$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft File: yod6eu8duwRWSH9h_uaZNjdUHl0.mft (raw, json) Hash identifier: +4HU/rwL4vE0fXb58D3fZsMdD/IHqQNFVPOUbBSL+WA= Subject key identifier: 2E:F5:8C:3B:E3:CD:4C:43:67:42:69:46:2A:3E:31:4F:40:F0:96:1B Authority key identifier: CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D Certificate issuer: /CN=A91AA053/serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Certificate serial: EE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft Manifest number: ED Signing time: Sat 18 Oct 2025 22:56:29 +0000 Manifest this update: Sat 18 Oct 2025 22:56:28 +0000 Manifest next update: Sat 25 Oct 2025 22:56:28 +0000 Files and hashes: 1: yod6eu8duwRWSH9h_uaZNjdUHl0.crl (hash: KsPBC88dl46h8fKI1IQuyrgA+RZcB+1YLgAXiNnH+BI=) 2: E098BB864FA311F0B96FBA3DC4F9AE02.roa (hash: C+d1LQ7j4suoEMqt6jmxPLK9+SyxrHsAW+pg0qKDarw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:56:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA053, serialNumber=CA877A7AEF1DBB0456487F61FEE6993637541E5D Validity Not Before: Oct 18 22:56:28 2025 GMT Not After : Oct 25 22:56:28 2025 GMT Subject: CN=68f41b1d-2795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:75:79:c2:29:b6:6b:16:ae:89:a1:30:f6:22: b7:4e:62:1f:5b:2a:60:ee:dd:5b:11:ea:ca:d1:1e: fa:55:c7:9a:78:e1:25:e4:ff:5f:ac:82:af:d3:9c: 9c:75:ef:7a:07:19:26:19:84:8d:e2:97:9e:10:23: 4b:ac:9e:49:65:48:d9:4a:f6:95:35:be:0e:98:cb: 78:92:cf:91:5c:8d:eb:95:37:c5:32:84:92:ef:59: 8a:8c:a4:70:b9:e5:ba:d4:1d:d6:d1:aa:ef:de:73: 94:f3:2f:9b:c4:9f:d7:52:ae:5f:04:66:28:d5:40: d1:c2:0c:15:e6:96:1c:c3:cf:bf:97:0c:20:ad:76: 38:43:1f:fd:98:43:43:ed:4e:4a:14:e4:11:01:56: d5:55:be:8e:16:00:e8:80:52:bf:df:b7:f5:24:c1: d8:0c:59:6d:e8:6d:33:06:ee:0c:74:3d:d7:22:2f: 54:dc:e8:04:09:d7:76:3b:83:ad:ab:5e:f2:0b:cf: 94:78:ce:87:4e:eb:b7:14:ae:50:fb:53:30:a1:0c: 53:e3:cb:f8:74:bd:71:aa:6e:e0:91:cf:a4:22:f3: d4:b0:10:bc:65:39:fa:90:5d:2a:83:16:8b:e8:36: 60:83:41:a7:30:b2:4e:78:19:2c:85:2b:67:b7:1f: 8e:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:F5:8C:3B:E3:CD:4C:43:67:42:69:46:2A:3E:31:4F:40:F0:96:1B X509v3 Authority Key Identifier: keyid:CA:87:7A:7A:EF:1D:BB:04:56:48:7F:61:FE:E6:99:36:37:54:1E:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yod6eu8duwRWSH9h_uaZNjdUHl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA053/8720305E449911EFBAC67153C4F9AE02/yod6eu8duwRWSH9h_uaZNjdUHl0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:18:6e:25:bc:8e:e8:86:4a:e3:8f:21:72:e9:e6:a7:e7:fa: a1:fa:4c:07:25:61:37:69:e9:2e:92:35:01:6a:dc:15:42:9b: 8c:3b:79:09:65:c9:85:a5:86:9f:20:1f:b0:c8:b4:d4:a6:1c: af:10:3c:98:d7:7b:0c:0b:ed:a0:14:69:ed:26:b4:55:23:47: 8a:9c:76:e0:4b:5e:71:9e:1f:71:4f:2e:01:be:37:ee:6b:cd: a2:3c:85:89:55:82:ef:47:2a:de:89:99:35:d9:00:d7:98:99: d9:d3:1c:59:23:2b:37:61:04:6e:bf:6b:30:36:92:2b:61:62: 1d:58:9c:b2:d4:ab:fd:d0:18:07:18:9e:8f:75:69:03:57:44: c7:41:07:06:b7:65:ad:38:fa:f5:dc:17:b2:da:fd:92:90:ac: b6:2d:f9:27:38:91:b4:48:d6:fc:81:19:ef:ef:c7:a2:a8:3d: 41:8e:98:26:65:fe:e8:6a:d1:7b:af:b7:7a:64:ea:db:32:19: 9d:af:4b:d6:5c:a3:dc:c9:96:24:cf:e3:bb:dd:61:18:a9:69: f3:79:15:a6:cc:11:72:d0:75:fd:ee:84:50:26:57:fe:82:03: 19:4a:2d:98:18:52:3f:88:d3:56:fe:78:c3:fc:5a:1e:ce:9f: 5a:ac:82:4b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUEwNTMxMTAvBgNVBAUTKENBODc3QTdBRUYxREJCMDQ1NjQ4N0Y2MUZFRTY5OTM2 Mzc1NDFFNUQwHhcNMjUxMDE4MjI1NjI4WhcNMjUxMDI1MjI1NjI4WjAYMRYwFAYD VQQDEw02OGY0MWIxZC0yNzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2HV5wim2axauiaEw9iK3TmIfWypg7t1bEerK0R76VceaeOEl5P9frIKv05yc de96BxkmGYSN4peeECNLrJ5JZUjZSvaVNb4OmMt4ks+RXI3rlTfFMoSS71mKjKRw ueW61B3W0arv3nOU8y+bxJ/XUq5fBGYo1UDRwgwV5pYcw8+/lwwgrXY4Qx/9mEND 7U5KFOQRAVbVVb6OFgDogFK/37f1JMHYDFlt6G0zBu4MdD3XIi9U3OgECdd2O4Ot q17yC8+UeM6HTuu3FK5Q+1MwoQxT48v4dL1xqm7gkc+kIvPUsBC8ZTn6kF0qgxaL 6DZgg0GnMLJOeBkshStntx+OdwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFC71jDvj zUxDZ0JpRio+MU9A8JYbMB8GA1UdIwQYMBaAFMqHenrvHbsEVkh/Yf7mmTY3VB5d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTA1My84NzIwMzA1RTQ0 OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3UldTSDloX3VhWk5qZFVI bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lvZDZldThkdXdSV1NIOWhfdWFaTmpkVUhsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QTA1My84NzIwMzA1RTQ0OTkxMUVGQkFDNjcxNTNDNEY5QUUwMi95b2Q2ZXU4ZHV3 UldTSDloX3VhWk5qZFVIbDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtGG4lvI7ohkrjjyFy6ean5/qh+kwHJWE3aekukjUBatwVQpuMO3kJ ZcmFpYafIB+wyLTUphyvEDyY13sMC+2gFGntJrRVI0eKnHbgS15xnh9xTy4Bvjfu a82iPIWJVYLvRyreiZk12QDXmJnZ0xxZIys3YQRuv2swNpIrYWIdWJyy1Kv90BgH GJ6PdWkDV0THQQcGt2WtOPr13Bey2v2SkKy2LfknOJG0SNb8gRnv78eiqD1Bjpgm Zf7oatF7r7d6ZOrbMhmdr0vWXKPcyZYkz+O73WEYqWnzeRWmzBFy0HX97oRQJlf+ ggMZSi2YGFI/iNNW/njD/Foezp9arIJL -----END CERTIFICATE-----Generated at Tue Oct 21 02:25:42 2025 by rpki-client