$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft File: YcuQhfAv-PpF5zL1gDQPQkngDKI.mft (raw, json) Hash identifier: rys125BBUlSG7PvU0YtY3WgxONakZg9sUXljTNaqs+U= Subject key identifier: 24:FE:EB:4E:41:A5:89:B1:E9:DB:08:DA:93:7B:35:02:F4:05:E9:F8 Authority key identifier: 61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 Certificate issuer: /CN=A91DCB25/serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Certificate serial: 11D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft Manifest number: 11CD Signing time: Tue 04 Nov 2025 17:16:17 +0000 Manifest this update: Tue 04 Nov 2025 17:16:16 +0000 Manifest next update: Tue 11 Nov 2025 17:16:16 +0000 Files and hashes: 1: YcuQhfAv-PpF5zL1gDQPQkngDKI.crl (hash: 3avps1LXX0uzNpq7v5GikOSsnedOjs+qKMVXdUVgsvA=) 2: BDC1AB0AFDA611E88FA5E26DC4F9AE02.roa (hash: SB9Ipu4AFekvf7xWy+dJxrZfjpqZ4b1Xx/G1XVRpODY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:16:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4566 (0x11d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCB25, serialNumber=61CB9085F02FF8FA45E732F580340F4249E00CA2 Validity Not Before: Nov 4 17:16:16 2025 GMT Not After : Nov 11 17:16:16 2025 GMT Subject: CN=690a34e1-ebec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:aa:8f:73:7e:01:f7:a9:99:04:0f:06:7b:cd: 8c:c6:95:dc:c3:27:88:bd:15:af:83:6a:09:d9:6c: ef:3d:a0:12:e5:4f:58:0f:a5:6f:14:98:60:43:89: ba:09:f0:2c:c6:ba:c7:70:c1:2f:0e:a2:74:09:a9: e2:91:23:b1:f6:ae:71:cd:95:27:11:da:14:29:94: bb:82:5a:73:d0:6b:be:44:82:63:e2:68:c9:03:2c: 43:98:8b:63:de:5f:d0:ff:13:af:ed:c6:5e:cd:ea: 73:78:55:4e:de:a2:10:55:38:e3:c7:93:24:29:5b: 7c:75:d1:b5:1a:e9:60:85:6e:22:c7:2b:84:6f:72: 6c:c7:d8:18:53:97:48:7b:ca:11:40:50:4c:90:d6: c2:37:1b:c6:0e:c7:eb:2e:51:af:23:1b:84:5f:8d: 6f:04:81:8a:50:75:51:36:dc:a8:2c:c2:20:da:93: 68:3f:bf:f4:3e:8a:a8:d2:bc:55:29:9d:1d:56:44: cb:ee:83:f8:14:07:f7:7c:05:4d:65:26:c8:db:2e: 23:44:00:39:06:bd:1f:f6:f0:52:0a:fd:f5:1b:1c: 83:c0:c7:f9:e8:b3:d3:2d:53:00:d2:63:5c:60:5f: 77:36:8f:e9:a1:84:98:0e:34:24:cf:36:a8:1b:96: 0d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:FE:EB:4E:41:A5:89:B1:E9:DB:08:DA:93:7B:35:02:F4:05:E9:F8 X509v3 Authority Key Identifier: keyid:61:CB:90:85:F0:2F:F8:FA:45:E7:32:F5:80:34:0F:42:49:E0:0C:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YcuQhfAv-PpF5zL1gDQPQkngDKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCB25/2C60DFD8FDA511E88859C06BC4F9AE02/YcuQhfAv-PpF5zL1gDQPQkngDKI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:1c:19:e9:87:5d:82:65:e4:3d:17:e1:36:c9:66:8d:3d:8d: cc:ed:a7:e5:22:14:50:12:36:7c:20:39:6f:74:5f:c6:ae:cd: f0:da:bc:4e:21:72:9e:cd:f3:34:8a:24:10:73:81:44:dc:a8: d8:06:c3:85:38:6f:d0:f2:56:bc:f6:be:99:6e:3c:6b:7c:7a: 40:d5:a8:ae:6e:13:6d:0d:fa:75:bd:cb:f8:7b:a8:7f:ac:6a: 4e:80:c2:0a:dc:1a:c3:8e:ae:59:c5:c1:a8:ad:d5:4b:4f:d3: 32:0e:71:4c:4f:b3:2f:2c:f3:b5:ea:48:21:be:9b:53:5c:bc: 00:a5:87:eb:75:af:23:4d:3e:a8:d1:31:69:2e:ab:c2:fd:93: b2:72:4d:ca:ae:ee:b6:b4:fb:0b:33:f9:74:d9:e7:64:5c:8c: f4:41:0d:69:df:f3:17:8c:97:66:3f:ca:76:22:0a:fd:09:86: 6b:b0:95:c0:22:a7:51:d6:cf:0a:68:b5:ca:32:1f:dc:88:87: 6d:50:d2:67:6b:de:ad:22:f8:b5:a4:81:03:f3:c3:fc:3d:d2: 76:76:ac:8b:b2:5d:06:ff:9d:a9:ca:5b:0d:03:2c:48:3f:7b: 7a:86:1c:9e:d2:e0:39:79:3d:84:da:1f:32:f2:73:93:ee:15: aa:eb:07:09 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENCMjUxMTAvBgNVBAUTKDYxQ0I5MDg1RjAyRkY4RkE0NUU3MzJGNTgwMzQwRjQy NDlFMDBDQTIwHhcNMjUxMTA0MTcxNjE2WhcNMjUxMTExMTcxNjE2WjAYMRYwFAYD VQQDEw02OTBhMzRlMS1lYmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0qqPc34B96mZBA8Ge82MxpXcwyeIvRWvg2oJ2WzvPaAS5U9YD6VvFJhgQ4m6 CfAsxrrHcMEvDqJ0CanikSOx9q5xzZUnEdoUKZS7glpz0Gu+RIJj4mjJAyxDmItj 3l/Q/xOv7cZezepzeFVO3qIQVTjjx5MkKVt8ddG1GulghW4ixyuEb3Jsx9gYU5dI e8oRQFBMkNbCNxvGDsfrLlGvIxuEX41vBIGKUHVRNtyoLMIg2pNoP7/0Poqo0rxV KZ0dVkTL7oP4FAf3fAVNZSbI2y4jRAA5Br0f9vBSCv31GxyDwMf56LPTLVMA0mNc YF93No/poYSYDjQkzzaoG5YNGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCT+605B pYmx6dsI2pN7NQL0Ben4MB8GA1UdIwQYMBaAFGHLkIXwL/j6Recy9YA0D0JJ4Ayi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0IyNS8yQzYwREZEOEZE QTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1QcEY1ekwxZ0RRUFFrbmdE S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ljdVFoZkF2LVBwRjV6TDFnRFFQUWtuZ0RLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0IyNS8yQzYwREZEOEZEQTUxMUU4ODg1OUMwNkJDNEY5QUUwMi9ZY3VRaGZBdi1Q cEY1ekwxZ0RRUFFrbmdES0kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdHBnph12CZeQ9F+E2yWaNPY3M7aflIhRQEjZ8IDlvdF/Grs3w2rxO IXKezfM0iiQQc4FE3KjYBsOFOG/Q8la89r6ZbjxrfHpA1aiubhNtDfp1vcv4e6h/ rGpOgMIK3BrDjq5ZxcGordVLT9MyDnFMT7MvLPO16kghvptTXLwApYfrda8jTT6o 0TFpLqvC/ZOyck3Kru62tPsLM/l02edkXIz0QQ1p3/MXjJdmP8p2Igr9CYZrsJXA IqdR1s8KaLXKMh/ciIdtUNJna96tIvi1pIED88P8PdJ2dqyLsl0G/52pylsNAyxI P3t6hhye0uA5eT2E2h8y8nOT7hWq6wcJ -----END CERTIFICATE-----Generated at Wed Nov 5 05:45:30 2025 by rpki-client