$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: ANnoiH0JojZl/xqwymM6WBaB8bowM88KJZE1DKBACdo= Subject key identifier: 6B:9D:49:98:FC:62:2D:41:4D:41:ED:B8:36:3C:F5:8D:58:1A:A4:18 Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 018D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 0187 Signing time: Sun 19 Oct 2025 06:13:26 +0000 Manifest this update: Sun 19 Oct 2025 06:13:26 +0000 Manifest next update: Sun 26 Oct 2025 06:13:26 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: jixTY/l2hZGmLh6hIPY5KNuGCJyXtiWYkRWAJ3f6PzQ=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Oct 19 06:13:26 2025 GMT Not After : Oct 26 06:13:26 2025 GMT Subject: CN=68f48186-9fcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:a9:a6:1b:c5:fa:61:da:54:a9:3b:7b:1e:58: 5f:5d:2c:b6:e5:7c:e6:62:9a:46:d2:e0:c2:54:bf: d8:de:34:93:43:8a:66:10:58:1f:42:bb:79:67:86: 11:60:bf:4d:35:a2:4f:3a:2b:98:91:12:9f:f2:c4: 03:81:17:ec:6b:8d:78:26:22:11:71:52:cc:2a:50: b8:88:75:31:95:6f:7a:34:44:8b:a0:f6:d9:00:25: 96:3e:b6:e1:69:d1:78:2d:f2:ad:1d:be:7d:bb:14: 86:77:47:6e:c5:ec:c6:05:b5:ba:05:46:a1:68:83: 2f:4d:40:0c:78:9a:dd:7a:3b:c5:bd:b2:9c:6c:5e: 8b:ea:93:35:a2:ca:38:d8:55:53:39:f5:b2:2a:e7: 63:a4:eb:69:1b:31:8d:bf:1b:09:e5:04:aa:58:b6: 40:f3:9f:ca:da:72:7c:55:9f:ac:2f:16:a1:fa:87: b8:cc:0d:b1:63:ba:df:f9:2c:80:c1:ab:c2:c7:66: e0:c6:14:de:00:a7:85:0f:23:ae:84:79:8e:b5:8a: b3:f9:b0:3f:e3:01:7c:d7:ce:d0:34:4c:db:17:66: ba:44:6f:01:fe:94:72:dc:3c:87:af:5d:a4:e4:c4: c4:7b:f9:76:3f:8d:b5:88:3c:e3:65:e1:7b:7c:d6: 41:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:9D:49:98:FC:62:2D:41:4D:41:ED:B8:36:3C:F5:8D:58:1A:A4:18 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e1:aa:30:e7:34:df:ec:db:d5:93:82:df:7b:8a:0a:d8:43:c2: 25:5a:dc:7b:9d:8a:0c:38:e3:41:b2:aa:0a:29:ff:5a:2e:d3: 09:7d:ae:98:1c:1b:aa:db:0c:ae:28:a2:a5:d0:6b:55:07:60: 19:6c:72:76:4a:ef:bc:58:ab:60:ba:81:6c:b1:3d:ae:e9:9c: aa:39:d3:b7:6a:cd:7c:bb:1d:0a:90:dc:7f:42:0c:ca:e5:26: 3d:4c:82:08:82:80:73:2c:c0:f9:31:be:04:5d:72:66:e6:15: 89:aa:bc:d1:3d:83:01:d2:0b:4d:43:b0:d8:ab:94:d1:c8:0d: c7:fe:72:75:6d:ee:6c:85:10:07:23:dd:71:24:31:dd:9c:43: 5e:4d:27:15:40:85:d4:02:ac:3e:af:88:1b:65:22:69:20:53: a1:52:03:e2:f1:87:a3:f0:8b:11:6d:6a:b8:a9:8e:4b:a3:d6: fe:20:db:72:59:ad:dd:89:94:86:c7:49:87:b1:f5:b5:67:88: 8a:6e:e1:fa:74:5d:ec:6d:72:6d:a0:e9:04:3f:84:bd:af:8f: 00:5b:6a:ba:c5:ae:ba:54:2c:49:59:57:19:fb:a1:16:6f:c9: f4:c4:f0:7f:07:9f:2d:7a:eb:c3:07:af:10:cc:f6:c6:68:20: 79:7f:16:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUxMDE5MDYxMzI2WhcNMjUxMDI2MDYxMzI2WjAYMRYwFAYD VQQDEw02OGY0ODE4Ni05ZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm6mmG8X6YdpUqTt7HlhfXSy25XzmYppG0uDCVL/Y3jSTQ4pmEFgfQrt5Z4YR YL9NNaJPOiuYkRKf8sQDgRfsa414JiIRcVLMKlC4iHUxlW96NESLoPbZACWWPrbh adF4LfKtHb59uxSGd0duxezGBbW6BUahaIMvTUAMeJrdejvFvbKcbF6L6pM1oso4 2FVTOfWyKudjpOtpGzGNvxsJ5QSqWLZA85/K2nJ8VZ+sLxah+oe4zA2xY7rf+SyA wavCx2bgxhTeAKeFDyOuhHmOtYqz+bA/4wF8187QNEzbF2a6RG8B/pRy3DyHr12k 5MTEe/l2P421iDzjZeF7fNZBJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGudSZj8 Yi1BTUHtuDY89Y1YGqQYMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDhqjDnNN/s29WTgt97igrYQ8IlWtx7nYoMOONBsqoKKf9aLtMJfa6Y HBuq2wyuKKKl0GtVB2AZbHJ2Su+8WKtguoFssT2u6ZyqOdO3as18ux0KkNx/QgzK 5SY9TIIIgoBzLMD5Mb4EXXJm5hWJqrzRPYMB0gtNQ7DYq5TRyA3H/nJ1be5shRAH I91xJDHdnENeTScVQIXUAqw+r4gbZSJpIFOhUgPi8Yej8IsRbWq4qY5Lo9b+INty Wa3diZSGx0mHsfW1Z4iKbuH6dF3sbXJtoOkEP4S9r48AW2q6xa66VCxJWVcZ+6EW b8n0xPB/B58teuvDB68QzPbGaCB5fxbg -----END CERTIFICATE-----Generated at Mon Oct 20 18:39:32 2025 by rpki-client