$ rpki-client -vvf rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft File: YGtPQu6X90iOwgtj2LGq9tQtnKc.mft (raw, json) Hash identifier: DZIbkJzHGMKVoQMB0R/jF45/aJ4UZhTLdV7uVXJElrE= Subject key identifier: BF:87:FA:1F:2A:52:7F:BE:48:52:D6:C6:06:BA:92:F9:A2:DB:22:EE Authority key identifier: 60:6B:4F:42:EE:97:F7:48:8E:C2:0B:63:D8:B1:AA:F6:D4:2D:9C:A7 Certificate issuer: /CN=A91523FF/serialNumber=606B4F42EE97F7488EC20B63D8B1AAF6D42D9CA7 Certificate serial: 21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft Manifest number: 20 Signing time: Mon 03 Nov 2025 07:45:16 +0000 Manifest this update: Mon 03 Nov 2025 07:45:15 +0000 Manifest next update: Mon 10 Nov 2025 07:45:15 +0000 Files and hashes: 1: YGtPQu6X90iOwgtj2LGq9tQtnKc.crl (hash: j/E+xL419B+w+9Sj75qFimfnHzk/+KhRY2x9jQDFn0o=) 2: 720ED6F487CB11F0B605C67DC4F9AE02.roa (hash: Rjr6eKNeN1KpnMLB6OZbv1JZX2fU2WirfbjPXhZ6QK4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.crl rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:45:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91523FF, serialNumber=606B4F42EE97F7488EC20B63D8B1AAF6D42D9CA7 Validity Not Before: Nov 3 07:45:15 2025 GMT Not After : Nov 10 07:45:15 2025 GMT Subject: CN=69085d8b-b6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:04:ab:af:05:05:01:a3:00:28:17:22:d6:9b: 76:73:80:43:01:86:46:60:1d:39:2b:af:5c:59:d9: 91:0d:54:ed:86:6f:95:cc:ae:29:26:ab:7b:bd:9d: 95:25:06:01:ce:0a:a6:2d:1d:69:9b:d7:9f:23:fa: 49:fa:f9:88:70:bf:a1:f7:9c:eb:43:ca:33:73:da: 1f:f4:b4:32:ba:de:e0:73:e3:34:e4:21:49:f0:77: cd:e8:89:89:35:36:02:64:12:7e:2b:d4:27:d7:5f: de:be:41:c1:45:69:ac:bc:97:fa:62:60:26:6d:2c: 0a:e1:40:81:35:2d:64:f6:2c:e1:ab:c8:53:0c:53: 16:2a:5c:15:8f:69:56:5b:64:d8:c4:0c:ad:24:b6: 86:ab:8e:69:f4:8a:7f:f3:bc:a3:4e:33:42:69:ac: 2d:37:d5:cb:12:57:05:63:f3:86:b9:b8:4a:6f:8d: b1:5d:37:e5:fd:a4:3e:7d:69:ab:2d:61:17:86:96: ac:ca:78:77:ee:c4:3f:d9:8a:3d:fa:03:4c:91:a3: 91:8d:95:40:80:b4:1d:09:db:15:87:41:19:65:45: e5:6a:1f:ec:42:be:e3:38:3f:05:dd:39:04:41:9d: 22:66:4d:0d:d5:fc:da:7f:c7:87:73:e5:b9:3e:04: bf:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:87:FA:1F:2A:52:7F:BE:48:52:D6:C6:06:BA:92:F9:A2:DB:22:EE X509v3 Authority Key Identifier: keyid:60:6B:4F:42:EE:97:F7:48:8E:C2:0B:63:D8:B1:AA:F6:D4:2D:9C:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YGtPQu6X90iOwgtj2LGq9tQtnKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91523FF/200C377A87CB11F0802B227DC4F9AE02/YGtPQu6X90iOwgtj2LGq9tQtnKc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:f9:00:6e:a9:34:8d:82:c4:22:4e:b7:f8:e6:54:52:d1:8c: c8:aa:ee:c1:77:e1:a0:97:15:6e:fa:ec:7b:46:39:c8:c7:1f: 84:5e:f3:35:58:fc:a9:f6:e6:2d:75:3d:4a:23:02:21:7b:17: dc:49:33:56:e9:20:00:a5:8d:55:88:05:07:da:fa:b5:9e:e1: 62:cb:13:98:42:72:64:d4:c9:76:cc:4a:96:05:50:fb:a3:41: 44:2f:fd:f0:60:85:fa:72:fe:5a:1d:24:3e:78:d8:d4:b9:03: d5:c7:ab:e7:17:86:75:56:7e:dc:a3:41:cb:a5:a4:f4:f7:eb: 18:1d:7a:be:87:bd:0b:45:fa:97:d1:00:51:fb:24:20:f9:68: 7b:10:8e:d6:47:a4:d1:6f:70:3b:a4:75:df:ff:2c:a5:1a:3e: 27:2f:89:b4:39:5f:4f:37:21:b5:f4:3e:4f:28:59:2a:19:24: e6:2a:8a:22:bd:d5:e4:3b:10:44:d5:6d:29:ab:5c:9b:68:0c: 7a:5e:88:c5:98:cc:38:b3:f8:38:2a:82:5d:ee:42:39:27:c6: de:eb:71:9f:74:3c:11:35:7d:41:50:35:07:b0:b6:ca:dd:f9: b8:18:e1:54:5b:54:b4:cb:86:bc:5c:8b:43:62:79:99:99:2f: 0d:c8:91:1e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MjNGRjExMC8GA1UEBRMoNjA2QjRGNDJFRTk3Rjc0ODhFQzIwQjYzRDhCMUFBRjZE NDJEOUNBNzAeFw0yNTExMDMwNzQ1MTVaFw0yNTExMTAwNzQ1MTVaMBgxFjAUBgNV BAMTDTY5MDg1ZDhiLWI2YTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxBKuvBQUBowAoFyLWm3ZzgEMBhkZgHTkrr1xZ2ZENVO2Gb5XMrikmq3u9nZUl BgHOCqYtHWmb158j+kn6+Yhwv6H3nOtDyjNz2h/0tDK63uBz4zTkIUnwd83oiYk1 NgJkEn4r1CfXX96+QcFFaay8l/piYCZtLArhQIE1LWT2LOGryFMMUxYqXBWPaVZb ZNjEDK0ktoarjmn0in/zvKNOM0JprC031csSVwVj84a5uEpvjbFdN+X9pD59aast YReGlqzKeHfuxD/Zij36A0yRo5GNlUCAtB0J2xWHQRllReVqH+xCvuM4PwXdOQRB nSJmTQ3V/Np/x4dz5bk+BL+hAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUv4f6HypS f75IUtbGBrqS+aLbIu4wHwYDVR0jBBgwFoAUYGtPQu6X90iOwgtj2LGq9tQtnKcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUyM0ZGLzIwMEMzNzdBODdD QjExRjA4MDJCMjI3REM0RjlBRTAyL1lHdFBRdTZYOTBpT3dndGoyTEdxOXRRdG5L Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUd0UFF1Nlg5MGlPd2d0ajJMR3E5dFF0bktjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUy M0ZGLzIwMEMzNzdBODdDQjExRjA4MDJCMjI3REM0RjlBRTAyL1lHdFBRdTZYOTBp T3dndGoyTEdxOXRRdG5LYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAKr5AG6pNI2CxCJOt/jmVFLRjMiq7sF34aCXFW767HtGOcjHH4Re8zVY /Kn25i11PUojAiF7F9xJM1bpIACljVWIBQfa+rWe4WLLE5hCcmTUyXbMSpYFUPuj QUQv/fBghfpy/lodJD542NS5A9XHq+cXhnVWftyjQculpPT36xgder6HvQtF+pfR AFH7JCD5aHsQjtZHpNFvcDukdd//LKUaPicvibQ5X083IbX0Pk8oWSoZJOYqiiK9 1eQ7EETVbSmrXJtoDHpeiMWYzDiz+Dgqgl3uQjknxt7rcZ90PBE1fUFQNQewtsrd +bgY4VRbVLTLhrxci0NieZmZLw3IkR4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:43 2025 by rpki-client