$ rpki-client -vvf rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft File: ry1FO-u_318ptjrBZ1THjRsPy4g.mft (raw, json) Hash identifier: OfehJmMQX1Ga+v5F4E6LsK30Pxlj2UsRPiQBLR/HL6U= Subject key identifier: F4:A5:28:1B:63:98:B3:45:09:F6:84:34:5D:AE:D3:4A:FF:70:CE:4F Authority key identifier: AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 Certificate issuer: /CN=A91557BA/serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Certificate serial: 0CA3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft Manifest number: 0C99 Signing time: Tue 04 Nov 2025 18:23:32 +0000 Manifest this update: Tue 04 Nov 2025 18:23:31 +0000 Manifest next update: Tue 11 Nov 2025 18:23:31 +0000 Files and hashes: 1: ry1FO-u_318ptjrBZ1THjRsPy4g.crl (hash: V7p0NsdRCzLSjHj+LZMhknk6Iz+S/ExVnWjPgHFqY4c=) 2: 157A1BFC59EE11EBA398AA0AC4F9AE02.roa (hash: QXDdzYa6iyzovy5Z9ik5QXaJEcfXc3NGsSzn/V3Ryt4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:23:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3235 (0xca3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557BA, serialNumber=AF2D453BEBBFDF5F29B63AC16754C78D1B0FCB88 Validity Not Before: Nov 4 18:23:31 2025 GMT Not After : Nov 11 18:23:31 2025 GMT Subject: CN=690a44a4-7897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:fc:11:fd:8e:7f:91:08:23:4e:90:09:78:12: 95:4e:31:f1:61:86:27:c5:bc:f5:55:9b:35:1d:ad: 69:95:99:97:53:c6:37:21:ba:d4:14:16:f9:db:60: c0:fa:06:ff:a4:5d:6b:36:e1:f6:6c:e8:2e:6a:41: 31:fa:d0:1f:23:b1:09:bf:72:fb:21:d4:89:0e:ac: e5:78:f4:d3:30:c0:62:74:57:27:3c:43:a2:cb:05: 9f:1c:a5:6b:38:5e:a5:18:7c:43:0e:51:2c:4e:9a: 9f:9d:62:6f:48:74:50:00:92:80:8c:6d:61:20:5a: 7c:0e:4d:26:c0:f7:7b:e8:04:e2:9f:53:ef:d2:05: cc:24:be:6a:11:9e:5f:0a:47:51:8c:60:39:9c:e1: 5b:c4:27:18:46:18:37:e0:fa:ee:1a:da:61:8a:6c: 3d:48:de:0d:86:3b:bc:c0:93:d8:f5:01:11:fb:fc: 8a:6e:90:52:f2:eb:98:d3:38:fd:8c:69:3c:f9:c6: 48:5f:56:2f:60:3e:ba:5b:c6:e6:6f:3c:ef:80:bf: a8:a8:4a:4c:06:49:25:1b:ac:68:b5:82:5b:12:a0: 69:d3:85:dc:b0:3e:fd:91:9b:63:4f:ae:e1:8d:67: 42:54:cc:66:5f:00:78:55:96:b1:fb:4f:75:c3:da: 1d:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:A5:28:1B:63:98:B3:45:09:F6:84:34:5D:AE:D3:4A:FF:70:CE:4F X509v3 Authority Key Identifier: keyid:AF:2D:45:3B:EB:BF:DF:5F:29:B6:3A:C1:67:54:C7:8D:1B:0F:CB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ry1FO-u_318ptjrBZ1THjRsPy4g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557BA/6812DF9204EB11EAA72FA363C4F9AE02/ry1FO-u_318ptjrBZ1THjRsPy4g.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:2e:21:f1:aa:e0:7a:6e:18:8b:38:0f:d0:8b:bb:be:d7:2e: 49:d6:fa:e4:4a:7e:7e:75:d4:e5:a8:81:ad:ae:8a:ff:b6:61: 58:92:31:b8:e7:a9:04:77:04:3e:fb:33:c2:ed:f2:f6:76:d5: 19:35:f3:7b:c0:11:05:3e:68:3e:66:1b:1c:54:83:20:6a:48: 26:eb:4f:d4:5a:7a:b1:4c:c5:18:5e:83:ef:94:db:a5:43:fa: 31:5a:a8:99:dc:26:df:06:d0:d0:08:85:9a:a5:08:27:b7:6a: e7:ca:58:d0:88:ed:5d:7a:22:11:11:ef:8e:71:d5:20:f6:b3: fc:9a:20:3b:4c:5a:9d:b1:52:fe:03:48:21:23:06:32:6b:82: 41:9e:0d:8a:ae:e9:49:ac:9e:ae:5d:27:60:2b:c1:00:90:99: 01:8c:f6:6a:b6:97:8b:59:56:fa:34:9e:f0:20:fb:81:db:49: 67:aa:8d:5f:58:2f:5e:15:23:9a:49:0b:4a:a7:b9:af:be:3a: b0:83:04:67:52:40:f1:87:c8:c6:a6:ad:3f:42:ed:35:39:06: 80:46:a4:80:ec:2b:6c:09:4b:72:c8:6c:0b:b5:71:83:5d:88: 98:e2:7b:54:2f:8a:a7:c2:2b:be:f4:9b:c1:ac:48:da:82:c3: 7c:bd:5f:b7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3QkExMTAvBgNVBAUTKEFGMkQ0NTNCRUJCRkRGNUYyOUI2M0FDMTY3NTRDNzhE MUIwRkNCODgwHhcNMjUxMTA0MTgyMzMxWhcNMjUxMTExMTgyMzMxWjAYMRYwFAYD VQQDEw02OTBhNDRhNC03ODk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxPwR/Y5/kQgjTpAJeBKVTjHxYYYnxbz1VZs1Ha1plZmXU8Y3IbrUFBb522DA +gb/pF1rNuH2bOguakEx+tAfI7EJv3L7IdSJDqzlePTTMMBidFcnPEOiywWfHKVr OF6lGHxDDlEsTpqfnWJvSHRQAJKAjG1hIFp8Dk0mwPd76ATin1Pv0gXMJL5qEZ5f CkdRjGA5nOFbxCcYRhg34PruGtphimw9SN4Nhju8wJPY9QER+/yKbpBS8uuY0zj9 jGk8+cZIX1YvYD66W8bmbzzvgL+oqEpMBkklG6xotYJbEqBp04XcsD79kZtjT67h jWdCVMxmXwB4VZax+091w9odlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPSlKBtj mLNFCfaENF2u00r/cM5PMB8GA1UdIwQYMBaAFK8tRTvrv99fKbY6wWdUx40bD8uI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdCQS82ODEyREY5MjA0 RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMxOHB0anJCWjFUSGpSc1B5 NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3J5MUZPLXVfMzE4cHRqckJaMVRIalJzUHk0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTdCQS82ODEyREY5MjA0RUIxMUVBQTcyRkEzNjNDNEY5QUUwMi9yeTFGTy11XzMx OHB0anJCWjFUSGpSc1B5NGcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVLiHxquB6bhiLOA/Qi7u+1y5J1vrkSn5+ddTlqIGtror/tmFYkjG4 56kEdwQ++zPC7fL2dtUZNfN7wBEFPmg+ZhscVIMgakgm60/UWnqxTMUYXoPvlNul Q/oxWqiZ3CbfBtDQCIWapQgnt2rnyljQiO1deiIREe+OcdUg9rP8miA7TFqdsVL+ A0ghIwYya4JBng2KrulJrJ6uXSdgK8EAkJkBjPZqtpeLWVb6NJ7wIPuB20lnqo1f WC9eFSOaSQtKp7mvvjqwgwRnUkDxh8jGpq0/Qu01OQaARqSA7CtsCUtyyGwLtXGD XYiY4ntUL4qnwiu+9JvBrEjagsN8vV+3 -----END CERTIFICATE-----Generated at Wed Nov 5 04:48:34 2025 by rpki-client