$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft File: YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft (raw, json) Hash identifier: lC4fbwhd2cQ/G25bXI18WZy7Rh7T2gwj9P/ruW0ZVOI= Subject key identifier: CC:EB:39:2B:B6:34:4D:FB:F8:D4:71:81:DD:44:F7:78:3B:17:FD:97 Authority key identifier: 60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 Certificate issuer: /CN=A91DF55D/serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Certificate serial: 05F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft Manifest number: 05E8 Signing time: Tue 04 Nov 2025 23:03:00 +0000 Manifest this update: Tue 04 Nov 2025 23:02:59 +0000 Manifest next update: Tue 11 Nov 2025 23:02:59 +0000 Files and hashes: 1: YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl (hash: 7xHB9ZTpw2Df9h6i1/1RCp/Vt0ndoAkeD8cqorLAiRg=) 2: 8504C794D12411EBAD06CD48C4F9AE02.roa (hash: zqhHb4EuNxIhj0MsDdGRZBLgZ5b4JdLttiLWNXtELcI=) 3: 84706C70D12411EBAD06CD48C4F9AE02.roa (hash: +VQvv+uWVXkQstiOmhvQpZ3+r0zEs8UArQ0Y/mZ6P60=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF55D, serialNumber=60DC375DAACC9781BB702E03882A325FEBBFE9B4 Validity Not Before: Nov 4 23:02:59 2025 GMT Not After : Nov 11 23:02:59 2025 GMT Subject: CN=690a8623-c43a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0b:73:5b:a9:7a:ec:c0:ba:6e:03:3e:29:a0: 45:50:70:c0:77:7c:85:17:91:3c:2d:c4:ea:fb:42: e9:fd:71:04:39:d2:43:c5:35:56:e5:43:8e:96:13: 6b:03:eb:22:73:b2:cc:7c:6f:41:ee:22:cc:6d:ab: 30:f9:91:83:a6:e2:68:b1:71:28:90:d0:35:b3:90: 2d:c8:8d:12:16:f5:59:7f:3a:f4:e3:45:98:d5:51: d8:ac:63:39:f4:4a:1b:78:a9:67:4a:b4:10:a5:e3: 25:0e:de:c4:59:64:b8:bb:9c:5e:90:7d:a8:38:da: 57:2a:b4:2b:c7:cd:61:4b:7f:30:82:ed:6c:a1:b2: 72:be:9d:a8:d8:f1:8c:45:7f:94:68:bc:f2:b4:d4: 04:da:4e:f5:c1:4a:29:d5:31:6f:ff:f7:25:de:78: 29:e0:d4:05:f8:cc:bc:6c:7e:ec:74:25:7f:50:68: 15:50:38:a9:26:26:28:ea:06:00:57:c0:22:2c:de: bf:8d:97:d5:0a:3b:35:10:90:1e:65:8a:b6:88:4d: b5:b8:25:78:5d:c5:d2:49:ae:1a:19:1d:5c:b7:07: 9d:04:29:4d:89:fd:00:a0:34:d7:9a:48:f2:a2:d6: 8c:aa:73:95:0f:8e:00:8b:84:dd:26:a1:d6:91:44: 2f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:EB:39:2B:B6:34:4D:FB:F8:D4:71:81:DD:44:F7:78:3B:17:FD:97 X509v3 Authority Key Identifier: keyid:60:DC:37:5D:AA:CC:97:81:BB:70:2E:03:88:2A:32:5F:EB:BF:E9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNw3XarMl4G7cC4DiCoyX-u_6bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF55D/E7A77BEED11F11EB9E5B1A82C4F9AE02/YNw3XarMl4G7cC4DiCoyX-u_6bQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:c9:4c:0e:fa:c8:48:eb:35:17:64:c9:e3:09:ac:28:0e:91: c2:02:57:f1:65:ca:2f:08:99:6a:f2:01:44:3b:1a:f0:2a:33: af:db:e8:a7:42:33:50:bd:57:90:fe:49:02:5a:d0:10:d0:26: 0f:be:cb:89:65:41:a5:3b:cc:33:0c:7b:b0:1f:aa:ff:be:9a: ee:cc:eb:0b:08:1d:29:41:d0:b3:cb:0f:8e:1b:30:2b:08:b6: 05:15:0e:0e:75:ca:f9:3b:6d:41:ca:b6:04:e7:51:7d:b4:2d: 98:4a:39:91:f5:c1:1e:4b:e0:ba:9d:fc:c9:a0:52:d1:f9:9b: d6:78:31:3a:fd:0a:99:e9:75:e5:57:66:86:d4:a5:a6:2a:f1: 80:bd:c9:dd:4d:20:24:8c:08:1f:9e:c6:2c:52:69:44:3f:24: c1:83:a1:19:41:29:e9:9c:e0:35:44:44:e5:9f:ef:8d:1e:7a: 8c:e1:e9:68:c3:be:69:1b:29:e8:41:46:23:9d:bc:88:6b:ab: 42:eb:9d:4d:24:a4:d0:f6:a6:86:2b:6c:ee:50:c4:d6:f2:0d: d5:35:bb:9a:11:20:d6:eb:29:07:96:e0:f0:de:58:0e:19:1c: 4f:d3:d7:35:d8:8a:7c:d1:20:d1:24:d4:6d:eb:46:b8:1f:27: cb:e7:3c:1f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY1NUQxMTAvBgNVBAUTKDYwREMzNzVEQUFDQzk3ODFCQjcwMkUwMzg4MkEzMjVG RUJCRkU5QjQwHhcNMjUxMTA0MjMwMjU5WhcNMjUxMTExMjMwMjU5WjAYMRYwFAYD VQQDEw02OTBhODYyMy1jNDNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywtzW6l67MC6bgM+KaBFUHDAd3yFF5E8LcTq+0Lp/XEEOdJDxTVW5UOOlhNr A+sic7LMfG9B7iLMbasw+ZGDpuJosXEokNA1s5AtyI0SFvVZfzr040WY1VHYrGM5 9EobeKlnSrQQpeMlDt7EWWS4u5xekH2oONpXKrQrx81hS38wgu1sobJyvp2o2PGM RX+UaLzytNQE2k71wUop1TFv//cl3ngp4NQF+My8bH7sdCV/UGgVUDipJiYo6gYA V8AiLN6/jZfVCjs1EJAeZYq2iE21uCV4XcXSSa4aGR1ctwedBClNif0AoDTXmkjy otaMqnOVD44Ai4TdJqHWkUQvmQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMzrOSu2 NE37+NRxgd1E93g7F/2XMB8GA1UdIwQYMBaAFGDcN12qzJeBu3AuA4gqMl/rv+m0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjU1RC9FN0E3N0JFRUQx MUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0RzdjQzREaUNveVgtdV82 YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOdzNYYXJNbDRHN2NDNERpQ295WC11XzZiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjU1RC9FN0E3N0JFRUQxMUYxMUVCOUU1QjFBODJDNEY5QUUwMi9ZTnczWGFyTWw0 RzdjQzREaUNveVgtdV82YlEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7yUwO+shI6zUXZMnjCawoDpHCAlfxZcovCJlq8gFEOxrwKjOv2+in QjNQvVeQ/kkCWtAQ0CYPvsuJZUGlO8wzDHuwH6r/vpruzOsLCB0pQdCzyw+OGzAr CLYFFQ4Odcr5O21ByrYE51F9tC2YSjmR9cEeS+C6nfzJoFLR+ZvWeDE6/QqZ6XXl V2aG1KWmKvGAvcndTSAkjAgfnsYsUmlEPyTBg6EZQSnpnOA1RETln++NHnqM4elo w75pGynoQUYjnbyIa6tC651NJKTQ9qaGK2zuUMTW8g3VNbuaESDW6ykHluDw3lgO GRxP09c12Ip80SDRJNRt60a4HyfL5zwf -----END CERTIFICATE-----Generated at Wed Nov 5 11:59:02 2025 by rpki-client