$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: a6pbIpwMfE/MDU0f2gly3iMh2lSMeKX6HEgn6MkBDos= Subject key identifier: 07:01:AE:E8:C4:7E:D7:97:F7:6C:0A:B0:54:4B:06:1F:06:84:11:B1 Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 035D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0359 Signing time: Sun 19 Oct 2025 03:01:12 +0000 Manifest this update: Sun 19 Oct 2025 03:01:11 +0000 Manifest next update: Sun 26 Oct 2025 03:01:11 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: QRXcmMno/BfWC/f1TzR447crDxFILWpa9R3gUN2n8kc=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:01:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 861 (0x35d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Oct 19 03:01:11 2025 GMT Not After : Oct 26 03:01:11 2025 GMT Subject: CN=68f45477-d330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:8e:72:ec:e7:c7:09:04:4d:f7:e9:95:86:ac: 12:f9:18:de:c7:bc:73:ba:aa:d0:a3:0b:e5:70:17: 68:74:4b:1b:72:6d:4b:05:37:a0:c4:71:3c:25:06: 6f:bc:1d:d9:21:12:30:8d:fa:10:5f:ec:e0:4c:09: fb:67:08:6c:24:26:78:2b:cd:e4:15:42:8b:a0:9f: 1c:9e:b5:ca:2a:df:3a:2c:3c:98:4c:7d:4c:a3:38: 16:32:61:94:0c:95:37:01:2d:71:50:10:8a:ca:d2: 23:47:c4:96:92:b0:3f:32:fc:dd:a9:2f:62:60:4a: 40:55:8b:1b:99:60:6d:85:8b:10:76:6c:ac:4e:b4: ba:88:6c:e8:ce:05:6b:3c:69:14:fa:04:e1:29:6c: a5:8c:35:03:03:10:14:1e:00:50:b4:84:a0:03:25: 86:a8:dc:ce:d4:59:cb:53:e7:a7:c2:d6:8b:24:ca: 34:1e:62:e8:31:7e:3c:5f:c5:cf:79:51:6b:5e:6e: a1:8a:6e:75:f3:fa:5c:29:a4:14:63:6e:bf:5d:7f: 6f:ad:31:fc:9a:6c:a5:17:24:66:16:e7:90:84:49: 7e:a0:0d:6c:b7:c3:41:59:18:a3:3b:70:15:1b:d6: 8f:51:8e:2f:ec:4c:21:b5:01:70:2f:37:d6:28:9d: d4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:01:AE:E8:C4:7E:D7:97:F7:6C:0A:B0:54:4B:06:1F:06:84:11:B1 X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:54:0b:05:c5:79:c6:b5:b6:bb:96:15:2b:11:e5:42:6b:f3: f5:50:6a:2c:95:a2:b2:b3:66:03:81:59:be:b9:bc:65:37:4a: db:27:e2:52:68:07:b2:ad:d5:1b:3d:81:1d:13:99:71:02:e7: 8f:43:a5:8a:f8:8a:6d:c6:a8:a5:8e:a5:ef:59:13:ef:1d:a1: e9:aa:c9:3e:ad:63:d8:06:73:31:42:e9:96:52:15:02:32:53: 2e:0f:1f:16:56:de:0d:ce:d8:ef:12:ac:6c:2f:bb:95:2a:9a: 68:2a:08:f2:62:36:de:02:99:45:62:23:f3:6c:b1:39:dc:f9: 9d:3d:03:b8:8f:39:8e:c8:ff:88:d0:ad:e5:f8:0d:45:06:54: 2b:81:39:aa:b4:98:b8:d5:32:a0:42:44:4c:6f:fd:ff:6a:0c: 7e:b9:de:74:95:bb:78:ae:21:db:6c:32:ba:86:09:05:b0:6d: 78:38:25:b2:e3:c2:5c:51:0b:31:25:ee:fa:a2:ac:27:be:79: dc:4a:9e:f3:9a:70:53:78:89:b2:cc:52:21:15:b6:cd:aa:69: 58:e9:ef:94:ad:a1:68:fe:77:b2:6a:f2:42:97:96:75:ca:6c: 59:57:be:a6:83:d6:33:bb:68:72:8a:b5:69:40:e3:15:1d:18: e9:03:81:18 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA10wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUxMDE5MDMwMTExWhcNMjUxMDI2MDMwMTExWjAYMRYwFAYD VQQDEw02OGY0NTQ3Ny1kMzMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApI5y7OfHCQRN9+mVhqwS+Rjex7xzuqrQowvlcBdodEsbcm1LBTegxHE8JQZv vB3ZIRIwjfoQX+zgTAn7ZwhsJCZ4K83kFUKLoJ8cnrXKKt86LDyYTH1MozgWMmGU DJU3AS1xUBCKytIjR8SWkrA/MvzdqS9iYEpAVYsbmWBthYsQdmysTrS6iGzozgVr PGkU+gThKWyljDUDAxAUHgBQtISgAyWGqNzO1FnLU+enwtaLJMo0HmLoMX48X8XP eVFrXm6him518/pcKaQUY26/XX9vrTH8mmylFyRmFueQhEl+oA1st8NBWRijO3AV G9aPUY4v7EwhtQFwLzfWKJ3UnwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAcBrujE fteX92wKsFRLBh8GhBGxMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAMVAsFxXnGtba7lhUrEeVCa/P1UGoslaKys2YDgVm+ubxlN0rbJ+JS aAeyrdUbPYEdE5lxAuePQ6WK+IptxqiljqXvWRPvHaHpqsk+rWPYBnMxQumWUhUC MlMuDx8WVt4NztjvEqxsL7uVKppoKgjyYjbeAplFYiPzbLE53PmdPQO4jzmOyP+I 0K3l+A1FBlQrgTmqtJi41TKgQkRMb/3/agx+ud50lbt4riHbbDK6hgkFsG14OCWy 48JcUQsxJe76oqwnvnncSp7zmnBTeImyzFIhFbbNqmlY6e+UraFo/neyavJCl5Z1 ymxZV76mg9Yzu2hyirVpQOMVHRjpA4EY -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:19 2025 by rpki-client