$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: hyWthar7QoeaO6yDy9yTVhtytYM68Nt9fggUQD8WgJc= Subject key identifier: 8D:C6:65:12:B7:19:C7:A6:0B:DC:1A:EF:20:77:92:00:43:D2:AA:74 Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1AB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1AA9 Signing time: Tue 04 Nov 2025 16:25:11 +0000 Manifest this update: Tue 04 Nov 2025 16:25:10 +0000 Manifest next update: Tue 11 Nov 2025 16:25:10 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: N2Z1FmitXckz3VZFIbi3Mz5GStZaziNfn02AWwQI8Ic=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:25:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6840 (0x1ab8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Nov 4 16:25:10 2025 GMT Not After : Nov 11 16:25:10 2025 GMT Subject: CN=690a28e7-81bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:98:7c:65:79:ae:f2:d8:c8:58:53:4e:8b: 85:b4:4c:35:5a:38:22:c8:14:8e:73:5e:20:cd:e9: 5d:3d:33:18:8f:da:80:5a:95:84:40:ac:22:af:67: 4a:1a:d0:57:52:f1:52:5d:a1:0d:ef:c8:9d:8f:c1: 5f:bb:3f:40:ec:2e:f3:ce:5f:a5:af:36:74:66:ee: 4b:eb:eb:dc:d8:b3:f4:5e:dc:a4:eb:bd:46:36:79: df:a2:95:d3:ba:5a:f2:d5:94:35:e9:bf:03:b3:3d: e6:c7:d1:a1:d8:84:34:c2:39:ac:e0:07:2b:76:8e: 59:08:d9:f1:eb:ad:2e:f7:ec:00:60:db:9a:7c:83: ea:38:4f:b0:74:44:86:cc:5f:e4:de:dd:66:0a:04: 10:59:95:9f:e3:e5:ce:6b:59:2d:a7:39:fc:de:3d: 72:f1:3a:c3:3b:7e:ec:f5:d3:37:d6:4c:9a:76:eb: e5:fe:b6:72:e7:13:3b:82:47:f2:46:52:9d:02:98: 3f:22:dd:a1:80:a9:7c:5a:5d:dc:88:cd:57:2b:25: d6:68:7f:ed:13:ec:d8:3e:05:39:ff:71:55:a1:83: 57:ae:21:10:13:98:c4:02:10:21:5f:42:cb:03:0a: f8:e6:e3:76:d4:3e:4c:42:f2:ab:34:93:9e:86:bc: 14:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C6:65:12:B7:19:C7:A6:0B:DC:1A:EF:20:77:92:00:43:D2:AA:74 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 13:61:1e:ce:c3:81:c4:23:f7:cc:08:1a:3d:b8:c0:88:f8:32: 7c:46:4b:23:f2:1f:30:2d:fe:75:ce:1d:ca:f0:d1:4f:01:f7: 5d:f8:bb:a9:9b:85:d4:e5:9b:a8:5d:93:c3:ee:b4:ab:d4:b7: 90:ec:a5:e9:83:68:71:cb:86:ae:22:cc:13:05:a9:b8:ed:f1: 9e:03:d7:8b:4f:82:f1:53:f3:ae:2a:ca:b6:82:2c:d6:e4:98: 42:11:2e:42:de:7e:d2:11:fe:d7:08:4c:f4:e2:7f:91:e9:b4: 2a:2b:ec:7f:5e:ac:75:ed:ce:37:c3:88:58:52:3c:1f:d5:47: ff:44:f6:cd:89:9b:e1:1e:00:b4:4b:ac:36:4e:4a:ec:1a:15: 40:aa:d6:bf:87:2f:e5:1b:76:77:ec:85:e9:90:b3:df:d0:43: e5:a0:e7:32:c4:f5:a3:63:0e:27:22:53:55:42:95:d4:a9:0d: b4:48:61:82:91:c0:fe:0b:97:ab:a2:80:b9:c3:03:2b:78:10: df:c4:e8:a4:51:bd:65:79:54:e9:ef:f0:13:ad:ee:d1:77:07: 82:b5:2d:f9:c8:22:19:78:2d:f9:90:24:e5:28:49:41:83:a4: 9a:e5:a9:0a:b3:cd:da:d1:76:25:1c:1b:7d:0b:51:81:f6:10: f9:56:25:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUxMTA0MTYyNTEwWhcNMjUxMTExMTYyNTEwWjAYMRYwFAYD VQQDEw02OTBhMjhlNy04MWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEeYfGV5rvLYyFhTTouFtEw1WjgiyBSOc14gzeldPTMYj9qAWpWEQKwir2dK GtBXUvFSXaEN78idj8Ffuz9A7C7zzl+lrzZ0Zu5L6+vc2LP0Xtyk671GNnnfopXT ulry1ZQ16b8Dsz3mx9Gh2IQ0wjms4Acrdo5ZCNnx660u9+wAYNuafIPqOE+wdESG zF/k3t1mCgQQWZWf4+XOa1ktpzn83j1y8TrDO37s9dM31kyaduvl/rZy5xM7gkfy RlKdApg/It2hgKl8Wl3ciM1XKyXWaH/tE+zYPgU5/3FVoYNXriEQE5jEAhAhX0LL Awr45uN21D5MQvKrNJOehrwU/QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFI3GZRK3 GcemC9wa7yB3kgBD0qp0MB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQATYR7Ow4HEI/fMCBo9uMCI+DJ8Rksj8h8wLf51zh3K8NFPAfdd+Lup m4XU5ZuoXZPD7rSr1LeQ7KXpg2hxy4auIswTBam47fGeA9eLT4LxU/OuKsq2gizW 5JhCES5C3n7SEf7XCEz04n+R6bQqK+x/Xqx17c43w4hYUjwf1Uf/RPbNiZvhHgC0 S6w2TkrsGhVAqta/hy/lG3Z37IXpkLPf0EPloOcyxPWjYw4nIlNVQpXUqQ20SGGC kcD+C5erooC5wwMreBDfxOikUb1leVTp7/ATre7RdweCtS35yCIZeC35kCTlKElB g6Sa5akKs83a0XYlHBt9C1GB9hD5ViVe -----END CERTIFICATE-----Generated at Wed Nov 5 18:35:52 2025 by rpki-client