$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: ANuOJo2yd0DdDtzzPQxWdGjs1XzMlL2LkXunw8lAOhM= Subject key identifier: 5B:00:64:08:D1:28:60:41:CB:F8:F0:50:4F:A5:9D:DF:ED:A0:B4:FA Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 04E1 Signing time: Sun 02 Nov 2025 23:43:24 +0000 Manifest this update: Sun 02 Nov 2025 23:43:23 +0000 Manifest next update: Sun 09 Nov 2025 23:43:23 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: wDAb/kTXNu19AFaiK9PFYw6zC0WzfkRkzpluhjOpgfQ=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: rSYICcW+HFCzDD9ABBiFdKCTDCOz7xqqAaQJc2BnfOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:43:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Nov 2 23:43:23 2025 GMT Not After : Nov 9 23:43:23 2025 GMT Subject: CN=6907ec9c-8543 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:4e:8f:41:3f:41:8d:e3:c3:8d:c1:12:d1: 65:dc:e8:a5:a8:85:6e:ec:f1:c7:98:e3:87:fb:36: eb:92:1e:c7:45:7b:04:20:5c:1a:4d:69:e4:34:13: 4f:d7:ac:80:e9:27:7b:ab:bc:0d:f0:bb:2e:43:d5: 9a:b9:be:01:63:cf:8e:98:47:51:25:62:ba:8d:9a: dc:f9:10:5f:4b:f7:be:34:0c:c8:fc:f7:5b:ef:45: 72:9f:36:64:57:12:43:c9:54:b5:aa:f0:b3:1b:c3: b0:4f:5e:ba:c6:52:82:f3:6c:66:3b:92:b4:e4:26: 34:c8:bf:c9:e5:b2:0a:d7:fe:b1:09:1e:53:51:3e: 2f:e0:41:e3:e8:7e:47:84:c4:63:4c:cd:40:81:ea: 8a:34:e8:82:89:8a:2b:3f:b8:0e:8e:e6:db:9e:72: a7:b7:92:eb:96:50:63:8c:f1:98:68:3b:6c:61:3e: bd:8c:ee:e2:98:1d:b7:37:5a:ac:fa:8f:ab:13:5b: 4a:14:12:ca:6b:9e:b2:4e:b0:e9:6d:a9:eb:fe:55: ed:97:d1:5c:e3:eb:26:cb:16:a2:6b:8e:ef:17:48: 76:33:77:e7:ef:4f:a7:9f:e6:1c:9f:7c:0d:8c:b4: 6f:40:9e:44:1d:db:d1:11:26:86:5a:cc:5f:de:b0: 65:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:00:64:08:D1:28:60:41:CB:F8:F0:50:4F:A5:9D:DF:ED:A0:B4:FA X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:fe:32:8c:6a:d3:14:32:a6:2d:29:fd:da:c8:ea:2b:19:c0: 42:e0:5d:ae:e8:90:67:3a:a0:68:b8:42:90:91:4a:83:1a:94: 1a:2e:2a:de:46:75:73:d5:25:63:6a:00:40:33:3d:62:65:97: b6:92:0a:70:c1:be:d3:4a:60:9c:0f:1b:ff:21:44:e0:c4:b1: 3c:4c:a9:4c:98:27:16:9d:71:02:1b:6d:69:87:df:fd:fa:84: b8:26:09:9c:76:94:dd:8e:fa:0e:ea:f3:2a:56:ca:81:e1:7e: 5d:a6:3a:f4:d9:8d:cf:0f:97:2d:c5:74:f6:53:2c:19:ef:d1: 61:44:ac:0f:cb:2d:e9:33:47:03:89:3a:fa:de:3d:40:3c:90: 17:3a:eb:ef:cd:c8:2b:b7:cd:95:fd:2b:30:17:7d:16:85:eb: 27:83:64:58:86:dc:76:c6:b0:76:4c:7f:de:40:ac:da:db:e0: 3f:3b:50:d0:87:8e:63:30:0f:89:f0:71:f1:65:e8:07:1d:18: c0:50:84:73:79:9a:56:c2:ec:70:ee:9a:7c:55:c9:a2:19:c9: 26:af:6f:c0:08:ad:74:00:2d:ca:3b:15:7e:d7:d3:4f:dd:db: 1c:3a:3b:84:79:1a:6d:c7:ca:8b:32:57:e4:c5:4f:88:d2:fb: dc:54:fb:e1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUxMTAyMjM0MzIzWhcNMjUxMTA5MjM0MzIzWjAYMRYwFAYD VQQDEw02OTA3ZWM5Yy04NTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooVOj0E/QY3jw43BEtFl3OilqIVu7PHHmOOH+zbrkh7HRXsEIFwaTWnkNBNP 16yA6Sd7q7wN8LsuQ9Waub4BY8+OmEdRJWK6jZrc+RBfS/e+NAzI/Pdb70VynzZk VxJDyVS1qvCzG8OwT166xlKC82xmO5K05CY0yL/J5bIK1/6xCR5TUT4v4EHj6H5H hMRjTM1AgeqKNOiCiYorP7gOjubbnnKnt5LrllBjjPGYaDtsYT69jO7imB23N1qs +o+rE1tKFBLKa56yTrDpbanr/lXtl9Fc4+smyxaia47vF0h2M3fn70+nn+Ycn3wN jLRvQJ5EHdvRESaGWsxf3rBl8wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFsAZAjR KGBBy/jwUE+lnd/toLT6MB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAO/jKMatMUMqYtKf3ayOorGcBC4F2u6JBnOqBouEKQkUqDGpQaLire RnVz1SVjagBAMz1iZZe2kgpwwb7TSmCcDxv/IUTgxLE8TKlMmCcWnXECG21ph9/9 +oS4JgmcdpTdjvoO6vMqVsqB4X5dpjr02Y3PD5ctxXT2UywZ79FhRKwPyy3pM0cD iTr63j1APJAXOuvvzcgrt82V/SswF30Whesng2RYhtx2xrB2TH/eQKza2+A/O1DQ h45jMA+J8HHxZegHHRjAUIRzeZpWwuxw7pp8VcmiGckmr2/ACK10AC3KOxV+19NP 3dscOjuEeRptx8qLMlfkxU+I0vvcVPvh -----END CERTIFICATE-----Generated at Tue Nov 4 12:38:34 2025 by rpki-client