$ rpki-client -vvf rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft File: PykJw_UywAsCV7klbHbroxTc0A8.mft (raw, json) Hash identifier: +JEEPu5GNpf+ENK1SBhsGQljxtnZFYeJhuDECR7MRVQ= Subject key identifier: 48:F7:DF:4D:9F:72:82:0C:60:00:E3:EB:6B:DF:C2:94:EE:B3:9F:1D Authority key identifier: 3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F Certificate issuer: /CN=A91C71A5/serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Certificate serial: 02E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft Manifest number: 02D7 Signing time: Wed 05 Nov 2025 01:27:03 +0000 Manifest this update: Wed 05 Nov 2025 01:27:03 +0000 Manifest next update: Wed 12 Nov 2025 01:27:03 +0000 Files and hashes: 1: PykJw_UywAsCV7klbHbroxTc0A8.crl (hash: fNgxC5FNnBOxwiUAjVkKs7eBTfm8SdBsBcAsrbaunG8=) 2: 99A7637060B311EEBA329E54C4F9AE02.roa (hash: Sdc1sOHrwKDGZqW0ILPwFUzKSKTDUensRtaAvqeeJxU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:27:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 737 (0x2e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C71A5, serialNumber=3F2909C3F532C00B0257B9256C76EBA314DCD00F Validity Not Before: Nov 5 01:27:03 2025 GMT Not After : Nov 12 01:27:03 2025 GMT Subject: CN=690aa7e7-a624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:9c:0d:59:ec:9b:2e:6b:4a:c8:4b:01:77: 2a:55:a7:1d:40:62:fa:2c:90:17:d8:3f:f2:54:f2: 82:12:89:78:0b:f1:08:bd:d8:3a:63:a9:03:ee:c9: 6b:7c:83:67:78:58:c5:88:e1:07:54:99:0b:af:73: bf:4e:96:89:76:c8:54:d0:49:c8:a8:f3:66:ca:06: 2b:62:ad:e6:58:25:3a:e6:99:c0:de:58:fe:c1:9f: 52:a6:55:9a:d3:b8:0c:28:4d:25:18:7f:bf:18:44: 2c:1e:6c:20:9a:2f:f5:f6:0e:5c:91:37:a5:45:1b: 8a:1f:04:c4:ac:6e:df:c3:8a:55:fb:8e:6d:4a:0b: 27:58:f6:12:b6:b1:68:78:7c:c3:1b:c4:c9:87:b1: 00:98:39:56:cb:e2:20:44:c3:89:05:ba:bc:cd:ff: 49:c5:f2:78:89:05:56:33:e6:c3:2d:bd:74:a9:32: 47:e9:7c:c3:b0:a1:3e:b0:e3:5a:4b:ce:04:a0:cc: 84:e3:a8:41:5c:d1:bd:20:99:4a:ad:c4:3e:62:2a: f0:67:0e:8e:cf:c7:0f:09:ff:3b:78:e1:08:d2:5d: 87:78:27:97:f6:2d:ec:4d:90:1c:ff:b3:35:4e:7c: 8a:5d:c8:99:b2:f4:af:f2:53:e7:2d:0b:ae:2e:16: 04:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:F7:DF:4D:9F:72:82:0C:60:00:E3:EB:6B:DF:C2:94:EE:B3:9F:1D X509v3 Authority Key Identifier: keyid:3F:29:09:C3:F5:32:C0:0B:02:57:B9:25:6C:76:EB:A3:14:DC:D0:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PykJw_UywAsCV7klbHbroxTc0A8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C71A5/3BFA28340A8311ED8D6D832AC4F9AE02/PykJw_UywAsCV7klbHbroxTc0A8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:b4:ee:ca:bd:10:53:87:20:14:44:80:ae:c0:41:0c:ec:a0: 53:33:f5:9f:45:c8:1c:99:7a:fa:19:6a:a7:d1:6b:f8:d8:61: 2e:a0:a4:5d:15:60:fe:d9:d2:41:a0:e9:53:30:de:a4:f8:2d: b1:d0:d0:21:8f:a9:24:c4:a1:70:cb:9d:9d:49:46:75:34:be: df:fd:a8:01:1a:d9:5a:a5:c1:30:4b:37:80:bb:13:68:61:f4: 5a:a6:3b:15:c9:2c:5c:dc:b1:ee:0f:e5:b0:80:b3:89:81:72: 7a:77:0e:2d:6a:27:1c:44:5d:6f:3c:40:f0:e8:b5:b9:3a:86: e3:ba:31:c8:c5:31:4d:ec:bb:de:47:f4:81:93:04:91:22:00: 81:46:bf:a1:ba:6a:e6:52:22:7b:e7:c1:5c:63:16:9a:96:ba: 68:1f:47:5e:04:fb:7e:a2:43:57:ce:16:25:bc:81:28:19:3e: 29:25:fb:63:5a:43:55:04:0f:53:2b:fa:8c:93:1b:b2:2b:10: 27:33:e3:e6:ef:6a:13:52:90:5b:a1:e4:e9:a6:b8:e8:17:c9: 24:e7:83:00:b4:97:45:f3:db:82:40:d3:25:de:55:a4:15:62: 38:0a:b5:0f:ef:37:bc:fd:b0:c7:44:ca:70:f4:b8:bc:dd:ac: f7:98:c9:59 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzcxQTUxMTAvBgNVBAUTKDNGMjkwOUMzRjUzMkMwMEIwMjU3QjkyNTZDNzZFQkEz MTREQ0QwMEYwHhcNMjUxMTA1MDEyNzAzWhcNMjUxMTEyMDEyNzAzWjAYMRYwFAYD VQQDEw02OTBhYTdlNy1hNjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mScDVnsmy5rSshLAXcqVacdQGL6LJAX2D/yVPKCEol4C/EIvdg6Y6kD7slr fINneFjFiOEHVJkLr3O/TpaJdshU0EnIqPNmygYrYq3mWCU65pnA3lj+wZ9SplWa 07gMKE0lGH+/GEQsHmwgmi/19g5ckTelRRuKHwTErG7fw4pV+45tSgsnWPYStrFo eHzDG8TJh7EAmDlWy+IgRMOJBbq8zf9JxfJ4iQVWM+bDLb10qTJH6XzDsKE+sONa S84EoMyE46hBXNG9IJlKrcQ+YirwZw6Oz8cPCf87eOEI0l2HeCeX9i3sTZAc/7M1 TnyKXciZsvSv8lPnLQuuLhYEcwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEj3302f coIMYADj62vfwpTus58dMB8GA1UdIwQYMBaAFD8pCcP1MsALAle5JWx266MU3NAP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNzFBNS8zQkZBMjgzNDBB ODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdBc0NWN2tsYkhicm94VGMw QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B5a0p3X1V5d0FzQ1Y3a2xiSGJyb3hUYzBBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NzFBNS8zQkZBMjgzNDBBODMxMUVEOEQ2RDgzMkFDNEY5QUUwMi9QeWtKd19VeXdB c0NWN2tsYkhicm94VGMwQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB6tO7KvRBThyAURICuwEEM7KBTM/WfRcgcmXr6GWqn0Wv42GEuoKRd FWD+2dJBoOlTMN6k+C2x0NAhj6kkxKFwy52dSUZ1NL7f/agBGtlapcEwSzeAuxNo YfRapjsVySxc3LHuD+WwgLOJgXJ6dw4taiccRF1vPEDw6LW5OobjujHIxTFN7Lve R/SBkwSRIgCBRr+humrmUiJ758FcYxaalrpoH0deBPt+okNXzhYlvIEoGT4pJftj WkNVBA9TK/qMkxuyKxAnM+Pm72oTUpBboeTpprjoF8kk54MAtJdF89uCQNMl3lWk FWI4CrUP7ze8/bDHRMpw9Li83az3mMlZ -----END CERTIFICATE-----Generated at Wed Nov 5 19:45:11 2025 by rpki-client