:b2:53: c4:ca:5c:f8:89:1f:68:28:b9:af:8e:cf:61:f4:d7: b2:1f:39:8e:96:63:ba:02:af:99:20:c5:28:15:5b: 65:29:2e:68:6c:7f:ab:29:8f:21:09:9d:9a:25:b6: bb:87:2d:6b:10:87:96:1d:52:89:49:8c:53:db:a2: 8a:c5:dd:d3:b2:9d:f9:cd:fd:5a:23:12:0a:59:7c: a3:87:6f:1f:6a:ab:41:bf:52:cc:5a:79:b2:15:8b: 74:d7:3a:f3:dd:86:25:01:2a:ac:ff:42:e1:de:ca: 5a:20:4a:aa:c9:1b:e1:15:da:7a:dd:a7:30:de:8c: 87:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:90:E4:74:95:71:25:32:55:DC:A6:31:E2:26:14:89:4D:A2:78:8B X509v3 Authority Key Identifier: keyid:D9:87:2C:19:3E:18:DC:15:1F:E3:EF:9E:29:AF:E8:31:21:B2:4D:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YcsGT4Y3BUf4--eKa_oMSGyTRA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A822F/5842D304F7F011EE98C8C92BC4F9AE02/2YcsGT4Y3BUf4--eKa_oMSGyTRA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:24:5e:20:22:5c:e4:d4:85:01:1f:df:14:c8:b6:08:8c:82: 42:4b:a0:a3:10:4f:f1:c0:a7:b4:d8:04:ff:88:bc:b6:65:bf: f4:62:b2:d4:bb:e9:b5:9d:61:35:04:c6:e8:86:7e:56:06:eb: 15:5d:34:bc:33:fa:26:2a:a9:17:d8:17:93:b3:04:38:5a:17: 74:12:2e:5e:6c:3f:a4:b5:ac:47:8b:2f:67:46:74:6e:18:9c: 02:62:8a:a7:3c:b0:1a:8c:dc:9c:b9:e7:5a:54:94:84:44:4c: b3:53:4f:6e:b5:61:a9:91:a5:83:59:81:6b:14:25:5a:e8:23: 64:b5:91:22:1e:eb:1b:16:3e:50:35:52:e2:a1:82:71:02:53: 8c:15:ca:0e:be:4e:ec:e1:c6:d1:98:ee:21:78:8b:ab:99:5b: 36:92:5b:b8:90:37:be:9b:1e:2b:df:55:fe:0a:4a:24:eb:d5: a3:9f:d4:92:24:41:49:2f:bf:47:9e:bf:e6:17:3b:74:0e:a2: 3b:36:e4:da:5b:48:04:9b:4a:84:8b:26:98:cc:aa:0e:53:80: c9:f6:dc:c4:e8:8d:e4:97:df:33:66:9f:fc:af:e0:c6:80:49: ca:79:72:01:d5:14:19:a0:70:23:d7:4c:21:b8:0c:55:5f:2c: db:1d:90:1e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTgyMkYxMTAvBgNVBAUTKEQ5ODcyQzE5M0UxOERDMTUxRkUzRUY5RTI5QUZFODMx MjFCMjREMTAwHhcNMjUxMDExMDc1ODA4WhcNMjUxMDE4MDc1ODA4WjAYMRYwFAYD VQQDEw02OGVhMGUxMC1iZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr07DBiXfYVb8gDzim6zY1Xq5DYuoUf/yw8F/1xtbPndHsqxuOjDR6GJyRoDf 9lotpk6OPeSR3vBvwacY+Vb58F6OpRKZnKDdyO+QUjC+blfcw1mH4YFtWSfHqyEc RcLzKiwcpd6UOn0nveQ0+eIJjSvm/BEFNx4KRwDFnpVPsO01y9JAslPEylz4iR9o KLmvjs9h9NeyHzmOlmO6Aq+ZIMUoFVtlKS5obH+rKY8hCZ2aJba7hy1rEIeWHVKJ SYxT26KKxd3Tsp35zf1aIxIKWXyjh28faqtBv1LMWnmyFYt01zrz3YYlASqs/0Lh 3spaIEqqyRvhFdp63acw3oyHRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFL+Q5HSV cSUyVdymMeImFIlNoniLMB8GA1UdIwQYMBaAFNmHLBk+GNwVH+Pvnimv6DEhsk0Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODIyRi81ODQyRDMwNEY3 RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNCVWY0LS1lS2Ffb01TR3lU UkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZY3NHVDRZM0JVZjQtLWVLYV9vTVNHeVRSQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODIyRi81ODQyRDMwNEY3RjAxMUVFOThDOEM5MkJDNEY5QUUwMi8yWWNzR1Q0WTNC VWY0LS1lS2Ffb01TR3lUUkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDJF4gIlzk1IUBH98UyLYIjIJCS6CjEE/xwKe02AT/iLy2Zb/0YrLU u+m1nWE1BMbohn5WBusVXTS8M/omKqkX2BeTswQ4Whd0Ei5ebD+ktaxHiy9nRnRu GJwCYoqnPLAajNycuedaVJSEREyzU09utWGpkaWDWYFrFCVa6CNktZEiHusbFj5Q NVLioYJxAlOMFcoOvk7s4cbRmO4heIurmVs2klu4kDe+mx4r31X+Ckok69Wjn9SS JEFJL79Hnr/mFzt0DqI7NuTaW0gEm0qEiyaYzKoOU4DJ9tzE6I3kl98zZp/8r+DG gEnKeXIB1RQZoHAj10whuAxVXyzbHZAe -----END CERTIFICATE-----Generated at Sat Oct 11 17:05:46 2025 by rpki-client