$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: osUaFEDfLj0EwOMpqaAB3QJHNRFWQiqwDsdyCB8iWSI= Subject key identifier: 6E:2D:64:FD:E2:09:FF:F8:E4:D1:5A:60:F0:8B:24:C6:6B:50:8B:A2 Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: C8 Signing time: Sun 19 Oct 2025 08:52:28 +0000 Manifest this update: Sun 19 Oct 2025 08:52:27 +0000 Manifest next update: Sun 26 Oct 2025 08:52:27 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: x0gJk+uK2aBvYvLwF2XRqrjySHfQsDXnGP+CRj7jLVE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 200 (0xc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Oct 19 08:52:27 2025 GMT Not After : Oct 26 08:52:27 2025 GMT Subject: CN=68f4a6cc-105f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:45:e6:68:45:c7:22:33:63:f8:b2:ff:ac:fe: e2:b7:0e:fd:20:bd:34:a8:d6:76:02:08:fa:66:80: 1c:a6:d1:53:78:05:db:eb:92:31:e8:d5:5f:13:9b: c2:13:39:bb:1d:9e:b0:e8:79:9a:4d:33:d8:d4:09: d4:d6:af:7b:17:7a:2f:32:73:4a:05:5f:11:7d:f1: e5:44:3d:fa:2a:4c:2e:2b:de:f9:f3:97:4f:87:50: 1a:d9:1b:4f:90:a8:d7:8d:83:c8:9d:55:84:10:62: 5b:ef:e7:3b:93:bf:27:3c:56:a7:2c:07:e1:96:b4: 51:80:0b:91:b3:28:bd:4a:d8:44:f7:d5:26:0a:00: 7b:fc:5e:30:6e:62:18:9b:81:8a:48:ae:9d:c1:b3: 0a:77:36:f1:03:fa:fe:c2:68:2f:0c:65:4c:07:8d: 37:34:cf:e5:79:73:aa:42:bf:2f:26:6f:ae:ce:79: 78:f4:2c:c2:1b:5c:78:df:75:37:a4:f1:a0:d6:5a: ff:5a:a2:9a:3c:9c:6a:99:d2:1e:9e:1d:41:64:61: fd:03:b2:0e:3e:7f:8d:2e:0d:03:cf:28:9d:f2:0e: d3:f0:31:3f:c5:d6:79:76:7f:85:e1:a2:5c:92:23: 1f:83:5c:ff:93:e3:2d:e6:94:5e:b2:b8:07:51:ec: c5:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:2D:64:FD:E2:09:FF:F8:E4:D1:5A:60:F0:8B:24:C6:6B:50:8B:A2 X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:d4:b5:f3:23:2a:08:65:4c:d0:5a:89:06:f2:93:a1:6c:01: 1d:8d:c1:ca:fa:17:9e:03:4d:58:de:2e:0f:fd:8e:eb:8c:de: cd:9e:77:26:5f:67:a6:36:b4:94:5b:55:da:b9:bf:24:db:7c: cf:9a:3e:90:34:e5:f4:c6:14:df:d8:b6:59:2b:74:07:5a:10: 55:b0:43:86:ed:41:1c:35:83:25:e1:01:e1:d6:27:b9:c7:2d: b8:42:c1:d8:6c:c8:e5:f4:68:3d:80:f1:36:b1:02:db:1f:3b: 7e:d2:13:99:ab:37:d6:da:13:be:2c:fb:e2:ef:84:6d:19:84: e2:cd:19:1b:86:73:c3:66:a3:5a:89:e9:af:f5:f6:75:26:08: bf:1e:2d:7d:16:4d:11:96:c6:ed:19:51:51:4d:04:70:84:2f: 66:f8:91:14:7e:7b:c5:a9:24:74:1e:bf:31:a5:28:81:f4:fe: a3:db:9a:fb:f3:00:33:b1:9c:d3:58:b7:18:e8:e2:95:f1:33: 2a:d8:2c:40:39:b9:11:2d:77:f8:64:7b:9e:5a:60:09:b6:28: 46:64:98:be:9b:61:88:be:66:dc:5e:8a:8c:6d:6a:a9:af:ec: db:b2:ce:46:c8:4e:98:2a:0f:81:6e:92:83:5e:63:50:d9:df: 8f:7f:4f:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUxMDE5MDg1MjI3WhcNMjUxMDI2MDg1MjI3WjAYMRYwFAYD VQQDEw02OGY0YTZjYy0xMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoEXmaEXHIjNj+LL/rP7itw79IL00qNZ2Agj6ZoAcptFTeAXb65Ix6NVfE5vC Ezm7HZ6w6HmaTTPY1AnU1q97F3ovMnNKBV8RffHlRD36KkwuK97585dPh1Aa2RtP kKjXjYPInVWEEGJb7+c7k78nPFanLAfhlrRRgAuRsyi9SthE99UmCgB7/F4wbmIY m4GKSK6dwbMKdzbxA/r+wmgvDGVMB403NM/leXOqQr8vJm+uznl49CzCG1x433U3 pPGg1lr/WqKaPJxqmdIenh1BZGH9A7IOPn+NLg0Dzyid8g7T8DE/xdZ5dn+F4aJc kiMfg1z/k+Mt5pResrgHUezFlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFG4tZP3i Cf/45NFaYPCLJMZrUIuiMB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCl1LXzIyoIZUzQWokG8pOhbAEdjcHK+heeA01Y3i4P/Y7rjN7Nnncm X2emNrSUW1Xaub8k23zPmj6QNOX0xhTf2LZZK3QHWhBVsEOG7UEcNYMl4QHh1ie5 xy24QsHYbMjl9Gg9gPE2sQLbHzt+0hOZqzfW2hO+LPvi74RtGYTizRkbhnPDZqNa iemv9fZ1Jgi/Hi19Fk0RlsbtGVFRTQRwhC9m+JEUfnvFqSR0Hr8xpSiB9P6j25r7 8wAzsZzTWLcY6OKV8TMq2CxAObkRLXf4ZHueWmAJtihGZJi+m2GIvmbcXoqMbWqp r+zbss5GyE6YKg+BbpKDXmNQ2d+Pf0+H -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:26 2025 by rpki-client