$ rpki-client -vvf rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft File: ypDU0hJfAza1OY7gmXcpby5AkrQ.mft (raw, json) Hash identifier: SWLdzagUNQKeeFuT9+nQaHe32iTDSvX8LuKHPS+Tyr0= Subject key identifier: 67:2D:E5:C1:C1:D0:B2:61:E0:90:CA:7E:AB:6F:B9:43:FF:71:B4:6A Authority key identifier: CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 Certificate issuer: /CN=A91580D2/serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Certificate serial: 02E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft Manifest number: 02C9 Signing time: Mon 03 Nov 2025 01:27:57 +0000 Manifest this update: Mon 03 Nov 2025 01:27:56 +0000 Manifest next update: Mon 10 Nov 2025 01:27:56 +0000 Files and hashes: 1: ypDU0hJfAza1OY7gmXcpby5AkrQ.crl (hash: ejSFNpQHoku6CclesF+WwbkNCq94/q+fxlaC+C1+RRs=) 2: 69F7328030A611F0BBA4642EC4F9AE02.roa (hash: LeMbdehFC4fTf/TGuaoRSnOw0VY+BgZy7lQOEpG5vyc=) 3: 39FCB4EC4F4E11EDB169BF33C4F9AE02.roa (hash: 0dIG8fQMRzlILpkTDJVo/XSoC64SAKbRto45S4Eicvs=) 4: 4D608CC0800211EF81167A23C4F9AE02.roa (hash: ZQQKFp5iiDEIGLxVFz3G6lECRRriefFnadRp8yKcQoY=) 5: 61A03234B57C11F0B3EF6D44C4F9AE02.roa (hash: 9e8VBn0H1wXLyPpw6Kc9DOuqhueaOglr89Wu4VeUJnM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:27:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 742 (0x2e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580D2, serialNumber=CA90D4D2125F0336B5398EE09977296F2E4092B4 Validity Not Before: Nov 3 01:27:56 2025 GMT Not After : Nov 10 01:27:56 2025 GMT Subject: CN=6908051c-9f05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a8:e3:9b:fe:84:d0:72:b4:e0:09:43:df:7e: 92:dc:f0:ed:fe:94:c7:85:32:ad:5d:41:00:e5:7b: ff:b2:29:3a:5a:37:eb:c8:67:87:96:eb:b2:a2:1c: f4:0c:de:8a:58:b0:31:63:a9:de:24:aa:c5:ca:f6: 1d:63:10:a9:b7:9b:50:f3:be:cd:4f:e5:02:2a:e4: a7:4a:91:0d:91:bb:08:7b:40:5c:20:37:2e:ee:1e: d1:1a:b4:d1:98:7f:ce:1b:c4:9f:72:2a:37:d8:4e: 95:3a:15:11:9b:09:23:d7:c9:40:de:ba:36:e9:5b: 56:9c:da:ea:e8:8f:23:b5:2a:65:09:e4:64:d3:a2: 97:1a:99:e0:a4:02:ce:bb:89:14:17:eb:e4:bd:b8: 86:57:91:46:ae:0e:81:74:2f:54:84:9f:36:83:13: 39:5e:50:69:56:b6:91:e8:d8:25:4f:97:62:4e:83: 96:e1:b0:3b:6f:b3:8b:71:3e:0b:96:cd:5d:84:82: f4:37:a3:e7:b7:f7:aa:17:f5:23:e0:b8:83:fc:03: cf:c4:48:93:0b:5c:1f:75:69:93:a5:f5:d9:91:3a: 59:e8:a4:42:e6:20:6a:2e:24:60:2f:66:aa:82:63: 7b:48:f0:c9:40:7c:cc:84:0c:23:9b:0d:e3:c3:18: 74:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:2D:E5:C1:C1:D0:B2:61:E0:90:CA:7E:AB:6F:B9:43:FF:71:B4:6A X509v3 Authority Key Identifier: keyid:CA:90:D4:D2:12:5F:03:36:B5:39:8E:E0:99:77:29:6F:2E:40:92:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ypDU0hJfAza1OY7gmXcpby5AkrQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580D2/EBC1AC2C184F11EDADBC3C65C4F9AE02/ypDU0hJfAza1OY7gmXcpby5AkrQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 61:c0:42:45:00:87:12:b4:9e:5c:36:06:48:76:77:3f:10:87: 52:f4:0e:4a:3c:7e:21:fe:bd:ee:4d:af:7f:cb:9e:69:18:ce: b0:18:84:59:ec:eb:34:4e:53:f1:d6:9e:42:c4:7b:e5:69:e8: 12:54:d0:a3:cd:99:5a:51:2c:31:86:cb:22:a5:98:a3:51:61: c6:39:be:6e:95:0b:41:3d:c0:0c:20:eb:8e:fc:91:18:90:a6: 80:86:22:df:b3:5c:8b:46:f0:25:ed:3c:01:61:5e:8b:7f:45: 3e:54:06:87:1d:68:ec:8a:15:c4:aa:46:8f:3f:e3:24:a9:18: 40:1a:8e:ae:4a:17:0d:5a:47:47:37:26:c6:af:f9:dd:ac:ec: 38:e9:43:01:5f:bc:07:1c:3d:2f:07:ee:27:d4:bd:77:fe:1e: 29:8c:e3:82:9d:3a:e2:09:7c:c7:58:52:25:0d:87:0b:26:5e: 29:cd:72:6c:2b:b9:30:bd:39:05:47:88:46:d5:4a:34:25:52: f1:b6:61:de:09:33:47:83:d0:19:08:24:cd:b5:b8:6b:3f:a9: b0:4d:6e:f5:2d:06:4b:2a:bf:d9:6f:19:91:4a:dc:e3:02:1c: a4:39:a4:c0:00:34:d3:d8:db:a4:8a:34:f0:bf:c0:b3:d5:94: 31:b5:cd:4d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAuYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwRDIxMTAvBgNVBAUTKENBOTBENEQyMTI1RjAzMzZCNTM5OEVFMDk5NzcyOTZG MkU0MDkyQjQwHhcNMjUxMTAzMDEyNzU2WhcNMjUxMTEwMDEyNzU2WjAYMRYwFAYD VQQDEw02OTA4MDUxYy05ZjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuKjjm/6E0HK04AlD336S3PDt/pTHhTKtXUEA5Xv/sik6WjfryGeHluuyohz0 DN6KWLAxY6neJKrFyvYdYxCpt5tQ877NT+UCKuSnSpENkbsIe0BcIDcu7h7RGrTR mH/OG8Sfcio32E6VOhURmwkj18lA3ro26VtWnNrq6I8jtSplCeRk06KXGpngpALO u4kUF+vkvbiGV5FGrg6BdC9UhJ82gxM5XlBpVraR6NglT5diToOW4bA7b7OLcT4L ls1dhIL0N6Pnt/eqF/Uj4LiD/APPxEiTC1wfdWmTpfXZkTpZ6KRC5iBqLiRgL2aq gmN7SPDJQHzMhAwjmw3jwxh0AQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGct5cHB 0LJh4JDKfqtvuUP/cbRqMB8GA1UdIwQYMBaAFMqQ1NISXwM2tTmO4Jl3KW8uQJK0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBEMi9FQkMxQUMyQzE4 NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6YTFPWTdnbVhjcGJ5NUFr clEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lwRFUwaEpmQXphMU9ZN2dtWGNwYnk1QWtyUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODBEMi9FQkMxQUMyQzE4NEYxMUVEQURCQzNDNjVDNEY5QUUwMi95cERVMGhKZkF6 YTFPWTdnbVhjcGJ5NUFrclEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBhwEJFAIcStJ5cNgZIdnc/EIdS9A5KPH4h/r3uTa9/y55pGM6wGIRZ 7Os0TlPx1p5CxHvlaegSVNCjzZlaUSwxhssipZijUWHGOb5ulQtBPcAMIOuO/JEY kKaAhiLfs1yLRvAl7TwBYV6Lf0U+VAaHHWjsihXEqkaPP+MkqRhAGo6uShcNWkdH NybGr/ndrOw46UMBX7wHHD0vB+4n1L13/h4pjOOCnTriCXzHWFIlDYcLJl4pzXJs K7kwvTkFR4hG1Uo0JVLxtmHeCTNHg9AZCCTNtbhrP6mwTW71LQZLKr/ZbxmRStzj AhykOaTAADTT2NukijTwv8Cz1ZQxtc1N -----END CERTIFICATE-----Generated at Tue Nov 4 21:37:00 2025 by rpki-client