$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: 0uc+OjaURrTSxzVOzk+brgOTQleT2AOfmWjYvllkcWg= Subject key identifier: 70:A5:FC:BB:91:27:61:0E:0D:07:51:55:34:7D:52:F9:49:AD:02:E9 Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 011F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 011D Signing time: Sun 19 Oct 2025 07:37:25 +0000 Manifest this update: Sun 19 Oct 2025 07:37:25 +0000 Manifest next update: Sun 26 Oct 2025 07:37:25 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: qkOWxSM7Izc2IqvjyWYTU8B080ozGdecTa6CC70HcLw=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 287 (0x11f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Oct 19 07:37:25 2025 GMT Not After : Oct 26 07:37:25 2025 GMT Subject: CN=68f49535-ed43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:08:7c:ac:10:4f:e1:60:f4:5d:71:c9:c0:26: 78:ac:26:f8:39:0b:84:3d:d1:90:0e:cb:c6:2f:23: 28:9b:bd:81:6b:d7:3b:e0:10:40:d9:e9:02:d8:e3: ff:54:3b:f6:c5:06:f7:6b:68:a5:d7:26:04:67:38: 7c:ae:2b:35:49:9c:de:15:f5:5d:a1:61:ea:62:bc: 3f:e8:05:7c:47:de:c8:97:81:1c:5f:77:ed:8a:a6: a4:9f:c9:e7:6e:0a:d6:21:b1:02:b7:c6:7d:dd:c5: 26:58:8c:d8:4e:e8:c7:f1:ff:05:32:0d:f3:97:97: 8d:94:6f:21:e6:f1:f1:e4:86:17:62:a9:22:1c:a6: 2c:65:d4:7d:17:ec:6f:71:58:bf:34:3b:25:60:14: 98:ea:44:0b:9f:ee:8f:3c:f9:f2:81:c2:77:20:ec: 85:76:1e:f4:57:c9:38:68:0c:58:e0:11:7b:04:aa: 0c:04:9a:13:7b:44:87:bb:87:f6:f0:d6:af:45:3f: 35:86:5b:f4:6b:66:15:e0:f3:93:29:31:2c:5c:43: 68:be:75:e6:ca:cb:55:ae:7c:0e:8a:ee:76:c5:5a: d1:33:16:f2:36:d8:f2:e3:88:80:c0:f9:83:dc:c5: 7c:4c:70:2d:c4:68:d7:36:a0:64:11:25:63:74:5f: 7e:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:A5:FC:BB:91:27:61:0E:0D:07:51:55:34:7D:52:F9:49:AD:02:E9 X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:aa:a4:7c:7f:aa:27:d6:19:ae:f4:2d:ba:89:e3:1f:e6:29: 38:f5:dd:15:64:17:ab:57:5c:fc:7d:35:f9:b1:0f:c4:dc:71: 90:47:47:60:60:bd:92:4e:e8:c1:da:71:1b:7c:43:0f:1c:51: fb:2d:56:ed:d3:7b:59:62:71:bd:91:b6:88:84:90:da:bc:e5: cd:04:b2:ac:65:c9:e9:7c:b0:72:52:83:bb:45:95:3c:90:71: 83:40:b5:d9:09:d1:26:51:67:7b:07:e6:48:15:e3:ac:9f:f9: 03:e5:11:d1:75:3c:44:c7:4e:d1:82:68:73:2c:3b:5d:ea:c5: d2:3d:9a:15:b6:da:4e:3c:d8:2c:dd:d1:54:2c:18:ad:1e:7a: d8:51:c0:1d:ea:67:f6:d1:9c:aa:8c:da:49:7e:c3:3b:10:42: 09:1a:50:ee:1a:48:c6:cb:0e:32:f2:bd:b8:b5:b9:ee:b4:0d: 5d:0a:ef:a1:72:55:ad:89:25:3f:de:83:2e:c6:a9:d7:0a:6f: 19:5c:eb:3d:fb:c3:30:6c:de:5f:a3:80:7d:d2:b3:bc:85:a1: eb:f8:52:73:af:1b:70:ac:7b:88:02:36:26:bc:18:b7:c6:65: 97:87:e5:1b:1a:33:3c:01:1f:28:1c:27:3e:b3:78:bf:15:b6: 59:cd:32:45 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUxMDE5MDczNzI1WhcNMjUxMDI2MDczNzI1WjAYMRYwFAYD VQQDEw02OGY0OTUzNS1lZDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQh8rBBP4WD0XXHJwCZ4rCb4OQuEPdGQDsvGLyMom72Ba9c74BBA2ekC2OP/ VDv2xQb3a2il1yYEZzh8ris1SZzeFfVdoWHqYrw/6AV8R97Il4EcX3ftiqakn8nn bgrWIbECt8Z93cUmWIzYTujH8f8FMg3zl5eNlG8h5vHx5IYXYqkiHKYsZdR9F+xv cVi/NDslYBSY6kQLn+6PPPnygcJ3IOyFdh70V8k4aAxY4BF7BKoMBJoTe0SHu4f2 8NavRT81hlv0a2YV4POTKTEsXENovnXmystVrnwOiu52xVrRMxbyNtjy44iAwPmD 3MV8THAtxGjXNqBkESVjdF9+MwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHCl/LuR J2EODQdRVTR9UvlJrQLpMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCuqqR8f6on1hmu9C26ieMf5ik49d0VZBerV1z8fTX5sQ/E3HGQR0dg YL2STujB2nEbfEMPHFH7LVbt03tZYnG9kbaIhJDavOXNBLKsZcnpfLByUoO7RZU8 kHGDQLXZCdEmUWd7B+ZIFeOsn/kD5RHRdTxEx07RgmhzLDtd6sXSPZoVttpOPNgs 3dFULBitHnrYUcAd6mf20ZyqjNpJfsM7EEIJGlDuGkjGyw4y8r24tbnutA1dCu+h clWtiSU/3oMuxqnXCm8ZXOs9+8MwbN5fo4B90rO8haHr+FJzrxtwrHuIAjYmvBi3 xmWXh+UbGjM8AR8oHCc+s3i/FbZZzTJF -----END CERTIFICATE-----Generated at Mon Oct 20 04:45:40 2025 by rpki-client