$ rpki-client -vvf rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft File: ySTN5BVFl0tvV4MubGA7zIlm2eA.mft (raw, json) Hash identifier: aS7jhOsDU3x3ZZ4JMcyIQLVnQLFoSQHKiAIrxV9xH4s= Subject key identifier: BB:26:C2:3A:37:CA:67:1C:0C:68:C8:BD:32:6F:61:D4:DC:D8:64:12 Authority key identifier: C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 Certificate issuer: /CN=A91F2DDD/serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Certificate serial: 0359 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft Manifest number: 11E9 Signing time: Sat 18 Oct 2025 18:18:57 +0000 Manifest this update: Sat 18 Oct 2025 18:18:56 +0000 Manifest next update: Sat 25 Oct 2025 18:18:56 +0000 Files and hashes: 1: ySTN5BVFl0tvV4MubGA7zIlm2eA.crl (hash: Uv9TWtGEhqGnS9J60yP1721W3dk/JdXxncBYghjEUGM=) 2: 2FBEB0B0D5B011EC90A8A031C4F9AE02.roa (hash: dTotqn1MA4iFciet41gKXuxTQQQVUzcSiuTmgAsBCPA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 18:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F2DDD, serialNumber=C924CDE41545974B6F57832E6C603BCC8966D9E0 Validity Not Before: Oct 18 18:18:56 2025 GMT Not After : Oct 25 18:18:56 2025 GMT Subject: CN=68f3da11-b356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:f6:98:f4:73:7c:b6:36:44:e5:1b:c0:78:1a: 67:42:56:ee:f3:5d:24:82:87:49:87:12:41:d5:75: 03:e6:61:a9:55:eb:4d:1e:1d:83:54:7a:aa:93:92: f3:00:76:1e:49:f3:82:b5:d7:64:53:d0:a1:68:50: 5b:bf:bd:c5:d7:21:87:80:3e:5d:27:be:2a:81:83: 9c:9b:d4:5a:cc:36:13:30:ea:f0:06:cf:b7:03:67: d9:7a:ed:e4:9d:8a:70:19:b6:2f:ed:75:3f:53:83: 97:55:6f:be:a2:c8:24:69:e6:34:5d:fa:22:78:70: ad:6c:a5:6f:a5:5e:7b:fd:1c:4f:1a:de:37:44:28: b6:2c:0e:4d:4f:36:a1:28:23:5a:43:f0:ff:ca:a2: 4c:62:6e:5d:6c:e8:81:ab:a0:ea:84:86:6b:b1:65: e4:ea:7a:5f:94:49:8d:07:94:cc:b6:c9:fd:bb:f1: e4:ad:8c:20:ce:30:15:ba:ef:af:d9:a2:8a:f1:9c: 95:90:b4:5c:11:4b:4d:98:0b:09:ef:54:59:a4:44: 82:0f:25:ef:ba:6e:b1:e8:f0:ff:dd:30:ac:52:83: 47:0f:64:9c:e7:ff:ab:92:44:4f:18:d7:db:fb:d2: b3:24:1a:91:2d:04:1e:35:f3:56:6b:04:7a:4f:65: 5b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:26:C2:3A:37:CA:67:1C:0C:68:C8:BD:32:6F:61:D4:DC:D8:64:12 X509v3 Authority Key Identifier: keyid:C9:24:CD:E4:15:45:97:4B:6F:57:83:2E:6C:60:3B:CC:89:66:D9:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ySTN5BVFl0tvV4MubGA7zIlm2eA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F2DDD/B4A283629E1B11E98E1E4E5EC4F9AE02/ySTN5BVFl0tvV4MubGA7zIlm2eA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:3f:b6:45:0b:46:2a:0d:1f:14:83:1a:ff:79:1e:97:29:86: cf:76:dc:2a:9c:cc:20:94:eb:b3:0e:13:a5:82:44:71:68:05: d5:9e:4a:b1:27:18:e8:ff:55:3f:cd:91:7e:f7:96:8f:5e:26: 89:78:69:78:2f:1f:06:64:81:9a:03:70:ac:2e:a5:9e:43:27: 36:b6:ed:9a:7e:f2:8e:17:c2:c1:19:e8:be:3e:c0:d8:49:dc: 5f:67:57:aa:df:38:a7:a9:05:8a:34:cb:ad:f4:71:95:67:f3: 8c:69:80:69:eb:ba:b2:e1:e4:ed:f5:79:ed:77:49:35:1a:13: 3c:8d:7b:9d:3b:7f:cf:1b:d1:f9:0f:a3:6a:cf:8e:05:c0:5a: da:a5:bb:4e:f1:5a:83:ee:75:f2:0a:5d:db:49:b9:36:f6:a8: 26:21:b5:aa:e6:bf:7d:2e:94:6c:38:7f:75:97:c5:a7:a2:80: f0:85:dd:af:61:3a:a1:6c:7b:29:0c:a1:06:5b:fd:66:2e:44: 3e:40:0f:5a:4d:7a:c8:58:61:c4:be:64:91:91:26:ed:2c:04: 65:f8:6e:a7:c4:ea:8d:98:31:16:ee:4f:e6:9f:89:7b:4f:96: 99:66:fa:e3:30:64:16:4a:19:c6:a2:32:56:d2:55:c8:9d:ca: 4a:30:99:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjJEREQxMTAvBgNVBAUTKEM5MjRDREU0MTU0NTk3NEI2RjU3ODMyRTZDNjAzQkND ODk2NkQ5RTAwHhcNMjUxMDE4MTgxODU2WhcNMjUxMDI1MTgxODU2WjAYMRYwFAYD VQQDEw02OGYzZGExMS1iMzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1vaY9HN8tjZE5RvAeBpnQlbu810kgodJhxJB1XUD5mGpVetNHh2DVHqqk5Lz AHYeSfOCtddkU9ChaFBbv73F1yGHgD5dJ74qgYOcm9RazDYTMOrwBs+3A2fZeu3k nYpwGbYv7XU/U4OXVW++osgkaeY0XfoieHCtbKVvpV57/RxPGt43RCi2LA5NTzah KCNaQ/D/yqJMYm5dbOiBq6DqhIZrsWXk6npflEmNB5TMtsn9u/HkrYwgzjAVuu+v 2aKK8ZyVkLRcEUtNmAsJ71RZpESCDyXvum6x6PD/3TCsUoNHD2Sc5/+rkkRPGNfb +9KzJBqRLQQeNfNWawR6T2Vb2QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsmwjo3 ymccDGjIvTJvYdTc2GQSMB8GA1UdIwQYMBaAFMkkzeQVRZdLb1eDLmxgO8yJZtng MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMkRERC9CNEEyODM2MjlF MUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmwwdHZWNE11YkdBN3pJbG0y ZUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lTVE41QlZGbDB0dlY0TXViR0E3eklsbTJlQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MkRERC9CNEEyODM2MjlFMUIxMUU5OEUxRTRFNUVDNEY5QUUwMi95U1RONUJWRmww dHZWNE11YkdBN3pJbG0yZUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMP7ZFC0YqDR8Ugxr/eR6XKYbPdtwqnMwglOuzDhOlgkRxaAXVnkqx Jxjo/1U/zZF+95aPXiaJeGl4Lx8GZIGaA3CsLqWeQyc2tu2afvKOF8LBGei+PsDY SdxfZ1eq3zinqQWKNMut9HGVZ/OMaYBp67qy4eTt9Xntd0k1GhM8jXudO3/PG9H5 D6Nqz44FwFrapbtO8VqD7nXyCl3bSbk29qgmIbWq5r99LpRsOH91l8WnooDwhd2v YTqhbHspDKEGW/1mLkQ+QA9aTXrIWGHEvmSRkSbtLARl+G6nxOqNmDEW7k/mn4l7 T5aZZvrjMGQWShnGojJW0lXIncpKMJng -----END CERTIFICATE-----Generated at Mon Oct 20 01:47:38 2025 by rpki-client