$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: GuXhQuetqcU7l18ccymbC15qhRkDWuG+VUnYaaAEa6w= Subject key identifier: 87:CD:26:43:70:84:70:C3:34:B8:2C:10:7D:9B:E6:3D:1A:3B:F7:57 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F6A Signing time: Tue 04 Nov 2025 17:39:27 +0000 Manifest this update: Tue 04 Nov 2025 17:39:26 +0000 Manifest next update: Tue 11 Nov 2025 17:39:26 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: p8PG0Cwe0Io+rF/Xhg3XUEg7TMWOQ6Z3hUPfxIL5KZA=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3955 (0xf73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Nov 4 17:39:26 2025 GMT Not After : Nov 11 17:39:26 2025 GMT Subject: CN=690a3a4f-0dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c7:e7:d0:cd:af:2d:5a:c8:52:30:76:0e:c5: 80:02:51:5c:a9:ae:ef:24:87:38:78:7c:75:bd:bf: f2:b4:a6:e2:cf:ca:d5:d3:3e:bc:a6:46:bf:85:76: 69:e8:b2:c8:68:81:62:97:84:12:c3:e8:12:cb:7b: 46:26:bc:9e:b0:de:e8:b9:10:88:b1:ab:9f:c6:31: 6e:98:b9:bc:b7:01:00:f7:df:ed:e7:24:75:a0:9b: e5:bb:bf:03:b0:55:0b:6a:65:70:44:03:71:f7:9c: 1a:ce:a3:2d:b0:60:a2:56:48:5f:05:bd:b6:bd:3f: c4:4e:27:5c:ba:99:b5:46:5c:ab:2c:0e:dd:b0:ae: 6a:e4:2e:25:9d:a9:38:cc:d5:ea:f4:58:f8:8c:36: ac:71:53:1a:de:47:07:e6:fb:12:61:73:0f:96:80: 7c:b6:98:c6:69:28:84:12:59:15:86:65:3e:2e:3e: 21:78:81:69:e6:b1:84:0b:e9:58:fd:76:e7:0b:d7: 87:b6:32:ec:bd:33:2a:20:1e:ff:53:04:2f:b2:9a: 0b:7b:7e:0a:fd:7b:34:17:64:de:f9:d6:83:99:47: 38:ea:4f:17:fe:8a:b9:14:05:9f:97:c1:78:18:9e: 0d:b5:b6:16:e7:4c:67:f9:55:37:11:f9:3e:92:d7: dc:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:CD:26:43:70:84:70:C3:34:B8:2C:10:7D:9B:E6:3D:1A:3B:F7:57 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:26:78:8b:d2:a3:00:0a:90:ff:ec:85:99:04:17:c5:54:d1: d4:ff:1c:dc:3f:cd:0a:6f:c9:de:74:f7:8a:a1:59:78:b7:78: 49:7f:f1:dc:0d:20:8d:93:2d:88:5a:d0:70:cd:8f:75:68:f0: 58:b3:57:f5:0a:c2:3b:c9:c0:df:97:d0:f9:be:08:07:70:04: 27:f4:39:62:ae:76:1a:c7:b6:8c:91:e4:5e:c3:00:f6:a5:ed: af:0f:19:45:6d:d0:86:5d:4a:4f:31:64:52:f8:28:76:cd:33: 74:8e:14:00:83:bc:1d:59:bd:4b:75:45:54:41:a4:5b:48:f1: ec:c2:08:51:06:8b:14:1b:40:9d:84:f8:13:a1:db:2d:9a:c3: 2e:ad:81:cd:57:98:53:bd:a6:87:67:8a:4d:d0:99:e1:9e:90: 9b:98:16:fd:7f:cf:96:e5:7b:5f:fb:99:46:ea:34:ca:6c:44: cb:4c:6d:b6:6c:5a:ba:a3:38:92:1c:6f:e2:d3:55:97:3e:e1: 6b:9f:ab:79:cf:16:0c:f4:65:71:46:68:47:bb:b9:43:0f:fb: 9a:4b:68:bb:92:8d:cf:3b:3f:ce:be:37:ec:47:84:9a:0c:4f: ac:27:7e:dd:04:3a:34:77:76:21:15:ed:db:db:e8:bc:9e:02: 99:47:5a:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUxMTA0MTczOTI2WhcNMjUxMTExMTczOTI2WjAYMRYwFAYD VQQDEw02OTBhM2E0Zi0wZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcfn0M2vLVrIUjB2DsWAAlFcqa7vJIc4eHx1vb/ytKbiz8rV0z68pka/hXZp 6LLIaIFil4QSw+gSy3tGJryesN7ouRCIsaufxjFumLm8twEA99/t5yR1oJvlu78D sFULamVwRANx95wazqMtsGCiVkhfBb22vT/ETidcupm1RlyrLA7dsK5q5C4lnak4 zNXq9Fj4jDascVMa3kcH5vsSYXMPloB8tpjGaSiEElkVhmU+Lj4heIFp5rGEC+lY /XbnC9eHtjLsvTMqIB7/UwQvspoLe34K/Xs0F2Te+daDmUc46k8X/oq5FAWfl8F4 GJ4NtbYW50xn+VU3Efk+ktfcrQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIfNJkNw hHDDNLgsEH2b5j0aO/dXMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAJJniL0qMACpD/7IWZBBfFVNHU/xzcP80Kb8nedPeKoVl4t3hJf/Hc DSCNky2IWtBwzY91aPBYs1f1CsI7ycDfl9D5vggHcAQn9DlirnYax7aMkeRewwD2 pe2vDxlFbdCGXUpPMWRS+Ch2zTN0jhQAg7wdWb1LdUVUQaRbSPHswghRBosUG0Cd hPgTodstmsMurYHNV5hTvaaHZ4pN0JnhnpCbmBb9f8+W5Xtf+5lG6jTKbETLTG22 bFq6oziSHG/i01WXPuFrn6t5zxYM9GVxRmhHu7lDD/uaS2i7ko3POz/OvjfsR4Sa DE+sJ37dBDo0d3YhFe3b2+i8ngKZR1qy -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:38 2025 by rpki-client