$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft File: C-AoY1W14laYjORU35P8D8p_YEA.mft (raw, json) Hash identifier: hOtJX189y8NUT7BN4oeqVGYOOzfwOcdOYIMQAUyN14o= Subject key identifier: D1:8B:99:3F:79:BD:BE:B8:34:9F:0D:65:3E:37:9A:E6:B8:FA:C7:65 Authority key identifier: 0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 Certificate issuer: /CN=A91A1D43/serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Certificate serial: 01DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft Manifest number: 01D4 Signing time: Mon 03 Nov 2025 02:45:08 +0000 Manifest this update: Mon 03 Nov 2025 02:45:07 +0000 Manifest next update: Mon 10 Nov 2025 02:45:07 +0000 Files and hashes: 1: C-AoY1W14laYjORU35P8D8p_YEA.crl (hash: 33ZCgawDo0BBNDh4yEUnyn4JLbZKitKIuK7xsapm2Yw=) 2: 8BCB2CFAEA3911EDB91E190BC4F9AE02.roa (hash: Gn3bl+JlcAfK7NlSkgTYoj+Bsl8m7KISn3HM2ix+w34=) 3: 8B1BDC14EA3911EDB91E190BC4F9AE02.roa (hash: +iPaNHR0I7CGA19//oU6de8PSF7FBlMHBTXC8ZhTdUo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:45:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1D43, serialNumber=0BE0286355B5E256988CE454DF93FC0FCA7F6040 Validity Not Before: Nov 3 02:45:07 2025 GMT Not After : Nov 10 02:45:07 2025 GMT Subject: CN=69081734-ffbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:2b:61:69:9d:c7:c2:3e:cf:78:69:ec:c3:9f: 3e:4e:19:db:09:13:c5:b1:c4:14:7c:b5:53:89:40: de:50:b2:a9:67:37:5f:42:6b:48:0e:c5:d7:35:ca: f8:11:57:06:75:b5:fd:cf:d5:b9:99:96:8a:79:63: e3:0d:ef:55:53:a9:a7:6b:3e:43:fb:f3:c3:ee:37: 84:1a:f1:56:f3:12:e3:35:4c:ce:10:e1:54:b9:be: 25:e2:50:16:bf:79:63:96:87:18:6c:6a:15:55:3b: 7b:3e:41:84:93:a5:8b:d7:7b:52:3b:eb:23:12:34: 0e:c1:bb:c1:21:28:6f:1a:88:41:01:c9:7d:36:3e: 39:47:79:e4:6b:39:85:1c:33:d5:93:e3:96:83:97: 4c:a5:d5:dd:b4:8b:b3:a6:5d:4f:35:b8:f9:d4:c7: 8c:b5:8b:fb:9d:22:c7:e2:9a:8d:03:1d:3f:b2:c3: 6b:44:1a:9b:cd:0a:30:58:51:35:09:c1:e8:7f:8c: 99:38:74:47:d7:b2:02:a1:f3:0e:19:a7:3a:2f:78: a8:c4:d2:2a:e1:bf:c4:38:96:dc:89:06:5e:22:95: 37:0d:20:5a:1e:f5:72:8e:82:8b:00:ab:ef:95:d9: f8:30:44:11:88:23:2f:80:ce:7b:19:fa:8f:58:07: 90:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:8B:99:3F:79:BD:BE:B8:34:9F:0D:65:3E:37:9A:E6:B8:FA:C7:65 X509v3 Authority Key Identifier: keyid:0B:E0:28:63:55:B5:E2:56:98:8C:E4:54:DF:93:FC:0F:CA:7F:60:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C-AoY1W14laYjORU35P8D8p_YEA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1D43/8929DFDEEA2811EDB7DD0118C4F9AE02/C-AoY1W14laYjORU35P8D8p_YEA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:6b:3a:38:f8:f7:5a:80:3a:5d:8c:a6:30:81:10:d7:73:b1: f1:39:da:86:15:a1:e7:2c:9a:91:fd:63:e2:4e:9c:75:f7:55: 61:dc:d8:7d:09:a8:61:01:f8:92:ff:14:f4:c0:ec:c4:00:25: 56:98:83:29:9c:bb:fc:58:4d:4a:2a:ec:50:e6:5f:90:70:b8: a9:a3:78:46:88:c6:8e:03:d4:da:28:91:83:5b:ba:c9:e3:34: e9:ae:57:ee:cc:f0:c6:c3:63:8b:68:9c:72:03:0f:92:8c:cb: 48:0c:e9:39:91:37:e8:6e:f2:00:65:33:d1:f2:f3:06:22:f6: 85:64:04:43:db:1a:45:18:9a:31:02:50:9d:9e:9a:01:20:c0: 53:7e:7f:a6:fe:05:08:61:37:f9:f3:3b:96:4f:4f:4c:00:8e: 21:33:cf:fc:bd:29:3e:d6:bb:a8:d2:fd:90:35:4c:bb:14:9d: ad:93:83:d7:ad:fa:fe:c4:4a:62:9f:59:cf:1b:a8:c2:31:b7: 53:91:15:13:02:35:ef:68:46:7c:aa:b1:a9:43:37:d2:57:49: 65:2e:8a:30:19:a2:d5:35:6d:eb:6e:e1:33:ce:1e:bb:21:8e: 36:e7:f0:8c:4f:d3:65:95:37:71:45:d7:f3:47:ec:9b:31:b1: 80:76:38:98 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFENDMxMTAvBgNVBAUTKDBCRTAyODYzNTVCNUUyNTY5ODhDRTQ1NERGOTNGQzBG Q0E3RjYwNDAwHhcNMjUxMTAzMDI0NTA3WhcNMjUxMTEwMDI0NTA3WjAYMRYwFAYD VQQDEw02OTA4MTczNC1mZmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/CthaZ3Hwj7PeGnsw58+ThnbCRPFscQUfLVTiUDeULKpZzdfQmtIDsXXNcr4 EVcGdbX9z9W5mZaKeWPjDe9VU6mnaz5D+/PD7jeEGvFW8xLjNUzOEOFUub4l4lAW v3ljlocYbGoVVTt7PkGEk6WL13tSO+sjEjQOwbvBIShvGohBAcl9Nj45R3nkazmF HDPVk+OWg5dMpdXdtIuzpl1PNbj51MeMtYv7nSLH4pqNAx0/ssNrRBqbzQowWFE1 CcHof4yZOHRH17ICofMOGac6L3ioxNIq4b/EOJbciQZeIpU3DSBaHvVyjoKLAKvv ldn4MEQRiCMvgM57GfqPWAeQYwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNGLmT95 vb64NJ8NZT43mua4+sdlMB8GA1UdIwQYMBaAFAvgKGNVteJWmIzkVN+T/A/Kf2BA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUQ0My84OTI5REZERUVB MjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRsYVlqT1JVMzVQOEQ4cF9Z RUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0MtQW9ZMVcxNGxhWWpPUlUzNVA4RDhwX1lFQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUQ0My84OTI5REZERUVBMjgxMUVEQjdERDAxMThDNEY5QUUwMi9DLUFvWTFXMTRs YVlqT1JVMzVQOEQ4cF9ZRUEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtazo4+PdagDpdjKYwgRDXc7HxOdqGFaHnLJqR/WPiTpx191Vh3Nh9 CahhAfiS/xT0wOzEACVWmIMpnLv8WE1KKuxQ5l+QcLipo3hGiMaOA9TaKJGDW7rJ 4zTprlfuzPDGw2OLaJxyAw+SjMtIDOk5kTfobvIAZTPR8vMGIvaFZARD2xpFGJox AlCdnpoBIMBTfn+m/gUIYTf58zuWT09MAI4hM8/8vSk+1ruo0v2QNUy7FJ2tk4PX rfr+xEpin1nPG6jCMbdTkRUTAjXvaEZ8qrGpQzfSV0llLoowGaLVNW3rbuEzzh67 IY425/CMT9NllTdxRdfzR+ybMbGAdjiY -----END CERTIFICATE-----Generated at Tue Nov 4 23:48:22 2025 by rpki-client