$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: Eu2p/9Qq7L18au4fC2rg8hs0rFz8vtPf+wLiu3Fekyo= Subject key identifier: 41:26:8F:72:86:41:34:A7:DC:03:31:69:B1:48:7A:23:FB:72:5C:B7 Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 34DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 34DF Signing time: Sun 02 Nov 2025 14:44:57 +0000 Manifest this update: Sun 02 Nov 2025 14:44:57 +0000 Manifest next update: Sun 09 Nov 2025 14:44:57 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: g25HUGrS/+1PfEqevWSGMnM+zcj/lLoUQWXp/ikxq/0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 14:44:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Nov 2 14:44:57 2025 GMT Not After : Nov 9 14:44:57 2025 GMT Subject: CN=69076e69-fa24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0c:f1:85:26:29:e8:b3:a9:84:45:d3:7a:02: d5:01:3e:39:8d:df:2f:86:4e:07:21:54:be:73:49: 95:71:5e:93:e1:72:4f:ea:5c:d7:4f:58:da:a5:b4: b3:be:c1:29:6a:d3:fc:6a:5a:a0:9b:aa:34:ce:32: 05:b5:08:da:3f:c5:21:2c:32:b2:ac:bf:9a:7f:99: 79:bb:c9:31:be:e6:e4:94:2c:f1:78:5f:53:eb:e9: f4:a8:18:98:cb:61:80:f7:4a:46:d4:f5:fa:0c:f0: 69:70:1b:f2:2b:d5:3e:7d:92:d5:ce:b1:cc:5b:c7: 1d:58:b7:4e:25:c9:14:8a:6b:28:a1:d4:bb:93:4d: 21:3a:08:48:a8:18:ee:b6:0d:8a:3c:bb:60:af:6a: 5d:91:48:6d:10:01:92:1c:b5:8e:34:d9:e2:bc:30: 01:f5:0c:84:a8:d2:24:7e:66:ab:20:36:38:21:63: de:b6:bc:ac:b8:e0:7b:21:26:00:62:2a:d7:b4:cc: 04:86:7b:15:d0:6f:5e:8d:a7:af:e1:bc:a6:6b:63: c6:a3:c1:c1:a0:45:c0:79:de:dd:03:94:50:d3:ba: 3c:95:4f:f7:ad:4f:97:f2:95:5f:f7:72:2e:bf:37: 5d:12:f9:43:bd:08:dc:48:79:ab:e9:9d:84:ac:b7: ba:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:26:8F:72:86:41:34:A7:DC:03:31:69:B1:48:7A:23:FB:72:5C:B7 X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:37:99:a8:52:69:25:06:4b:b7:fb:88:d0:03:bf:92:9f:f6: 25:89:ad:17:11:56:da:21:5d:d9:f7:81:de:c7:24:eb:50:2b: e8:65:b4:ed:49:ca:af:a8:6b:47:69:3b:6f:02:82:93:92:67: df:be:cf:81:ff:b1:1e:bd:a4:88:e0:df:55:a7:65:bb:fe:7b: 76:9c:b1:f2:94:bc:0e:56:94:f3:a9:47:ba:ea:5d:58:9f:85: 83:06:38:bb:26:64:19:69:2e:05:c5:11:3a:e2:5c:c1:ea:75: df:f8:b9:73:34:fb:76:58:cb:89:0f:46:30:2d:5d:7a:f1:4e: 69:1f:41:41:9e:bd:c6:9e:92:b2:6b:92:ba:61:83:74:5c:1c: fe:1f:16:5d:86:e6:13:04:22:c4:45:fd:20:c5:66:e5:dc:fa: 1f:8d:8f:1c:b6:51:a4:9c:2e:16:22:da:10:b7:5e:0e:2e:0a: 57:1e:f6:c5:40:9e:9d:c4:fb:32:bd:9a:0a:42:cf:37:65:a1: 8d:5c:d3:52:bb:a0:8b:12:80:4b:21:4f:8d:e9:7a:ea:9e:91: b9:19:58:40:9a:5d:cd:56:17:34:42:da:dd:84:a5:24:48:ff: 46:b0:fa:15:91:55:b8:17:fc:97:e8:a0:a7:34:c5:b3:0e:84: b5:e3:81:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUxMTAyMTQ0NDU3WhcNMjUxMTA5MTQ0NDU3WjAYMRYwFAYD VQQDEw02OTA3NmU2OS1mYTI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwzxhSYp6LOphEXTegLVAT45jd8vhk4HIVS+c0mVcV6T4XJP6lzXT1japbSz vsEpatP8alqgm6o0zjIFtQjaP8UhLDKyrL+af5l5u8kxvubklCzxeF9T6+n0qBiY y2GA90pG1PX6DPBpcBvyK9U+fZLVzrHMW8cdWLdOJckUimsoodS7k00hOghIqBju tg2KPLtgr2pdkUhtEAGSHLWONNnivDAB9QyEqNIkfmarIDY4IWPetrysuOB7ISYA YirXtMwEhnsV0G9ejaev4byma2PGo8HBoEXAed7dA5RQ07o8lU/3rU+X8pVf93Iu vzddEvlDvQjcSHmr6Z2ErLe69wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEEmj3KG QTSn3AMxabFIeiP7cly3MB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADN5moUmklBku3+4jQA7+Sn/Ylia0XEVbaIV3Z94HexyTrUCvoZbTt ScqvqGtHaTtvAoKTkmffvs+B/7EevaSI4N9Vp2W7/nt2nLHylLwOVpTzqUe66l1Y n4WDBji7JmQZaS4FxRE64lzB6nXf+LlzNPt2WMuJD0YwLV168U5pH0FBnr3GnpKy a5K6YYN0XBz+HxZdhuYTBCLERf0gxWbl3PofjY8ctlGknC4WItoQt14OLgpXHvbF QJ6dxPsyvZoKQs83ZaGNXNNSu6CLEoBLIU+N6XrqnpG5GVhAml3NVhc0QtrdhKUk SP9GsPoVkVW4F/yX6KCnNMWzDoS144GY -----END CERTIFICATE-----Generated at Mon Nov 3 18:16:30 2025 by rpki-client