$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft File: ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft (raw, json) Hash identifier: BK4q0HWtrlNmcSbrbFigvCox5sHT2LI0IH790wQ3+No= Subject key identifier: 14:15:E8:18:7B:8D:E0:35:ED:3B:A0:73:27:C4:D8:5E:F7:CE:FC:7D Authority key identifier: 93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 Certificate issuer: /CN=A91CEF3E/serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Certificate serial: 0ED3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft Manifest number: 0EC2 Signing time: Sun 26 Oct 2025 17:59:08 +0000 Manifest this update: Sun 26 Oct 2025 17:59:07 +0000 Manifest next update: Sun 02 Nov 2025 17:59:07 +0000 Files and hashes: 1: ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl (hash: 29v6JzgaolBlUcTGOHv5ArmFf2r5mXVY4RTw9KJC7t0=) 2: 5C154406988911E991B10838C4F9AE02.roa (hash: rlBKToBwc/S7CrTJwY8L3fa6c6H9ms0SKbG322SWU2g=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Nov 2025 17:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3795 (0xed3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEF3E, serialNumber=932EC2E6E52B5AF6C7B03C415020EDE272AAA145 Validity Not Before: Oct 26 17:59:07 2025 GMT Not After : Nov 2 17:59:07 2025 GMT Subject: CN=68fe616c-07f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:de:9f:f7:f9:64:7d:33:00:35:5d:16:39:67: d6:09:50:91:9c:43:02:07:30:5f:fe:43:92:5f:df: 96:2d:6a:77:b3:7d:87:ed:34:90:83:99:40:99:86: 68:76:1d:4c:00:00:59:bc:27:88:fb:a3:9b:ca:4a: 1f:6d:cf:99:b0:94:5f:87:0b:99:8b:f4:d4:fb:93: bc:23:7a:8a:3e:4d:7f:c8:7e:13:94:6a:b7:b2:3a: bf:7e:3a:57:64:6f:aa:7f:fc:3e:e0:76:78:e4:96: 58:e9:fb:82:9a:40:6a:09:9f:82:2a:0a:04:f5:c0: 8b:22:57:a4:f3:ea:82:53:55:bc:69:b3:0b:a5:f8: 88:4f:51:75:79:77:ce:8c:ff:e2:a7:d1:02:b4:72: fd:de:7e:5c:57:e3:df:da:a7:49:f4:aa:71:2d:47: 34:a4:85:81:7d:45:3f:d4:4c:23:f8:b1:fb:d3:a2: ac:bb:d1:7e:61:77:a1:9c:b8:90:13:f2:92:fe:74: 7f:df:f4:61:77:b5:13:9f:33:30:a1:fa:fd:e6:94: c8:f9:73:2f:32:bf:a1:68:f9:b0:1b:e7:47:f7:14: 43:a2:48:b8:e5:82:04:35:16:96:01:31:83:27:ff: a7:7c:e9:87:c8:55:20:58:7b:63:45:69:33:52:ca: a6:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:15:E8:18:7B:8D:E0:35:ED:3B:A0:73:27:C4:D8:5E:F7:CE:FC:7D X509v3 Authority Key Identifier: keyid:93:2E:C2:E6:E5:2B:5A:F6:C7:B0:3C:41:50:20:ED:E2:72:AA:A1:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ky7C5uUrWvbHsDxBUCDt4nKqoUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEF3E/CB74CF6E987B11E983ECCF13C4F9AE02/ky7C5uUrWvbHsDxBUCDt4nKqoUU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:63:a6:e1:c4:38:fd:5e:6a:bc:ec:58:e1:32:2c:9c:54:13: 39:2c:dc:58:31:e0:24:1d:04:8e:92:9a:27:fb:cc:ad:90:55: f9:94:bb:a5:87:ed:ee:36:0a:42:b9:83:cb:0f:8c:f7:c4:83: 8b:a3:21:e7:c8:a0:c4:0f:a0:b4:6f:7b:57:de:fb:bd:0a:cf: 29:12:70:83:08:15:a9:83:f6:51:58:fa:49:d5:cd:c0:f3:db: 8e:21:9d:29:f6:80:87:d2:92:63:62:17:b5:f1:a5:6c:13:20: f6:48:b2:09:50:83:de:4a:39:7e:27:5d:2d:9a:6e:cc:de:39: 92:73:f6:4e:83:e6:d8:93:3b:30:22:a7:c5:0d:6e:94:0e:14: 38:95:8b:5e:32:97:bf:8d:14:35:0b:aa:41:d4:4a:60:d6:b6: 22:2d:02:99:27:80:7a:c6:ae:bb:8e:14:fd:12:58:a6:be:14: f0:5f:a1:7c:01:70:28:e7:a0:11:67:08:4d:ca:17:4a:a6:28: 77:f6:ef:62:cb:36:ab:77:91:bb:17:74:1c:08:27:4e:be:4b: 5a:5f:5c:c8:d8:d3:70:22:72:95:bd:2f:a0:3a:fd:27:cf:58: 3b:5c:00:2a:c5:22:f8:03:52:07:34:10:8e:1f:04:33:a5:4b: 02:13:45:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDtMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VGM0UxMTAvBgNVBAUTKDkzMkVDMkU2RTUyQjVBRjZDN0IwM0M0MTUwMjBFREUy NzJBQUExNDUwHhcNMjUxMDI2MTc1OTA3WhcNMjUxMTAyMTc1OTA3WjAYMRYwFAYD VQQDEw02OGZlNjE2Yy0wN2Y5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApd6f9/lkfTMANV0WOWfWCVCRnEMCBzBf/kOSX9+WLWp3s32H7TSQg5lAmYZo dh1MAABZvCeI+6Obykofbc+ZsJRfhwuZi/TU+5O8I3qKPk1/yH4TlGq3sjq/fjpX ZG+qf/w+4HZ45JZY6fuCmkBqCZ+CKgoE9cCLIlek8+qCU1W8abMLpfiIT1F1eXfO jP/ip9ECtHL93n5cV+Pf2qdJ9KpxLUc0pIWBfUU/1Ewj+LH706Ksu9F+YXehnLiQ E/KS/nR/3/Rhd7UTnzMwofr95pTI+XMvMr+haPmwG+dH9xRDoki45YIENRaWATGD J/+nfOmHyFUgWHtjRWkzUsqmKQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBQV6Bh7 jeA17TugcyfE2F73zvx9MB8GA1UdIwQYMBaAFJMuwublK1r2x7A8QVAg7eJyqqFF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUYzRS9DQjc0Q0Y2RTk4 N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2YkhzRHhCVUNEdDRuS3Fv VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2t5N0M1dVVyV3ZiSHNEeEJVQ0R0NG5LcW9VVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUYzRS9DQjc0Q0Y2RTk4N0IxMUU5ODNFQ0NGMTNDNEY5QUUwMi9reTdDNXVVcld2 YkhzRHhCVUNEdDRuS3FvVVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmY6bhxDj9Xmq87FjhMiycVBM5LNxYMeAkHQSOkpon+8ytkFX5lLul h+3uNgpCuYPLD4z3xIOLoyHnyKDED6C0b3tX3vu9Cs8pEnCDCBWpg/ZRWPpJ1c3A 89uOIZ0p9oCH0pJjYhe18aVsEyD2SLIJUIPeSjl+J10tmm7M3jmSc/ZOg+bYkzsw IqfFDW6UDhQ4lYteMpe/jRQ1C6pB1Epg1rYiLQKZJ4B6xq67jhT9ElimvhTwX6F8 AXAo56ARZwhNyhdKpih39u9iyzard5G7F3QcCCdOvktaX1zI2NNwInKVvS+gOv0n z1g7XAAqxSL4A1IHNBCOHwQzpUsCE0V1 -----END CERTIFICATE-----Generated at Tue Oct 28 06:39:55 2025 by rpki-client