$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft File: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft (raw, json) Hash identifier: rcq4v65HRHTG9fpScnaJO/rappEqMPa6W6ZTglL0zvo= Subject key identifier: FA:2A:AB:53:54:57:58:EA:06:E2:BF:DF:F2:A4:7D:B0:A7:C8:80:87 Authority key identifier: CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A Certificate issuer: /CN=A91B4357/serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Certificate serial: 04E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft Manifest number: 04C2 Signing time: Sun 19 Oct 2025 01:41:00 +0000 Manifest this update: Sun 19 Oct 2025 01:40:59 +0000 Manifest next update: Sun 26 Oct 2025 01:40:59 +0000 Files and hashes: 1: yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl (hash: Vho1NyIV29jyHbnGldr4IvyvaAL5fvqdeJgNZ1J3HlU=) 2: CA888654D0E011EC9E5ACC1CC4F9AE02.roa (hash: XDPidkRVqWeQc1eTHxQCxUaJElvlJNeT6pKmzwyn+HU=) 3: 52B98FDA46AF11ECB113AA4BC4F9AE02.roa (hash: 2y3PU7S4Av5FbaJ/h4zQJFDM0QlsuJevpUkwFDDgj1o=) 4: 35A2418C45AE11ECB857890EC4F9AE02.roa (hash: Ar0eIfX5VeHGn66RhXZc/W9m9hkUWFRl4nMMo5nWhrg=) 5: 9896BA2EB6DE11EC8DB17172C4F9AE02.roa (hash: PZ8hGfo35k+2uwUr51dLJv7koK6JGtYIILiy6ys4KXU=) 6: 351AC73E45AE11ECB857890EC4F9AE02.roa (hash: qBcZRGomI65XMXG658jBmR+nbM6U8JoK99ZN8SiSngA=) 7: 346A2B4045AE11ECB857890EC4F9AE02.roa (hash: A3EDkKvu0aa33VcpNX3QbNZPup+JOPeqQSqq5IEiwAE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:40:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1249 (0x4e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4357, serialNumber=CB1656811D08457993E8D81B9F9798DAD616971A Validity Not Before: Oct 19 01:40:59 2025 GMT Not After : Oct 26 01:40:59 2025 GMT Subject: CN=68f441ab-d08d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:54:b9:31:93:b6:9c:73:74:06:0f:3d:ce:54: 35:db:60:26:30:9c:27:98:ec:0b:96:0a:7b:ee:20: 95:61:e0:11:d1:61:7c:02:68:57:59:d8:8b:e7:74: b0:6b:5f:b6:86:7f:8b:2c:95:47:0b:e5:92:c3:df: 3c:81:4c:08:73:f2:4c:b9:3b:ee:7a:72:8e:de:d7: 22:35:93:1e:aa:f9:48:c5:62:71:da:30:25:e8:7b: 9e:0c:da:b7:24:93:f3:b8:bb:91:f5:d1:f7:c0:d1: cd:96:bb:dc:55:05:f6:6d:fd:12:e6:8c:38:54:65: f0:fe:a9:90:c9:59:86:1f:d5:9d:c3:fe:02:c1:b2: e8:9b:cf:af:8d:68:d0:d6:0d:1f:d8:c7:ff:b1:3f: c4:43:d8:ab:b1:ee:02:ae:b0:4d:78:7b:2d:71:d0: c7:28:39:66:f9:01:d0:85:ed:49:76:9e:40:d7:2b: da:ca:71:85:9a:56:0f:d4:72:83:38:b9:22:68:5f: 14:d1:b6:80:4f:b1:6f:fe:e0:e7:93:5f:c1:52:2e: b6:79:0c:42:d3:73:ee:73:c1:42:b6:1c:08:35:93: 09:1d:5d:05:bb:34:50:e0:22:8f:38:67:83:2b:c9: b2:b0:18:62:31:db:a3:40:94:7f:ed:a0:08:e5:9a: 50:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:2A:AB:53:54:57:58:EA:06:E2:BF:DF:F2:A4:7D:B0:A7:C8:80:87 X509v3 Authority Key Identifier: keyid:CB:16:56:81:1D:08:45:79:93:E8:D8:1B:9F:97:98:DA:D6:16:97:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4357/B84B10EC45A811EC8B140558C4F9AE02/yxZWgR0IRXmT6Ngbn5eY2tYWlxo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 40:90:36:48:5f:ed:f6:b2:00:f6:2b:23:18:54:f4:66:bc:6d: 88:46:85:c8:e6:ba:8b:0a:ad:3b:19:23:b7:59:75:25:bb:e8: fb:3b:50:1d:f7:5c:1b:f4:de:f1:fe:09:9a:0a:8a:71:43:8b: 5f:e0:c3:b6:28:7f:27:e8:0c:6b:05:1a:24:42:4a:79:b6:51: 1e:9f:6c:33:16:90:c9:bc:8b:6d:9e:74:ff:26:f2:10:4a:a1: 06:e9:3e:dc:8d:35:c9:dc:6b:ac:6a:ef:98:26:5e:e3:e0:41: a6:3f:b4:e6:9c:d4:dc:52:63:0b:37:d2:7f:45:69:f2:64:cb: da:7e:f2:1a:d5:17:4a:84:8f:98:b6:de:cf:9d:39:dd:0f:34: 2f:2f:ce:9d:60:a1:fd:b3:f5:c4:66:b1:01:08:0f:76:6c:47: e1:92:ea:33:e7:60:d9:d9:ad:11:5e:3d:74:18:a4:c1:fe:d1: b5:b7:e6:be:25:dd:0d:24:d8:da:25:17:ce:eb:ed:c8:1c:e9: 4c:bc:96:5c:d8:e0:47:75:8a:74:6f:df:24:26:0c:e8:0b:ad: 3c:50:4d:22:7e:69:88:aa:b8:e8:6f:b0:f2:40:95:29:10:69: bc:c4:89:2d:e3:18:b3:4b:81:12:9a:f4:40:e3:8b:a9:5c:36: 82:4e:32:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjQzNTcxMTAvBgNVBAUTKENCMTY1NjgxMUQwODQ1Nzk5M0U4RDgxQjlGOTc5OERB RDYxNjk3MUEwHhcNMjUxMDE5MDE0MDU5WhcNMjUxMDI2MDE0MDU5WjAYMRYwFAYD VQQDEw02OGY0NDFhYi1kMDhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VS5MZO2nHN0Bg89zlQ122AmMJwnmOwLlgp77iCVYeAR0WF8AmhXWdiL53Sw a1+2hn+LLJVHC+WSw988gUwIc/JMuTvuenKO3tciNZMeqvlIxWJx2jAl6HueDNq3 JJPzuLuR9dH3wNHNlrvcVQX2bf0S5ow4VGXw/qmQyVmGH9Wdw/4CwbLom8+vjWjQ 1g0f2Mf/sT/EQ9irse4CrrBNeHstcdDHKDlm+QHQhe1Jdp5A1yvaynGFmlYP1HKD OLkiaF8U0baAT7Fv/uDnk1/BUi62eQxC03Puc8FCthwINZMJHV0FuzRQ4CKPOGeD K8mysBhiMdujQJR/7aAI5ZpQkwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPoqq1NU V1jqBuK/3/KkfbCnyICHMB8GA1UdIwQYMBaAFMsWVoEdCEV5k+jYG5+XmNrWFpca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNDM1Ny9CODRCMTBFQzQ1 QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJYbVQ2TmdibjVlWTJ0WVds eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l4WldnUjBJUlhtVDZOZ2JuNWVZMnRZV2x4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDM1Ny9CODRCMTBFQzQ1QTgxMUVDOEIxNDA1NThDNEY5QUUwMi95eFpXZ1IwSVJY bVQ2TmdibjVlWTJ0WVdseG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBAkDZIX+32sgD2KyMYVPRmvG2IRoXI5rqLCq07GSO3WXUlu+j7O1Ad 91wb9N7x/gmaCopxQ4tf4MO2KH8n6AxrBRokQkp5tlEen2wzFpDJvIttnnT/JvIQ SqEG6T7cjTXJ3Gusau+YJl7j4EGmP7TmnNTcUmMLN9J/RWnyZMvafvIa1RdKhI+Y tt7PnTndDzQvL86dYKH9s/XEZrEBCA92bEfhkuoz52DZ2a0RXj10GKTB/tG1t+a+ Jd0NJNjaJRfO6+3IHOlMvJZc2OBHdYp0b98kJgzoC608UE0ifmmIqrjob7DyQJUp EGm8xIkt4xizS4ESmvRA44upXDaCTjLh -----END CERTIFICATE-----Generated at Sun Oct 19 23:28:58 2025 by rpki-client