$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: AwEy8Lto0/Ro3Gh5JwtJmZeuNNktseSddMiNF+Bf8TU= Subject key identifier: F1:21:81:78:6A:70:B1:07:A0:B1:9C:CC:1F:52:18:1D:84:EF:D9:56 Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0C9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C91 Signing time: Mon 20 Oct 2025 18:54:07 +0000 Manifest this update: Mon 20 Oct 2025 18:54:06 +0000 Manifest next update: Mon 27 Oct 2025 18:54:06 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: Px7j3O3KpVbFzUpqDvCPI2H9BQywcVxqWM8syIuvGYY=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: QXDdzYa6iyzovy5Z9ik5QXaJEcfXc3NGsSzn/V3Ryt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 18:54:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Oct 20 18:54:06 2025 GMT Not After : Oct 27 18:54:06 2025 GMT Subject: CN=68f6854f-caf4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:36:74:45:85:49:22:50:51:f6:d4:6e:b7:8d: db:41:d2:a9:4c:47:7f:09:36:75:28:d6:0f:a4:7c: e6:7c:4c:46:95:22:cf:0b:e2:08:95:b5:f8:59:5b: a0:b5:22:3e:37:ae:c6:1c:cd:67:ad:18:a9:59:7f: 55:d3:7c:f7:f0:9d:dc:b7:e0:c1:44:87:49:fa:6d: a2:c1:66:c9:24:d1:5a:f7:78:09:6f:cb:45:a3:40: 52:55:57:ab:3b:96:37:fd:af:33:57:27:77:e1:91: 6c:f1:7d:ae:4a:c2:43:11:b9:f0:77:f9:93:9b:d9: ee:e1:43:f7:d7:fb:7a:0b:02:12:ec:bb:ef:ed:24: 60:e5:49:39:b4:39:61:7d:98:af:f6:46:a0:94:25: 38:7e:40:09:45:e0:4e:17:6c:a5:ba:0c:00:b8:44: 32:51:65:35:4e:4b:07:4a:66:cc:b0:45:b7:4a:fe: 5a:3e:35:8c:e5:28:10:a1:44:92:a9:c0:8b:a4:5a: cc:9c:c4:2c:78:d9:00:e4:cb:be:d0:0f:7f:01:c6: 4d:58:02:7a:66:2f:b7:53:5e:7b:4e:6a:f5:13:20: d1:ad:68:05:70:21:4d:e9:78:22:50:09:8a:f5:99: 0d:08:97:3f:1f:5d:52:28:f4:e8:a1:55:4b:81:61: 48:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:21:81:78:6A:70:B1:07:A0:B1:9C:CC:1F:52:18:1D:84:EF:D9:56 X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bd:ba:81:ce:99:e6:03:2b:0d:1d:57:16:a3:5c:68:0f:31:8e: 6b:4c:3b:11:fc:b4:5e:2a:26:ac:f9:f6:37:8d:d9:d3:09:c3: 1a:b0:d6:e2:15:63:b2:f6:06:2b:74:1d:16:06:6b:84:a9:86: f7:30:68:31:a4:f4:94:4e:09:06:36:fe:48:2b:be:f6:55:67: 9a:ce:24:e9:38:6d:21:95:c8:69:1f:0c:9c:89:65:7c:dc:16: 80:11:b0:e8:92:0a:58:26:62:c3:93:ff:3b:6c:72:5f:be:91: c8:f7:9f:07:37:32:73:a4:31:91:61:89:92:94:91:1d:5d:f1: 0f:03:20:ce:36:cf:22:d6:0c:19:92:76:1d:71:57:82:df:91: 09:4d:ab:b1:56:c1:f0:7b:cf:11:61:8f:bb:d1:7e:f0:64:37: d7:62:85:67:51:16:ed:b1:91:72:63:ac:04:4f:8d:21:f7:bd: fe:11:ec:ac:05:e2:22:2e:fc:1e:c5:19:47:a6:d6:65:e2:cd: 30:82:e0:5a:c1:85:42:75:02:91:73:30:aa:15:fa:75:f6:ab: 24:40:98:92:ec:78:f6:d8:13:ac:5e:41:42:b5:70:1d:b5:62: 1b:be:4c:e7:a1:c2:be:ce:d6:94:3f:35:2d:0f:11:aa:8c:0b: 69:1c:26:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUxMDIwMTg1NDA2WhcNMjUxMDI3MTg1NDA2WjAYMRYwFAYD VQQDEw02OGY2ODU0Zi1jYWY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTZ0RYVJIlBR9tRut43bQdKpTEd/CTZ1KNYPpHzmfExGlSLPC+IIlbX4WVug tSI+N67GHM1nrRipWX9V03z38J3ct+DBRIdJ+m2iwWbJJNFa93gJb8tFo0BSVVer O5Y3/a8zVyd34ZFs8X2uSsJDEbnwd/mTm9nu4UP31/t6CwIS7Lvv7SRg5Uk5tDlh fZiv9kaglCU4fkAJReBOF2ylugwAuEQyUWU1TksHSmbMsEW3Sv5aPjWM5SgQoUSS qcCLpFrMnMQseNkA5Mu+0A9/AcZNWAJ6Zi+3U157Tmr1EyDRrWgFcCFN6XgiUAmK 9ZkNCJc/H11SKPTooVVLgWFIqwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPEhgXhq cLEHoLGczB9SGB2E79lWMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC9uoHOmeYDKw0dVxajXGgPMY5rTDsR/LReKias+fY3jdnTCcMasNbi FWOy9gYrdB0WBmuEqYb3MGgxpPSUTgkGNv5IK772VWeaziTpOG0hlchpHwyciWV8 3BaAEbDokgpYJmLDk/87bHJfvpHI958HNzJzpDGRYYmSlJEdXfEPAyDONs8i1gwZ knYdcVeC35EJTauxVsHwe88RYY+70X7wZDfXYoVnURbtsZFyY6wET40h973+Eeys BeIiLvwexRlHptZl4s0wguBawYVCdQKRczCqFfp19qskQJiS7Hj22BOsXkFCtXAd tWIbvkznocK+ztaUPzUtDxGqjAtpHCYt -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:57 2025 by rpki-client