$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft File: y8ZgM3D76EzM4GToT08m7b7CZ7E.mft (raw, json) Hash identifier: alLcUUiPmJNDmA44q4Afs/m32rRpAmptyU1VzMh/Ang= Subject key identifier: D4:46:2A:43:B4:B4:77:D1:FB:44:5D:C8:41:30:2A:86:47:19:08:EB Authority key identifier: CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 Certificate issuer: /CN=A91D9CA8/serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Certificate serial: A2 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft Manifest number: 97 Signing time: Mon 03 Nov 2025 06:34:25 +0000 Manifest this update: Mon 03 Nov 2025 06:34:25 +0000 Manifest next update: Mon 10 Nov 2025 06:34:25 +0000 Files and hashes: 1: y8ZgM3D76EzM4GToT08m7b7CZ7E.crl (hash: shSC9Eub9Ot+W2nkVp2fmE3Q7Y9923dm5MX4gOZUh08=) 2: 459A40A0399111F0B589186BC4F9AE02.roa (hash: m6LxhqSKzKitfbLvhayOz3v+ioNxwddzbxWryqPlX6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9CA8, serialNumber=CBC6603370FBE84CCCE064E84F4F26EDBEC267B1 Validity Not Before: Nov 3 06:34:25 2025 GMT Not After : Nov 10 06:34:25 2025 GMT Subject: CN=69084cf1-6d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:70:b3:1b:94:49:3b:ee:a0:7f:3d:23:cb:f6: fe:b4:da:a2:49:b5:01:47:8c:73:29:82:3c:d1:db: 28:6a:37:4a:e8:3f:4f:00:ef:3a:cc:b0:4e:8e:a8: 06:92:49:51:9f:73:6e:82:0a:4c:ee:40:f7:4f:98: 96:8a:28:7d:0e:6a:d8:ad:33:64:e8:9a:66:c7:95: f4:cc:7a:8b:53:b3:6c:14:17:a9:1c:56:5f:4f:3b: 33:08:2c:2d:99:88:c8:ed:7c:80:a6:4d:e0:b8:cf: e8:f9:06:e4:9d:31:b3:5b:4d:82:85:4a:91:1f:2d: bd:d4:df:5c:7a:a1:ef:da:02:ce:77:4c:46:74:0e: 97:ba:d6:0c:5a:37:a7:7c:4d:8f:84:e0:95:3c:99: 70:cb:c5:2f:3c:2a:86:1f:e7:1a:77:bc:8f:a2:90: 2f:47:de:f7:45:75:0a:2c:62:16:34:ca:36:f5:da: 7f:fd:ff:61:c7:5d:86:a6:10:6f:07:f5:6a:3f:24: e2:e9:71:fe:0f:54:7c:02:5f:83:c8:ba:82:18:7f: 41:a1:1f:8c:e1:6d:57:3f:b1:ea:42:2c:1f:82:2a: d2:15:db:85:4e:b2:10:80:58:1e:12:3e:fa:c4:a9: 46:3e:25:75:a3:9b:8a:b2:a2:f5:29:5d:1b:7d:8b: 75:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:46:2A:43:B4:B4:77:D1:FB:44:5D:C8:41:30:2A:86:47:19:08:EB X509v3 Authority Key Identifier: keyid:CB:C6:60:33:70:FB:E8:4C:CC:E0:64:E8:4F:4F:26:ED:BE:C2:67:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y8ZgM3D76EzM4GToT08m7b7CZ7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9CA8/20DA2746E4FD11EFAC1CE67FC4F9AE02/y8ZgM3D76EzM4GToT08m7b7CZ7E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:50:99:f1:d6:c3:a2:66:44:6c:81:1b:6d:60:32:ae:a6:c8: 64:2e:c6:67:ea:87:c9:7b:a4:48:af:f0:53:14:95:aa:90:a8: 81:bf:34:2f:84:93:68:80:a8:5f:48:c4:cf:72:aa:e2:09:df: b4:a6:22:04:5c:9d:01:a8:60:33:1e:d7:34:fb:19:11:4a:cf: ac:73:26:00:3f:b0:eb:96:3c:30:45:e4:f3:bc:b4:30:27:54: cd:3a:e6:90:11:63:cc:c4:94:71:46:b2:4a:da:75:43:12:07: 95:5f:d5:2a:d7:37:ae:1d:80:9f:38:c4:a4:c6:59:a5:d9:d7: 29:84:e8:37:9f:c1:a1:e9:bd:55:ee:6a:dd:55:cc:03:d1:b8: ce:c1:73:71:51:c1:85:bf:56:37:51:77:9c:10:dd:ab:75:b5: c3:76:7d:51:05:51:5b:6b:fe:5f:67:15:c3:97:54:3c:b0:44: 8a:27:69:c9:be:c2:51:f0:df:2a:1f:ba:22:a6:d8:a1:e2:fa: 86:64:57:a9:61:3d:56:41:3b:92:a9:b9:be:84:f5:32:8c:7b: 47:6b:b2:5d:68:e5:69:57:e4:80:64:a9:e6:52:a3:64:e9:e0: ea:c0:85:ab:0d:b4:ff:a0:06:e5:c1:38:1b:4f:56:1e:2a:88: 16:a0:d1:58 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDlDQTgxMTAvBgNVBAUTKENCQzY2MDMzNzBGQkU4NENDQ0UwNjRFODRGNEYyNkVE QkVDMjY3QjEwHhcNMjUxMTAzMDYzNDI1WhcNMjUxMTEwMDYzNDI1WjAYMRYwFAYD VQQDEw02OTA4NGNmMS02ZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXCzG5RJO+6gfz0jy/b+tNqiSbUBR4xzKYI80dsoajdK6D9PAO86zLBOjqgG kklRn3NuggpM7kD3T5iWiih9DmrYrTNk6Jpmx5X0zHqLU7NsFBepHFZfTzszCCwt mYjI7XyApk3guM/o+QbknTGzW02ChUqRHy291N9ceqHv2gLOd0xGdA6XutYMWjen fE2PhOCVPJlwy8UvPCqGH+cad7yPopAvR973RXUKLGIWNMo29dp//f9hx12GphBv B/VqPyTi6XH+D1R8Al+DyLqCGH9BoR+M4W1XP7HqQiwfgirSFduFTrIQgFgeEj76 xKlGPiV1o5uKsqL1KV0bfYt1uQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNRGKkO0 tHfR+0RdyEEwKoZHGQjrMB8GA1UdIwQYMBaAFMvGYDNw++hMzOBk6E9PJu2+wmex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOUNBOC8yMERBMjc0NkU0 RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZFek00R1RvVDA4bTdiN0Na N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k4WmdNM0Q3NkV6TTRHVG9UMDhtN2I3Q1o3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OUNBOC8yMERBMjc0NkU0RkQxMUVGQUMxQ0U2N0ZDNEY5QUUwMi95OFpnTTNENzZF ek00R1RvVDA4bTdiN0NaN0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAnUJnx1sOiZkRsgRttYDKupshkLsZn6ofJe6RIr/BTFJWqkKiBvzQv hJNogKhfSMTPcqriCd+0piIEXJ0BqGAzHtc0+xkRSs+scyYAP7DrljwwReTzvLQw J1TNOuaQEWPMxJRxRrJK2nVDEgeVX9Uq1zeuHYCfOMSkxlml2dcphOg3n8Gh6b1V 7mrdVcwD0bjOwXNxUcGFv1Y3UXecEN2rdbXDdn1RBVFba/5fZxXDl1Q8sESKJ2nJ vsJR8N8qH7oiptih4vqGZFepYT1WQTuSqbm+hPUyjHtHa7JdaOVpV+SAZKnmUqNk 6eDqwIWrDbT/oAblwTgbT1YeKogWoNFY -----END CERTIFICATE-----Generated at Wed Nov 5 06:30:00 2025 by rpki-client