$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: TAI/kwicTTfFFV0bmxsWLuzWAKOzZP0jab4PhCbMqE4= Subject key identifier: EB:0F:EA:6D:DF:57:9A:B3:E3:D1:9D:D8:57:C7:D2:33:02:68:95:AE Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: 9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 90 Signing time: Sun 19 Oct 2025 09:56:18 +0000 Manifest this update: Sun 19 Oct 2025 09:56:17 +0000 Manifest next update: Sun 26 Oct 2025 09:56:17 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: YiChgWEbMhsktQ95JeKTAc8/XuFxLyEkhd9Ib/QyjQ8=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Oct 19 09:56:17 2025 GMT Not After : Oct 26 09:56:17 2025 GMT Subject: CN=68f4b5c2-fe38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:28:cf:81:f9:f0:7d:87:5b:cf:9b:04:2d:fe: 56:59:bd:5b:56:6d:f2:57:68:d3:15:26:3d:ee:4e: 76:fe:b4:2a:61:9d:6e:3e:e0:d7:ff:92:13:15:ad: f4:7e:d3:8b:10:fd:b4:1f:12:3c:eb:57:4d:e4:ba: f7:e9:4a:9f:01:59:68:28:51:26:dd:09:62:fd:4e: a1:7a:47:e8:3b:f7:81:46:be:95:bf:85:5d:6e:d5: 41:58:0e:a6:e3:88:5a:38:f4:24:4b:4e:39:7f:20: 94:35:fb:62:f3:34:0a:11:a9:e9:cb:6c:d9:57:94: 18:9a:f6:1f:6a:eb:93:af:18:30:ab:49:01:b8:f6: e3:b0:45:41:32:18:f9:a2:ee:c4:c6:e3:ca:d5:a2: e4:6b:ea:03:a1:31:38:d7:d1:fa:ab:fb:18:9b:f4: 00:4b:3e:32:38:f3:b1:71:a6:9c:26:64:fd:64:63: 52:95:56:fd:98:04:83:27:6b:11:ec:7b:49:2c:db: be:7e:3c:6a:f5:93:6c:2d:2a:9d:04:28:fc:e4:1e: a5:8b:92:65:3d:12:a7:9b:c0:c8:41:f9:e4:31:e0: c7:ba:bc:bd:ed:90:dd:8f:fd:ee:7b:3d:7a:f4:be: 22:93:0a:19:3d:1b:45:40:d2:b4:0f:61:73:57:bc: 43:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:0F:EA:6D:DF:57:9A:B3:E3:D1:9D:D8:57:C7:D2:33:02:68:95:AE X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:84:9e:bc:30:c4:85:14:03:69:fa:90:3a:77:3d:22:08:96: 01:21:55:75:09:c5:4b:c2:41:52:3a:3a:44:8d:22:c2:b0:f5: be:42:b0:a4:50:36:df:a2:2d:10:f7:fb:dd:2e:52:d3:ce:55: 24:6b:6c:fc:0a:6a:d6:16:3e:4f:e3:8b:22:80:3a:f0:ef:5b: 10:15:fb:6a:95:7c:a9:f5:be:03:dc:07:8c:b1:64:65:e1:b2: 79:65:07:bb:47:7a:de:c2:b0:84:72:58:50:d7:40:0d:b8:d7: 15:33:ed:fd:77:fb:44:f1:bd:68:0d:b7:4f:4f:46:5d:3e:9d: 56:43:5d:e6:a2:cb:27:01:58:b5:2a:0d:ef:94:ee:35:50:f9: 9e:60:c5:68:3c:b1:2e:d9:26:74:2b:55:13:02:d2:6c:46:8c: 24:46:1a:92:9d:53:59:74:9b:73:12:f6:9b:da:83:bb:0e:b9: a3:2c:8d:7f:38:98:19:16:9e:ed:ea:b0:2c:cc:07:44:dd:c1: 64:42:a5:a4:ca:2b:03:17:70:3d:39:e7:f7:f2:0f:da:45:07: 6c:a1:94:d2:58:ac:23:72:6c:92:46:ef:8b:d4:2d:0e:15:25: c7:0e:dd:dd:91:f3:5c:cc:83:97:b8:3e:15:58:aa:83:8b:7f: ac:7e:b6:6d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjUxMDE5MDk1NjE3WhcNMjUxMDI2MDk1NjE3WjAYMRYwFAYD VQQDEw02OGY0YjVjMi1mZTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyjPgfnwfYdbz5sELf5WWb1bVm3yV2jTFSY97k52/rQqYZ1uPuDX/5ITFa30 ftOLEP20HxI861dN5Lr36UqfAVloKFEm3Qli/U6hekfoO/eBRr6Vv4VdbtVBWA6m 44haOPQkS045fyCUNfti8zQKEanpy2zZV5QYmvYfauuTrxgwq0kBuPbjsEVBMhj5 ou7ExuPK1aLka+oDoTE419H6q/sYm/QASz4yOPOxcaacJmT9ZGNSlVb9mASDJ2sR 7HtJLNu+fjxq9ZNsLSqdBCj85B6li5JlPRKnm8DIQfnkMeDHury97ZDdj/3uez16 9L4ikwoZPRtFQNK0D2FzV7xD4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOsP6m3f V5qz49Gd2FfH0jMCaJWuMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDDhJ68MMSFFANp+pA6dz0iCJYBIVV1CcVLwkFSOjpEjSLCsPW+QrCk UDbfoi0Q9/vdLlLTzlUka2z8CmrWFj5P44sigDrw71sQFftqlXyp9b4D3AeMsWRl 4bJ5ZQe7R3rewrCEclhQ10ANuNcVM+39d/tE8b1oDbdPT0ZdPp1WQ13mossnAVi1 Kg3vlO41UPmeYMVoPLEu2SZ0K1UTAtJsRowkRhqSnVNZdJtzEvab2oO7DrmjLI1/ OJgZFp7t6rAszAdE3cFkQqWkyisDF3A9Oef38g/aRQdsoZTSWKwjcmySRu+L1C0O FSXHDt3dkfNczIOXuD4VWKqDi3+sfrZt -----END CERTIFICATE-----Generated at Tue Oct 21 02:04:37 2025 by rpki-client