$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft File: 2YRcGequkJIocqDK_QUfFmFPhK8.mft (raw, json) Hash identifier: 4FWxDsG+2gj1tQslADbx4kpbRc3XcvEI20rS4G+mrOY= Subject key identifier: 01:35:90:94:F2:90:AB:36:CB:46:A3:45:E6:FC:AA:E7:AA:2A:6A:2B Authority key identifier: D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF Certificate issuer: /CN=A91C6BF0/serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Certificate serial: 0E68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft Manifest number: 103C Signing time: Tue 04 Nov 2025 17:51:59 +0000 Manifest this update: Tue 04 Nov 2025 17:51:58 +0000 Manifest next update: Tue 11 Nov 2025 17:51:58 +0000 Files and hashes: 1: 2YRcGequkJIocqDK_QUfFmFPhK8.crl (hash: NXxbpfXtBjY5arRUdnLaLHRHYUJaal7b4pG/CjbfcuY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3688 (0xe68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BF0, serialNumber=D9845C19EAAE90922872A0CAFD051F16614F84AF Validity Not Before: Nov 4 17:51:58 2025 GMT Not After : Nov 11 17:51:58 2025 GMT Subject: CN=690a3d3e-dd06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:98:e8:e2:ba:a3:af:ee:b5:19:81:a6:ac:9f: db:a7:c1:e5:0f:9d:22:e8:5e:c3:7b:68:a1:67:43: 71:01:a0:cb:89:a9:68:ac:da:36:ac:d8:6c:42:c4: d6:5d:b6:8a:5d:4b:09:9d:e1:8b:2f:ca:66:97:f4: 56:3f:47:e8:68:15:8f:6d:46:53:28:b5:bb:a8:bd: 44:c6:05:44:d0:fb:6b:25:b5:92:a7:9b:92:93:9d: 9d:81:3a:0e:29:6d:40:a2:25:8d:4e:2e:45:c6:85: 8b:fd:21:ba:ee:98:7f:4e:8e:0c:42:8b:5e:87:ef: 04:bb:ed:63:3f:89:3c:f7:f0:43:af:3a:92:7a:e9: 14:a1:dc:45:d1:77:27:3b:09:92:e6:14:10:be:28: 94:62:3a:f6:a9:e7:57:4f:34:b4:c8:bf:14:2c:31: f2:a5:34:c7:d6:0d:36:1d:2d:e5:f6:66:23:2c:fb: 78:ca:78:23:9e:79:de:31:96:be:0d:70:bf:c8:dc: 10:1e:83:6f:85:3f:4d:9d:54:63:be:0c:de:30:fd: 54:58:09:fb:b5:f1:4b:a4:a9:d0:aa:20:5e:6e:c5: ab:8e:73:9e:f5:8c:2b:f1:74:1d:b8:01:32:7f:27: 14:c9:42:3b:c5:a6:4c:a9:12:3d:e7:b2:8c:34:da: 36:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:35:90:94:F2:90:AB:36:CB:46:A3:45:E6:FC:AA:E7:AA:2A:6A:2B X509v3 Authority Key Identifier: keyid:D9:84:5C:19:EA:AE:90:92:28:72:A0:CA:FD:05:1F:16:61:4F:84:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2YRcGequkJIocqDK_QUfFmFPhK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BF0/1491974AAEBB11E98A390B59C4F9AE02/2YRcGequkJIocqDK_QUfFmFPhK8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:5b:2d:ed:3a:01:40:0b:9a:46:83:13:2a:38:be:0a:e2:98: df:92:6b:d9:1a:d4:b3:fb:ee:82:98:07:16:29:da:d9:ca:e4: 32:68:49:92:17:f0:c7:f3:18:0d:c3:12:b2:bc:6a:37:8e:9f: 06:9b:db:0f:b9:44:82:9d:ea:19:29:ef:a0:f6:64:ac:da:40: 0c:f4:71:8a:8e:8a:17:d5:e1:db:6d:6a:f1:48:5b:9f:bf:ba: 14:2a:84:89:2a:62:24:3d:96:dc:6d:1b:ad:f6:53:d8:61:8d: b3:ab:ce:99:83:f1:6c:a8:4d:46:ae:b5:4e:54:b7:0d:0b:f3: d4:29:5d:9a:de:35:f5:21:1e:0b:f8:c0:76:f4:b5:ff:84:a9: 7e:84:4b:3e:ab:23:38:12:91:3f:ed:8a:3b:ef:12:b6:90:ef: e5:e3:36:4f:2b:ae:61:16:56:96:67:2a:6a:9a:26:f0:84:cc: 9f:5e:41:89:24:b5:a4:3e:09:24:22:bc:9e:77:e1:73:5d:d2: f8:9c:66:6a:c4:02:54:5c:64:20:ca:f1:fe:d3:c7:f5:64:64: 72:4a:ef:2e:7b:18:b8:f0:0f:30:ca:fb:b2:8c:c7:a5:56:74: 46:8a:4b:f7:9a:c3:ee:7d:ff:d4:c0:e4:00:f7:a9:17:ce:97: df:e9:cb:33 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCRjAxMTAvBgNVBAUTKEQ5ODQ1QzE5RUFBRTkwOTIyODcyQTBDQUZEMDUxRjE2 NjE0Rjg0QUYwHhcNMjUxMTA0MTc1MTU4WhcNMjUxMTExMTc1MTU4WjAYMRYwFAYD VQQDEw02OTBhM2QzZS1kZDA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZjo4rqjr+61GYGmrJ/bp8HlD50i6F7De2ihZ0NxAaDLialorNo2rNhsQsTW XbaKXUsJneGLL8pml/RWP0foaBWPbUZTKLW7qL1ExgVE0PtrJbWSp5uSk52dgToO KW1AoiWNTi5FxoWL/SG67ph/To4MQoteh+8Eu+1jP4k89/BDrzqSeukUodxF0Xcn OwmS5hQQviiUYjr2qedXTzS0yL8ULDHypTTH1g02HS3l9mYjLPt4yngjnnneMZa+ DXC/yNwQHoNvhT9NnVRjvgzeMP1UWAn7tfFLpKnQqiBebsWrjnOe9Ywr8XQduAEy fycUyUI7xaZMqRI957KMNNo2uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAE1kJTy kKs2y0ajReb8queqKmorMB8GA1UdIwQYMBaAFNmEXBnqrpCSKHKgyv0FHxZhT4Sv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJGMC8xNDkxOTc0QUFF QkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtKSW9jcURLX1FVZkZtRlBo SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJZUmNHZXF1a0pJb2NxREtfUVVmRm1GUGhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkJGMC8xNDkxOTc0QUFFQkIxMUU5OEEzOTBCNTlDNEY5QUUwMi8yWVJjR2VxdWtK SW9jcURLX1FVZkZtRlBoSzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQByWy3tOgFAC5pGgxMqOL4K4pjfkmvZGtSz++6CmAcWKdrZyuQyaEmS F/DH8xgNwxKyvGo3jp8Gm9sPuUSCneoZKe+g9mSs2kAM9HGKjooX1eHbbWrxSFuf v7oUKoSJKmIkPZbcbRut9lPYYY2zq86Zg/FsqE1GrrVOVLcNC/PUKV2a3jX1IR4L +MB29LX/hKl+hEs+qyM4EpE/7Yo77xK2kO/l4zZPK65hFlaWZypqmibwhMyfXkGJ JLWkPgkkIryed+FzXdL4nGZqxAJUXGQgyvH+08f1ZGRySu8uexi48A8wyvuyjMel VnRGikv3msPuff/UwOQA96kXzpff6csz -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:54 2025 by rpki-client