$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: /ZMQlqO+Q8kh2u/kxEQ/JJNEu3VnsyD8rmjClXFn2T8= Subject key identifier: 80:90:61:EF:75:65:2F:68:37:36:6A:9E:36:EE:7B:88:42:91:A4:B5 Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 3F Signing time: Sun 19 Oct 2025 10:56:10 +0000 Manifest this update: Sun 19 Oct 2025 10:56:09 +0000 Manifest next update: Sun 26 Oct 2025 10:56:09 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: QDok/1hA/38MnWl9EfCZX+qCvYRE8teNGT0qvWw8FZQ=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:56:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64 (0x40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Oct 19 10:56:09 2025 GMT Not After : Oct 26 10:56:09 2025 GMT Subject: CN=68f4c3c9-db07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:48:ee:e1:da:83:7c:96:bc:60:6f:d4:d7:9a: 1c:4c:d0:8d:f6:ed:60:5e:e2:d8:6f:8a:ec:88:d4: 0a:15:41:d8:a1:74:51:bf:eb:a3:55:8d:17:f1:e3: f5:a7:a5:49:5b:ef:0a:f2:b7:74:14:d0:95:61:ec: 30:22:d5:5e:02:10:59:3e:0a:b9:ad:52:43:c5:ac: 2b:fe:e3:aa:18:63:f4:1d:62:16:99:4c:c8:81:00: 7f:bf:e9:b8:23:e2:09:4f:30:e2:21:c4:2e:84:63: 1c:47:c5:51:93:51:fb:f6:44:e0:fe:f4:df:88:c4: 40:59:35:dc:1d:b8:2f:64:24:56:05:ba:30:de:22: f8:95:fe:83:71:b2:13:7a:83:3c:fd:40:3c:70:34: ba:5e:71:59:45:c9:a6:47:ed:ae:da:1b:4a:6e:36: 28:bc:e3:f4:f0:a4:1d:08:3f:d7:c2:44:df:12:2c: d6:53:ac:c9:ab:7a:7d:eb:1d:71:d8:4a:a4:15:5b: 84:a9:a5:82:77:b0:7f:65:b1:0a:be:0c:1c:ac:75: b9:ed:ac:83:7f:e0:f8:67:5c:ce:8f:10:4c:7c:e6: b0:db:59:2d:d1:03:d9:7a:3b:49:1b:94:35:51:08: e5:e1:43:53:3e:7b:20:e9:6d:97:54:7e:20:be:f8: b5:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:90:61:EF:75:65:2F:68:37:36:6A:9E:36:EE:7B:88:42:91:A4:B5 X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:ad:fb:66:c0:40:b7:a1:8e:4f:56:d6:ff:8e:f0:cd:97:25: 3a:ff:fe:0e:13:69:37:c8:f7:de:4d:ab:de:5e:17:d4:fe:c8: b4:0f:b3:93:ac:b8:ae:e1:4f:95:5d:98:55:b4:d0:96:f4:eb: dc:51:f9:74:b8:ba:c8:35:fb:23:91:c4:4e:4f:bb:50:e1:9b: 26:17:e5:65:cd:da:a9:03:ef:9f:12:50:d3:d0:e5:c9:40:69: af:f7:a3:f8:89:bc:0b:d6:35:90:b1:ce:cd:0b:a3:84:f7:08: 7a:33:58:5a:9b:32:7c:4e:82:5c:7a:69:c8:5d:95:21:91:ca: 8a:25:10:b0:6d:4f:aa:66:2a:18:18:57:69:a6:74:59:95:07: b9:e1:7e:39:9c:65:3b:4d:0f:59:d2:0d:37:f8:83:0f:5b:ca: 31:17:f8:85:71:ff:93:92:bc:be:b8:25:3e:d1:15:be:d2:3a: df:14:30:34:a5:01:95:74:35:fc:bb:74:f1:80:ab:a4:91:8c: 17:36:1e:55:c8:51:e9:82:2e:e8:20:cb:be:3e:2a:ea:99:67: 7f:0b:56:2d:8b:80:a4:9e:4d:4b:1b:2c:c0:25:a7:24:e8:96: e6:9c:f3:f5:a2:0c:a1:af:c0:f8:d6:f9:8d:54:56:db:96:aa: 87:41:23:72 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBQDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTEwMTkxMDU2MDlaFw0yNTEwMjYxMDU2MDlaMBgxFjAUBgNV BAMTDTY4ZjRjM2M5LWRiMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6SO7h2oN8lrxgb9TXmhxM0I327WBe4thviuyI1AoVQdihdFG/66NVjRfx4/Wn pUlb7wryt3QU0JVh7DAi1V4CEFk+CrmtUkPFrCv+46oYY/QdYhaZTMiBAH+/6bgj 4glPMOIhxC6EYxxHxVGTUfv2ROD+9N+IxEBZNdwduC9kJFYFujDeIviV/oNxshN6 gzz9QDxwNLpecVlFyaZH7a7aG0puNii84/TwpB0IP9fCRN8SLNZTrMmren3rHXHY SqQVW4SppYJ3sH9lsQq+DBysdbntrIN/4PhnXM6PEEx85rDbWS3RA9l6O0kblDVR COXhQ1M+eyDpbZdUfiC++LUzAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUgJBh73Vl L2g3NmqeNu57iEKRpLUwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGat+2bAQLehjk9W1v+O8M2XJTr//g4TaTfI995Nq95eF9T+yLQPs5Os uK7hT5VdmFW00Jb069xR+XS4usg1+yORxE5Pu1DhmyYX5WXN2qkD758SUNPQ5clA aa/3o/iJvAvWNZCxzs0Lo4T3CHozWFqbMnxOglx6achdlSGRyoolELBtT6pmKhgY V2mmdFmVB7nhfjmcZTtND1nSDTf4gw9byjEX+IVx/5OSvL64JT7RFb7SOt8UMDSl AZV0Nfy7dPGAq6SRjBc2HlXIUemCLuggy74+KuqZZ38LVi2LgKSeTUsbLMAlpyTo luac8/WiDKGvwPjW+Y1UVtuWqodBI3I= -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:09 2025 by rpki-client