$ rpki-client -vvf rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft File: yAlz0WzMyeGME6aIAz3E0PDmHEo.mft (raw, json) Hash identifier: 3roQF5JwqWQUC4gieomECEoI29kqWRgSvt8nIyPTdEQ= Subject key identifier: 4E:B3:7F:AB:46:77:9E:C7:E9:17:0C:32:C1:2E:BB:A0:D0:30:A4:62 Authority key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A Certificate issuer: /CN=A91657FE/serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Certificate serial: 44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft Manifest number: 42 Signing time: Sun 19 Oct 2025 10:54:48 +0000 Manifest this update: Sun 19 Oct 2025 10:54:47 +0000 Manifest next update: Sun 26 Oct 2025 10:54:47 +0000 Files and hashes: 1: yAlz0WzMyeGME6aIAz3E0PDmHEo.crl (hash: k44R5oiDEI3U2g0gB9JfOgtHpb5KIp3/rkJtB4joKmc=) 2: BFEE74284D9811F0930F6465C4F9AE02.roa (hash: utYcBcFgJK+aEaHZM9pNCTgsikhCHuFU4gRIhVACRLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:54:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Validity Not Before: Oct 19 10:54:47 2025 GMT Not After : Oct 26 10:54:47 2025 GMT Subject: CN=68f4c378-9670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:88:4e:52:86:be:dd:85:df:d8:8e:16:5b:9a: e2:3a:b8:81:c2:23:4d:4a:43:23:d1:95:26:ef:1e: f4:d0:69:dc:43:4c:8e:9d:a8:e0:59:bc:54:1f:c1: f1:51:72:4b:be:62:17:3d:90:ae:dd:9a:61:fa:e6: 56:98:22:6c:96:a7:b9:df:86:ef:86:03:eb:91:d4: f8:62:93:d1:95:6d:a3:ff:e4:d8:3f:d0:9e:11:28: 4f:09:94:f6:f4:a1:b2:13:69:ff:d6:18:d1:7f:49: 6c:63:f5:c1:39:cb:89:16:b6:db:ca:68:ea:49:de: e6:cd:65:95:e0:17:59:e7:1b:16:1d:b9:24:e4:3c: 9d:7c:79:79:6b:f5:a5:1e:3b:8e:10:da:f8:47:44: 8a:8e:b1:c9:90:b2:79:9a:a9:45:68:99:27:7f:f6: 84:46:5b:85:7b:d8:d4:ac:45:7c:ad:a4:2e:d6:5a: 8d:28:3d:b3:67:7e:31:40:28:70:e0:1b:76:43:ea: 88:02:ef:63:52:2e:94:dc:0d:df:72:4f:26:d4:28: ce:4e:a1:a8:45:e0:db:34:12:ac:6d:60:ea:7a:01: 61:77:67:a0:fa:90:c6:21:5f:a0:2b:76:32:8d:e8: 84:de:2e:7f:69:15:b1:a4:5c:a9:17:99:25:c1:e9: 8f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:B3:7F:AB:46:77:9E:C7:E9:17:0C:32:C1:2E:BB:A0:D0:30:A4:62 X509v3 Authority Key Identifier: keyid:C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:8c:79:70:94:ca:69:59:18:64:72:d5:20:84:8e:37:66:7d: 73:38:ca:81:46:ba:2d:ea:24:81:95:92:9d:c0:0d:d6:5e:04: 28:ea:77:9c:b0:d2:da:ea:43:08:63:3b:02:c6:1a:52:d4:35: 7a:a6:80:fe:d1:43:8d:1f:e2:1c:bd:8c:4f:87:18:74:28:2e: 6b:a6:3e:43:3f:7e:ba:82:eb:64:ec:00:6a:87:17:15:42:63: 49:95:4d:74:d5:4f:3c:df:d9:c7:27:55:5c:fc:c3:aa:f8:3b: df:72:94:b4:17:56:af:6b:fd:0c:9a:b6:fa:05:de:71:0b:d2: b4:18:97:c8:61:6f:8d:d8:d6:c4:b1:94:49:34:36:f9:25:dd: 45:e2:07:e2:a6:ca:a0:50:27:38:f8:d3:ef:77:e6:df:91:c9: 9b:66:42:c8:d4:e6:b6:11:d3:c6:8f:c6:e7:fc:b5:c2:5a:ae: f6:b4:80:4c:77:fd:9e:14:d3:ef:a5:c5:bc:63:1e:97:28:0b: 99:2d:83:a9:5a:ab:ae:78:22:31:c5:db:1f:d9:1e:62:96:3f: 14:cb:87:75:9d:13:70:6f:8d:b3:fb:10:f9:b1:16:6e:f3:b6: 67:c4:8f:9c:0a:2d:4c:89:dc:6a:cc:ed:e0:c8:13:d6:99:c2: bd:28:17:88 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTdGRTExMC8GA1UEBRMoQzgwOTczRDE2Q0NDQzlFMThDMTNBNjg4MDMzREM0RDBG MEU2MUM0QTAeFw0yNTEwMTkxMDU0NDdaFw0yNTEwMjYxMDU0NDdaMBgxFjAUBgNV BAMTDTY4ZjRjMzc4LTk2NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDsiE5Shr7dhd/YjhZbmuI6uIHCI01KQyPRlSbvHvTQadxDTI6dqOBZvFQfwfFR cku+Yhc9kK7dmmH65laYImyWp7nfhu+GA+uR1Phik9GVbaP/5Ng/0J4RKE8JlPb0 obITaf/WGNF/SWxj9cE5y4kWttvKaOpJ3ubNZZXgF1nnGxYduSTkPJ18eXlr9aUe O44Q2vhHRIqOscmQsnmaqUVomSd/9oRGW4V72NSsRXytpC7WWo0oPbNnfjFAKHDg G3ZD6ogC72NSLpTcDd9yTybUKM5OoahF4Ns0EqxtYOp6AWF3Z6D6kMYhX6ArdjKN 6ITeLn9pFbGkXKkXmSXB6Y9/AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUTrN/q0Z3 nsfpFwwywS67oNAwpGIwHwYDVR0jBBgwFoAUyAlz0WzMyeGME6aIAz3E0PDmHEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1N0ZFL0MwODc1NzIyNEQ4 QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVHTUU2YUlBejNFMFBEbUhF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUFsejBXek15ZUdNRTZhSUF6M0UwUERtSEVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 N0ZFL0MwODc1NzIyNEQ4QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVH TUU2YUlBejNFMFBEbUhFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAF6MeXCUymlZGGRy1SCEjjdmfXM4yoFGui3qJIGVkp3ADdZeBCjqd5yw 0trqQwhjOwLGGlLUNXqmgP7RQ40f4hy9jE+HGHQoLmumPkM/frqC62TsAGqHFxVC Y0mVTXTVTzzf2ccnVVz8w6r4O99ylLQXVq9r/QyatvoF3nEL0rQYl8hhb43Y1sSx lEk0Nvkl3UXiB+KmyqBQJzj40+935t+RyZtmQsjU5rYR08aPxuf8tcJarva0gEx3 /Z4U0++lxbxjHpcoC5ktg6laq654IjHF2x/ZHmKWPxTLh3WdE3BvjbP7EPmxFm7z tmfEj5wKLUyJ3GrM7eDIE9aZwr0oF4g= -----END CERTIFICATE-----Generated at Mon Oct 20 18:38:10 2025 by rpki-client