$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: AiMchtJF4qoBEGR6Bm9Nl/TUCBIg0Z6jjD88QOXHS3s= Subject key identifier: D9:71:71:5C:6D:24:12:52:2A:3E:B4:91:E6:66:BA:1B:72:A8:43:EE Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F61 Signing time: Sat 18 Oct 2025 18:10:40 +0000 Manifest this update: Sat 18 Oct 2025 18:10:39 +0000 Manifest next update: Sat 25 Oct 2025 18:10:39 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: Y1lhZD0eNru4hG61eM8Dssw+ODSVFjhDMtYFyJoLuHY=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:10:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3946 (0xf6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Oct 18 18:10:39 2025 GMT Not After : Oct 25 18:10:39 2025 GMT Subject: CN=68f3d81f-06cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:04:93:d7:2c:92:91:c5:e4:b0:61:b5:7b:84: 4f:82:b8:3b:81:f3:02:dc:9b:c6:1e:b4:ac:14:17: d9:80:d5:27:49:37:81:4a:8d:c0:ba:3c:24:cc:2f: 37:a9:53:ab:02:75:8d:54:4f:f9:ad:3d:5b:20:35: d8:01:d3:b8:ef:3e:0a:b0:9c:d3:a3:88:80:c8:d1: af:11:96:4f:a4:04:68:98:44:2f:8b:8f:f8:29:18: 1b:be:af:b2:9a:c8:1f:25:01:65:39:6a:76:14:23: 8b:b5:55:f2:87:88:07:35:1f:9f:5b:3d:c5:bb:07: 32:f4:84:08:b6:b7:82:1c:ab:c6:7d:30:81:8d:f7: 7f:f0:c4:a6:1a:33:6b:c4:4d:bb:f6:0c:1a:d6:a5: 2c:3d:d9:bf:b5:31:57:ab:5f:73:6d:17:7a:98:3a: 20:66:cb:40:cf:07:6b:54:e2:3f:f8:a4:4c:a8:c0: 84:3b:95:13:6a:d1:fd:95:c2:a6:83:70:31:a5:3a: db:63:9b:02:2b:64:05:82:65:30:e0:53:ed:17:f7: 72:68:6b:53:ba:45:45:c3:39:90:af:4a:f6:e3:23: 8a:53:0f:0e:d1:1c:b6:15:ba:e5:a9:f4:2c:81:ca: b5:36:5d:5e:87:cb:b0:4a:56:be:52:2f:50:14:91: f2:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:71:71:5C:6D:24:12:52:2A:3E:B4:91:E6:66:BA:1B:72:A8:43:EE X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:67:1f:b3:1a:f1:8e:26:ad:02:bc:8e:3c:55:6f:dd:8c:33: ac:41:26:59:ab:e9:3d:79:83:d6:b0:53:18:c9:f2:d5:08:a0: a3:7f:1e:52:17:b9:b3:cc:ed:4e:b7:d5:b9:3b:a0:b9:7b:7c: 35:2e:0a:d6:d2:29:34:ce:15:02:93:f0:a4:db:c7:cc:41:5f: f4:fe:ba:de:92:0e:c5:2f:32:4f:97:3b:4e:94:d8:db:27:b0: 03:86:bd:08:12:d8:9e:23:5b:36:d9:0a:64:94:0c:97:87:ad: 65:67:27:b4:f3:bd:73:2d:32:18:00:4e:85:0c:3a:5a:1e:56: 95:f4:fd:27:d4:86:5f:b0:80:3a:44:47:4c:38:32:0b:d3:20: 4c:69:9f:54:e3:9d:a0:2d:cf:b9:81:af:a5:a5:2e:81:3c:e3: 0f:29:33:ff:c0:0d:cc:62:56:28:87:ed:75:8e:b3:3d:7a:3c: 30:ef:69:56:90:a7:51:44:5d:b5:3c:22:47:31:02:42:c1:0b: 33:ad:f4:5b:15:cc:e5:6f:7b:c3:9c:88:d9:d2:45:b4:c6:41: ba:d2:ac:e4:97:35:ec:1b:7c:f9:31:9e:07:44:68:10:5b:d1: 7c:1d:db:dc:92:35:d2:8c:ee:c4:52:30:a7:d8:02:40:1c:b3: fc:06:cb:fb -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUxMDE4MTgxMDM5WhcNMjUxMDI1MTgxMDM5WjAYMRYwFAYD VQQDEw02OGYzZDgxZi0wNmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2AST1yySkcXksGG1e4RPgrg7gfMC3JvGHrSsFBfZgNUnSTeBSo3AujwkzC83 qVOrAnWNVE/5rT1bIDXYAdO47z4KsJzTo4iAyNGvEZZPpARomEQvi4/4KRgbvq+y msgfJQFlOWp2FCOLtVXyh4gHNR+fWz3Fuwcy9IQItreCHKvGfTCBjfd/8MSmGjNr xE279gwa1qUsPdm/tTFXq19zbRd6mDogZstAzwdrVOI/+KRMqMCEO5UTatH9lcKm g3AxpTrbY5sCK2QFgmUw4FPtF/dyaGtTukVFwzmQr0r24yOKUw8O0Ry2FbrlqfQs gcq1Nl1eh8uwSla+Ui9QFJHyTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNlxcVxt JBJSKj60keZmuhtyqEPuMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRZx+zGvGOJq0CvI48VW/djDOsQSZZq+k9eYPWsFMYyfLVCKCjfx5S F7mzzO1Ot9W5O6C5e3w1LgrW0ik0zhUCk/Ck28fMQV/0/rrekg7FLzJPlztOlNjb J7ADhr0IEtieI1s22QpklAyXh61lZye0871zLTIYAE6FDDpaHlaV9P0n1IZfsIA6 REdMODIL0yBMaZ9U452gLc+5ga+lpS6BPOMPKTP/wA3MYlYoh+11jrM9ejww72lW kKdRRF21PCJHMQJCwQszrfRbFczlb3vDnIjZ0kW0xkG60qzklzXsG3z5MZ4HRGgQ W9F8HdvckjXSjO7EUjCn2AJAHLP8Bsv7 -----END CERTIFICATE-----Generated at Mon Oct 20 19:30:37 2025 by rpki-client