$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: QOvnpkLtWspx3Out+t23YTh8quEEierAqUBb/jeXnLs= Subject key identifier: A1:CD:A7:F0:26:35:E5:42:D7:12:AD:FD:6B:D2:13:07:E2:81:BC:1E Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 48 Signing time: Wed 05 Nov 2025 07:34:24 +0000 Manifest this update: Wed 05 Nov 2025 07:34:23 +0000 Manifest next update: Wed 12 Nov 2025 07:34:23 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: Uh7U5hv+qrjw2slRccRiPbdqvlGFBISKDkooI/iKkzU=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73 (0x49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Nov 5 07:34:23 2025 GMT Not After : Nov 12 07:34:23 2025 GMT Subject: CN=690afe00-a72b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:fb:2c:46:68:70:d4:24:a5:01:37:b6:42: 3a:6b:0a:58:d8:9b:f0:04:c9:2f:42:b7:12:0e:8d: bd:9f:bf:8d:d6:a4:bd:5e:aa:cf:9e:ff:90:63:74: 56:06:35:e5:b7:ea:42:77:fc:07:20:c4:2f:00:aa: c9:4d:b6:f2:e0:14:30:4b:45:df:b8:19:c7:01:85: 49:3a:7c:9c:f8:8a:83:da:2c:8a:81:8d:5e:b3:53: 8d:44:ca:96:06:cb:4f:13:64:27:d2:1e:8e:44:44: 59:c8:8a:c7:30:af:80:11:00:88:b8:af:79:51:12: 3a:36:c2:2f:7b:3d:0f:c6:3f:a3:8f:1d:42:0b:23: 32:16:58:05:70:b0:4a:67:ff:9a:36:93:5f:7c:af: 70:49:b8:52:5e:95:7a:dc:15:12:59:be:64:fc:0b: 12:13:6c:23:f6:6f:f4:0a:ea:86:45:20:41:26:f5: 83:46:a0:0d:bd:31:69:3c:3b:bb:6d:3f:8b:0a:35: c2:da:d3:f9:49:ee:8b:ef:ec:50:17:3d:d7:3f:00: 3a:e5:e0:0b:aa:fd:12:70:1d:84:14:45:b1:88:6a: b9:b3:5a:a9:91:ba:d3:05:a8:a0:03:44:32:bb:00: 6f:a6:9d:be:47:8a:2f:93:08:d1:a6:22:50:72:39: 35:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:CD:A7:F0:26:35:E5:42:D7:12:AD:FD:6B:D2:13:07:E2:81:BC:1E X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 58:8a:8c:ca:70:eb:32:c9:29:9d:11:8b:93:87:8c:cf:cd:52: e5:d5:dd:1a:b1:3e:ff:9a:7a:82:fa:98:31:3c:43:34:ec:9d: 98:ac:f2:5c:ca:50:21:97:4f:e8:4a:a1:32:4a:23:e6:1c:a0: 1a:c3:1e:32:c2:c6:83:f8:99:65:a0:cc:de:72:4f:91:4e:fc: b6:ed:04:84:30:71:49:d9:3c:ae:f6:df:3c:94:02:92:3e:e8: 45:20:9b:ca:3b:ba:15:21:7a:a3:ed:9e:4b:e2:99:1d:07:9e: be:c6:9b:cb:a2:78:23:f5:6d:35:d0:1a:13:86:d2:2e:e4:fb: dc:97:3e:0c:e8:7e:71:f5:55:58:7f:61:e6:a5:43:c4:05:bf: a5:62:54:69:ab:1c:c6:4a:2c:03:d4:65:8a:ea:f4:da:a2:ec: ed:50:c7:c1:24:1e:64:7e:49:fb:3b:0f:1f:45:7e:3b:47:e1: a6:b2:7a:74:e7:c3:37:4e:a0:4c:d5:f0:8f:76:be:e4:d1:03: ce:dc:05:c2:e7:5c:a7:14:4b:5d:96:f9:47:49:83:0f:16:5f: 4f:72:32:37:15:1e:8a:73:24:b6:20:cb:5e:0d:39:14:0e:af: d0:1b:cd:2a:e7:84:5b:cf:3d:d8:f7:b1:c4:75:4b:66:ae:20: d9:2f:67:f1 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTExMDUwNzM0MjNaFw0yNTExMTIwNzM0MjNaMBgxFjAUBgNV BAMTDTY5MGFmZTAwLWE3MmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJ0PssRmhw1CSlATe2QjprCljYm/AEyS9CtxIOjb2fv43WpL1eqs+e/5BjdFYG NeW36kJ3/AcgxC8AqslNtvLgFDBLRd+4GccBhUk6fJz4ioPaLIqBjV6zU41EypYG y08TZCfSHo5ERFnIiscwr4ARAIi4r3lREjo2wi97PQ/GP6OPHUILIzIWWAVwsEpn /5o2k198r3BJuFJelXrcFRJZvmT8CxITbCP2b/QK6oZFIEEm9YNGoA29MWk8O7tt P4sKNcLa0/lJ7ovv7FAXPdc/ADrl4Auq/RJwHYQURbGIarmzWqmRutMFqKADRDK7 AG+mnb5Hii+TCNGmIlByOTXjAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUoc2n8CY1 5ULXEq39a9ITB+KBvB4wHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFiKjMpw6zLJKZ0Ri5OHjM/NUuXV3RqxPv+aeoL6mDE8QzTsnZis8lzK UCGXT+hKoTJKI+YcoBrDHjLCxoP4mWWgzN5yT5FO/LbtBIQwcUnZPK723zyUApI+ 6EUgm8o7uhUheqPtnkvimR0Hnr7Gm8uieCP1bTXQGhOG0i7k+9yXPgzofnH1VVh/ YealQ8QFv6ViVGmrHMZKLAPUZYrq9Nqi7O1Qx8EkHmR+Sfs7Dx9FfjtH4aayenTn wzdOoEzV8I92vuTRA87cBcLnXKcUS12W+UdJgw8WX09yMjcVHopzJLYgy14NORQO r9AbzSrnhFvPPdj3scR1S2auINkvZ/E= -----END CERTIFICATE-----Generated at Wed Nov 5 12:04:58 2025 by rpki-client