$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: Fc53l7VGYI9NWRVoFNwJZRoz+mbagr3ZHaZoReXw/rE= Subject key identifier: ED:94:2B:48:D2:71:F3:E1:66:DF:82:36:03:0E:BB:2A:95:F3:EE:73 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: FD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: F6 Signing time: Sun 19 Oct 2025 08:17:43 +0000 Manifest this update: Sun 19 Oct 2025 08:17:42 +0000 Manifest next update: Sun 26 Oct 2025 08:17:42 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: RSnUEHqOyoyEmt5vXJN+dNkIoS0KuWZ1b4tq054muSM=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: 20LByREQakyZFtw7XXZgcAlPRUMCZmgOccSGiPQln6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Oct 19 08:17:42 2025 GMT Not After : Oct 26 08:17:42 2025 GMT Subject: CN=68f49ea6-d9f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:a9:35:8e:8d:c3:90:e2:a8:43:24:51:c8:10: 0d:47:9b:c0:0f:4d:4e:0b:37:6a:3d:ea:9f:8f:f6: 0f:d9:85:14:31:33:5b:13:f9:41:37:3f:c7:bf:0a: 0d:58:ad:c0:66:e2:40:9f:0e:d4:96:a0:e1:97:ce: b7:86:c1:89:a2:9f:62:43:80:fb:90:c6:60:fd:96: 4c:96:f3:be:b1:07:11:07:f2:68:8d:21:4b:70:9d: 5f:ab:14:cd:64:79:43:b0:f1:93:61:6f:66:3c:7b: c4:31:a1:f0:3e:5f:8e:90:78:49:7a:d5:bd:96:d4: 3e:de:09:b7:6d:44:30:cd:b7:d1:ab:85:b7:72:01: ef:d2:94:64:22:47:15:98:d4:3d:1f:af:eb:ef:a7: 3b:1e:56:1f:c4:aa:91:48:0d:94:11:11:76:85:2e: 7b:a1:a9:c5:c5:50:e9:bf:e4:8c:1f:cc:21:99:db: 08:1c:c2:18:76:80:88:b6:c3:e1:3e:32:62:17:37: 22:e4:87:fc:56:6f:ad:07:45:3b:80:ea:0a:02:1c: 5c:83:33:07:1d:ff:26:07:3a:89:c8:1c:34:00:9c: 9d:83:c6:0a:ca:ef:4c:aa:03:56:8f:c7:f3:44:69: e7:10:e0:bc:41:fd:d2:4c:af:2b:af:b6:07:17:61: a4:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:94:2B:48:D2:71:F3:E1:66:DF:82:36:03:0E:BB:2A:95:F3:EE:73 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:97:e3:c2:ec:af:91:e1:fd:da:60:d2:0d:93:36:39:18:45: 46:de:7e:46:1f:b7:08:5a:c8:33:09:d7:d2:9d:45:8d:75:c2: d9:79:d1:22:44:96:e1:65:00:c7:eb:4a:2b:ca:7e:06:7d:0f: 1c:6f:4b:20:9a:b2:a8:c4:88:a3:fc:95:ed:b4:49:d2:94:7a: a2:a0:2b:d4:3c:61:45:5e:c9:65:5a:20:a3:ed:63:2d:6d:4e: b0:f0:e8:64:33:e0:4b:a2:1f:a0:b2:46:29:46:87:78:ce:aa: 19:d7:09:af:ff:b1:db:42:fc:fe:52:c4:66:60:1d:0e:5c:ec: 8f:4c:2d:73:4e:7a:64:fc:f9:d4:e7:7f:f4:a4:57:96:56:15: 51:5b:4c:eb:37:ef:2b:67:97:e0:23:4f:bd:9a:4c:6c:31:7b: fd:51:5a:b7:7d:b2:20:95:c6:cf:3f:4a:c3:fc:7c:f3:63:ef: fa:f9:8c:c1:13:fa:0c:c9:91:a4:53:cf:ff:a6:e7:21:08:92: 1b:d9:8e:67:65:14:d9:08:19:3c:81:09:c0:e0:0b:05:bf:fd: 0d:7c:57:1b:d0:54:54:43:bb:c3:80:c9:c2:3d:67:b6:73:26: 64:fc:d9:23:6f:4c:b1:a6:ff:93:90:34:52:07:42:5f:80:7e: 45:06:bf:3a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUxMDE5MDgxNzQyWhcNMjUxMDI2MDgxNzQyWjAYMRYwFAYD VQQDEw02OGY0OWVhNi1kOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqk1jo3DkOKoQyRRyBANR5vAD01OCzdqPeqfj/YP2YUUMTNbE/lBNz/HvwoN WK3AZuJAnw7UlqDhl863hsGJop9iQ4D7kMZg/ZZMlvO+sQcRB/JojSFLcJ1fqxTN ZHlDsPGTYW9mPHvEMaHwPl+OkHhJetW9ltQ+3gm3bUQwzbfRq4W3cgHv0pRkIkcV mNQ9H6/r76c7HlYfxKqRSA2UERF2hS57oanFxVDpv+SMH8whmdsIHMIYdoCItsPh PjJiFzci5If8Vm+tB0U7gOoKAhxcgzMHHf8mBzqJyBw0AJydg8YKyu9MqgNWj8fz RGnnEOC8Qf3STK8rr7YHF2GkrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFO2UK0jS cfPhZt+CNgMOuyqV8+5zMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUl+PC7K+R4f3aYNINkzY5GEVG3n5GH7cIWsgzCdfSnUWNdcLZedEi RJbhZQDH60oryn4GfQ8cb0sgmrKoxIij/JXttEnSlHqioCvUPGFFXsllWiCj7WMt bU6w8OhkM+BLoh+gskYpRod4zqoZ1wmv/7HbQvz+UsRmYB0OXOyPTC1zTnpk/PnU 53/0pFeWVhVRW0zrN+8rZ5fgI0+9mkxsMXv9UVq3fbIglcbPP0rD/HzzY+/6+YzB E/oMyZGkU8//puchCJIb2Y5nZRTZCBk8gQnA4AsFv/0NfFcb0FRUQ7vDgMnCPWe2 cyZk/Nkjb0yxpv+TkDRSB0JfgH5FBr86 -----END CERTIFICATE-----Generated at Mon Oct 20 19:27:41 2025 by rpki-client