$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft File: Yt3ChdqLPiCesA6qNnGEXaps8oY.mft (raw, json) Hash identifier: wwiLEwsst8SpPpyDPSylFsAt9HZ0b8zCHfUGDcHbWc8= Subject key identifier: 65:B4:E9:28:08:2E:67:0C:88:46:FB:CF:A8:F5:5E:C6:5F:02:F3:4B Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 0194 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft Manifest number: 018E Signing time: Mon 03 Nov 2025 03:31:39 +0000 Manifest this update: Mon 03 Nov 2025 03:31:38 +0000 Manifest next update: Mon 10 Nov 2025 03:31:38 +0000 Files and hashes: 1: Yt3ChdqLPiCesA6qNnGEXaps8oY.crl (hash: CbuaDGxqyJRM45sd+l1O3ucfJK7eH0J1i11qRt11DLk=) 2: 64120230B2C211EFA43BF057C4F9AE02.roa (hash: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY=) 3: 3B8DEFBCB2CD11EFBEB6A532C4F9AE02.roa (hash: DgTHE1vd+LuLJ/6bYp2I4wVbGI057+J0uGiHNmi5Ok4=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:31:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Nov 3 03:31:38 2025 GMT Not After : Nov 10 03:31:38 2025 GMT Subject: CN=6908221a-ae00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fd:57:ca:f7:a1:ea:19:3b:94:64:f6:39:a0: 6c:0e:3b:01:c4:3b:5a:6e:b2:7b:29:0b:6c:52:cf: 02:e4:22:be:2e:af:d0:50:a3:48:03:dd:24:37:f0: 2b:b9:b6:fc:46:52:8c:ca:42:55:45:2e:50:b1:10: e5:a9:20:ab:84:46:ea:11:88:61:27:7e:af:1a:25: dd:51:53:51:8f:e3:5d:ca:be:7b:d6:c0:f0:61:6a: d0:24:59:da:43:cc:4a:9b:d6:8a:01:8d:bf:c0:bd: bd:79:31:17:f0:a6:40:4b:17:05:77:65:e9:a2:68: 7d:0c:0a:bd:19:ba:44:bc:a0:13:20:84:2e:ef:5e: 51:0f:70:bc:54:97:76:44:9b:01:a2:77:78:1c:03: 60:4b:0f:4c:55:b5:f6:5e:fb:b0:b6:90:ff:06:f8: 13:99:0b:70:e9:25:b8:eb:c5:99:c2:00:9c:08:0a: e4:55:71:96:d8:24:fa:64:f1:0e:d3:1d:8a:f2:7b: 00:7d:04:41:65:46:5c:16:c7:55:c6:a5:9b:7a:e7: d2:78:f1:ae:44:76:ec:e7:ee:cc:04:af:66:e3:ff: 37:bb:55:54:37:85:c4:8f:6e:12:51:23:11:1f:a9: 5a:2f:0d:ab:95:75:e6:5c:2a:3a:cc:ec:9e:30:8d: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:B4:E9:28:08:2E:67:0C:88:46:FB:CF:A8:F5:5E:C6:5F:02:F3:4B X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ec:84:65:60:da:03:8c:52:6b:06:0b:04:79:b0:7f:42:98:0b: 62:17:42:47:a8:86:6d:d9:bf:49:61:4e:2f:01:b1:01:12:bf: 9d:a3:11:6b:8b:e5:05:1c:48:02:38:e2:2f:2b:81:38:c6:f4: bc:97:82:39:5a:b8:66:63:3f:0e:d2:89:54:41:e1:54:dd:d7: cb:90:71:2c:9f:26:f7:a7:6f:d9:b9:8a:6a:ae:24:46:1d:f3: 75:18:e7:29:6c:90:95:ae:eb:3d:98:c5:e9:83:12:82:c5:99: e7:c8:9d:23:44:23:a9:a8:0b:e5:ca:35:ef:e2:c1:2d:45:ad: a5:b7:43:a1:91:19:91:fa:fb:29:22:41:44:d1:42:94:38:55: 50:ae:3b:f4:d1:63:f6:4e:bf:61:0e:0b:35:27:79:81:4c:e9: d1:eb:6f:00:a8:d6:14:f9:b5:c0:93:ad:64:b6:1d:4a:30:ee: c2:95:42:43:f5:8b:41:23:23:1d:53:2c:ea:f2:cf:29:9c:4c: 75:2d:73:79:df:4a:3d:c6:d1:92:bf:7b:c4:f8:75:ae:4e:58: e0:19:6e:87:2d:e2:84:32:56:5f:51:aa:f7:9f:18:81:d0:8c: 53:96:83:d7:86:14:5a:62:df:97:b8:f6:7e:27:a9:71:71:61: 8f:ae:27:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUxMTAzMDMzMTM4WhcNMjUxMTEwMDMzMTM4WjAYMRYwFAYD VQQDEw02OTA4MjIxYS1hZTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsv1Xyveh6hk7lGT2OaBsDjsBxDtabrJ7KQtsUs8C5CK+Lq/QUKNIA90kN/Ar ubb8RlKMykJVRS5QsRDlqSCrhEbqEYhhJ36vGiXdUVNRj+Ndyr571sDwYWrQJFna Q8xKm9aKAY2/wL29eTEX8KZASxcFd2Xpomh9DAq9GbpEvKATIIQu715RD3C8VJd2 RJsBond4HANgSw9MVbX2XvuwtpD/BvgTmQtw6SW468WZwgCcCArkVXGW2CT6ZPEO 0x2K8nsAfQRBZUZcFsdVxqWbeufSePGuRHbs5+7MBK9m4/83u1VUN4XEj24SUSMR H6laLw2rlXXmXCo6zOyeMI2mlwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGW06SgI LmcMiEb7z6j1XsZfAvNLMB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9BQUIzM0U0QzVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBp Q2VzQTZxTm5HRVhhcHM4b1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDshGVg2gOMUmsGCwR5sH9CmAtiF0JHqIZt2b9JYU4vAbEBEr+doxFr i+UFHEgCOOIvK4E4xvS8l4I5WrhmYz8O0olUQeFU3dfLkHEsnyb3p2/ZuYpqriRG HfN1GOcpbJCVrus9mMXpgxKCxZnnyJ0jRCOpqAvlyjXv4sEtRa2lt0OhkRmR+vsp IkFE0UKUOFVQrjv00WP2Tr9hDgs1J3mBTOnR628AqNYU+bXAk61kth1KMO7ClUJD 9YtBIyMdUyzq8s8pnEx1LXN530o9xtGSv3vE+HWuTljgGW6HLeKEMlZfUar3nxiB 0IxTloPXhhRaYt+XuPZ+J6lxcWGPridw -----END CERTIFICATE-----Generated at Tue Nov 4 21:19:08 2025 by rpki-client