$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft File: YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft (raw, json) Hash identifier: gtHIat8Om8/vZGuDol7H/V6+4/TchNcHiV05s1YZQ5I= Subject key identifier: 72:72:78:7A:54:19:A2:42:D4:BA:29:A5:77:DD:7F:88:E9:2D:DE:60 Authority key identifier: 61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79 Certificate issuer: /CN=A91A0277/serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779 Certificate serial: 06E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft Manifest number: 06D4 Signing time: Sat 18 Oct 2025 23:30:40 +0000 Manifest this update: Sat 18 Oct 2025 23:30:39 +0000 Manifest next update: Sat 25 Oct 2025 23:30:39 +0000 Files and hashes: 1: YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl (hash: /cty5F8ny1k4EYQ6+ostRUAAt2glMQdSADXIPje5vGw=) 2: 56A937F2360411EF8AA77687C4F9AE02.roa (hash: jBtUWO90hOewkZT/IOz6vgpi/ww1P3BMTXwB63qoFnQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:30:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1765 (0x6e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0277, serialNumber=61D909494AAC099E5DC67BD9DECCFEBE44B77779 Validity Not Before: Oct 18 23:30:39 2025 GMT Not After : Oct 25 23:30:39 2025 GMT Subject: CN=68f4231f-c1b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:da:99:2d:79:b8:2f:d7:44:ce:91:fa:30:a4: d4:3d:1b:42:fb:e9:a7:ad:b3:a9:f5:54:dd:54:0b: bc:3c:27:31:b5:35:4c:89:c5:7b:40:8c:22:82:f1: dc:63:2f:96:65:69:95:4d:3b:28:56:c5:12:08:b3: 47:96:67:4b:27:79:3d:f7:a8:0b:70:17:11:1a:17: 6b:ce:e0:ec:8b:4d:8b:6b:1f:38:92:ce:ff:19:cd: 50:b2:b1:71:89:21:49:c3:4f:e6:67:9f:be:03:76: bb:cf:d2:39:2f:8e:22:8a:0f:9e:2a:33:12:b7:e4: 20:68:bc:2a:98:23:a8:f5:ed:2a:fb:1e:7e:1f:ed: b0:c2:ac:52:81:52:3b:b7:91:a0:b9:b1:92:af:6e: 0b:f1:2c:2c:c1:f8:c5:b9:a2:f2:5a:d6:b4:17:84: 34:3d:51:3f:52:63:22:18:39:8f:f2:48:f9:f2:ea: a2:40:df:69:c2:ff:1f:0e:b3:72:b0:95:b0:e4:16: 3f:05:eb:8c:ec:c5:e2:36:f4:cc:ed:8f:9d:fd:f7: 66:8d:41:72:91:9b:f8:44:03:91:6a:89:1d:16:c2: de:cd:3c:7a:23:61:f3:65:d0:4f:7e:63:0f:a4:11: bf:86:6e:85:22:85:02:02:63:d9:87:a2:21:49:a6: f8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:72:78:7A:54:19:A2:42:D4:BA:29:A5:77:DD:7F:88:E9:2D:DE:60 X509v3 Authority Key Identifier: keyid:61:D9:09:49:4A:AC:09:9E:5D:C6:7B:D9:DE:CC:FE:BE:44:B7:77:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0277/D419D81075CB11EB952DD66AC4F9AE02/YdkJSUqsCZ5dxnvZ3sz-vkS3d3k.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:1a:d1:54:d4:e5:02:5d:50:f6:5b:8d:3e:00:74:91:f0:17: 2c:1c:37:d5:38:8b:3c:76:ac:28:7b:b6:e3:6e:73:75:e3:73: ae:f7:00:7d:cd:1f:6e:1e:4a:7f:b4:5b:39:11:7c:8c:69:4f: 8a:b0:bf:7e:3a:73:2d:8a:77:98:c5:97:4a:69:cf:32:d5:9d: b8:f6:36:46:ee:e3:d6:f7:87:a0:f6:80:10:d9:e2:65:d9:73: 58:f3:cb:51:89:ef:c5:a6:f1:18:e2:7e:2c:f2:9d:38:ab:6c: 7a:d3:76:c4:d3:e7:40:97:90:5e:e0:6e:81:a8:de:25:e5:fd: 89:18:00:a6:9a:fb:e9:60:31:63:00:e5:f5:1d:d7:30:a2:bd: 82:fc:7f:ea:73:ab:a0:e3:04:76:3c:e6:6a:dd:37:b2:bf:ec: f9:63:6d:d7:38:50:f8:08:42:3c:f4:7e:b5:df:6e:ba:08:2e: c5:01:f8:9b:20:5d:4d:11:fe:d5:28:06:1d:cc:91:a1:4e:d2: 18:9f:39:06:fa:11:09:6a:6b:7c:54:0b:83:a4:29:5f:df:6e: 99:df:7e:51:55:d1:0e:ff:5b:b6:49:48:67:2a:2b:ca:42:97: 76:41:b8:ff:4b:49:97:ab:e3:94:30:a6:25:77:6e:d3:9e:6e: 15:c7:f0:cd -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAyNzcxMTAvBgNVBAUTKDYxRDkwOTQ5NEFBQzA5OUU1REM2N0JEOURFQ0NGRUJF NDRCNzc3NzkwHhcNMjUxMDE4MjMzMDM5WhcNMjUxMDI1MjMzMDM5WjAYMRYwFAYD VQQDEw02OGY0MjMxZi1jMWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2NqZLXm4L9dEzpH6MKTUPRtC++mnrbOp9VTdVAu8PCcxtTVMicV7QIwigvHc Yy+WZWmVTTsoVsUSCLNHlmdLJ3k996gLcBcRGhdrzuDsi02Lax84ks7/Gc1QsrFx iSFJw0/mZ5++A3a7z9I5L44iig+eKjMSt+QgaLwqmCOo9e0q+x5+H+2wwqxSgVI7 t5GgubGSr24L8SwswfjFuaLyWta0F4Q0PVE/UmMiGDmP8kj58uqiQN9pwv8fDrNy sJWw5BY/BeuM7MXiNvTM7Y+d/fdmjUFykZv4RAORaokdFsLezTx6I2HzZdBPfmMP pBG/hm6FIoUCAmPZh6IhSab4XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHJyeHpU GaJC1LoppXfdf4jpLd5gMB8GA1UdIwQYMBaAFGHZCUlKrAmeXcZ72d7M/r5Et3d5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDI3Ny9ENDE5RDgxMDc1 Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9ZZGtKU1Vxc0NaNWR4bnZaM3N6LXZrUzNk M2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lka0pTVXFzQ1o1ZHhudlozc3otdmtTM2Qzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDI3Ny9ENDE5RDgxMDc1Q0IxMUVCOTUyREQ2NkFDNEY5QUUwMi9ZZGtKU1Vxc0Na NWR4bnZaM3N6LXZrUzNkM2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBlGtFU1OUCXVD2W40+AHSR8BcsHDfVOIs8dqwoe7bjbnN143Ou9wB9 zR9uHkp/tFs5EXyMaU+KsL9+OnMtineYxZdKac8y1Z249jZG7uPW94eg9oAQ2eJl 2XNY88tRie/FpvEY4n4s8p04q2x603bE0+dAl5Be4G6BqN4l5f2JGACmmvvpYDFj AOX1Hdcwor2C/H/qc6ug4wR2POZq3Teyv+z5Y23XOFD4CEI89H613266CC7FAfib IF1NEf7VKAYdzJGhTtIYnzkG+hEJamt8VAuDpClf326Z335RVdEO/1u2SUhnKivK Qpd2Qbj/S0mXq+OUMKYld27Tnm4Vx/DN -----END CERTIFICATE-----Generated at Mon Oct 20 16:04:39 2025 by rpki-client