$ rpki-client -vvf rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft File: ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft (raw, json) Hash identifier: dfNg8DszwiRSnz0nVhsmddJPWfMowJQYIlXClpmOb0Y= Subject key identifier: B8:28:B8:15:EE:EE:2C:92:A1:45:50:1D:2D:F7:93:A6:0A:52:52:33 Authority key identifier: C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC Certificate issuer: /CN=A91597E8/serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Certificate serial: 34E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft Manifest number: 34E0 Signing time: Tue 04 Nov 2025 14:48:04 +0000 Manifest this update: Tue 04 Nov 2025 14:48:04 +0000 Manifest next update: Tue 11 Nov 2025 14:48:04 +0000 Files and hashes: 1: ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl (hash: hsPsT2C9NjXW7rXtNS+IFODua6qKVQbdj0qUbAJgTxc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:48:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13536 (0x34e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91597E8, serialNumber=C9C28F990B627412C97C2DCEC7C906E61AD325AC Validity Not Before: Nov 4 14:48:04 2025 GMT Not After : Nov 11 14:48:04 2025 GMT Subject: CN=690a1224-675d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b9:9a:b5:98:5a:92:08:a7:fb:ce:ca:47:80: ab:07:b0:2a:89:cc:26:c5:dc:de:40:f4:ec:37:21: 0d:92:13:0f:d6:4b:d1:f9:98:d2:19:86:a0:23:a5: c6:1c:1e:41:80:65:64:5c:45:42:93:42:f5:55:87: 99:93:d5:93:83:e5:d6:d6:9f:31:c5:b8:9b:00:5a: 12:10:e0:c7:1f:58:6a:b1:c9:03:82:d2:b8:82:4c: b4:9e:ea:d9:bb:e7:a1:4d:63:05:d2:af:f4:f9:95: 18:d1:16:f0:46:31:a5:52:d4:1a:3f:43:32:f1:a6: a4:5e:c2:50:b2:b4:66:f5:5a:bf:60:e1:12:74:f9: 21:e4:9c:c3:c5:d9:01:b6:bb:ae:44:7b:0f:db:f0: e0:d2:79:3f:62:e8:53:9d:85:82:f0:34:e2:82:ea: bf:88:09:d8:7d:e1:a1:e2:02:38:24:8e:bf:38:f5: 04:de:88:b9:a5:3f:9d:de:dc:73:09:a3:fa:dd:7a: d1:8a:c1:d8:cc:89:86:be:5d:c3:05:7e:1f:b3:b6: ba:50:64:00:27:1e:51:cf:85:78:0f:f3:54:2e:e7: c6:21:44:d2:26:d7:8d:27:44:05:cc:85:c5:ba:f8: de:f7:28:5a:2c:b4:fa:9c:f8:04:05:07:c8:16:e2: ac:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:28:B8:15:EE:EE:2C:92:A1:45:50:1D:2D:F7:93:A6:0A:52:52:33 X509v3 Authority Key Identifier: keyid:C9:C2:8F:99:0B:62:74:12:C9:7C:2D:CE:C7:C9:06:E6:1A:D3:25:AC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91597E8/7A0FE7FA1D9211E2B5BC74F508B02CD2/ycKPmQtidBLJfC3Ox8kG5hrTJaw.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c3:f5:6f:e4:a5:da:8e:08:9c:58:d9:63:9f:45:db:eb:fc: dc:21:43:e4:1d:dd:da:b3:af:a3:97:6b:75:0f:d4:ce:36:1d: cb:82:02:4a:71:31:db:d0:9e:e0:21:59:29:6c:12:40:86:7d: d8:34:20:f4:92:50:f8:11:a5:1b:6c:ea:87:92:34:99:0f:ec: 6d:5f:96:84:51:c0:f6:1b:1a:8b:e1:af:91:50:72:f9:98:ca: 3c:e8:8b:8e:78:f4:c5:01:0d:df:18:7a:9b:2f:58:07:d4:bd: 46:6e:cd:a4:ee:b0:16:88:ed:75:98:be:33:fb:8b:07:3c:79: fa:f0:ac:8d:04:3b:be:7e:41:80:3c:6e:1d:cb:55:9a:3d:bf: c2:c8:f9:fb:82:60:ba:15:49:e2:52:38:3a:3b:d0:45:04:72: da:ba:22:88:8c:50:8d:3d:8a:e1:21:3e:13:9a:cb:26:14:a0: 90:2e:38:e8:22:73:46:34:0d:ea:eb:8c:58:24:31:0d:b8:98: d3:3c:9b:79:72:ce:41:45:66:fe:d1:cb:53:bb:2d:b7:91:a8: 73:4e:a4:6b:ff:75:bd:b0:80:5d:7a:e7:e3:21:7e:cb:ee:ad: 5b:13:95:31:49:bf:5d:0a:9f:75:43:31:b4:5f:2d:55:bc:e9: c5:8a:d7:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk3RTgxMTAvBgNVBAUTKEM5QzI4Rjk5MEI2Mjc0MTJDOTdDMkRDRUM3QzkwNkU2 MUFEMzI1QUMwHhcNMjUxMTA0MTQ0ODA0WhcNMjUxMTExMTQ0ODA0WjAYMRYwFAYD VQQDEw02OTBhMTIyNC02NzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuLmatZhakgin+87KR4CrB7AqicwmxdzeQPTsNyENkhMP1kvR+ZjSGYagI6XG HB5BgGVkXEVCk0L1VYeZk9WTg+XW1p8xxbibAFoSEODHH1hqsckDgtK4gky0nurZ u+ehTWMF0q/0+ZUY0RbwRjGlUtQaP0My8aakXsJQsrRm9Vq/YOESdPkh5JzDxdkB truuRHsP2/Dg0nk/YuhTnYWC8DTiguq/iAnYfeGh4gI4JI6/OPUE3oi5pT+d3txz CaP63XrRisHYzImGvl3DBX4fs7a6UGQAJx5Rz4V4D/NULufGIUTSJteNJ0QFzIXF uvje9yhaLLT6nPgEBQfIFuKsUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLgouBXu 7iySoUVQHS33k6YKUlIzMB8GA1UdIwQYMBaAFMnCj5kLYnQSyXwtzsfJBuYa0yWs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTdFOC83QTBGRTdGQTFE OTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRCTEpmQzNPeDhrRzVoclRK YXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ljS1BtUXRpZEJMSmZDM094OGtHNWhyVEphdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTdFOC83QTBGRTdGQTFEOTIxMUUyQjVCQzc0RjUwOEIwMkNEMi95Y0tQbVF0aWRC TEpmQzNPeDhrRzVoclRKYXcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQArw/Vv5KXajgicWNljn0Xb6/zcIUPkHd3as6+jl2t1D9TONh3LggJK cTHb0J7gIVkpbBJAhn3YNCD0klD4EaUbbOqHkjSZD+xtX5aEUcD2GxqL4a+RUHL5 mMo86IuOePTFAQ3fGHqbL1gH1L1Gbs2k7rAWiO11mL4z+4sHPHn68KyNBDu+fkGA PG4dy1WaPb/CyPn7gmC6FUniUjg6O9BFBHLauiKIjFCNPYrhIT4TmssmFKCQLjjo InNGNA3q64xYJDENuJjTPJt5cs5BRWb+0ctTuy23kahzTqRr/3W9sIBdeufjIX7L 7q1bE5UxSb9dCp91QzG0Xy1VvOnFitet -----END CERTIFICATE-----Generated at Wed Nov 5 11:49:23 2025 by rpki-client