$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft File: YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft (raw, json) Hash identifier: 8NSOFUh0a0vamsfyWI5qMkWGtIQCuCERQDx/tSGbfj8= Subject key identifier: 75:B2:F0:40:00:BA:E8:D1:38:0F:D5:46:06:14:98:4A:8C:39:EC:DE Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 082F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft Manifest number: 0824 Signing time: Sat 18 Oct 2025 22:06:22 +0000 Manifest this update: Sat 18 Oct 2025 22:06:22 +0000 Manifest next update: Sat 25 Oct 2025 22:06:22 +0000 Files and hashes: 1: YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl (hash: /k5r0SFP235R1ExmjRfmVrqiEb7jE/mwYo8uydiB4A0=) 2: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (hash: SY9pZakTz+Y+bprs2Qaz2rmG63LM9RAeEr8PBsMxkEI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:06:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2095 (0x82f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Oct 18 22:06:22 2025 GMT Not After : Oct 25 22:06:22 2025 GMT Subject: CN=68f40f5e-01f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2d:21:5d:40:89:6d:dc:38:a5:fb:3e:e6:eb: b4:7a:b8:42:d8:db:d5:32:53:b8:15:9a:de:c6:85: dc:59:a1:49:88:fb:25:d6:9f:62:a9:16:fd:46:d1: 52:a0:55:e0:69:fe:e6:f3:ea:39:4a:9b:7f:8e:79: 0b:2f:ba:4a:40:b7:9b:6a:8e:b3:bb:7f:1b:e4:cd: b5:e6:13:5f:df:32:e8:01:a5:dc:db:c0:88:a3:74: 6f:81:6d:46:fd:58:75:15:63:8b:b5:93:4f:54:5f: 7b:1f:ae:b2:07:b5:4c:e4:ae:df:9b:0f:60:e4:00: 02:8e:d0:40:be:43:c8:ef:8d:a9:11:99:98:c4:e7: 87:6d:bb:41:16:a9:64:d3:91:57:62:af:92:9d:98: 80:65:24:ac:30:42:b0:5f:21:31:16:3d:d3:75:c3: c8:2b:da:6c:31:6f:50:17:45:f3:f0:42:67:05:85: 46:fd:6c:51:81:3a:89:db:3b:08:4f:43:95:e1:7a: 0d:f6:26:1c:4e:c2:77:1a:f0:cc:a2:8d:ad:f2:84: 83:c9:2e:86:b9:1e:98:c1:7e:2e:7e:4d:2a:e0:bc: e4:12:5c:f2:74:75:f3:22:1a:50:17:bf:78:e9:92: e5:2b:37:30:71:6f:ee:2d:e0:b9:06:2a:56:f5:37: 9f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:B2:F0:40:00:BA:E8:D1:38:0F:D5:46:06:14:98:4A:8C:39:EC:DE X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:96:12:2f:03:0f:12:af:b6:fa:9c:2f:0e:56:f6:5e:9a:bc: 66:ac:54:a3:48:05:93:5a:63:a5:c2:a6:11:c5:51:f8:7e:01: 6e:c2:29:15:b9:2c:bb:b8:21:dc:27:68:91:39:e5:c7:ad:50: 81:cd:86:47:c8:b5:3f:15:bf:6d:8e:45:bd:97:59:a5:8d:ef: 68:03:17:a4:6d:2a:ea:60:34:72:c8:60:c3:48:3d:19:b0:99: 6a:36:25:3c:e2:39:3c:2b:02:0c:33:88:d0:40:ba:b2:aa:93: 3e:92:a0:81:8e:ab:2e:5b:f8:a9:dc:c1:21:da:40:18:36:90: 44:25:de:3e:e9:c6:70:d0:c3:87:8c:69:d6:5f:d6:64:48:9a: f0:88:af:4d:82:6d:29:f5:7b:a7:f9:42:d8:89:26:c1:81:02: 04:c8:6f:58:08:2a:50:ff:c0:5b:db:cb:73:32:74:3f:23:b3: c3:4c:96:15:d3:3f:9a:6f:06:5e:6a:51:46:2d:02:f2:1f:20: b3:6d:a3:d2:c7:a9:3f:03:93:45:bd:58:60:19:50:0c:da:8d: 06:77:53:f1:24:53:61:13:99:27:f7:e9:c7:60:9c:ed:18:25: 91:88:85:04:67:9f:ad:b4:5f:de:c3:8e:e5:07:38:2d:b3:9e: 34:6b:7c:37 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjUxMDE4MjIwNjIyWhcNMjUxMDI1MjIwNjIyWjAYMRYwFAYD VQQDEw02OGY0MGY1ZS0wMWY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxi0hXUCJbdw4pfs+5uu0erhC2NvVMlO4FZrexoXcWaFJiPsl1p9iqRb9RtFS oFXgaf7m8+o5Spt/jnkLL7pKQLebao6zu38b5M215hNf3zLoAaXc28CIo3RvgW1G /Vh1FWOLtZNPVF97H66yB7VM5K7fmw9g5AACjtBAvkPI742pEZmYxOeHbbtBFqlk 05FXYq+SnZiAZSSsMEKwXyExFj3TdcPIK9psMW9QF0Xz8EJnBYVG/WxRgTqJ2zsI T0OV4XoN9iYcTsJ3GvDMoo2t8oSDyS6GuR6YwX4ufk0q4LzkElzydHXzIhpQF794 6ZLlKzcwcW/uLeC5BipW9TefeQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHWy8EAA uujROA/VRgYUmEqMOezeMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RjNDNi82MzFDQzE2MEYzMzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpf eEdTb2xPMUhxZkc5TWh0RUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAWlhIvAw8Sr7b6nC8OVvZemrxmrFSjSAWTWmOlwqYRxVH4fgFuwikV uSy7uCHcJ2iROeXHrVCBzYZHyLU/Fb9tjkW9l1mlje9oAxekbSrqYDRyyGDDSD0Z sJlqNiU84jk8KwIMM4jQQLqyqpM+kqCBjqsuW/ip3MEh2kAYNpBEJd4+6cZw0MOH jGnWX9ZkSJrwiK9Ngm0p9Xun+ULYiSbBgQIEyG9YCCpQ/8Bb28tzMnQ/I7PDTJYV 0z+abwZealFGLQLyHyCzbaPSx6k/A5NFvVhgGVAM2o0Gd1PxJFNhE5kn9+nHYJzt GCWRiIUEZ5+ttF/ew47lBzgts540a3w3 -----END CERTIFICATE-----Generated at Mon Oct 20 11:32:52 2025 by rpki-client