$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: RDtDrDEdzcZXUrj7qM8kkUD/yw20c76rNLIkGD5m+v4= Subject key identifier: A7:56:3B:25:7F:1D:C9:98:95:13:DF:F1:0A:0D:64:1A:F3:0B:4E:DB Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02BF Signing time: Wed 17 Sep 2025 01:58:19 +0000 Manifest this update: Wed 17 Sep 2025 01:58:19 +0000 Manifest next update: Wed 24 Sep 2025 01:58:19 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: A2pegzhVCJ5dJmKEmb7/pXWjPznnDnXG5y3UscHv1HM=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: Sdc1sOHrwKDGZqW0ILPwFUzKSKTDUensRtaAvqeeJxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 01:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 713 (0x2c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Sep 17 01:58:19 2025 GMT Not After : Sep 24 01:58:19 2025 GMT Subject: CN=68ca15bb-be51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6d:1b:fb:ac:d7:de:19:b0:f8:44:f8:e7:c6: b7:f8:f6:5d:8e:76:0b:f7:98:54:07:7c:6f:71:70: 9f:a5:72:68:c0:de:7e:d7:12:c7:f2:f5:11:c6:e5: 3b:24:2b:da:90:b6:06:0f:4a:6e:89:bb:b6:ca:e5: 73:e5:2b:23:39:2e:30:6f:12:cb:f4:e7:0e:a2:9a: 40:52:91:08:93:2b:ca:96:67:6f:64:6b:59:23:6b: 3d:f2:d0:49:15:c4:df:5e:c6:21:77:7c:fc:bd:76: 16:5e:d1:f2:bb:ad:68:00:1e:f5:fd:d4:45:59:02: 44:06:25:36:3f:e3:1b:30:58:ec:13:60:99:fd:08: 20:ca:d1:5a:ec:5c:7b:7e:35:8b:ec:bb:6d:4f:8e: 6a:7c:63:81:13:36:87:d0:77:07:a7:a4:20:9a:77: dd:ae:8a:f3:fe:6f:fe:c6:23:37:3a:31:60:94:17: 82:43:91:6d:8b:05:32:40:5d:cb:05:aa:31:b7:19: cc:fb:75:7a:c6:06:bf:3d:a8:a0:24:dd:b2:6b:9d: 99:94:46:2e:d9:2b:74:e9:52:e9:a7:18:1e:3b:cf: f1:0b:61:6b:2c:5d:85:47:f7:9c:ce:4e:73:51:18: 78:35:a6:fb:8e:c2:7b:27:1d:5b:48:ef:cb:0a:46: 48:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:56:3B:25:7F:1D:C9:98:95:13:DF:F1:0A:0D:64:1A:F3:0B:4E:DB X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4e:74:61:ba:d4:e6:59:d0:f4:fc:31:e7:b3:04:2e:4c:b7:32: d2:94:91:89:d2:38:47:6e:dd:a9:62:56:a7:a0:24:a4:63:74: b8:73:06:4d:3a:26:a0:bb:d0:b7:29:3e:7b:c1:ff:77:72:81: 21:56:3f:97:a5:68:96:52:03:4e:19:04:02:04:89:4b:82:ff: 4c:da:8b:ab:78:f1:96:23:53:36:a1:a9:5d:a3:da:12:cc:ce: 1a:92:c8:2c:a7:1a:30:ae:85:de:e8:f7:96:13:03:9d:f0:58: e6:7b:9a:9d:6d:4a:8c:86:12:13:18:d2:02:69:ea:5a:5b:3d: 04:f1:76:39:e6:43:7a:92:5a:e3:40:52:9c:a2:4c:1a:e9:44: cc:7d:bc:ef:f0:4e:cc:fe:37:5f:2f:1a:39:78:70:1e:e8:e6: b9:f0:ad:8a:5d:6d:c1:11:7e:ce:1a:0e:dc:86:63:96:16:50: 7f:d0:12:65:1b:e1:bc:91:7e:67:e9:96:e4:48:10:8d:c2:16: 4f:a0:90:ca:50:40:77:37:3c:8f:38:17:f9:80:01:af:ad:b2: a2:e2:6c:18:5d:ff:23:7a:f1:c5:dd:e9:07:ee:1f:eb:e3:14: 2f:82:50:44:6d:a0:31:2d:fa:2e:21:61:ee:f7:e1:47:a6:e6: 7a:16:90:da -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUwOTE3MDE1ODE5WhcNMjUwOTI0MDE1ODE5WjAYMRYwFAYD VQQDEw02OGNhMTViYi1iZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2W0b+6zX3hmw+ET458a3+PZdjnYL95hUB3xvcXCfpXJowN5+1xLH8vURxuU7 JCvakLYGD0puibu2yuVz5SsjOS4wbxLL9OcOoppAUpEIkyvKlmdvZGtZI2s98tBJ FcTfXsYhd3z8vXYWXtHyu61oAB71/dRFWQJEBiU2P+MbMFjsE2CZ/QggytFa7Fx7 fjWL7LttT45qfGOBEzaH0HcHp6Qgmnfdrorz/m/+xiM3OjFglBeCQ5FtiwUyQF3L BaoxtxnM+3V6xga/PaigJN2ya52ZlEYu2St06VLppxgeO8/xC2FrLF2FR/eczk5z URh4Nab7jsJ7Jx1bSO/LCkZIAQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKdWOyV/ HcmYlRPf8QoNZBrzC07bMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBOdGG61OZZ0PT8MeezBC5MtzLSlJGJ0jhHbt2pYlanoCSkY3S4cwZN Oiagu9C3KT57wf93coEhVj+XpWiWUgNOGQQCBIlLgv9M2ourePGWI1M2oaldo9oS zM4aksgspxowroXe6PeWEwOd8Fjme5qdbUqMhhITGNICaepaWz0E8XY55kN6klrj QFKcokwa6UTMfbzv8E7M/jdfLxo5eHAe6Oa58K2KXW3BEX7OGg7chmOWFlB/0BJl G+G8kX5n6ZbkSBCNwhZPoJDKUEB3NzyPOBf5gAGvrbKi4mwYXf8jevHF3ekH7h/r 4xQvglBEbaAxLfouIWHu9+FHpuZ6FpDa -----END CERTIFICATE-----Generated at Thu Sep 18 08:40:44 2025 by rpki-client