$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: 2PNe06qYZz5wSvfDsdGcSb096awYZNY0pBqGTjlZE1M= Subject key identifier: 71:76:D8:FA:19:BA:40:3B:EC:C8:29:C0:FE:B8:13:9A:7F:EE:5D:32 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01D2 Signing time: Sun 19 Oct 2025 05:14:51 +0000 Manifest this update: Sun 19 Oct 2025 05:14:50 +0000 Manifest next update: Sun 26 Oct 2025 05:14:50 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: r/Yzxan9XiZ7uezrZmpNCyrKwz3/hVpFmJAp3ewSpOc=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:14:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 469 (0x1d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Oct 19 05:14:50 2025 GMT Not After : Oct 26 05:14:50 2025 GMT Subject: CN=68f473cb-78f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:55:0e:cf:b1:c8:8b:a3:42:22:40:5d:ab:9e: 6c:c8:c2:4b:09:5d:93:de:2e:a2:d3:e2:0d:26:b1: 01:dd:86:3d:8c:12:aa:f7:6c:4c:82:ea:d2:3a:03: 87:e5:e6:20:51:a7:5b:13:8f:fe:21:ba:f8:de:89: 8f:04:e9:2e:e4:67:5b:aa:7d:41:b9:d2:fc:38:8b: 57:a4:7a:35:dc:43:62:8f:13:d7:a7:da:7c:20:1c: 59:7d:13:96:40:ab:0d:86:f0:40:d4:3e:01:d7:c8: 38:c8:45:d0:6d:a7:28:1d:04:bf:d9:58:30:43:4f: fc:7a:fa:63:bc:bb:fe:08:8e:42:3f:b3:bb:4e:9a: 34:c5:78:3d:8e:fa:d5:d6:c8:76:75:e6:33:19:7c: 57:52:a3:0e:b1:96:57:95:4e:90:b3:3b:dc:f1:1e: 42:be:0c:28:b6:11:3a:36:45:9d:50:20:96:d1:4a: 47:8f:94:da:0c:30:93:bc:eb:76:15:a8:c8:29:7a: 76:5f:f1:2b:1e:23:f1:4e:06:39:cf:32:09:e7:1f: 12:27:04:64:a5:99:73:2c:a8:20:23:a7:f9:0f:2a: b2:56:cc:8b:ce:5c:7b:28:22:01:01:de:23:fc:2e: 27:64:6c:e2:ea:48:f8:ec:dd:68:0e:ca:da:a7:68: 6b:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:76:D8:FA:19:BA:40:3B:EC:C8:29:C0:FE:B8:13:9A:7F:EE:5D:32 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:3c:94:8d:06:f3:9e:06:20:6f:bd:5c:ec:02:80:a1:d1:73: a4:7a:af:73:a0:df:68:ea:9f:6d:56:e1:3c:d6:89:ed:84:02: 06:dd:2c:5b:2e:8f:6d:5a:ae:a6:9c:49:be:a4:24:2b:ff:12: 4a:ac:65:52:b5:b2:33:e5:d3:df:5f:02:44:a7:e2:00:1e:5c: 55:29:35:45:9c:4d:b2:07:13:80:df:52:e0:69:4f:4e:d9:d9: 1f:89:1a:8f:87:2f:96:ae:87:49:81:07:58:5a:94:54:ef:8a: 38:a5:34:50:1b:ba:80:ae:9d:01:9b:90:ef:6e:1f:f4:22:b2: ec:8a:2d:25:1f:a0:11:2d:c5:44:a1:71:2c:2e:62:88:35:8f: 23:b0:8b:cb:c1:33:c6:11:8d:88:ab:f4:f4:c2:fd:e1:af:e2: 7a:df:e3:11:53:b5:79:fe:9c:82:31:76:22:c3:59:4c:31:aa: 72:70:ed:65:8e:a6:0d:56:66:8e:a3:7e:96:ac:65:e8:f0:15: b0:25:3f:d2:89:4b:5e:ab:c3:4b:65:95:52:b8:e6:8f:a7:f1: 8f:8c:ec:de:2a:19:fa:3e:3b:31:16:49:1c:9f:99:a0:78:f6: 7c:ea:91:5c:37:5e:aa:5c:bb:fc:0c:3b:de:ed:c1:50:e0:a8: 21:02:74:b8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUxMDE5MDUxNDUwWhcNMjUxMDI2MDUxNDUwWjAYMRYwFAYD VQQDEw02OGY0NzNjYi03OGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqlUOz7HIi6NCIkBdq55syMJLCV2T3i6i0+INJrEB3YY9jBKq92xMgurSOgOH 5eYgUadbE4/+Ibr43omPBOku5Gdbqn1BudL8OItXpHo13ENijxPXp9p8IBxZfROW QKsNhvBA1D4B18g4yEXQbacoHQS/2VgwQ0/8evpjvLv+CI5CP7O7Tpo0xXg9jvrV 1sh2deYzGXxXUqMOsZZXlU6Qszvc8R5CvgwothE6NkWdUCCW0UpHj5TaDDCTvOt2 FajIKXp2X/ErHiPxTgY5zzIJ5x8SJwRkpZlzLKggI6f5DyqyVsyLzlx7KCIBAd4j /C4nZGzi6kj47N1oDsrap2hrMwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHF22PoZ ukA77MgpwP64E5p/7l0yMB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAePJSNBvOeBiBvvVzsAoCh0XOkeq9zoN9o6p9tVuE81onthAIG3Sxb Lo9tWq6mnEm+pCQr/xJKrGVStbIz5dPfXwJEp+IAHlxVKTVFnE2yBxOA31LgaU9O 2dkfiRqPhy+WrodJgQdYWpRU74o4pTRQG7qArp0Bm5Dvbh/0IrLsii0lH6ARLcVE oXEsLmKINY8jsIvLwTPGEY2Iq/T0wv3hr+J63+MRU7V5/pyCMXYiw1lMMapycO1l jqYNVmaOo36WrGXo8BWwJT/SiUteq8NLZZVSuOaPp/GPjOzeKhn6PjsxFkkcn5mg ePZ86pFcN16qXLv8DDve7cFQ4KghAnS4 -----END CERTIFICATE-----Generated at Mon Oct 20 16:06:48 2025 by rpki-client