$ rpki-client -vvf rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft File: bycituUTNGUloqmUZBtOJ_BNU1Y.mft (raw, json) Hash identifier: NXBCAaZaVcTTsDCK+FvcRuKwsPH4Yuke/5Wojod8/Lg= Subject key identifier: D1:16:1E:45:E0:57:FF:3B:AA:FB:F5:03:1B:F4:BB:BB:6D:BB:61:3D Authority key identifier: 6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 Certificate issuer: /CN=A91870B9/serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Certificate serial: 02DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft Manifest number: 02D7 Signing time: Mon 03 Nov 2025 01:16:45 +0000 Manifest this update: Mon 03 Nov 2025 01:16:44 +0000 Manifest next update: Mon 10 Nov 2025 01:16:44 +0000 Files and hashes: 1: bycituUTNGUloqmUZBtOJ_BNU1Y.crl (hash: vns6hRMODUa3Rhsdel2wdTEs1wxLlCw4ZnXzIq50Q6E=) 2: A48AD700072111ED91EABE39C4F9AE02.roa (hash: tggayaLto8CAWEhkFDTMAXvd1HSZb+GtdD7dZmQyKpM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:16:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870B9, serialNumber=6F2722B6E513346525A2A994641B4E27F04D5356 Validity Not Before: Nov 3 01:16:44 2025 GMT Not After : Nov 10 01:16:44 2025 GMT Subject: CN=6908027d-ad02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:96:d9:06:da:0e:4f:71:53:ea:ba:fc:e3:0a: a3:19:30:40:0e:1e:2f:b9:93:c0:54:9d:87:9d:d8: 99:1a:1a:14:77:7a:e0:ca:9c:f0:52:cc:57:83:4c: b3:f2:33:1a:1d:13:d8:de:0f:63:59:22:13:51:65: 88:04:fb:6e:c8:b6:d7:f2:21:16:bc:53:1d:96:19: e5:79:e6:10:b2:a1:0f:aa:8b:23:8a:f9:b2:11:ab: c4:05:3b:d7:cc:47:11:a9:02:66:9f:c5:a5:90:e8: 6e:c4:d8:71:00:0d:2d:eb:03:0e:4a:9e:14:be:ec: f4:fb:5a:80:dd:07:f3:7e:f9:6d:eb:71:9c:0c:48: 7b:17:74:30:19:3b:50:a2:a2:ed:cd:69:6c:5d:12: 12:f7:86:96:4f:fe:da:19:f4:8d:71:fa:b5:26:24: b6:bd:be:58:68:c3:20:9e:f4:79:03:dc:fc:06:f3: 27:23:37:1c:8b:d0:cc:f1:f1:ad:90:91:b2:a5:0c: cc:fc:bf:79:87:c0:03:33:79:fd:0e:21:34:e5:c2: ac:74:ec:8b:d9:21:cc:4c:74:60:d7:a9:c8:b8:f0: d5:26:84:ad:20:13:52:38:90:90:db:b6:58:3b:7c: f4:16:9c:aa:2e:41:f6:ff:64:37:da:cb:fa:78:d6: e9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:16:1E:45:E0:57:FF:3B:AA:FB:F5:03:1B:F4:BB:BB:6D:BB:61:3D X509v3 Authority Key Identifier: keyid:6F:27:22:B6:E5:13:34:65:25:A2:A9:94:64:1B:4E:27:F0:4D:53:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bycituUTNGUloqmUZBtOJ_BNU1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870B9/7C8C890E071E11EDA2E3F132C4F9AE02/bycituUTNGUloqmUZBtOJ_BNU1Y.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9c:a6:b1:61:ff:bf:b7:57:08:71:6b:19:06:89:01:59:4c:bc: 0b:0f:d1:b4:d6:5a:78:9f:02:89:8a:e1:7c:06:d8:5a:e2:ce: af:8f:3d:f0:ac:d0:63:95:97:17:9e:6e:47:3d:93:25:32:3d: 28:c7:38:cf:b1:20:0b:b2:cb:d4:0a:83:42:af:a1:c6:44:2a: 89:b8:82:20:86:36:ab:3d:c0:95:d7:14:f0:07:d6:82:70:ed: e8:e0:5f:26:7e:d3:79:b3:85:ca:7d:32:e9:b8:31:cd:4e:c1: 52:84:c0:64:50:86:6e:13:70:60:f6:0f:1f:c3:5b:fc:d4:75: c7:56:7d:58:d0:b7:38:55:94:9e:67:84:cb:71:8c:aa:a9:f4: fa:23:39:f4:48:32:c2:82:7d:c8:a6:48:b4:0d:64:4a:77:76: e5:26:94:f3:9e:2b:2f:49:1f:70:79:b9:39:4e:d0:61:a8:46: 64:79:d7:79:02:58:6f:dc:ac:8f:64:39:fd:ef:f5:b9:8c:21: 20:ba:5e:b8:67:7f:cb:24:54:57:df:91:87:f8:73:e3:dc:e5: 60:23:32:6e:50:c7:26:4a:8f:22:85:40:63:57:7f:54:60:ec: 94:29:3d:1a:b1:9d:d1:43:31:f4:99:fc:c9:f3:b2:a8:11:7b: 5b:a0:28:f9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQjkxMTAvBgNVBAUTKDZGMjcyMkI2RTUxMzM0NjUyNUEyQTk5NDY0MUI0RTI3 RjA0RDUzNTYwHhcNMjUxMTAzMDExNjQ0WhcNMjUxMTEwMDExNjQ0WjAYMRYwFAYD VQQDEw02OTA4MDI3ZC1hZDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJbZBtoOT3FT6rr84wqjGTBADh4vuZPAVJ2HndiZGhoUd3rgypzwUsxXg0yz 8jMaHRPY3g9jWSITUWWIBPtuyLbX8iEWvFMdlhnleeYQsqEPqosjivmyEavEBTvX zEcRqQJmn8WlkOhuxNhxAA0t6wMOSp4Uvuz0+1qA3Qfzfvlt63GcDEh7F3QwGTtQ oqLtzWlsXRIS94aWT/7aGfSNcfq1JiS2vb5YaMMgnvR5A9z8BvMnIzcci9DM8fGt kJGypQzM/L95h8ADM3n9DiE05cKsdOyL2SHMTHRg16nIuPDVJoStIBNSOJCQ27ZY O3z0FpyqLkH2/2Q32sv6eNbp/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNEWHkXg V/87qvv1Axv0u7ttu2E9MB8GA1UdIwQYMBaAFG8nIrblEzRlJaKplGQbTifwTVNW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBCOS83QzhDODkwRTA3 MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5HVWxvcW1VWkJ0T0pfQk5V MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5Y2l0dVVUTkdVbG9xbVVaQnRPSl9CTlUxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzBCOS83QzhDODkwRTA3MUUxMUVEQTJFM0YxMzJDNEY5QUUwMi9ieWNpdHVVVE5H VWxvcW1VWkJ0T0pfQk5VMVkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCcprFh/7+3VwhxaxkGiQFZTLwLD9G01lp4nwKJiuF8Btha4s6vjz3w rNBjlZcXnm5HPZMlMj0oxzjPsSALssvUCoNCr6HGRCqJuIIghjarPcCV1xTwB9aC cO3o4F8mftN5s4XKfTLpuDHNTsFShMBkUIZuE3Bg9g8fw1v81HXHVn1Y0Lc4VZSe Z4TLcYyqqfT6Izn0SDLCgn3Ipki0DWRKd3blJpTznisvSR9webk5TtBhqEZkedd5 Alhv3KyPZDn97/W5jCEgul64Z3/LJFRX35GH+HPj3OVgIzJuUMcmSo8ihUBjV39U YOyUKT0asZ3RQzH0mfzJ87KoEXtboCj5 -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:35 2025 by rpki-client