$ rpki-client -vvf rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft File: Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft (raw, json) Hash identifier: EXO+5kgdoSpAgiQ945eDuvceBAfw3ux/fPyiRQWbfrs= Subject key identifier: 21:E3:CE:85:2B:06:2D:4C:8E:D1:DD:3A:B4:07:CB:2E:AB:E4:7A:16 Authority key identifier: 63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B Certificate issuer: /CN=A91A935D/serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Certificate serial: 069D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft Manifest number: 0695 Signing time: Sat 18 Oct 2025 23:50:41 +0000 Manifest this update: Sat 18 Oct 2025 23:50:40 +0000 Manifest next update: Sat 25 Oct 2025 23:50:40 +0000 Files and hashes: 1: Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl (hash: siikL5nnJUmpveSeOi5lrHVBP3XKAs/NYZPODFyCUZ4=) 2: 47EB76428ABA11EB8A85C01BC4F9AE02.roa (hash: Aj09uU6MhDmU5Pp5fUZKM/VJnCnWU68ZEpcYdjejU1M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1693 (0x69d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A935D, serialNumber=6359309EF49B445F6EB5331BDF0A94C5C6EFC37B Validity Not Before: Oct 18 23:50:40 2025 GMT Not After : Oct 25 23:50:40 2025 GMT Subject: CN=68f427d1-1112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e3:c7:55:f7:2c:29:92:9c:68:4f:93:86:9b: d9:72:f0:78:db:55:0b:ab:23:bf:0c:54:5a:21:ab: 66:03:07:ed:f8:2b:4f:dd:76:fb:98:bb:4e:a4:7f: f4:9d:97:45:80:d9:df:02:bb:e4:06:2a:fd:cf:a4: 0a:71:3a:1a:2f:6e:f3:b2:39:f6:f6:45:18:09:6c: 94:92:2c:62:09:03:2d:ba:27:d1:2d:93:84:60:63: 5b:b5:c9:46:36:a5:0b:81:58:2e:6a:99:85:41:68: c6:b1:16:9d:e4:e1:af:62:43:e3:9f:52:51:8a:24: 05:d0:26:2a:10:7e:f3:68:b2:db:a5:bf:50:d9:3d: e7:f5:8f:fa:38:d2:9e:d7:c1:78:ea:55:fd:95:b7: f9:5d:ec:cd:20:9a:61:fe:b0:08:31:c4:5b:49:f0: 8f:9e:5f:75:04:32:dd:cb:66:f4:60:9e:9a:60:53: 6c:e7:f9:80:1c:11:e7:56:69:bb:f8:b9:95:3f:91: 99:2b:56:29:27:d7:81:c1:3f:9d:5d:58:47:bc:57: 98:2f:6b:47:e9:53:55:6e:22:32:13:76:dd:2b:ea: da:7c:0f:f5:f9:cd:c1:55:2f:6f:58:7a:da:df:53: 06:7a:3d:a8:5b:48:62:e1:36:d9:4b:24:db:ba:d9: e7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:E3:CE:85:2B:06:2D:4C:8E:D1:DD:3A:B4:07:CB:2E:AB:E4:7A:16 X509v3 Authority Key Identifier: keyid:63:59:30:9E:F4:9B:44:5F:6E:B5:33:1B:DF:0A:94:C5:C6:EF:C3:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y1kwnvSbRF9utTMb3wqUxcbvw3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A935D/F500F7288AB811EB8707E11AC4F9AE02/Y1kwnvSbRF9utTMb3wqUxcbvw3s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ca:24:61:5f:e7:7b:aa:bc:d5:24:71:e3:d8:11:36:b7:8d: 4e:96:21:8b:79:30:ca:ad:16:2d:70:5e:d0:eb:97:74:bc:85: 4f:32:a6:46:cf:80:3d:5c:b1:b3:59:31:af:bb:76:ea:cd:d3: 69:10:d8:84:e8:e8:ab:5b:e9:02:ea:e4:e3:ff:96:9e:99:f1: 87:cc:7d:f4:37:66:2a:5e:d2:f1:9a:94:36:c1:b8:f9:a1:df: 64:d3:d2:dd:57:7a:7a:cb:41:ec:72:99:49:f7:ad:93:ad:d0: b3:1d:02:56:57:8c:55:80:d4:a0:63:53:12:15:37:a0:71:29: 01:3c:f0:3b:1c:85:51:28:d9:ac:ea:44:f4:40:13:d8:63:db: 2a:d9:80:57:1a:b0:cc:ec:63:22:3c:d3:6e:d7:fa:81:4c:51: 55:96:cb:49:52:54:55:ef:1c:e8:ae:67:9e:cf:97:00:22:03: 26:fa:1f:9d:6a:03:c5:06:74:9c:1e:52:cc:e9:d5:d2:d0:95: 53:13:7c:39:a1:ef:a1:a6:f4:81:d4:a1:f9:1e:f6:0f:47:3c: 9d:a3:e4:55:24:e6:45:55:bb:74:56:d6:1f:0c:d1:53:5f:8c: 0b:a8:19:54:81:ab:87:3f:4e:37:b4:59:88:5f:d5:22:c8:18: 09:98:72:85 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBp0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTkzNUQxMTAvBgNVBAUTKDYzNTkzMDlFRjQ5QjQ0NUY2RUI1MzMxQkRGMEE5NEM1 QzZFRkMzN0IwHhcNMjUxMDE4MjM1MDQwWhcNMjUxMDI1MjM1MDQwWjAYMRYwFAYD VQQDEw02OGY0MjdkMS0xMTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOPHVfcsKZKcaE+ThpvZcvB421ULqyO/DFRaIatmAwft+CtP3Xb7mLtOpH/0 nZdFgNnfArvkBir9z6QKcToaL27zsjn29kUYCWyUkixiCQMtuifRLZOEYGNbtclG NqULgVguapmFQWjGsRad5OGvYkPjn1JRiiQF0CYqEH7zaLLbpb9Q2T3n9Y/6ONKe 18F46lX9lbf5XezNIJph/rAIMcRbSfCPnl91BDLdy2b0YJ6aYFNs5/mAHBHnVmm7 +LmVP5GZK1YpJ9eBwT+dXVhHvFeYL2tH6VNVbiIyE3bdK+rafA/1+c3BVS9vWHra 31MGej2oW0hi4TbZSyTbutnnOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHjzoUr Bi1MjtHdOrQHyy6r5HoWMB8GA1UdIwQYMBaAFGNZMJ70m0RfbrUzG98KlMXG78N7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTM1RC9GNTAwRjcyODhB QjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJGOXV0VE1iM3dxVXhjYnZ3 M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxa3dudlNiUkY5dXRUTWIzd3FVeGNidnczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTM1RC9GNTAwRjcyODhBQjgxMUVCODcwN0UxMUFDNEY5QUUwMi9ZMWt3bnZTYlJG OXV0VE1iM3dxVXhjYnZ3M3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQADyiRhX+d7qrzVJHHj2BE2t41OliGLeTDKrRYtcF7Q65d0vIVPMqZG z4A9XLGzWTGvu3bqzdNpENiE6OirW+kC6uTj/5aemfGHzH30N2YqXtLxmpQ2wbj5 od9k09LdV3p6y0HscplJ962TrdCzHQJWV4xVgNSgY1MSFTegcSkBPPA7HIVRKNms 6kT0QBPYY9sq2YBXGrDM7GMiPNNu1/qBTFFVlstJUlRV7xzormeez5cAIgMm+h+d agPFBnScHlLM6dXS0JVTE3w5oe+hpvSB1KH5HvYPRzydo+RVJOZFVbt0VtYfDNFT X4wLqBlUgauHP043tFmIX9UiyBgJmHKF -----END CERTIFICATE-----Generated at Sun Oct 19 23:29:03 2025 by rpki-client