$ rpki-client -vvf rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft File: Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft (raw, json) Hash identifier: uO3b2qIuV+p0kBruBadmZ9EjO1tyM3AYGxSa9o+zsic= Subject key identifier: 66:78:D2:8D:EB:50:AB:83:B2:F3:8E:F9:A7:25:1F:0E:B7:A1:B1:BA Authority key identifier: 63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A Certificate issuer: /CN=A91AFB4C/serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Certificate serial: 0204 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft Manifest number: 01FF Signing time: Wed 05 Nov 2025 02:33:22 +0000 Manifest this update: Wed 05 Nov 2025 02:33:21 +0000 Manifest next update: Wed 12 Nov 2025 02:33:21 +0000 Files and hashes: 1: Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl (hash: r+qlmM+/iR+7+ild1aw9VvqsR/AgrwQ7AKyAAheIhgY=) 2: AD286018B29C11EDB216812EC4F9AE02.roa (hash: ck7frHwbdvA8vLLhGdgsJbIt8cpEwUyRbFKBDEFTB8E=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:33:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 516 (0x204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AFB4C, serialNumber=6349735904E1BC0D65BD594A07762BB5299C038A Validity Not Before: Nov 5 02:33:21 2025 GMT Not After : Nov 12 02:33:21 2025 GMT Subject: CN=690ab771-8fe2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c9:69:53:b6:4f:dc:54:58:7f:88:0f:ee:b8: 7c:9c:2a:d0:17:fe:28:c3:52:3b:9e:e9:6b:4e:f4: 55:6e:5f:7e:27:18:1f:1d:5a:a1:49:a0:b2:49:90: 14:c9:32:05:8a:18:48:95:78:d7:5c:0c:68:59:0b: 84:66:79:9b:1b:7a:c3:c0:e6:fd:32:ae:a6:80:4e: 9e:7d:75:74:2d:f7:ae:42:2a:da:b7:74:ca:a8:90: 6c:9d:6f:55:94:0e:ee:3a:ed:9c:f7:8c:ad:15:cd: 01:63:67:ed:fe:1c:b9:10:90:d7:85:9b:48:66:c5: df:b9:c0:8d:5a:86:49:c9:a8:6e:be:49:3f:82:62: 87:b7:b9:1b:60:61:aa:91:30:91:0d:cb:e7:6d:2d: f8:6e:6d:d7:34:28:49:10:6d:d8:d3:e9:7e:b8:27: 01:cc:00:fb:75:ab:66:d4:e5:50:80:39:d4:56:43: 2e:6b:6d:83:8b:d2:2c:e0:d9:1c:99:b5:15:95:1a: 5e:de:e8:2f:12:1c:3c:c4:6e:d9:dc:ec:98:d9:0b: 6d:dd:72:ba:c6:76:c1:6d:68:3d:88:a5:c1:f0:07: 4c:83:49:6a:c3:ca:81:e7:9d:d1:ca:4f:ce:eb:85: 26:5d:4e:bc:eb:8a:30:b2:97:71:60:c1:2c:60:40: 98:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:78:D2:8D:EB:50:AB:83:B2:F3:8E:F9:A7:25:1F:0E:B7:A1:B1:BA X509v3 Authority Key Identifier: keyid:63:49:73:59:04:E1:BC:0D:65:BD:59:4A:07:76:2B:B5:29:9C:03:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y0lzWQThvA1lvVlKB3YrtSmcA4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AFB4C/C470B22AB29711ED94EF0926C4F9AE02/Y0lzWQThvA1lvVlKB3YrtSmcA4o.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:a8:2c:13:0f:e4:ad:fc:79:f6:87:05:74:f2:11:e4:44:d5: 0c:21:85:d0:b2:d0:2f:1e:2d:e4:bf:01:db:45:29:52:07:25: 28:97:ae:b7:77:64:b2:3e:e2:b4:75:29:6b:2a:da:5d:c3:70: ea:fe:7e:db:88:9f:2b:e3:bc:70:57:6a:4d:a7:0c:72:be:21: ef:8c:9a:eb:8a:74:cc:59:e6:26:d5:b4:ae:97:0c:14:e6:97: 51:66:75:4d:4e:3e:d0:cc:8a:18:bd:62:b9:98:f9:bb:7a:55: 4f:19:55:dc:41:2f:d9:fb:ab:92:04:17:42:62:16:81:96:15: 70:a8:7a:6a:03:b8:5f:11:1c:34:fc:3d:89:e7:aa:9b:3e:f6: 72:e6:66:e0:5c:ba:ae:ff:26:29:21:af:df:03:d9:0e:10:72: c3:7f:22:f7:5f:9d:01:24:af:3a:10:cd:22:04:70:dc:1b:da: b7:55:fb:87:db:2e:b1:29:24:ba:87:6a:e8:db:af:90:88:af: 5c:c9:62:67:b9:30:58:76:b5:18:02:68:bd:6e:8f:01:a0:ea: f0:28:e3:d4:61:5c:2c:1e:da:26:07:5a:2e:83:88:02:80:47: a5:91:7a:3d:29:80:16:45:a0:92:bd:0d:3d:26:91:bc:a5:c3: c8:a6:ed:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUZCNEMxMTAvBgNVBAUTKDYzNDk3MzU5MDRFMUJDMEQ2NUJENTk0QTA3NzYyQkI1 Mjk5QzAzOEEwHhcNMjUxMTA1MDIzMzIxWhcNMjUxMTEyMDIzMzIxWjAYMRYwFAYD VQQDEw02OTBhYjc3MS04ZmUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8clpU7ZP3FRYf4gP7rh8nCrQF/4ow1I7nulrTvRVbl9+JxgfHVqhSaCySZAU yTIFihhIlXjXXAxoWQuEZnmbG3rDwOb9Mq6mgE6efXV0LfeuQirat3TKqJBsnW9V lA7uOu2c94ytFc0BY2ft/hy5EJDXhZtIZsXfucCNWoZJyahuvkk/gmKHt7kbYGGq kTCRDcvnbS34bm3XNChJEG3Y0+l+uCcBzAD7datm1OVQgDnUVkMua22Di9Is4Nkc mbUVlRpe3ugvEhw8xG7Z3OyY2Qtt3XK6xnbBbWg9iKXB8AdMg0lqw8qB553Ryk/O 64UmXU6864owspdxYMEsYECY0wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGZ40o3r UKuDsvOO+aclHw63obG6MB8GA1UdIwQYMBaAFGNJc1kE4bwNZb1ZSgd2K7UpnAOK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRkI0Qy9DNDcwQjIyQUIy OTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZBMWx2VmxLQjNZcnRTbWNB NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kwbHpXUVRodkExbHZWbEtCM1lydFNtY0E0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB RkI0Qy9DNDcwQjIyQUIyOTcxMUVEOTRFRjA5MjZDNEY5QUUwMi9ZMGx6V1FUaHZB MWx2VmxLQjNZcnRTbWNBNG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCVqCwTD+St/Hn2hwV08hHkRNUMIYXQstAvHi3kvwHbRSlSByUol663 d2SyPuK0dSlrKtpdw3Dq/n7biJ8r47xwV2pNpwxyviHvjJrrinTMWeYm1bSulwwU 5pdRZnVNTj7QzIoYvWK5mPm7elVPGVXcQS/Z+6uSBBdCYhaBlhVwqHpqA7hfERw0 /D2J56qbPvZy5mbgXLqu/yYpIa/fA9kOEHLDfyL3X50BJK86EM0iBHDcG9q3VfuH 2y6xKSS6h2ro26+QiK9cyWJnuTBYdrUYAmi9bo8BoOrwKOPUYVwsHtomB1oug4gC gEelkXo9KYAWRaCSvQ09JpG8pcPIpu3k -----END CERTIFICATE-----Generated at Wed Nov 5 11:55:00 2025 by rpki-client