$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: o7by42CuN9nQa4w/jtDdd8i1ErDbkn3sSw3YIkV6D6o= Subject key identifier: 5F:89:2E:BE:55:DE:E3:9B:13:62:FD:A7:14:EF:B0:96:B3:03:3C:FF Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 100C Signing time: Thu 18 Sep 2025 17:58:32 +0000 Manifest this update: Thu 18 Sep 2025 17:58:31 +0000 Manifest next update: Thu 25 Sep 2025 17:58:31 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: 5rO2O/aTs/pIew3sqBMbn92NlmgzmnvUXdO6dfJTkl8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 17:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3664 (0xe50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Sep 18 17:58:31 2025 GMT Not After : Sep 25 17:58:31 2025 GMT Subject: CN=68cc4848-877f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:f2:56:c3:ca:71:ae:6d:9b:4d:ef:5a:16:3b: 8b:12:77:08:ec:1b:da:73:f9:15:23:7a:89:67:13: 1a:24:7e:90:d2:06:10:c8:bc:a7:d1:ef:d2:63:56: b7:ca:be:1c:bf:2e:49:69:35:e2:b7:c4:0d:54:94: 9d:cf:1b:e9:77:11:7b:8a:ac:bd:c1:2c:37:ae:cc: a1:8e:7c:90:65:08:52:5c:d6:08:14:92:9d:2c:73: da:1f:bf:66:ac:7f:00:27:da:25:67:d0:d3:41:3c: d4:12:75:40:92:16:c9:81:60:2f:ef:f2:99:05:8a: 27:24:fa:f7:0b:d7:a9:aa:8b:f7:bf:e6:ea:d0:e6: 75:31:5d:9e:d9:c4:b9:8f:a1:7c:f0:02:fd:4c:7f: a4:a8:39:cc:57:23:70:36:71:08:f3:09:30:d1:62: 00:81:fa:f8:3e:12:29:34:56:6e:c0:e6:44:0e:20: 09:5e:26:dd:f2:bb:db:cb:62:58:3e:0e:37:3b:a1: 6a:47:75:8e:79:d9:0f:28:e7:01:53:3b:fc:bc:83: b9:40:05:1e:b2:50:0c:c7:22:fa:9e:d8:63:75:83: 56:17:65:48:f0:2b:13:23:14:ac:ee:a1:bd:ca:fb: 1a:29:ff:0b:e0:2d:01:23:4d:0a:bf:aa:c9:ed:e0: 74:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:89:2E:BE:55:DE:E3:9B:13:62:FD:A7:14:EF:B0:96:B3:03:3C:FF X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:e1:c7:19:50:33:ee:d1:fb:27:47:43:a6:e5:c5:33:6d:d1: 3e:8a:a1:39:35:55:eb:0d:ae:52:d4:52:52:c0:ea:d2:76:2e: a1:40:d5:3a:37:d5:22:40:3f:cc:73:5c:6a:20:42:74:99:ce: 8c:da:8a:24:1e:43:2f:35:4c:0a:9f:04:b9:c6:ed:26:2d:84: 30:6d:c1:03:b3:2e:ef:82:36:d0:a0:2d:59:25:d6:d7:19:38: 36:d7:eb:50:1d:c3:01:67:ba:7a:03:10:57:49:55:fa:a5:2b: 6c:55:4a:d4:7e:c8:4a:17:72:fc:00:96:c8:d2:53:0a:69:51: 6f:cc:96:bb:89:53:91:ba:42:b9:40:41:bd:27:f6:df:3a:4d: ff:8e:4e:9e:45:25:28:be:bc:c8:9f:52:34:41:77:05:7b:ee: 52:ed:b8:44:ee:ee:e3:14:c0:40:cd:50:c0:b7:b9:57:67:07: a1:d3:8e:0c:ea:4a:2a:e6:2d:31:c8:43:68:c3:45:13:0f:27: 01:97:b6:a2:41:12:88:89:7a:c8:05:b0:5c:d3:73:4d:a0:33: 09:5d:eb:24:fb:e7:82:bf:c3:e5:52:5f:fd:fa:b9:77:47:28: 27:97:b7:10:c0:7f:9d:07:78:6f:dd:b6:13:37:0d:5c:b3:0b: 21:56:43:5b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUwOTE4MTc1ODMxWhcNMjUwOTI1MTc1ODMxWjAYMRYwFAYD VQQDEw02OGNjNDg0OC04NzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7fJWw8pxrm2bTe9aFjuLEncI7Bvac/kVI3qJZxMaJH6Q0gYQyLyn0e/SY1a3 yr4cvy5JaTXit8QNVJSdzxvpdxF7iqy9wSw3rsyhjnyQZQhSXNYIFJKdLHPaH79m rH8AJ9olZ9DTQTzUEnVAkhbJgWAv7/KZBYonJPr3C9epqov3v+bq0OZ1MV2e2cS5 j6F88AL9TH+kqDnMVyNwNnEI8wkw0WIAgfr4PhIpNFZuwOZEDiAJXibd8rvby2JY Pg43O6FqR3WOedkPKOcBUzv8vIO5QAUeslAMxyL6nthjdYNWF2VI8CsTIxSs7qG9 yvsaKf8L4C0BI00Kv6rJ7eB0VQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFF+JLr5V 3uObE2L9pxTvsJazAzz/MB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCX4ccZUDPu0fsnR0Om5cUzbdE+iqE5NVXrDa5S1FJSwOrSdi6hQNU6 N9UiQD/Mc1xqIEJ0mc6M2ookHkMvNUwKnwS5xu0mLYQwbcEDsy7vgjbQoC1ZJdbX GTg21+tQHcMBZ7p6AxBXSVX6pStsVUrUfshKF3L8AJbI0lMKaVFvzJa7iVORukK5 QEG9J/bfOk3/jk6eRSUovrzIn1I0QXcFe+5S7bhE7u7jFMBAzVDAt7lXZweh044M 6koq5i0xyENow0UTDycBl7aiQRKIiXrIBbBc03NNoDMJXesk++eCv8PlUl/9+rl3 Rygnl7cQwH+dB3hv3bYTNw1cswshVkNb -----END CERTIFICATE-----Generated at Thu Sep 18 20:53:05 2025 by rpki-client