$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft File: yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft (raw, json) Hash identifier: zutl5FQo+RXHl9zHCRnfvKYW/aAkR5QGDrXW9P4u3mk= Subject key identifier: 1C:D8:48:2A:C9:D2:6F:65:5A:E7:1B:E1:68:46:6A:9F:83:4B:0C:6C Authority key identifier: C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 Certificate issuer: /CN=A91C1710/serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft Manifest number: 080E Signing time: Sun 19 Oct 2025 02:15:07 +0000 Manifest this update: Sun 19 Oct 2025 02:15:06 +0000 Manifest next update: Sun 26 Oct 2025 02:15:06 +0000 Files and hashes: 1: yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl (hash: I0stVVwQJ5FpLn6g861hkCQHQBbjhzqTkEF0x/xNlMo=) 2: 36EA74DAB55C11EF9EF5381AC4F9AE02.roa (hash: L0ogohbd+XG2Rt92PSkXg3Zj7mjIKhleupD8sB/ULt8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:15:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1710, serialNumber=C93753A9AAA2A86E56CA4EA0C3FF857C30E34228 Validity Not Before: Oct 19 02:15:06 2025 GMT Not After : Oct 26 02:15:06 2025 GMT Subject: CN=68f449ab-81d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:57:0c:f5:7a:30:91:30:0a:18:68:45:5a:25: e2:61:f9:a3:4a:32:aa:94:c2:c9:83:d2:0e:a9:21: 95:fa:ee:7d:e3:e1:98:52:fb:50:7a:49:0e:e1:5b: b4:5f:4a:c1:b2:fc:78:3f:1f:b3:a8:9f:43:3e:08: 94:c0:ee:f6:0c:c3:27:42:e2:0c:f3:24:2c:0c:45: 3f:ff:11:18:8e:26:b5:04:82:1b:03:05:79:0e:98: c2:54:12:44:8a:c5:b2:27:e2:36:41:62:80:ef:0b: c3:bb:4f:cb:c9:cb:53:2e:66:cd:90:7d:7a:d8:e0: c1:28:4d:a2:e8:3a:57:a5:21:99:26:2a:78:6c:a9: 85:88:73:6f:ef:31:71:98:d4:ae:01:2e:50:c7:95: 90:f3:40:c0:ae:32:2f:b3:b9:d2:70:44:ab:a2:5a: 3b:b5:ff:c4:7c:61:2a:21:96:6e:86:92:b2:5b:2b: 2c:06:07:5c:c3:40:bb:e0:ac:28:90:7c:45:b6:64: 53:7d:18:95:02:1d:9f:9f:eb:44:53:16:a4:b2:fa: c8:42:04:c8:c4:6d:e3:51:a7:1d:79:bf:29:6e:68: da:47:27:12:9c:bd:3c:b8:08:98:42:20:01:2b:27: 2a:81:95:81:02:c1:2f:d7:59:81:be:4c:e1:d3:31: 4b:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:D8:48:2A:C9:D2:6F:65:5A:E7:1B:E1:68:46:6A:9F:83:4B:0C:6C X509v3 Authority Key Identifier: keyid:C9:37:53:A9:AA:A2:A8:6E:56:CA:4E:A0:C3:FF:85:7C:30:E3:42:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yTdTqaqiqG5Wyk6gw_-FfDDjQig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1710/18229A86826B11ECA11BA52BC4F9AE02/yTdTqaqiqG5Wyk6gw_-FfDDjQig.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 17:60:ad:0c:ad:5d:cd:92:71:23:1d:b6:0d:b0:53:8e:6c:fa: 83:31:97:d9:e9:b8:0c:b1:11:6b:2a:7e:28:e8:9f:ab:58:83: 80:5b:06:0e:f3:d1:74:5f:92:1a:89:fe:eb:88:01:ed:34:c1: ab:77:85:e4:22:69:ef:fd:ca:f8:79:25:0d:4a:dc:0c:42:01: 9b:c7:71:53:0c:21:2f:67:2c:66:79:7c:86:bf:22:6b:5c:0f: ee:76:43:89:2a:f5:5d:ea:de:88:1b:36:6f:64:bd:14:c6:40: 37:51:ce:36:15:0f:81:9c:d1:f0:1e:6f:e9:25:7d:92:60:e9: c9:64:b3:0b:05:54:88:64:08:bb:e3:83:c3:39:d3:fb:66:de: 7e:cf:27:d7:1a:33:83:64:6f:79:2d:f9:f2:6b:c4:e7:ba:1d: 67:0b:04:74:96:7f:38:19:9c:f8:1f:73:85:a7:d0:3e:c0:51: 6b:d6:dc:4a:a8:05:f0:de:a8:40:b0:cd:57:98:2e:e6:cf:71: ec:e1:67:13:8a:50:f0:c3:3d:1c:0c:19:95:f4:67:c6:96:c0: fd:09:2f:76:67:b6:d9:28:4d:bd:9d:51:a4:8d:26:dc:97:8f: c3:ef:4c:b7:14:de:14:29:7e:23:40:16:11:35:f8:a1:68:b7: 58:e0:cc:2b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3MTAxMTAvBgNVBAUTKEM5Mzc1M0E5QUFBMkE4NkU1NkNBNEVBMEMzRkY4NTdD MzBFMzQyMjgwHhcNMjUxMDE5MDIxNTA2WhcNMjUxMDI2MDIxNTA2WjAYMRYwFAYD VQQDEw02OGY0NDlhYi04MWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVcM9XowkTAKGGhFWiXiYfmjSjKqlMLJg9IOqSGV+u594+GYUvtQekkO4Vu0 X0rBsvx4Px+zqJ9DPgiUwO72DMMnQuIM8yQsDEU//xEYjia1BIIbAwV5DpjCVBJE isWyJ+I2QWKA7wvDu0/LyctTLmbNkH162ODBKE2i6DpXpSGZJip4bKmFiHNv7zFx mNSuAS5Qx5WQ80DArjIvs7nScESrolo7tf/EfGEqIZZuhpKyWyssBgdcw0C74Kwo kHxFtmRTfRiVAh2fn+tEUxaksvrIQgTIxG3jUacdeb8pbmjaRycSnL08uAiYQiAB KycqgZWBAsEv11mBvkzh0zFLtwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBzYSCrJ 0m9lWucb4WhGap+DSwxsMB8GA1UdIwQYMBaAFMk3U6mqoqhuVspOoMP/hXww40Io MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTcxMC8xODIyOUE4Njgy NkIxMUVDQTExQkE1MkJDNEY5QUUwMi95VGRUcWFxaXFHNVd5azZnd18tRmZERGpR aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lUZFRxYXFpcUc1V3lrNmd3Xy1GZkREalFpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTcxMC8xODIyOUE4NjgyNkIxMUVDQTExQkE1MkJDNEY5QUUwMi95VGRUcWFxaXFH NVd5azZnd18tRmZERGpRaWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAXYK0MrV3NknEjHbYNsFOObPqDMZfZ6bgMsRFrKn4o6J+rWIOAWwYO 89F0X5Iaif7riAHtNMGrd4XkImnv/cr4eSUNStwMQgGbx3FTDCEvZyxmeXyGvyJr XA/udkOJKvVd6t6IGzZvZL0UxkA3Uc42FQ+BnNHwHm/pJX2SYOnJZLMLBVSIZAi7 44PDOdP7Zt5+zyfXGjODZG95Lfnya8Tnuh1nCwR0ln84GZz4H3OFp9A+wFFr1txK qAXw3qhAsM1XmC7mz3Hs4WcTilDwwz0cDBmV9GfGlsD9CS92Z7bZKE29nVGkjSbc l4/D70y3FN4UKX4jQBYRNfihaLdY4Mwr -----END CERTIFICATE-----Generated at Mon Oct 20 12:44:43 2025 by rpki-client