$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft File: YRGAfoKKxPmEJpPThhGVLfA9ckc.mft (raw, json) Hash identifier: EZEX72Lz2YKmgjUKlCBnLJRn5Lu1enMjMLQe5Eq0gH8= Subject key identifier: 38:45:E1:0D:2D:0D:0C:EE:26:B6:4E:85:F0:6E:EE:9F:15:56:82:07 Authority key identifier: 61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 Certificate issuer: /CN=A91B5D92/serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Certificate serial: 01AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft Manifest number: 01A0 Signing time: Sun 19 Oct 2025 05:58:38 +0000 Manifest this update: Sun 19 Oct 2025 05:58:37 +0000 Manifest next update: Sun 26 Oct 2025 05:58:37 +0000 Files and hashes: 1: YRGAfoKKxPmEJpPThhGVLfA9ckc.crl (hash: kQDQFSZ1cwLfsPjQuswdZRfJT4fDsAWzgX4UqRXFRk4=) 2: C778D8FA402A11EEAC7DEF72C4F9AE02.roa (hash: V8EYXGGM5ehfMXNVHQoJfhAKwYo57AeE/3ynyZdkMrY=) 3: 3AFA35E04B2E11EEA07FEE34C4F9AE02.roa (hash: N6Bn0tjkAYOIirhCnX+L9qAa4FcrjkrvnPohqveujZw=) 4: FBE34DB8538011EFB6264579C4F9AE02.roa (hash: TcFb5btGGuGcCTENXu84bKs3B+lnqciAGdu0W4Z7mP0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:58:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 431 (0x1af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D92, serialNumber=6111807E828AC4F9842693D38611952DF03D7247 Validity Not Before: Oct 19 05:58:37 2025 GMT Not After : Oct 26 05:58:37 2025 GMT Subject: CN=68f47e0e-d3bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:27:a7:95:cf:22:e3:c8:f4:36:04:bb:7b:94: ba:f8:b1:38:c3:c6:2a:9b:bf:d7:ad:08:d8:95:0d: 31:92:11:33:12:e9:56:31:ae:6f:bf:ef:6b:b7:8e: 80:54:e4:ab:38:a4:ba:c9:a8:a1:51:3a:77:7c:b6: fe:44:87:1a:09:08:c4:48:02:11:ed:96:a2:a1:60: 3d:df:5d:42:d8:8c:52:52:63:a3:77:f9:43:e3:c4: 41:d8:15:41:c9:22:81:46:f0:e0:54:e2:71:67:7d: 9c:c0:05:4e:ce:55:bf:ab:cc:b4:89:82:db:6b:75: 9b:a9:34:4a:e8:59:92:f3:ce:d2:5a:e4:94:44:b9: 09:0a:6f:d3:e9:69:8d:27:64:cb:ae:49:38:c1:2b: 8e:9a:5a:60:93:76:d8:c3:46:51:7d:42:a3:b8:b8: 7f:89:8f:04:46:5e:65:81:2e:a2:1d:57:3e:a4:91: f9:cc:d6:91:01:7c:f3:33:f2:df:05:9c:c9:63:b5: f9:64:3c:c8:9b:49:cf:5c:a9:c9:31:69:ef:74:0f: 99:31:8a:e9:c0:c9:aa:37:48:b3:6a:93:49:47:24: c4:5d:c9:7b:5a:fa:6d:c5:62:94:11:f7:cc:c7:a3: d1:8f:9a:17:13:0f:ad:66:3a:cb:e0:8c:83:09:88: 1e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:45:E1:0D:2D:0D:0C:EE:26:B6:4E:85:F0:6E:EE:9F:15:56:82:07 X509v3 Authority Key Identifier: keyid:61:11:80:7E:82:8A:C4:F9:84:26:93:D3:86:11:95:2D:F0:3D:72:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YRGAfoKKxPmEJpPThhGVLfA9ckc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D92/357798B0402A11EEA7161872C4F9AE02/YRGAfoKKxPmEJpPThhGVLfA9ckc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:0a:7a:ee:c7:21:f8:4c:9e:a0:51:35:50:54:a8:27:99:93: 1f:73:f8:45:c8:8a:69:a7:7a:43:96:e2:0e:16:4f:4f:54:65: db:e4:95:88:3f:b4:37:f1:cb:3f:a6:ae:5b:c5:f7:9f:ad:6c: 5b:f5:67:b8:6e:35:8a:3b:42:50:99:dc:85:b3:94:7c:f5:1d: 34:56:9a:75:52:33:30:da:33:f8:f3:e1:0b:70:e9:a2:9c:87: 03:7f:f8:36:ac:b4:ea:af:43:aa:cf:0d:89:92:07:2e:3f:b1: 3b:54:69:c6:ea:df:8c:34:10:5f:51:5c:de:be:cf:9b:65:b7: a4:fa:ab:5f:5a:17:f7:89:b6:e6:57:46:3a:53:17:0b:e1:7c: a7:65:e1:81:02:b6:97:d7:78:67:18:f9:47:fd:cf:a7:a7:12: 6b:6e:60:0c:9f:38:54:99:ff:92:e0:3a:86:6b:85:50:a0:77: bf:0a:6e:62:aa:87:93:95:ef:c8:30:75:7b:33:a5:1a:a3:cc: 01:9f:40:fe:3d:aa:e5:70:9f:05:5f:06:60:79:70:31:fe:ca: ca:2e:6c:2e:7a:2e:12:f7:de:bb:e1:1e:41:32:c0:fa:2c:09: 89:6d:88:ce:4b:71:00:1f:07:ae:05:e0:72:b7:c5:6e:1c:54: 51:2f:57:8c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEOTIxMTAvBgNVBAUTKDYxMTE4MDdFODI4QUM0Rjk4NDI2OTNEMzg2MTE5NTJE RjAzRDcyNDcwHhcNMjUxMDE5MDU1ODM3WhcNMjUxMDI2MDU1ODM3WjAYMRYwFAYD VQQDEw02OGY0N2UwZS1kM2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSenlc8i48j0NgS7e5S6+LE4w8Yqm7/XrQjYlQ0xkhEzEulWMa5vv+9rt46A VOSrOKS6yaihUTp3fLb+RIcaCQjESAIR7ZaioWA9311C2IxSUmOjd/lD48RB2BVB ySKBRvDgVOJxZ32cwAVOzlW/q8y0iYLba3WbqTRK6FmS887SWuSURLkJCm/T6WmN J2TLrkk4wSuOmlpgk3bYw0ZRfUKjuLh/iY8ERl5lgS6iHVc+pJH5zNaRAXzzM/Lf BZzJY7X5ZDzIm0nPXKnJMWnvdA+ZMYrpwMmqN0izapNJRyTEXcl7WvptxWKUEffM x6PRj5oXEw+tZjrL4IyDCYgekQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDhF4Q0t DQzuJrZOhfBu7p8VVoIHMB8GA1UdIwQYMBaAFGERgH6CisT5hCaT04YRlS3wPXJH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ5Mi8zNTc3OThCMDQw MkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQbUVKcFBUaGhHVkxmQTlj a2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lSR0Fmb0tLeFBtRUpwUFRoaEdWTGZBOWNrYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NUQ5Mi8zNTc3OThCMDQwMkExMUVFQTcxNjE4NzJDNEY5QUUwMi9ZUkdBZm9LS3hQ bUVKcFBUaGhHVkxmQTlja2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCSCnruxyH4TJ6gUTVQVKgnmZMfc/hFyIppp3pDluIOFk9PVGXb5JWI P7Q38cs/pq5bxfefrWxb9We4bjWKO0JQmdyFs5R89R00Vpp1UjMw2jP48+ELcOmi nIcDf/g2rLTqr0Oqzw2JkgcuP7E7VGnG6t+MNBBfUVzevs+bZbek+qtfWhf3ibbm V0Y6UxcL4XynZeGBAraX13hnGPlH/c+npxJrbmAMnzhUmf+S4DqGa4VQoHe/Cm5i qoeTle/IMHV7M6Uao8wBn0D+ParlcJ8FXwZgeXAx/srKLmwuei4S99674R5BMsD6 LAmJbYjOS3EAHweuBeByt8VuHFRRL1eM -----END CERTIFICATE-----Generated at Mon Oct 20 01:46:01 2025 by rpki-client