$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft File: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft (raw, json) Hash identifier: THc3mVn8Zqrw33+ya/c0SyiI9PykPm61OlHpN7c6yLY= Subject key identifier: 11:94:74:3C:4D:63:0A:D7:1F:F3:7F:44:B4:2E:99:A3:68:66:5F:B4 Authority key identifier: C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB Certificate issuer: /CN=A91D2ACF/serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Certificate serial: 0A6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft Manifest number: 0A5D Signing time: Tue 04 Nov 2025 19:44:52 +0000 Manifest this update: Tue 04 Nov 2025 19:44:52 +0000 Manifest next update: Tue 11 Nov 2025 19:44:52 +0000 Files and hashes: 1: ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl (hash: 0DcIAxz5Sx3EtpxCLehjgZDhXFDNzeU40/fLGB0Qo80=) 2: F22D283A9B3B11EBA5C76B80C4F9AE02.roa (hash: egvdAkYLzu5gxxKonGYdt5g+UPStKzivhdsfzC6knl8=) 3: 3A851EE273E411EA9572F76EC4F9AE02.roa (hash: vR/hsH9Zhb8FIZHjA0oIM8YiJ7UXh8ADZ/D+wU+8mAM=) 4: 55D7D802475A11F0B3C02112C4F9AE02.roa (hash: J08fSBQhOSJHGBUH4shmEQXwYqWcb08yob4lFysSojI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:44:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2666 (0xa6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ACF, serialNumber=C9ED4B7676E3F5A5B1F8A6A0DD7E221B63E534AB Validity Not Before: Nov 4 19:44:52 2025 GMT Not After : Nov 11 19:44:52 2025 GMT Subject: CN=690a57b4-21d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:69:5c:d6:5c:8d:62:00:ed:1d:04:53:59:f6: 7b:c8:26:33:72:d5:77:e7:85:cb:f6:41:96:63:e7: 5a:26:51:40:7e:83:24:41:50:89:07:b6:8a:9f:b2: 73:c0:44:05:99:85:4c:ab:d7:00:60:3c:58:6c:c6: b2:68:8d:c3:84:2c:67:4e:36:7b:97:1c:29:d3:e2: 78:bc:73:56:92:c5:4e:36:c9:c9:35:ed:bc:eb:72: 9d:95:10:51:10:bc:7a:4d:18:73:20:67:cc:22:bd: 84:e1:58:25:11:7f:05:9e:b2:2f:14:bd:4e:3f:89: b9:ad:04:63:43:87:7b:92:03:f9:cc:28:08:61:4a: 35:78:43:6f:42:27:4f:19:ef:04:e1:4c:10:f8:83: 7e:ae:6d:43:00:64:e5:dc:45:7b:e7:d9:10:ec:2a: 07:5c:a0:da:eb:fe:7c:0d:ea:b5:c3:ca:6d:48:8f: f3:d7:e2:9f:78:a4:0f:06:fb:96:ad:c0:de:8a:e7: 5f:dc:c6:b4:d1:cd:09:18:23:ba:e1:6c:bc:5e:f1: 3e:d9:ab:6c:60:19:52:7b:b5:de:24:d1:9e:3f:22: 68:f3:0e:cc:7e:de:b7:e6:6f:97:bc:94:66:1b:75: c7:5f:54:4e:04:3a:5a:d2:e3:69:c3:61:f3:3d:db: 06:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:94:74:3C:4D:63:0A:D7:1F:F3:7F:44:B4:2E:99:A3:68:66:5F:B4 X509v3 Authority Key Identifier: keyid:C9:ED:4B:76:76:E3:F5:A5:B1:F8:A6:A0:DD:7E:22:1B:63:E5:34:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ACF/5AC62B2A73E311EA9B59436EC4F9AE02/ye1Ldnbj9aWx-Kag3X4iG2PlNKs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 72:db:d8:89:ab:03:61:79:fc:18:2a:67:07:1c:4c:82:b8:ee: e8:88:e9:05:ad:6d:c8:67:eb:29:75:c1:79:68:0c:5b:ec:aa: 7b:1e:70:44:f9:4b:a4:6c:23:1a:0f:55:ea:e4:36:ad:38:fc: d3:ef:49:0b:76:b3:27:c4:4a:8e:98:ce:5e:8f:1f:22:9d:e2: e9:3e:13:de:4d:cc:e9:7b:9f:0b:2a:72:06:0a:87:6e:2c:99: 37:57:01:89:65:04:ea:42:38:29:06:bd:9f:62:8d:15:9d:04: 35:3f:cd:e9:7b:08:51:dd:42:d6:e2:38:44:63:a4:eb:64:bd: 55:23:d3:ad:7a:98:88:75:0e:59:93:ac:13:db:36:f1:0b:86: 2a:f8:a9:ef:ea:11:e9:c0:49:b4:c3:fb:9c:2b:a7:4c:24:40: 44:eb:66:5a:78:aa:31:e3:01:a3:cf:50:67:d1:69:c4:97:e7: c1:0b:5b:1d:e0:49:9d:9b:cb:d5:0c:7d:99:58:18:a1:22:c3: 8a:99:63:34:0c:24:5d:d6:da:2e:5f:e2:19:29:a1:eb:28:8a: 1f:f2:48:d5:3c:78:34:65:71:1c:c0:38:d5:a8:05:d2:f2:9c: 1b:77:9f:dc:8b:b3:7c:f9:85:a3:84:e9:81:1e:44:5d:a6:58: 56:1f:aa:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBQ0YxMTAvBgNVBAUTKEM5RUQ0Qjc2NzZFM0Y1QTVCMUY4QTZBMEREN0UyMjFC NjNFNTM0QUIwHhcNMjUxMTA0MTk0NDUyWhcNMjUxMTExMTk0NDUyWjAYMRYwFAYD VQQDEw02OTBhNTdiNC0yMWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWlc1lyNYgDtHQRTWfZ7yCYzctV354XL9kGWY+daJlFAfoMkQVCJB7aKn7Jz wEQFmYVMq9cAYDxYbMayaI3DhCxnTjZ7lxwp0+J4vHNWksVONsnJNe2863KdlRBR ELx6TRhzIGfMIr2E4VglEX8FnrIvFL1OP4m5rQRjQ4d7kgP5zCgIYUo1eENvQidP Ge8E4UwQ+IN+rm1DAGTl3EV759kQ7CoHXKDa6/58Deq1w8ptSI/z1+KfeKQPBvuW rcDeiudf3Ma00c0JGCO64Wy8XvE+2atsYBlSe7XeJNGePyJo8w7Mft635m+XvJRm G3XHX1ROBDpa0uNpw2HzPdsGxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBGUdDxN YwrXH/N/RLQumaNoZl+0MB8GA1UdIwQYMBaAFMntS3Z24/WlsfimoN1+Ihtj5TSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFDRi81QUM2MkIyQTcz RTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlhV3gtS2FnM1g0aUcyUGxO S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3llMUxkbmJqOWFXeC1LYWczWDRpRzJQbE5Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MkFDRi81QUM2MkIyQTczRTMxMUVBOUI1OTQzNkVDNEY5QUUwMi95ZTFMZG5iajlh V3gtS2FnM1g0aUcyUGxOS3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBy29iJqwNhefwYKmcHHEyCuO7oiOkFrW3IZ+spdcF5aAxb7Kp7HnBE +UukbCMaD1Xq5DatOPzT70kLdrMnxEqOmM5ejx8ineLpPhPeTczpe58LKnIGCodu LJk3VwGJZQTqQjgpBr2fYo0VnQQ1P83pewhR3ULW4jhEY6TrZL1VI9OtepiIdQ5Z k6wT2zbxC4Yq+Knv6hHpwEm0w/ucK6dMJEBE62ZaeKox4wGjz1Bn0WnEl+fBC1sd 4Emdm8vVDH2ZWBihIsOKmWM0DCRd1touX+IZKaHrKIof8kjVPHg0ZXEcwDjVqAXS 8pwbd5/ci7N8+YWjhOmBHkRdplhWH6r+ -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:08 2025 by rpki-client