$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: dz110VHqYTZFdXLLNfMJbhJQpErWSmyQjQfVQHo7ec4= Subject key identifier: 55:97:D0:38:AA:18:53:31:4B:9A:79:27:7B:CC:26:6F:5D:5D:8C:48 Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 023D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 0239 Signing time: Sun 19 Oct 2025 04:03:17 +0000 Manifest this update: Sun 19 Oct 2025 04:03:16 +0000 Manifest next update: Sun 26 Oct 2025 04:03:16 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: Klq9/2+vkKe69QHEHeXe+Ao2wnQSCM31HOsFj9p2feo=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: 389SWD8U0n/S34l3x1fnKTD4IcOssPuVilWlMrYufM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:03:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 573 (0x23d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Oct 19 04:03:16 2025 GMT Not After : Oct 26 04:03:16 2025 GMT Subject: CN=68f46305-c576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f3:c7:98:76:c5:c0:14:9f:6c:5a:8a:70:51: 5b:d6:f8:80:9d:2f:21:5b:fc:2d:74:f6:63:47:b4: 82:b4:69:43:aa:d1:3e:d9:e0:99:ea:b3:f5:af:1e: ec:b8:2b:3f:80:fb:ac:76:9c:7e:b2:32:ff:45:2a: cf:93:14:16:45:30:b8:7d:7f:73:48:ee:df:4c:b7: 7f:0a:b0:ef:60:8d:25:9d:17:7c:07:00:f0:1b:34: e2:a5:57:9c:dd:64:25:47:fc:2d:f4:10:92:ab:33: 69:cd:76:48:d9:ad:fc:98:ff:3c:f8:1b:1e:16:7f: 38:03:70:e0:70:8f:9b:0a:a3:63:8f:75:72:e4:7d: 9b:0b:42:82:18:4d:37:58:fb:2d:11:b1:a9:c1:86: 59:c9:95:fc:fb:41:b3:3e:39:8d:7b:f4:fc:0a:06: 06:d7:c1:94:0e:ec:19:0b:e3:02:c4:29:61:57:69: 72:33:74:fd:72:a4:12:8d:5f:79:d9:99:59:8a:6c: 3e:03:54:40:2e:b3:a9:06:36:13:91:5f:e8:07:16: 1a:61:ce:b5:50:c8:ff:70:c2:5f:81:8f:10:71:8e: bf:61:11:4a:2b:7b:35:fa:32:76:10:c9:52:a8:54: 98:3c:a7:61:ea:25:15:af:a1:62:67:90:b8:ba:a8: 67:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:97:D0:38:AA:18:53:31:4B:9A:79:27:7B:CC:26:6F:5D:5D:8C:48 X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:3f:73:4e:c7:58:0d:7a:7d:5b:1e:49:41:8f:03:33:26:d7: 5d:18:30:07:57:29:a9:76:47:aa:9b:72:57:f8:b4:e1:f2:a1: 03:40:96:4a:bd:c4:41:19:07:cf:41:aa:a4:27:59:ff:38:32: 7c:02:85:85:d3:40:99:42:41:c1:e5:9b:c8:61:53:5b:c3:c5: 32:b2:8a:6e:08:93:39:7c:4a:e3:db:0e:dc:aa:d1:3c:eb:e4: d1:ad:73:93:56:2b:b8:7d:1e:1a:e1:3c:cb:fc:08:99:97:ed: dd:f3:c3:f7:d1:c5:ce:f6:1e:a3:62:a2:02:59:7d:ad:f6:80: 2f:70:3b:99:1a:95:78:13:93:d9:97:7c:66:92:55:f7:17:52: a7:de:ba:95:a5:b3:7b:b0:52:57:0d:8f:53:aa:d8:44:cd:47: 49:71:18:0b:9d:87:f7:fc:de:ca:1f:5b:06:e1:c0:fc:73:3c: 11:e6:8e:f1:d7:c9:16:d7:76:57:f4:de:3f:bd:97:e0:0b:f0: e4:bc:5d:e0:c7:c4:5f:c6:6d:f4:ec:b0:5c:94:ff:ef:35:c3: 7e:96:14:28:be:e4:0b:07:ae:64:20:fa:b3:d0:3a:b4:aa:65: 84:a3:49:51:53:6c:ff:eb:1b:9e:e5:2a:ca:f8:be:63:38:ae: 19:57:c8:b9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUxMDE5MDQwMzE2WhcNMjUxMDI2MDQwMzE2WjAYMRYwFAYD VQQDEw02OGY0NjMwNS1jNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvPHmHbFwBSfbFqKcFFb1viAnS8hW/wtdPZjR7SCtGlDqtE+2eCZ6rP1rx7s uCs/gPusdpx+sjL/RSrPkxQWRTC4fX9zSO7fTLd/CrDvYI0lnRd8BwDwGzTipVec 3WQlR/wt9BCSqzNpzXZI2a38mP88+BseFn84A3DgcI+bCqNjj3Vy5H2bC0KCGE03 WPstEbGpwYZZyZX8+0GzPjmNe/T8CgYG18GUDuwZC+MCxClhV2lyM3T9cqQSjV95 2ZlZimw+A1RALrOpBjYTkV/oBxYaYc61UMj/cMJfgY8QcY6/YRFKK3s1+jJ2EMlS qFSYPKdh6iUVr6FiZ5C4uqhntwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFWX0Diq GFMxS5p5J3vMJm9dXYxIMB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcP3NOx1gNen1bHklBjwMzJtddGDAHVympdkeqm3JX+LTh8qEDQJZK vcRBGQfPQaqkJ1n/ODJ8AoWF00CZQkHB5ZvIYVNbw8UysopuCJM5fErj2w7cqtE8 6+TRrXOTViu4fR4a4TzL/AiZl+3d88P30cXO9h6jYqICWX2t9oAvcDuZGpV4E5PZ l3xmklX3F1Kn3rqVpbN7sFJXDY9TqthEzUdJcRgLnYf3/N7KH1sG4cD8czwR5o7x 18kW13ZX9N4/vZfgC/DkvF3gx8Rfxm307LBclP/vNcN+lhQovuQLB65kIPqz0Dq0 qmWEo0lRU2z/6xue5SrK+L5jOK4ZV8i5 -----END CERTIFICATE-----Generated at Mon Oct 20 19:11:00 2025 by rpki-client