$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: sWEzrK4NF7V9LUg3BSrShYzduH+badawTrweO5pbSZY= Subject key identifier: A2:D0:BD:7D:AB:45:77:7C:D6:BC:B3:D0:7E:82:02:90:B6:58:8D:1F Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 012C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 0129 Signing time: Sun 19 Oct 2025 07:27:22 +0000 Manifest this update: Sun 19 Oct 2025 07:27:21 +0000 Manifest next update: Sun 26 Oct 2025 07:27:21 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: vhJ45D7hcOTo2QHBEUOTMJf/JXjuI/YQKg+qu1JP4w8=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:27:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 300 (0x12c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Oct 19 07:27:21 2025 GMT Not After : Oct 26 07:27:21 2025 GMT Subject: CN=68f492da-dd66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:40:ef:82:9f:fc:e9:16:9b:ca:7e:10:96:62: 0c:a0:fd:f8:6c:c6:18:fe:4d:97:e2:31:79:e7:17: 67:21:77:a2:7b:55:58:bc:3e:98:f4:69:c6:a1:85: a3:55:f1:d1:38:1d:5f:57:6c:14:f8:ab:e3:5f:eb: 64:e8:1d:58:51:21:90:34:c4:8e:53:05:48:44:25: 9a:8e:31:f5:03:76:77:3f:fe:ff:92:ab:eb:ff:93: 43:74:07:d8:19:6a:1d:65:ca:bc:69:bf:41:95:b3: cc:2c:b8:6d:84:89:85:4e:ac:29:d3:de:57:85:0c: ce:a1:4d:30:17:b8:f4:64:70:d7:f5:4f:3c:dc:e8: 6e:8c:c4:0e:67:1d:22:4e:56:cd:0e:a1:10:fa:33: 3c:f0:59:9b:94:02:66:3f:2c:aa:d9:02:b7:dd:59: a4:98:6e:16:5b:a5:d0:3e:cd:23:1f:06:76:7b:5f: c4:d0:66:0b:a8:c7:d7:9c:14:4f:55:32:6a:14:14: 29:05:14:f7:0e:2a:c0:66:5d:22:19:a0:94:ae:39: 3a:e4:22:cf:e2:75:6e:c3:b3:76:94:e4:a7:36:b5: ca:e0:9d:17:bb:99:db:82:62:c7:88:1b:a1:39:f4: 33:a7:37:a9:f0:57:c5:b5:5e:ed:e0:df:81:9d:f0: bc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D0:BD:7D:AB:45:77:7C:D6:BC:B3:D0:7E:82:02:90:B6:58:8D:1F X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:55:f9:81:d7:b8:5f:e1:e7:87:d3:ba:12:d6:ad:9d:a8:98: c6:96:c5:1e:bd:5f:41:7a:5a:3b:22:5b:b8:78:f9:49:ff:4e: 83:7e:ca:83:0d:1d:86:63:56:be:55:32:85:62:b3:09:9c:5a: 0b:7a:ea:60:a0:a9:72:95:b1:cd:af:65:5c:1e:e5:e1:47:be: d6:1f:5e:29:e1:b0:d1:13:15:c5:97:f2:a2:79:01:c2:b2:0f: 74:1a:9b:e6:f3:ab:5e:93:a4:4b:6b:bf:d2:b7:6a:27:3d:4d: d2:88:1e:a0:d8:40:42:58:86:2d:ae:d7:36:40:56:8c:1f:e7: 73:63:0e:67:37:4e:d2:cd:5d:89:91:b9:f9:f9:ed:06:89:65: a0:01:07:f3:ef:58:5d:e7:24:95:1b:4b:2f:e2:0b:31:89:5c: f7:86:84:9b:7b:c9:e9:1c:84:2a:5a:2b:96:3d:92:17:9c:b9: 51:56:26:9a:25:db:8c:a7:7f:35:14:93:4d:8c:b1:a7:df:ff: 8b:69:76:de:97:07:53:f9:e9:20:73:43:db:48:11:95:6b:e6: 71:65:57:55:56:da:47:38:7a:e7:1d:7c:4b:9c:56:25:ca:42: f2:b6:de:8a:05:e0:e8:b6:de:ee:d8:86:df:16:43:a0:0b:52: 97:be:03:d2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUxMDE5MDcyNzIxWhcNMjUxMDI2MDcyNzIxWjAYMRYwFAYD VQQDEw02OGY0OTJkYS1kZDY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAykDvgp/86Rabyn4QlmIMoP34bMYY/k2X4jF55xdnIXeie1VYvD6Y9GnGoYWj VfHROB1fV2wU+KvjX+tk6B1YUSGQNMSOUwVIRCWajjH1A3Z3P/7/kqvr/5NDdAfY GWodZcq8ab9BlbPMLLhthImFTqwp095XhQzOoU0wF7j0ZHDX9U883OhujMQOZx0i TlbNDqEQ+jM88FmblAJmPyyq2QK33VmkmG4WW6XQPs0jHwZ2e1/E0GYLqMfXnBRP VTJqFBQpBRT3DirAZl0iGaCUrjk65CLP4nVuw7N2lOSnNrXK4J0Xu5nbgmLHiBuh OfQzpzep8FfFtV7t4N+BnfC8hwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKLQvX2r RXd81ryz0H6CApC2WI0fMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAFVfmB17hf4eeH07oS1q2dqJjGlsUevV9Belo7Ilu4ePlJ/06DfsqD DR2GY1a+VTKFYrMJnFoLeupgoKlylbHNr2VcHuXhR77WH14p4bDRExXFl/KieQHC sg90Gpvm86tek6RLa7/St2onPU3SiB6g2EBCWIYtrtc2QFaMH+dzYw5nN07SzV2J kbn5+e0GiWWgAQfz71hd5ySVG0sv4gsxiVz3hoSbe8npHIQqWiuWPZIXnLlRViaa JduMp381FJNNjLGn3/+LaXbelwdT+ekgc0PbSBGVa+ZxZVdVVtpHOHrnHXxLnFYl ykLytt6KBeDott7u2IbfFkOgC1KXvgPS -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:44 2025 by rpki-client