$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft File: YmfJfrSg3wHtvW-dQahqh54CeX8.mft (raw, json) Hash identifier: DvlpyA0UlcaX9Q1PRT6lkhQaB07lycFlC9r7LURjYPU= Subject key identifier: F3:7A:A4:E3:3B:D9:FA:A2:83:F3:2E:A4:54:14:87:7E:09:54:68:92 Authority key identifier: 62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F Certificate issuer: /CN=A91FA66B/serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Certificate serial: 01EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft Manifest number: 01EC Signing time: Sun 19 Oct 2025 05:02:30 +0000 Manifest this update: Sun 19 Oct 2025 05:02:30 +0000 Manifest next update: Sun 26 Oct 2025 05:02:30 +0000 Files and hashes: 1: YmfJfrSg3wHtvW-dQahqh54CeX8.crl (hash: NRtZ2UcodiJqWaMwSSGp4hmoeG1PqYRgIedHPRtA7LA=) 2: B2DE2498C4FD11ED909F2770C4F9AE02.roa (hash: sz+mmIZs/29Io2xKT3w1Go850hnuQbV97uqO5OCD7zA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:02:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA66B, serialNumber=6267C97EB4A0DF01EDBD6F9D41A86A879E02797F Validity Not Before: Oct 19 05:02:30 2025 GMT Not After : Oct 26 05:02:30 2025 GMT Subject: CN=68f470e6-1697 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:a3:0b:e8:ef:5c:aa:54:98:55:aa:4c:69:0a: 6c:2b:2b:ed:c0:a6:b7:73:5f:9c:dd:1a:96:97:71: 2e:df:2c:cc:7b:53:d9:fc:63:d1:15:d7:5c:89:3f: 60:16:a6:f6:67:d2:03:5c:44:9c:83:23:65:ad:c8: 45:ad:cd:8c:83:73:91:10:16:48:cd:7f:6c:99:a9: e5:49:9d:8a:3e:3d:b6:95:f1:9e:c0:e2:95:12:60: a2:5f:f2:28:ab:30:05:0c:3b:7a:e8:7c:34:e4:f7: 01:0e:69:aa:41:35:a8:da:e7:8f:91:cf:d9:d5:69: 6a:e3:a6:c8:82:5d:b4:a2:da:e9:b3:1f:43:82:d6: c1:0c:72:aa:30:da:5b:7c:9f:1a:8a:2e:a8:a1:50: 5b:45:63:ce:7b:f9:f4:3b:4a:69:b0:2f:2a:37:53: c8:25:88:93:ad:ff:29:b0:e1:87:f6:39:79:bd:2d: f0:8a:09:14:19:d6:8d:ae:32:bb:c6:6c:d3:14:cb: 45:1a:d2:e4:1a:0d:ff:7f:e3:ef:44:74:cf:cc:94: a5:fc:40:40:ce:a8:6d:40:b0:21:22:70:6a:60:c8: 29:78:da:c4:70:12:84:81:95:62:20:45:61:0e:07: a0:39:1a:fc:5e:82:41:a9:b1:60:46:8a:8a:2d:10: 1f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7A:A4:E3:3B:D9:FA:A2:83:F3:2E:A4:54:14:87:7E:09:54:68:92 X509v3 Authority Key Identifier: keyid:62:67:C9:7E:B4:A0:DF:01:ED:BD:6F:9D:41:A8:6A:87:9E:02:79:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmfJfrSg3wHtvW-dQahqh54CeX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA66B/142BCB96C4FA11ED9BDF3157C4F9AE02/YmfJfrSg3wHtvW-dQahqh54CeX8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:53:8f:93:6f:41:f9:33:2e:fd:35:54:11:ae:8c:91:a9:f3: 52:c5:c2:1f:5f:d4:f5:18:17:9c:2b:d2:98:b6:b6:00:3c:1d: 02:ee:e7:5c:d9:8a:8e:b2:0c:8a:96:67:31:4f:a8:d1:7d:f1: 69:83:3b:42:33:84:06:f6:99:4d:1b:2a:a8:50:9d:30:77:e5: 69:c4:2c:79:16:64:23:89:a8:ee:00:6f:7c:18:d0:7c:41:db: f2:23:95:c6:dc:cd:d0:c5:47:b6:2f:05:70:24:1d:5e:53:ff: a2:d4:56:4e:ce:03:a5:eb:21:8e:29:f2:e6:f4:61:4b:a1:b3: cd:85:4b:6c:27:f1:20:5d:09:b9:e8:b0:25:0d:ee:3e:82:1a: da:2f:50:af:a3:2f:ee:7a:30:d7:16:83:d3:3c:dc:1b:2b:c9: bf:e8:0c:e4:50:c5:f4:33:5f:29:e1:f8:6d:c9:df:f0:43:e6: 93:c4:3a:9d:96:86:6b:ab:86:8f:31:10:e5:54:89:ce:5c:2c: f6:41:e1:15:90:d9:ab:4d:58:95:1c:60:89:8b:ef:3e:4f:7d: c6:a6:fd:16:d5:82:73:99:e5:16:c5:9f:08:4e:15:b7:08:ea: 8f:5d:99:90:48:f8:98:2d:a0:5d:0c:3d:65:07:88:29:49:87: 67:94:c6:8d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE2NkIxMTAvBgNVBAUTKDYyNjdDOTdFQjRBMERGMDFFREJENkY5RDQxQTg2QTg3 OUUwMjc5N0YwHhcNMjUxMDE5MDUwMjMwWhcNMjUxMDI2MDUwMjMwWjAYMRYwFAYD VQQDEw02OGY0NzBlNi0xNjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/aML6O9cqlSYVapMaQpsKyvtwKa3c1+c3RqWl3Eu3yzMe1PZ/GPRFddciT9g Fqb2Z9IDXEScgyNlrchFrc2Mg3OREBZIzX9smanlSZ2KPj22lfGewOKVEmCiX/Io qzAFDDt66Hw05PcBDmmqQTWo2uePkc/Z1Wlq46bIgl20otrpsx9DgtbBDHKqMNpb fJ8aii6ooVBbRWPOe/n0O0ppsC8qN1PIJYiTrf8psOGH9jl5vS3wigkUGdaNrjK7 xmzTFMtFGtLkGg3/f+PvRHTPzJSl/EBAzqhtQLAhInBqYMgpeNrEcBKEgZViIEVh DgegORr8XoJBqbFgRoqKLRAfmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPN6pOM7 2fqig/MupFQUh34JVGiSMB8GA1UdIwQYMBaAFGJnyX60oN8B7b1vnUGoaoeeAnl/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTY2Qi8xNDJCQ0I5NkM0 RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3SHR2Vy1kUWFocWg1NENl WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltZkpmclNnM3dIdHZXLWRRYWhxaDU0Q2VYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTY2Qi8xNDJCQ0I5NkM0RkExMUVEOUJERjMxNTdDNEY5QUUwMi9ZbWZKZnJTZzN3 SHR2Vy1kUWFocWg1NENlWDgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMU4+Tb0H5My79NVQRroyRqfNSxcIfX9T1GBecK9KYtrYAPB0C7udc 2YqOsgyKlmcxT6jRffFpgztCM4QG9plNGyqoUJ0wd+VpxCx5FmQjiajuAG98GNB8 QdvyI5XG3M3QxUe2LwVwJB1eU/+i1FZOzgOl6yGOKfLm9GFLobPNhUtsJ/EgXQm5 6LAlDe4+ghraL1Cvoy/uejDXFoPTPNwbK8m/6AzkUMX0M18p4fhtyd/wQ+aTxDqd loZrq4aPMRDlVInOXCz2QeEVkNmrTViVHGCJi+8+T33Gpv0W1YJzmeUWxZ8IThW3 COqPXZmQSPiYLaBdDD1lB4gpSYdnlMaN -----END CERTIFICATE-----Generated at Mon Oct 20 19:26:19 2025 by rpki-client