$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: J2Vh8RFrfKuEJ9TvqNbGTsiCGuIo3UFlHVV1YnAOLpA= Subject key identifier: D3:8C:34:3C:47:65:87:80:18:5F:5A:65:F3:44:F9:0F:2A:B0:AD:7A Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 68 Signing time: Sun 19 Oct 2025 10:21:22 +0000 Manifest this update: Sun 19 Oct 2025 10:21:22 +0000 Manifest next update: Sun 26 Oct 2025 10:21:22 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: Bp5agZw6MxoNCnXy/Em/7fOQ//gGgtLiJiYOEdb8mHg=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: rxfflXV8vQ/KWVF6kuCP1iokmRw18P+QAjN4iDWpgsI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:21:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Oct 19 10:21:22 2025 GMT Not After : Oct 26 10:21:22 2025 GMT Subject: CN=68f4bba2-8be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:22:5b:fa:84:f7:50:af:90:bc:1d:00:8b:9a: 90:a1:ce:91:27:ab:fa:af:ae:93:02:e7:7b:c9:ed: cf:4f:26:1e:e2:3a:f7:81:7a:43:1d:60:1c:fb:ff: fe:13:19:98:7c:04:9d:d0:f3:26:32:28:15:94:92: d9:c5:f1:e9:f0:98:c8:e3:f6:ce:90:46:88:f3:69: fa:77:ef:ba:42:47:ae:7f:db:ab:a4:25:7a:f6:80: ce:e3:2b:bd:1d:6d:4b:03:85:7a:a8:ca:6d:49:f7: e0:8f:b8:aa:80:fd:1e:7c:0a:29:5a:8a:12:28:36: bf:e2:b8:d0:b3:f4:6b:38:bb:64:83:e7:63:b7:fe: e0:a5:f2:54:fa:e8:01:a9:9a:b4:28:f1:44:7f:d2: d7:d0:ca:d7:4e:16:dc:ec:9d:fb:8b:a4:d4:2b:a9: 31:93:60:f8:99:df:2b:c0:74:80:78:42:a2:ca:0f: 06:f0:f6:66:6e:eb:60:4a:19:53:e1:29:cc:ab:eb: da:ca:6b:0b:ea:ea:5d:2d:96:9f:f3:09:d7:88:1a: 05:28:b7:55:02:8b:a4:5b:5c:4c:7f:65:8b:20:1b: 7f:f9:b6:18:15:a9:62:f0:28:5e:f6:8f:d4:18:5c: 82:02:11:07:c6:93:22:8f:bb:17:8c:26:1d:2e:69: a0:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:8C:34:3C:47:65:87:80:18:5F:5A:65:F3:44:F9:0F:2A:B0:AD:7A X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:9d:ca:52:40:1d:de:7f:04:b0:38:d9:47:df:72:62:6e:c8: b2:52:66:bb:65:ce:cd:ff:11:a9:af:c1:39:51:cc:5e:b9:01: e0:2c:da:64:90:67:b2:5f:77:fe:33:e8:97:5a:19:d6:5a:5a: aa:83:ed:a3:02:f3:f6:28:5c:13:69:eb:c5:e9:31:87:60:81: 7b:54:d2:6d:e2:99:cd:57:b4:4b:b7:24:00:12:66:7a:5b:40: 27:b4:c0:6d:cb:56:80:ce:77:bb:5a:6d:ee:99:88:46:5e:e4: 88:af:86:37:5b:e1:be:ea:a4:4b:85:e5:b3:4e:cd:71:c9:df: 7e:d4:36:57:0c:23:53:f4:77:9c:e2:3d:d5:83:70:7b:48:ba: fc:43:2b:f4:83:a7:d5:da:dc:a2:cc:06:7f:bd:55:49:d4:04: fe:3c:85:9d:3b:a0:15:0d:7a:1d:ad:9a:68:82:b3:06:87:7a: 29:55:5a:5d:90:c9:35:50:e1:6c:22:e7:5b:3b:c8:7d:e3:3d: a8:79:97:36:b2:76:45:55:93:4e:fc:36:d2:2f:23:9f:2d:15: fb:8a:2b:53:ab:99:44:61:10:b9:02:40:15:23:5e:c9:38:21: d4:ff:e6:ec:ed:01:50:08:1a:2e:18:ed:1d:9f:89:68:ca:15: 9a:dd:a0:5a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTEwMTkxMDIxMjJaFw0yNTEwMjYxMDIxMjJaMBgxFjAUBgNV BAMTDTY4ZjRiYmEyLThiZTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwIlv6hPdQr5C8HQCLmpChzpEnq/qvrpMC53vJ7c9PJh7iOveBekMdYBz7//4T GZh8BJ3Q8yYyKBWUktnF8enwmMjj9s6QRojzafp377pCR65/26ukJXr2gM7jK70d bUsDhXqoym1J9+CPuKqA/R58CilaihIoNr/iuNCz9Gs4u2SD52O3/uCl8lT66AGp mrQo8UR/0tfQytdOFtzsnfuLpNQrqTGTYPiZ3yvAdIB4QqLKDwbw9mZu62BKGVPh Kcyr69rKawvq6l0tlp/zCdeIGgUot1UCi6RbXEx/ZYsgG3/5thgVqWLwKF72j9QY XIICEQfGkyKPuxeMJh0uaaC7AgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU04w0PEdl h4AYX1pl80T5DyqwrXowHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJmdylJAHd5/BLA42UffcmJuyLJSZrtlzs3/EamvwTlRzF65AeAs2mSQ Z7Jfd/4z6JdaGdZaWqqD7aMC8/YoXBNp68XpMYdggXtU0m3imc1XtEu3JAASZnpb QCe0wG3LVoDOd7tabe6ZiEZe5Iivhjdb4b7qpEuF5bNOzXHJ337UNlcMI1P0d5zi PdWDcHtIuvxDK/SDp9Xa3KLMBn+9VUnUBP48hZ07oBUNeh2tmmiCswaHeilVWl2Q yTVQ4Wwi51s7yH3jPah5lzaydkVVk078NtIvI58tFfuKK1OrmURhELkCQBUjXsk4 IdT/5uztAVAIGi4Y7R2fiWjKFZrdoFo= -----END CERTIFICATE-----Generated at Mon Oct 20 07:54:21 2025 by rpki-client