$ rpki-client -vvf rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft File: u99YzWESke9boarLayzE7VCwEVc.mft (raw, json) Hash identifier: BCtz/EQo5d5RIy/iIKuSpGzEVrp70NHiakRDmpYNsZ4= Subject key identifier: 90:81:02:89:57:71:83:0E:34:63:4D:8C:78:30:E8:E9:32:05:08:B2 Authority key identifier: BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 Certificate issuer: /CN=A91D46FD/serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Certificate serial: 0479 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft Manifest number: 0460 Signing time: Sun 19 Oct 2025 02:07:22 +0000 Manifest this update: Sun 19 Oct 2025 02:07:21 +0000 Manifest next update: Sun 26 Oct 2025 02:07:21 +0000 Files and hashes: 1: u99YzWESke9boarLayzE7VCwEVc.crl (hash: kWMLKNmPw7Qnf6jHvcyz7MQvvuuIIRdJqpokLOB3Nes=) 2: 08241A166B1111EE99759439C4F9AE02.roa (hash: ySASg3k7OY7oJkXL5Ws/83THPGLSCp+zucNat555hyg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 02:07:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1145 (0x479) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D46FD, serialNumber=BBDF58CD611291EF5BA1AACB6B2CC4ED50B01157 Validity Not Before: Oct 19 02:07:21 2025 GMT Not After : Oct 26 02:07:21 2025 GMT Subject: CN=68f447d9-c127 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:17:6a:58:37:fb:a0:f5:e4:83:a8:bd:27:44: 65:49:b9:0d:2f:11:35:e8:f9:5d:23:6a:28:1d:a9: 92:1e:c2:cf:8a:de:c6:92:19:cf:4f:c9:8f:8d:f6: 51:ae:a2:dc:c4:e1:56:9b:5f:e5:3f:ac:c9:82:12: 02:c0:7f:49:dd:db:67:e3:9e:8d:1b:9d:24:0a:c5: 9f:99:ad:17:2e:99:fe:4e:e8:db:42:eb:ff:79:7c: 84:73:42:45:7b:23:6a:29:14:4e:6e:b6:5d:5b:b6: e6:b7:bf:32:e7:c7:1e:a7:e9:78:a1:b8:1f:ee:84: 91:ff:1e:4a:dd:44:76:7c:b0:98:93:97:40:d3:35: 3d:39:49:0b:54:d9:b5:c1:09:ac:b7:29:1d:b9:df: 9b:b3:ba:fa:fa:33:21:7a:31:b4:90:5c:6f:b7:8d: e0:e7:b5:ae:27:e2:c0:2a:64:0a:e1:31:10:9f:db: 57:47:08:cf:97:e6:56:19:4a:f4:e8:88:d9:8b:af: e9:36:fc:ff:f0:c6:14:bc:2f:8f:38:0f:d9:82:22: d0:f8:56:32:5b:cb:83:b8:a9:41:b6:44:ce:28:70: 7b:44:38:71:37:db:36:fe:bf:22:da:87:35:d7:44: ca:2b:a2:44:e7:df:51:ca:71:a6:b5:92:1a:16:7b: e4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:81:02:89:57:71:83:0E:34:63:4D:8C:78:30:E8:E9:32:05:08:B2 X509v3 Authority Key Identifier: keyid:BB:DF:58:CD:61:12:91:EF:5B:A1:AA:CB:6B:2C:C4:ED:50:B0:11:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u99YzWESke9boarLayzE7VCwEVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D46FD/59BF214E745111ECA9E9F858C4F9AE02/u99YzWESke9boarLayzE7VCwEVc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:ab:e2:c0:0d:5b:d3:77:22:10:70:72:b9:62:ae:66:71:ff: 92:bb:59:44:87:16:be:99:70:d9:da:e8:ca:89:f0:25:fa:e5: 6d:0e:9d:27:d2:36:a1:30:57:7b:f8:b4:c0:cf:25:69:44:fa: 48:8e:6f:d0:be:10:27:8b:68:16:ae:ff:3d:cb:1b:bf:93:50: ed:b9:16:49:68:65:dc:18:65:4a:da:0b:1a:f3:42:a2:64:ca: 1c:9a:aa:b3:52:4f:8c:fe:50:c2:fa:af:52:6f:4b:51:93:7c: 7c:5b:35:89:c4:e6:19:13:c2:e0:6f:65:37:6c:58:c9:a5:5a: 82:e2:a4:c2:5a:91:f4:ac:c0:d6:79:79:c8:8c:a8:7a:19:ee: ce:6e:22:d3:51:8e:3b:0d:ce:e6:c5:c3:e5:fa:af:de:d9:bb: 73:ea:9c:e6:e0:52:09:dd:47:c8:d6:07:65:65:ce:49:aa:f9: 14:84:e8:eb:00:91:39:bb:97:9b:0c:dc:9f:25:94:d6:96:bf: 5a:1b:da:7f:e9:9a:11:6f:b9:38:3a:f3:43:fc:52:59:1b:05: c6:f4:e3:31:6d:6b:7d:18:1e:52:10:a2:af:30:8e:3d:9d:64: d9:5a:08:47:b1:c6:f9:1a:e8:11:16:75:74:ed:62:a7:67:8a: 27:66:91:00 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBHkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQ2RkQxMTAvBgNVBAUTKEJCREY1OENENjExMjkxRUY1QkExQUFDQjZCMkNDNEVE NTBCMDExNTcwHhcNMjUxMDE5MDIwNzIxWhcNMjUxMDI2MDIwNzIxWjAYMRYwFAYD VQQDEw02OGY0NDdkOS1jMTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBdqWDf7oPXkg6i9J0RlSbkNLxE16PldI2ooHamSHsLPit7GkhnPT8mPjfZR rqLcxOFWm1/lP6zJghICwH9J3dtn456NG50kCsWfma0XLpn+TujbQuv/eXyEc0JF eyNqKRRObrZdW7bmt78y58cep+l4obgf7oSR/x5K3UR2fLCYk5dA0zU9OUkLVNm1 wQmstykdud+bs7r6+jMhejG0kFxvt43g57WuJ+LAKmQK4TEQn9tXRwjPl+ZWGUr0 6IjZi6/pNvz/8MYUvC+POA/ZgiLQ+FYyW8uDuKlBtkTOKHB7RDhxN9s2/r8i2oc1 10TKK6JE599RynGmtZIaFnvk6wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJCBAolX cYMONGNNjHgw6OkyBQiyMB8GA1UdIwQYMBaAFLvfWM1hEpHvW6Gqy2ssxO1QsBFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDZGRC81OUJGMjE0RTc0 NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tlOWJvYXJMYXl6RTdWQ3dF VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U5OVl6V0VTa2U5Ym9hckxheXpFN1ZDd0VWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDZGRC81OUJGMjE0RTc0NTExMUVDQTlFOUY4NThDNEY5QUUwMi91OTlZeldFU2tl OWJvYXJMYXl6RTdWQ3dFVmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8q+LADVvTdyIQcHK5Yq5mcf+Su1lEhxa+mXDZ2ujKifAl+uVtDp0n 0jahMFd7+LTAzyVpRPpIjm/QvhAni2gWrv89yxu/k1DtuRZJaGXcGGVK2gsa80Ki ZMocmqqzUk+M/lDC+q9Sb0tRk3x8WzWJxOYZE8Lgb2U3bFjJpVqC4qTCWpH0rMDW eXnIjKh6Ge7ObiLTUY47Dc7mxcPl+q/e2btz6pzm4FIJ3UfI1gdlZc5JqvkUhOjr AJE5u5ebDNyfJZTWlr9aG9p/6ZoRb7k4OvND/FJZGwXG9OMxbWt9GB5SEKKvMI49 nWTZWghHscb5GugRFnV07WKnZ4onZpEA -----END CERTIFICATE-----Generated at Mon Oct 20 17:54:15 2025 by rpki-client