$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft File: ysNNxbjd0zsX7HVcldRdD3YlD6g.mft (raw, json) Hash identifier: pAs8c1wfWdaU7f+Z0sv/mgY/Xdti4iiAP7GkFs5oXbQ= Subject key identifier: 26:7A:5B:F8:CB:87:08:51:5A:74:FB:43:C5:7D:87:88:A2:56:58:4F Authority key identifier: CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 Certificate issuer: /CN=A91C9B39/serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Certificate serial: 021A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft Manifest number: 0216 Signing time: Sun 19 Oct 2025 04:28:55 +0000 Manifest this update: Sun 19 Oct 2025 04:28:55 +0000 Manifest next update: Sun 26 Oct 2025 04:28:55 +0000 Files and hashes: 1: ysNNxbjd0zsX7HVcldRdD3YlD6g.crl (hash: 3cuOKC/wptpow4R7AzM+ihhMjo7h/RN5EYnObc9pv+I=) 2: E21DEF607B5E11ED98247D60C4F9AE02.roa (hash: sHBWYK9XVEHZv+A/fyqhHjEvweQybzBfh5wreKa0iZw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:28:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B39, serialNumber=CAC34DC5B8DDD33B17EC755C95D45D0F76250FA8 Validity Not Before: Oct 19 04:28:55 2025 GMT Not After : Oct 26 04:28:55 2025 GMT Subject: CN=68f46907-caa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:14:ef:b1:16:c7:59:2c:d1:a0:62:c1:53:e4: cc:ec:44:01:73:8d:45:59:80:f7:16:5a:16:33:28: 17:ae:ac:f1:55:8d:bc:b4:06:a7:74:96:f5:22:28: d1:52:e7:85:09:81:3c:11:e1:d5:c6:26:0f:57:bd: bf:3c:5b:d1:f2:88:66:d2:1f:97:36:fe:58:a1:e2: f5:6b:dd:62:22:c2:a4:45:95:6a:05:4d:cf:3c:30: 6a:88:54:79:47:43:88:68:5c:84:1c:b4:ef:eb:fd: 53:50:03:61:1b:b5:01:8c:17:06:91:b1:44:d7:7c: e9:21:a7:84:78:7c:e4:c3:e2:90:33:a1:1b:e8:f2: 81:e2:a2:5b:4c:8f:aa:5a:c4:36:41:52:c2:07:0d: d0:77:3b:9d:c1:d3:35:12:53:72:e1:18:b5:89:0c: dc:ba:d7:c6:a4:7e:9c:b6:a2:ee:35:8b:6d:5e:3d: dd:2c:85:64:fb:0e:72:ef:9c:08:71:48:40:c1:27: be:9e:a4:03:67:77:ed:ce:b1:4b:da:6b:8a:7e:ab: 2a:97:66:a2:a1:c3:18:64:cf:04:f3:79:a7:37:02: d2:e3:99:40:2b:3a:86:c7:59:b9:06:b3:43:a7:b5: 93:a4:75:b3:03:55:55:88:be:8d:35:b8:0a:4b:b8: ed:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7A:5B:F8:CB:87:08:51:5A:74:FB:43:C5:7D:87:88:A2:56:58:4F X509v3 Authority Key Identifier: keyid:CA:C3:4D:C5:B8:DD:D3:3B:17:EC:75:5C:95:D4:5D:0F:76:25:0F:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ysNNxbjd0zsX7HVcldRdD3YlD6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B39/B615D0BC7B5A11EDA5E3CA66C4F9AE02/ysNNxbjd0zsX7HVcldRdD3YlD6g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:0f:22:6d:92:b5:92:bb:ab:fe:3e:dd:40:af:6e:95:25:5d: 2f:31:6d:e8:f5:c7:24:4b:50:ee:f1:f1:6e:b9:2b:45:19:38: 48:4a:f1:12:b3:3c:56:08:20:dc:46:6b:f1:6a:d7:87:11:0d: 2a:26:cb:4d:5e:2e:1c:c6:0b:c6:21:a8:b3:a3:61:63:b5:4f: 45:8d:53:3c:2b:65:c5:5f:b1:ee:dc:e8:e2:a7:a5:a7:b9:41: db:4b:35:af:f1:bf:2a:20:0d:1e:1a:5b:29:ac:42:0c:4a:2b: 2f:99:35:bb:d0:64:0c:22:a7:43:94:d7:f3:b0:d0:57:07:9e: ff:d8:54:ad:8c:30:d1:5b:20:4b:5d:b4:5c:a8:f3:d6:f4:05: 35:a8:6a:f0:bc:0e:5c:40:4a:1b:32:bc:ce:79:76:f2:e0:b8: 5a:2f:bc:04:8f:61:43:be:02:cf:44:5e:bd:e5:70:42:7f:92: 06:a6:95:08:c2:d5:79:51:1a:f1:2f:79:9b:30:be:8d:8b:46: 3b:56:bf:1f:ac:91:86:ff:c7:42:59:73:6b:0d:84:72:1a:b8: 4b:0c:29:d6:96:1b:35:43:21:63:36:fd:96:29:6a:c5:4b:45: a7:87:0f:df:47:a3:1e:98:da:99:16:23:a7:6f:61:64:96:de: 2b:90:9d:bf -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlCMzkxMTAvBgNVBAUTKENBQzM0REM1QjhEREQzM0IxN0VDNzU1Qzk1RDQ1RDBG NzYyNTBGQTgwHhcNMjUxMDE5MDQyODU1WhcNMjUxMDI2MDQyODU1WjAYMRYwFAYD VQQDEw02OGY0NjkwNy1jYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxTvsRbHWSzRoGLBU+TM7EQBc41FWYD3FloWMygXrqzxVY28tAandJb1IijR UueFCYE8EeHVxiYPV72/PFvR8ohm0h+XNv5YoeL1a91iIsKkRZVqBU3PPDBqiFR5 R0OIaFyEHLTv6/1TUANhG7UBjBcGkbFE13zpIaeEeHzkw+KQM6Eb6PKB4qJbTI+q WsQ2QVLCBw3QdzudwdM1ElNy4Ri1iQzcutfGpH6ctqLuNYttXj3dLIVk+w5y75wI cUhAwSe+nqQDZ3ftzrFL2muKfqsql2aiocMYZM8E83mnNwLS45lAKzqGx1m5BrND p7WTpHWzA1VViL6NNbgKS7jtfwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCZ6W/jL hwhRWnT7Q8V9h4iiVlhPMB8GA1UdIwQYMBaAFMrDTcW43dM7F+x1XJXUXQ92JQ+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUIzOS9CNjE1RDBCQzdC NUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6c1g3SFZjbGRSZEQzWWxE NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lzTk54YmpkMHpzWDdIVmNsZFJkRDNZbEQ2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzOS9CNjE1RDBCQzdCNUExMUVEQTVFM0NBNjZDNEY5QUUwMi95c05OeGJqZDB6 c1g3SFZjbGRSZEQzWWxENmcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAfDyJtkrWSu6v+Pt1Ar26VJV0vMW3o9cckS1Du8fFuuStFGThISvES szxWCCDcRmvxateHEQ0qJstNXi4cxgvGIaizo2FjtU9FjVM8K2XFX7Hu3Ojip6Wn uUHbSzWv8b8qIA0eGlsprEIMSisvmTW70GQMIqdDlNfzsNBXB57/2FStjDDRWyBL XbRcqPPW9AU1qGrwvA5cQEobMrzOeXby4LhaL7wEj2FDvgLPRF695XBCf5IGppUI wtV5URrxL3mbML6Ni0Y7Vr8frJGG/8dCWXNrDYRyGrhLDCnWlhs1QyFjNv2WKWrF S0Wnhw/fR6MemNqZFiOnb2Fklt4rkJ2/ -----END CERTIFICATE-----Generated at Mon Oct 20 08:48:51 2025 by rpki-client