$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft File: YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft (raw, json) Hash identifier: vp6ywxoxVJiBcpEERW7nlP2ca5qApdIl17k4QlmIMOc= Subject key identifier: 75:E8:DC:9D:E5:42:0B:4D:83:D1:D5:A3:16:C3:6D:21:27:DB:AC:39 Authority key identifier: 61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 Certificate issuer: /CN=A91A1CAA/serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Certificate serial: 0144 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft Manifest number: 0141 Signing time: Wed 05 Nov 2025 04:32:31 +0000 Manifest this update: Wed 05 Nov 2025 04:32:31 +0000 Manifest next update: Wed 12 Nov 2025 04:32:31 +0000 Files and hashes: 1: YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl (hash: TbXqO6MbUc6A/iq/rloQig3hK0j+rnsWDy81VBraxrQ=) 2: E75FB4F0CE4A11EE95C15E20C4F9AE02.roa (hash: utq11zi2cO+ldR8mXOv++lb25ZgD5tUSUW03iRiwBL0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1CAA, serialNumber=617F054E3CE451E0C3E7F446DD09F7864652B656 Validity Not Before: Nov 5 04:32:31 2025 GMT Not After : Nov 12 04:32:31 2025 GMT Subject: CN=690ad35f-b14c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:86:1b:71:b3:8e:cb:f4:af:cc:df:ee:5d:cd: b1:bf:b8:dc:0e:e1:06:12:86:fd:62:60:8b:06:7d: ed:c7:d6:84:cf:61:cb:78:7f:4c:cf:53:6b:bb:7a: b6:a3:c9:03:59:45:91:c4:94:a2:f4:11:55:3f:b7: dd:92:ba:06:78:9f:db:e9:96:1e:aa:fb:9a:0e:22: e1:91:56:e0:89:85:3a:e0:a5:12:4a:b8:71:09:b3: 8e:89:b1:8a:be:17:fb:86:61:2a:57:53:48:e0:2b: ba:dd:3f:33:ff:2d:36:d6:60:37:52:63:17:69:eb: f5:6c:b4:75:45:02:46:ee:de:ec:04:dc:e5:18:47: 46:ea:cc:f3:71:8f:ac:f7:18:da:30:e9:73:fc:4d: 01:47:64:d7:5a:03:f5:f7:d7:0a:b5:58:24:20:d3: 33:de:be:f1:f2:69:64:95:c6:ce:63:07:c7:f2:d0: 7b:9f:2e:14:77:d4:6e:5a:ff:0b:3e:d1:e3:58:c1: 43:a8:78:19:f5:dd:c2:af:f1:52:1b:09:65:d8:e5: c1:99:57:c7:e1:b9:fa:ae:51:ee:0d:64:ec:89:83: 1d:a9:78:b6:b4:d5:18:f4:ea:e6:51:84:bd:2c:8c: b7:c1:0e:e3:51:e2:1a:4c:fc:86:a7:81:34:c9:c3: 5e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:E8:DC:9D:E5:42:0B:4D:83:D1:D5:A3:16:C3:6D:21:27:DB:AC:39 X509v3 Authority Key Identifier: keyid:61:7F:05:4E:3C:E4:51:E0:C3:E7:F4:46:DD:09:F7:86:46:52:B6:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YX8FTjzkUeDD5_RG3Qn3hkZStlY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1CAA/8E275A1ECE4A11EE8DE9E51FC4F9AE02/YX8FTjzkUeDD5_RG3Qn3hkZStlY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:42:ec:22:ec:8e:2c:f6:c5:61:20:2c:e5:dc:8c:43:af:c3: e3:d6:23:fe:44:9a:4a:44:45:8a:7c:d9:2a:ef:6b:cf:69:b4: 84:a3:c2:b0:c8:72:2a:15:3f:21:bf:c1:4d:4c:57:ba:12:b9: b7:c6:ab:7a:b5:65:cd:c3:09:ef:53:d3:79:a3:d3:96:6e:3d: 13:86:4e:e6:22:98:f9:92:62:c6:88:84:99:30:19:f8:f9:5c: 2e:29:b5:da:d9:46:7c:99:fb:c4:4b:38:2f:fa:c1:81:f8:64: 0c:73:9e:af:ad:25:71:3e:b3:80:a7:dd:54:e7:4d:40:87:2b: ee:fc:01:8e:62:1a:c9:23:ce:3e:58:14:57:77:df:53:31:96: fd:0c:97:54:b9:d0:ab:c2:6f:8c:6c:bc:80:72:2d:e3:e5:4c: a9:84:5d:dd:d5:00:0e:f6:ca:2f:11:2b:ee:39:b0:62:6c:14: 83:e1:69:58:36:82:38:9c:53:f1:6a:61:32:37:ba:1c:6f:db: 75:42:3a:04:df:d9:b6:be:d5:6e:81:a8:67:d8:e2:ca:91:4d: 00:0c:e1:b2:d4:1e:f9:b6:74:6a:d9:cd:f7:7f:fd:63:5f:cd: a7:de:42:06:04:74:ae:6d:1e:28:63:1a:9d:a7:c8:02:1b:99: 88:60:c0:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDQUExMTAvBgNVBAUTKDYxN0YwNTRFM0NFNDUxRTBDM0U3RjQ0NkREMDlGNzg2 NDY1MkI2NTYwHhcNMjUxMTA1MDQzMjMxWhcNMjUxMTEyMDQzMjMxWjAYMRYwFAYD VQQDEw02OTBhZDM1Zi1iMTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyoYbcbOOy/SvzN/uXc2xv7jcDuEGEob9YmCLBn3tx9aEz2HLeH9Mz1Nru3q2 o8kDWUWRxJSi9BFVP7fdkroGeJ/b6ZYeqvuaDiLhkVbgiYU64KUSSrhxCbOOibGK vhf7hmEqV1NI4Cu63T8z/y021mA3UmMXaev1bLR1RQJG7t7sBNzlGEdG6szzcY+s 9xjaMOlz/E0BR2TXWgP199cKtVgkINMz3r7x8mlklcbOYwfH8tB7ny4Ud9RuWv8L PtHjWMFDqHgZ9d3Cr/FSGwll2OXBmVfH4bn6rlHuDWTsiYMdqXi2tNUY9OrmUYS9 LIy3wQ7jUeIaTPyGp4E0ycNe9wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXo3J3l QgtNg9HVoxbDbSEn26w5MB8GA1UdIwQYMBaAFGF/BU485FHgw+f0Rt0J94ZGUrZW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUNBQS84RTI3NUExRUNF NEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1VlREQ1X1JHM1FuM2hrWlN0 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYOEZUanprVWVERDVfUkczUW4zaGtaU3RsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUNBQS84RTI3NUExRUNFNEExMUVFOERFOUU1MUZDNEY5QUUwMi9ZWDhGVGp6a1Vl REQ1X1JHM1FuM2hrWlN0bFkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDQuwi7I4s9sVhICzl3IxDr8Pj1iP+RJpKREWKfNkq72vPabSEo8Kw yHIqFT8hv8FNTFe6Erm3xqt6tWXNwwnvU9N5o9OWbj0Thk7mIpj5kmLGiISZMBn4 +VwuKbXa2UZ8mfvESzgv+sGB+GQMc56vrSVxPrOAp91U501Ahyvu/AGOYhrJI84+ WBRXd99TMZb9DJdUudCrwm+MbLyAci3j5UyphF3d1QAO9sovESvuObBibBSD4WlY NoI4nFPxamEyN7ocb9t1QjoE39m2vtVugahn2OLKkU0ADOGy1B75tnRq2c33f/1j X82n3kIGBHSubR4oYxqdp8gCG5mIYMAw -----END CERTIFICATE-----Generated at Wed Nov 5 19:20:46 2025 by rpki-client