$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft File: y1McHsaSJfDcrkTOyl41mAzpwPI.mft (raw, json) Hash identifier: 2evyDQQfwn9iYIMUtQFm3moQFdUY99L1+kTG8beiSCg= Subject key identifier: 70:A0:78:9B:E8:14:4F:5F:2A:AB:9B:81:8D:E3:4E:40:89:B4:00:BF Authority key identifier: CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 Certificate issuer: /CN=A91CFFCB/serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft Manifest number: 48 Signing time: Sun 19 Oct 2025 10:48:55 +0000 Manifest this update: Sun 19 Oct 2025 10:48:54 +0000 Manifest next update: Sun 26 Oct 2025 10:48:54 +0000 Files and hashes: 1: y1McHsaSJfDcrkTOyl41mAzpwPI.crl (hash: 3PCwyPO/8PbYcHbuO02IWikkQvK737sEw9yz4QmVdko=) 2: BB8F3118497B11F096DCA14EC4F9AE02.roa (hash: n0pGyYXueEy9F7Jw89IAbICySxf38MqDCZugETeFEBQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFCB, serialNumber=CB531C1EC69225F0DCAE44CECA5E35980CE9C0F2 Validity Not Before: Oct 19 10:48:54 2025 GMT Not After : Oct 26 10:48:54 2025 GMT Subject: CN=68f4c216-b45f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ce:0c:31:14:d3:cc:46:10:ae:e2:5c:39:6b: 42:3f:78:c2:26:9a:ab:03:68:b7:b5:e1:f1:cd:55: 11:24:3e:fd:b7:0e:93:d0:fd:f9:d0:a6:4d:6a:ae: ac:5f:3a:a9:42:35:87:ac:6f:85:1c:90:5b:d9:46: 30:60:ed:da:70:03:6c:42:f1:4b:7c:ae:ba:53:aa: a9:e5:61:d4:da:44:b2:21:20:e9:15:05:01:f0:c0: bf:e1:78:9b:c0:de:10:b6:10:5e:41:b6:a7:9c:20: f0:dc:17:8b:55:e4:07:59:ae:69:46:f8:78:e5:dd: 8e:01:b4:74:e3:39:3d:f8:2f:00:42:9b:46:f0:79: f5:2b:ff:e7:01:a1:36:02:c0:4d:71:7b:c9:48:33: ef:f8:25:e2:a1:87:f1:44:dc:09:91:f8:17:72:96: 5b:3e:30:59:75:0d:e5:c4:78:51:35:51:83:2d:19: ed:37:c3:a6:64:de:af:ae:fe:39:8c:f2:22:9e:20: 4c:7d:e3:74:99:c1:1b:94:95:0f:49:67:06:e6:36: 22:ac:e6:42:8a:58:5d:66:6a:c7:b8:cb:6d:a2:59: a7:78:16:8d:d8:bd:91:42:1d:a8:a4:63:1e:3e:94: a6:49:f8:0c:a3:58:ff:5c:23:b3:1b:33:ed:09:a0: 7d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A0:78:9B:E8:14:4F:5F:2A:AB:9B:81:8D:E3:4E:40:89:B4:00:BF X509v3 Authority Key Identifier: keyid:CB:53:1C:1E:C6:92:25:F0:DC:AE:44:CE:CA:5E:35:98:0C:E9:C0:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1McHsaSJfDcrkTOyl41mAzpwPI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFCB/F5DB7A16420511F0BF7A8711C4F9AE02/y1McHsaSJfDcrkTOyl41mAzpwPI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 22:c3:fb:d8:7a:09:91:11:f8:9a:c2:07:e3:f7:d3:57:03:98: 4d:04:39:ed:ba:ef:fc:9e:62:3a:a9:fe:93:07:de:b4:39:2a: 73:6a:11:be:d4:f8:e1:5c:71:21:23:ec:00:b4:7a:5a:74:72: dc:43:40:50:a9:03:0c:13:b7:d9:72:4d:d5:ab:6d:6e:9d:c4: ab:ab:d5:ec:f2:ef:d5:c9:9b:a2:04:86:0c:5f:9f:d7:ea:9b: 29:62:4a:9b:b2:b7:93:a9:2d:1e:6f:4d:c6:fa:bc:c3:fc:3f: 77:ea:74:0d:1a:9c:34:51:90:9e:37:c8:1b:42:43:2e:ca:f8: 9b:b5:cc:39:f7:8c:a6:e9:e6:97:bc:35:70:1d:e0:93:45:32: 3d:c0:fb:e4:9d:bf:fe:13:a8:84:43:13:87:16:5b:09:67:c2: 4a:d7:00:aa:48:4c:cd:a6:a6:a6:6f:8f:ae:f4:ba:0f:ec:49: 71:4b:be:75:92:ea:61:dd:28:97:ba:af:46:d2:75:f1:aa:0d: d5:d4:ea:91:a1:2b:62:12:fd:97:61:25:f2:4c:42:1e:54:82: 8b:21:be:39:5f:dd:6b:c3:63:47:da:cd:1d:d4:7f:bd:d0:34: 89:38:91:c2:04:c4:a9:db:b1:85:e7:89:73:e6:5f:36:26:b0: 00:64:86:86 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkZDQjExMC8GA1UEBRMoQ0I1MzFDMUVDNjkyMjVGMERDQUU0NENFQ0E1RTM1OTgw Q0U5QzBGMjAeFw0yNTEwMTkxMDQ4NTRaFw0yNTEwMjYxMDQ4NTRaMBgxFjAUBgNV BAMTDTY4ZjRjMjE2LWI0NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzzgwxFNPMRhCu4lw5a0I/eMImmqsDaLe14fHNVREkPv23DpPQ/fnQpk1qrqxf OqlCNYesb4UckFvZRjBg7dpwA2xC8Ut8rrpTqqnlYdTaRLIhIOkVBQHwwL/heJvA 3hC2EF5BtqecIPDcF4tV5AdZrmlG+Hjl3Y4BtHTjOT34LwBCm0bwefUr/+cBoTYC wE1xe8lIM+/4JeKhh/FE3AmR+Bdylls+MFl1DeXEeFE1UYMtGe03w6Zk3q+u/jmM 8iKeIEx943SZwRuUlQ9JZwbmNiKs5kKKWF1mase4y22iWad4Fo3YvZFCHaikYx4+ lKZJ+AyjWP9cI7MbM+0JoH0RAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUcKB4m+gU T18qq5uBjeNOQIm0AL8wHwYDVR0jBBgwFoAUy1McHsaSJfDcrkTOyl41mAzpwPIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGRkNCL0Y1REI3QTE2NDIw NTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZEY3JrVE95bDQxbUF6cHdQ SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTFNY0hzYVNKZkRjcmtUT3lsNDFtQXpwd1BJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNG RkNCL0Y1REI3QTE2NDIwNTExRjBCRjdBODcxMUM0RjlBRTAyL3kxTWNIc2FTSmZE Y3JrVE95bDQxbUF6cHdQSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACLD+9h6CZER+JrCB+P301cDmE0EOe267/yeYjqp/pMH3rQ5KnNqEb7U +OFccSEj7AC0elp0ctxDQFCpAwwTt9lyTdWrbW6dxKur1ezy79XJm6IEhgxfn9fq myliSpuyt5OpLR5vTcb6vMP8P3fqdA0anDRRkJ43yBtCQy7K+Ju1zDn3jKbp5pe8 NXAd4JNFMj3A++Sdv/4TqIRDE4cWWwlnwkrXAKpITM2mpqZvj670ug/sSXFLvnWS 6mHdKJe6r0bSdfGqDdXU6pGhK2IS/ZdhJfJMQh5Ugoshvjlf3WvDY0fazR3Uf73Q NIk4kcIExKnbsYXniXPmXzYmsABkhoY= -----END CERTIFICATE-----Generated at Mon Oct 20 06:49:52 2025 by rpki-client