$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: y2IxkJPSgVa7TqQq5O/bJouCKkCJr4+Ssu3htRqpPVY= Subject key identifier: 0C:E5:22:F8:DA:41:C8:05:68:5F:3F:1C:CC:5A:28:EF:75:D6:76:69 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0613 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 05F7 Signing time: Sun 19 Oct 2025 00:40:23 +0000 Manifest this update: Sun 19 Oct 2025 00:40:22 +0000 Manifest next update: Sun 26 Oct 2025 00:40:22 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: /wmPw6u5nd4WBXtNsjFSPdAMPJYTLXxItJlJgV9FZSM=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: b5uDJzQg7fsmYh3ElST7vyFH7ynXatbdm3FZHCbVe+4=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: vtLAm7IVt53zIg8Nc5apkEjvAOJhd3yNQjgM+aQMRxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1555 (0x613) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Oct 19 00:40:22 2025 GMT Not After : Oct 26 00:40:22 2025 GMT Subject: CN=68f43377-a53b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d5:ce:b1:90:f2:25:49:52:21:c8:f9:a5:d9: 46:49:36:d7:ca:0f:aa:cd:84:8f:19:eb:8a:40:b5: e6:f7:d7:14:f9:e1:b0:2b:59:a4:19:b7:2f:57:61: 85:b5:42:47:36:ae:ab:15:69:96:91:1f:f7:27:25: 6a:8a:8c:d6:41:67:91:82:05:1d:0e:67:f7:0a:7c: b7:b7:ea:67:40:28:bf:44:34:52:93:06:7c:e4:c3: 6d:6e:22:1b:a4:75:20:84:15:ef:63:21:46:77:ac: 49:ee:fc:0f:0c:5e:81:d4:e5:38:f2:a5:25:4e:35: 1a:eb:fc:47:2a:eb:e3:18:38:bf:ec:f2:0b:d9:87: 1a:de:f4:46:3e:38:cf:ad:26:ab:cb:93:b4:c0:3d: b5:df:7a:da:8c:2c:33:94:e7:cb:b6:d7:98:20:4c: dc:8d:12:e7:69:2f:5e:58:6f:9a:e0:5d:96:25:c5: 39:5f:30:14:ee:60:b9:67:81:48:0e:cd:f3:00:4e: 8c:3a:82:d0:f7:12:c6:b6:78:bf:cf:1e:74:3f:9d: 8b:e4:4a:26:86:b3:7a:7b:a4:68:d5:ca:23:5e:37: 18:0b:b4:ce:09:07:fd:99:e2:9a:59:d9:45:ed:8c: 92:3f:76:79:ce:5e:66:28:45:40:1d:fe:d6:4c:06: 98:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:E5:22:F8:DA:41:C8:05:68:5F:3F:1C:CC:5A:28:EF:75:D6:76:69 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 31:41:1d:69:3d:88:f7:7a:99:49:98:8a:90:d8:fd:7c:c0:a2: 27:8b:ef:14:d2:16:d9:fe:16:f1:d9:74:22:9f:8f:5a:c4:1b: e9:9d:91:94:13:05:b7:d1:7d:bf:61:8f:af:fd:3c:a6:a7:7c: 8d:6e:b8:40:f9:80:19:a3:50:17:c3:ec:77:5b:68:08:19:2d: 0a:f5:dd:e4:7f:b9:0a:94:cc:68:c0:ed:3a:b7:23:30:56:39: 2b:93:8b:01:2f:46:e1:8a:96:64:ae:e1:a6:8c:14:1c:63:73: 24:4d:6e:62:7f:2a:2e:f9:53:db:ae:fa:99:83:66:a5:a5:f3: 8f:80:a7:74:b6:d8:43:ff:de:b8:0f:db:92:0a:ba:23:11:d7: 80:c1:58:46:fd:90:55:0c:05:80:7c:b6:6a:34:93:54:f5:8d: 84:cc:bf:c3:56:60:0c:d6:7f:57:7e:ee:18:4c:b7:b2:b6:40: ff:99:8f:79:c3:1b:96:6c:1f:7f:4e:ad:0a:b8:6f:22:75:31: 41:de:3f:58:9a:47:5e:0d:c2:cc:2e:40:cf:ec:60:38:ff:10: 33:47:25:93:aa:bd:23:b7:f3:68:f0:38:3f:4f:63:8d:df:ee: 57:c3:f5:d5:7b:87:d6:97:d1:a8:46:a4:cb:b3:aa:74:2f:a0: 98:2c:6c:c7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUxMDE5MDA0MDIyWhcNMjUxMDI2MDA0MDIyWjAYMRYwFAYD VQQDEw02OGY0MzM3Ny1hNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdXOsZDyJUlSIcj5pdlGSTbXyg+qzYSPGeuKQLXm99cU+eGwK1mkGbcvV2GF tUJHNq6rFWmWkR/3JyVqiozWQWeRggUdDmf3Cny3t+pnQCi/RDRSkwZ85MNtbiIb pHUghBXvYyFGd6xJ7vwPDF6B1OU48qUlTjUa6/xHKuvjGDi/7PIL2Yca3vRGPjjP rSary5O0wD2133rajCwzlOfLtteYIEzcjRLnaS9eWG+a4F2WJcU5XzAU7mC5Z4FI Ds3zAE6MOoLQ9xLGtni/zx50P52L5EomhrN6e6Ro1cojXjcYC7TOCQf9meKaWdlF 7YySP3Z5zl5mKEVAHf7WTAaYlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAzlIvja QcgFaF8/HMxaKO911nZpMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAxQR1pPYj3eplJmIqQ2P18wKIni+8U0hbZ/hbx2XQin49axBvpnZGU EwW30X2/YY+v/Tymp3yNbrhA+YAZo1AXw+x3W2gIGS0K9d3kf7kKlMxowO06tyMw Vjkrk4sBL0bhipZkruGmjBQcY3MkTW5ifyou+VPbrvqZg2alpfOPgKd0tthD/964 D9uSCrojEdeAwVhG/ZBVDAWAfLZqNJNU9Y2EzL/DVmAM1n9Xfu4YTLeytkD/mY95 wxuWbB9/Tq0KuG8idTFB3j9YmkdeDcLMLkDP7GA4/xAzRyWTqr0jt/No8Dg/T2ON 3+5Xw/XVe4fWl9GoRqTLs6p0L6CYLGzH -----END CERTIFICATE-----Generated at Mon Oct 20 01:49:16 2025 by rpki-client