$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: K1gciKgFeCC95FbeK3xZV9w++GiN+fhqY0iIvrTUnQo= Subject key identifier: 14:BF:DD:B0:FA:87:BF:B8:C8:C1:F4:9A:58:AD:70:45:AD:64:4E:FC Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 34C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 34C8 Signing time: Thu 18 Sep 2025 14:46:53 +0000 Manifest this update: Thu 18 Sep 2025 14:46:52 +0000 Manifest next update: Thu 25 Sep 2025 14:46:52 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: Jol5djYiGSuPyNOR5o4kyTgyRdAtpnIKjBPyDZDukTg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 14:46:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13512 (0x34c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Sep 18 14:46:52 2025 GMT Not After : Sep 25 14:46:52 2025 GMT Subject: CN=68cc1b5d-645f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:61:73:bf:ba:63:d6:32:0d:f5:87:78:55:29: 34:1d:7c:5a:cb:ea:0a:c6:0a:05:ab:a4:2f:0d:fd: 84:3a:d1:9f:60:9b:3f:f2:93:2e:9c:11:1f:b8:0e: dc:fa:c3:bf:08:6d:25:c7:d8:ac:4e:c8:06:c6:bf: 86:09:a6:fd:d7:37:de:3d:ed:df:41:34:65:8c:08: 78:6a:1c:ff:99:c5:66:19:f8:89:31:9c:6a:4a:07: dc:d0:81:e9:97:ed:a2:8e:7c:c3:d9:57:3d:a5:c7: b1:7c:e1:a2:a1:47:5c:9a:ee:a7:26:6b:19:72:ee: 90:27:75:bd:c1:39:dc:72:e1:a6:98:12:60:25:5b: 78:5f:9f:80:b6:57:8b:2a:d9:3a:e6:52:f3:6c:62: 82:16:ca:3a:47:90:bd:0e:e6:2b:b7:2f:69:42:54: a2:09:11:71:83:d7:a7:e8:f8:2f:14:30:7c:8f:4b: 0a:c2:73:7e:a1:42:24:b2:49:c4:d7:18:cb:eb:da: 3e:10:5d:dd:b1:6a:50:9e:9d:2e:ae:42:13:4c:e5: b5:30:f2:db:b4:b5:cd:38:d1:37:0b:11:84:55:2b: 91:f9:d1:75:0d:ae:65:4f:6b:d3:d1:dd:b2:2a:41: 98:97:b3:c7:9f:f6:43:02:49:e2:8c:fe:fd:9b:f4: 9f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:BF:DD:B0:FA:87:BF:B8:C8:C1:F4:9A:58:AD:70:45:AD:64:4E:FC X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:fd:21:91:4f:40:80:29:0a:b4:58:df:a2:2b:3b:55:b1:dd: c6:43:c7:71:5b:74:f6:9e:d4:5e:90:ac:cb:45:e4:7a:4f:99: 39:59:ca:eb:e8:58:40:28:3a:f1:70:44:d7:46:23:da:91:ac: 8c:f8:d8:5c:83:4f:9f:c3:ab:dd:7d:25:ec:78:f6:b4:6e:b7: 9c:3f:1e:46:54:9a:11:8b:68:f0:26:f7:d6:63:cf:94:e5:30: 29:6d:43:01:b4:dd:a0:c5:2a:ce:89:b3:94:e7:91:b3:2b:e9: e5:68:62:53:71:4d:a4:bf:de:0d:fb:54:6b:b8:3d:b8:8e:6a: 54:75:f6:ef:88:7b:8d:98:c0:77:96:c1:4f:ba:b4:1a:13:11: e4:71:f2:0b:a3:49:7e:2b:67:66:b6:1a:83:0a:b0:32:09:89: ef:15:5f:cd:db:50:ce:22:a4:95:3d:44:b3:24:47:bd:71:6d: 53:6f:93:b6:d8:61:47:06:f5:0e:f5:04:d2:27:19:39:92:12: ff:80:0b:67:a8:2d:89:cb:71:24:24:f3:e4:cf:0e:9a:67:32: af:87:54:f6:f6:ba:e1:fe:94:c4:97:89:68:69:20:6a:6a:9c: c3:80:26:d5:51:85:04:46:0a:c2:b1:ef:ee:38:59:f1:e9:d2: d0:97:69:0c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUwOTE4MTQ0NjUyWhcNMjUwOTI1MTQ0NjUyWjAYMRYwFAYD VQQDEw02OGNjMWI1ZC02NDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2Fzv7pj1jIN9Yd4VSk0HXxay+oKxgoFq6QvDf2EOtGfYJs/8pMunBEfuA7c +sO/CG0lx9isTsgGxr+GCab91zfePe3fQTRljAh4ahz/mcVmGfiJMZxqSgfc0IHp l+2ijnzD2Vc9pcexfOGioUdcmu6nJmsZcu6QJ3W9wTnccuGmmBJgJVt4X5+AtleL Ktk65lLzbGKCFso6R5C9DuYrty9pQlSiCRFxg9en6PgvFDB8j0sKwnN+oUIksknE 1xjL69o+EF3dsWpQnp0urkITTOW1MPLbtLXNONE3CxGEVSuR+dF1Da5lT2vT0d2y KkGYl7PHn/ZDAknijP79m/SfUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBS/3bD6 h7+4yMH0mlitcEWtZE78MB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBQ/SGRT0CAKQq0WN+iKztVsd3GQ8dxW3T2ntRekKzLReR6T5k5Wcrr 6FhAKDrxcETXRiPakayM+Nhcg0+fw6vdfSXsePa0brecPx5GVJoRi2jwJvfWY8+U 5TApbUMBtN2gxSrOibOU55GzK+nlaGJTcU2kv94N+1RruD24jmpUdfbviHuNmMB3 lsFPurQaExHkcfILo0l+K2dmthqDCrAyCYnvFV/N21DOIqSVPUSzJEe9cW1Tb5O2 2GFHBvUO9QTSJxk5khL/gAtnqC2Jy3EkJPPkzw6aZzKvh1T29rrh/pTEl4loaSBq apzDgCbVUYUERgrCse/uOFnx6dLQl2kM -----END CERTIFICATE-----Generated at Thu Sep 18 19:04:29 2025 by rpki-client