$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: k6vb0viRTQ+zfyymYZRSfRxqR3IZ9YJkWbMO7pDDz+k= Subject key identifier: F9:22:06:F6:9B:13:52:39:84:34:E5:A1:EC:69:07:FD:E6:D0:74:45 Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 011D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 011B Signing time: Sun 19 Oct 2025 07:38:24 +0000 Manifest this update: Sun 19 Oct 2025 07:38:23 +0000 Manifest next update: Sun 26 Oct 2025 07:38:23 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: vTWoE+0Eh+dZb4W+EJN9XxKNSD3w4aqJcaT55OWgLac=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:38:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Oct 19 07:38:23 2025 GMT Not After : Oct 26 07:38:23 2025 GMT Subject: CN=68f4956f-a03e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:97:3a:54:c5:f6:52:5e:dd:c6:9c:8f:b0:bf: 67:65:66:9a:1e:d3:7c:c3:d5:f9:03:a2:c5:ed:fd: 46:c7:f7:e6:97:73:12:01:35:94:1a:6a:5c:7e:f1: b6:dd:ff:2c:0b:99:8c:f6:64:6a:a9:8c:cd:09:7c: 2c:bf:99:b4:55:cd:0a:b7:e3:a1:8d:a4:0f:d7:9f: 35:66:8f:76:9b:d2:82:40:03:a0:12:1d:96:6e:a2: 37:eb:c5:28:f7:e9:e1:1f:cc:5e:e0:6f:fc:d2:11: fe:4a:e1:08:26:56:62:64:11:59:b2:a1:42:fa:bd: e4:51:ba:4c:a2:9a:26:09:43:3a:fb:c2:21:bf:b6: 3c:01:02:9f:21:5e:92:85:bd:77:07:18:16:66:1b: b3:14:19:aa:8c:c8:22:28:7e:4f:2d:f2:f1:7b:42: aa:fd:40:54:8c:37:0d:9b:c3:1a:7c:ff:7e:d2:fc: d0:e4:be:93:22:80:0d:da:44:60:c1:2e:fd:0a:d2: fb:80:cd:9e:e7:23:78:15:a4:19:1e:4a:03:bf:40: 1d:aa:ac:07:07:1e:dc:e4:88:71:ea:87:fd:0f:f8: 80:36:dc:bc:3a:3e:f3:69:fb:43:40:25:78:46:b7: ac:5d:ec:72:ef:d7:5b:a4:64:09:a6:1f:16:68:9e: 55:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:22:06:F6:9B:13:52:39:84:34:E5:A1:EC:69:07:FD:E6:D0:74:45 X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:7b:37:f4:b4:86:6a:5d:c7:53:f0:ad:8f:f9:09:30:d2:05: 97:56:e8:0b:d4:cf:22:65:82:ed:23:5b:31:51:8e:cb:e2:1f: 23:ae:55:e9:40:24:5a:a6:c8:31:0b:c8:d2:08:e5:57:91:c7: 1d:da:dc:53:7a:28:d8:26:b9:fc:10:d2:1b:d8:f2:e0:93:29: 09:0f:37:70:f1:64:74:80:05:3e:b6:76:7c:93:13:fd:7a:96: 70:f1:79:a9:86:eb:1d:7e:ea:27:33:c4:15:b6:30:0a:b7:d0: 80:0d:82:83:85:c2:76:4a:5d:e3:b1:c7:94:38:88:d1:9f:ca: 99:20:b7:5c:84:20:02:85:a4:73:3c:cd:17:c9:fe:7b:36:17: 91:b7:ce:ec:80:b3:ad:54:32:06:d1:49:5b:00:0b:af:12:05: ff:83:81:c4:6d:c1:07:01:ce:5a:ac:6a:ce:cf:4b:14:6b:83: f3:5b:a7:7c:a5:55:4f:a5:08:e6:5f:bc:ff:36:8e:87:9a:82: f0:19:b8:9b:7c:6b:db:62:2d:10:a3:08:23:bd:4c:e8:2f:65: 16:66:53:c5:fd:10:2b:52:0f:04:c9:ce:6b:6b:cf:12:1c:21: 1f:9b:ce:68:43:8c:aa:1e:cf:82:80:46:f9:46:00:af:53:88: 47:33:24:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUxMDE5MDczODIzWhcNMjUxMDI2MDczODIzWjAYMRYwFAYD VQQDEw02OGY0OTU2Zi1hMDNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJc6VMX2Ul7dxpyPsL9nZWaaHtN8w9X5A6LF7f1Gx/fml3MSATWUGmpcfvG2 3f8sC5mM9mRqqYzNCXwsv5m0Vc0Kt+OhjaQP1581Zo92m9KCQAOgEh2WbqI368Uo 9+nhH8xe4G/80hH+SuEIJlZiZBFZsqFC+r3kUbpMopomCUM6+8Ihv7Y8AQKfIV6S hb13BxgWZhuzFBmqjMgiKH5PLfLxe0Kq/UBUjDcNm8MafP9+0vzQ5L6TIoAN2kRg wS79CtL7gM2e5yN4FaQZHkoDv0AdqqwHBx7c5Ihx6of9D/iANty8Oj7zaftDQCV4 RresXexy79dbpGQJph8WaJ5VYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkiBvab E1I5hDTloexpB/3m0HRFMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBmezf0tIZqXcdT8K2P+Qkw0gWXVugL1M8iZYLtI1sxUY7L4h8jrlXp QCRapsgxC8jSCOVXkccd2txTeijYJrn8ENIb2PLgkykJDzdw8WR0gAU+tnZ8kxP9 epZw8XmphusdfuonM8QVtjAKt9CADYKDhcJ2Sl3jsceUOIjRn8qZILdchCAChaRz PM0Xyf57NheRt87sgLOtVDIG0UlbAAuvEgX/g4HEbcEHAc5arGrOz0sUa4PzW6d8 pVVPpQjmX7z/No6HmoLwGbibfGvbYi0QowgjvUzoL2UWZlPF/RArUg8Eyc5ra88S HCEfm85oQ4yqHs+CgEb5RgCvU4hHMyRY -----END CERTIFICATE-----Generated at Mon Oct 20 07:45:02 2025 by rpki-client