$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft File: rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft (raw, json) Hash identifier: ZMFSp3WhfOHbygya2Taso+Bua92+l99Unsh7k95BJWs= Subject key identifier: 69:FA:DF:0B:CF:7D:37:33:5E:DF:1C:09:5E:71:A5:5E:32:09:AC:B7 Authority key identifier: AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 Certificate issuer: /CN=A91EF8B6/serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Certificate serial: 0B8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft Manifest number: 0B80 Signing time: Sat 18 Oct 2025 19:54:58 +0000 Manifest this update: Sat 18 Oct 2025 19:54:57 +0000 Manifest next update: Sat 25 Oct 2025 19:54:57 +0000 Files and hashes: 1: rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl (hash: 7ysCFcXK7K+02SbGdm7ztWX7TZEVBW62QmT0fojVr/w=) 2: FB6D5292263C11EEB9F5DB43C4F9AE02.roa (hash: G0XDicBivTci9J26AZ/2/duDqrP/HgCJvt3Hf4+FoMs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2956 (0xb8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF8B6, serialNumber=AD84F4BCBEB3C9365F2827153BA69CED2A9912E2 Validity Not Before: Oct 18 19:54:57 2025 GMT Not After : Oct 25 19:54:57 2025 GMT Subject: CN=68f3f091-dd5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:0c:dd:8f:63:bf:94:37:b3:fd:d8:a3:70:21: 07:c7:f5:ec:35:3b:e4:bc:ab:59:d8:41:a1:9c:1c: 98:fe:a2:03:9b:95:41:02:54:88:f1:7a:b1:7b:98: 6b:79:53:ed:6e:06:1f:5d:8e:75:79:93:aa:50:33: fe:84:62:5d:e1:31:aa:6c:bc:2a:14:79:68:48:29: 12:24:70:0b:a2:70:2f:de:ad:f4:9e:f3:7a:a9:73: 77:e4:ca:ce:d5:81:e3:d3:11:64:df:56:6b:0b:de: 32:74:49:b1:43:dc:e9:30:9c:43:87:8b:77:6e:b6: ba:eb:a9:41:31:35:f2:59:53:36:43:7e:4f:29:17: f3:da:c8:a1:9c:5c:a3:d8:a2:3b:4c:93:e5:06:e7: 60:ea:36:bf:c5:c3:73:90:19:83:34:04:1d:a6:58: 4d:c8:ad:10:4d:7b:ab:cc:72:df:0c:28:c4:de:38: 4f:c7:76:8c:e9:f0:06:17:b6:36:7a:ee:75:e4:8b: e8:01:47:da:26:2a:00:1d:7a:4b:03:10:5d:44:cf: 92:44:24:4c:d8:e2:cf:d7:67:6d:c9:a1:e9:8c:90: 75:dc:32:f5:81:0f:35:dd:8a:3b:99:26:0e:2e:83: 39:7e:85:a8:9c:50:1d:a9:f6:d7:67:36:ee:20:09: 9c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:FA:DF:0B:CF:7D:37:33:5E:DF:1C:09:5E:71:A5:5E:32:09:AC:B7 X509v3 Authority Key Identifier: keyid:AD:84:F4:BC:BE:B3:C9:36:5F:28:27:15:3B:A6:9C:ED:2A:99:12:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rYT0vL6zyTZfKCcVO6ac7SqZEuI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF8B6/40E7FABA3AA611EAAC8F1875C4F9AE02/rYT0vL6zyTZfKCcVO6ac7SqZEuI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ab:68:e2:48:98:1e:a0:cc:a1:e5:d5:63:b6:92:4e:80:7d:a7: dd:5a:a6:79:d2:44:a8:42:b8:a7:df:ef:bd:45:3b:1f:ed:b4: b3:5e:09:fb:2c:e1:dd:b4:fc:0c:2b:31:6d:f0:fc:22:2a:43: 5a:43:d2:7e:a4:3a:a9:8b:87:57:28:8d:17:aa:4b:63:86:1a: 2c:ec:c0:b3:dc:a4:16:7c:72:e5:e7:6c:5c:1a:ae:a6:84:85: 64:e4:44:d5:48:f5:a2:72:0f:a2:c9:5c:3d:7a:01:03:15:84: 71:64:a9:02:d1:9f:d2:3e:a8:a8:af:2a:2f:6a:19:d2:ac:aa: 79:9a:2e:b1:e8:2c:de:93:fc:94:24:10:64:90:68:99:d4:c3: 18:8f:e0:d3:e0:f8:f3:46:44:73:d7:5c:57:ad:01:5c:6e:d7: ed:52:f8:38:5d:76:d7:67:ff:86:b4:ab:a3:c4:89:f5:49:55: 29:9a:8d:b6:cf:3f:d1:67:f0:4e:d1:21:0f:63:ff:87:1b:bc: ab:25:38:ea:c1:0e:a1:e7:2b:2d:3c:46:16:68:7c:58:c3:bd: 45:c9:77:17:72:8a:f3:d4:68:d5:25:40:87:40:1d:00:08:89: 37:6b:95:d0:e6:de:3f:88:d0:b8:0b:d7:e7:93:4c:14:9d:e5: 04:51:91:ce -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUY4QjYxMTAvBgNVBAUTKEFEODRGNEJDQkVCM0M5MzY1RjI4MjcxNTNCQTY5Q0VE MkE5OTEyRTIwHhcNMjUxMDE4MTk1NDU3WhcNMjUxMDI1MTk1NDU3WjAYMRYwFAYD VQQDEw02OGYzZjA5MS1kZDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQzdj2O/lDez/dijcCEHx/XsNTvkvKtZ2EGhnByY/qIDm5VBAlSI8Xqxe5hr eVPtbgYfXY51eZOqUDP+hGJd4TGqbLwqFHloSCkSJHALonAv3q30nvN6qXN35MrO 1YHj0xFk31ZrC94ydEmxQ9zpMJxDh4t3bra666lBMTXyWVM2Q35PKRfz2sihnFyj 2KI7TJPlBudg6ja/xcNzkBmDNAQdplhNyK0QTXurzHLfDCjE3jhPx3aM6fAGF7Y2 eu515IvoAUfaJioAHXpLAxBdRM+SRCRM2OLP12dtyaHpjJB13DL1gQ813Yo7mSYO LoM5foWonFAdqfbXZzbuIAmcHQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGn63wvP fTczXt8cCV5xpV4yCay3MB8GA1UdIwQYMBaAFK2E9Ly+s8k2XygnFTumnO0qmRLi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjhCNi80MEU3RkFCQTNB QTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlUWmZLQ2NWTzZhYzdTcVpF dUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JZVDB2TDZ6eVRaZktDY1ZPNmFjN1NxWkV1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjhCNi80MEU3RkFCQTNBQTYxMUVBQUM4RjE4NzVDNEY5QUUwMi9yWVQwdkw2enlU WmZLQ2NWTzZhYzdTcVpFdUkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCraOJImB6gzKHl1WO2kk6AfafdWqZ50kSoQrin3++9RTsf7bSzXgn7 LOHdtPwMKzFt8PwiKkNaQ9J+pDqpi4dXKI0Xqktjhhos7MCz3KQWfHLl52xcGq6m hIVk5ETVSPWicg+iyVw9egEDFYRxZKkC0Z/SPqioryovahnSrKp5mi6x6Czek/yU JBBkkGiZ1MMYj+DT4PjzRkRz11xXrQFcbtftUvg4XXbXZ/+GtKujxIn1SVUpmo22 zz/RZ/BO0SEPY/+HG7yrJTjqwQ6h5ystPEYWaHxYw71FyXcXcorz1GjVJUCHQB0A CIk3a5XQ5t4/iNC4C9fnk0wUneUEUZHO -----END CERTIFICATE-----Generated at Sun Oct 19 23:34:08 2025 by rpki-client