$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: GgginQcp7v/DqU/i2Cpjx4thCBiEZrN5TTJz5yuOGPQ= Subject key identifier: A9:F4:FA:58:9A:42:2A:71:53:68:AD:23:64:70:2F:C5:D1:D8:12:E3 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 0105 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: FE Signing time: Wed 05 Nov 2025 05:23:41 +0000 Manifest this update: Wed 05 Nov 2025 05:23:41 +0000 Manifest next update: Wed 12 Nov 2025 05:23:41 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: egmBpU8w/5t02ry3nS0Ps4LanO3Oi1HxhqiSse3YdsA=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: 20LByREQakyZFtw7XXZgcAlPRUMCZmgOccSGiPQln6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:23:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 261 (0x105) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Nov 5 05:23:41 2025 GMT Not After : Nov 12 05:23:41 2025 GMT Subject: CN=690adf5d-8d31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8c:88:5e:89:00:ae:f4:d3:99:d3:00:45:19: f2:ec:f8:45:cc:14:9e:5d:f6:78:12:f4:9a:b5:3c: 22:42:4a:a7:5f:16:f3:2a:7b:bc:18:6a:86:dd:fb: 2a:dd:25:8c:7d:69:85:4c:33:3a:11:f3:55:01:56: 5c:48:de:f2:3b:e0:81:3c:13:10:af:7c:38:60:17: d0:98:be:05:0e:c6:48:18:86:c9:3f:42:d1:a9:f3: 00:35:35:d2:95:cc:1c:bd:31:c6:f7:41:33:13:b7: 9e:f9:6a:72:ff:cc:e9:1e:84:03:7a:b8:5f:d8:df: 31:7d:ec:29:ce:9b:1f:d2:f9:c2:7c:ec:06:16:0b: 6a:20:c8:e4:1b:a7:42:aa:53:12:48:72:0b:a2:04: 2e:51:35:e6:a3:f9:33:09:30:24:fc:0a:5f:5a:f0: e3:de:61:fb:59:70:f8:41:fd:f6:dd:8c:6e:28:5e: cd:18:ad:59:e2:8d:66:1f:18:b1:01:8d:38:dd:d9: 36:1e:33:26:07:5a:26:46:8e:ad:e6:79:2a:6b:04: a8:83:3b:a7:41:08:5e:cc:f5:5d:dd:c3:88:80:1c: 61:80:95:25:b1:fb:b3:7f:35:65:5f:2e:67:89:8d: c9:e6:7d:2e:25:19:f7:fa:29:30:c5:fe:9c:b5:ed: 93:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:F4:FA:58:9A:42:2A:71:53:68:AD:23:64:70:2F:C5:D1:D8:12:E3 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:70:92:14:77:56:8a:34:0f:01:e0:77:b8:69:c6:3c:d9:a7: 8f:87:e3:d5:d4:a1:32:b3:39:2d:7b:d3:c6:ac:b0:b3:48:9a: e6:13:3a:18:4e:e3:b1:5a:be:01:d3:55:9c:08:e5:af:5d:66: 86:6c:d5:e3:be:52:25:b2:e4:c2:12:fe:f1:21:18:49:cb:f3: 3e:74:82:0c:18:5e:26:2e:18:88:32:77:db:2b:ab:51:e2:69: b3:bd:ef:bc:8f:8c:f5:b0:2d:07:87:aa:72:63:ae:5e:e8:c0: af:40:43:fa:8e:af:d3:6d:82:7b:cc:fa:32:2c:48:80:1b:9e: 73:fe:96:6d:03:0f:31:68:71:19:92:8b:88:a3:fd:dd:84:fa: fe:57:e8:e0:4e:44:76:bf:01:b4:5c:9f:80:58:46:d5:72:eb: 11:79:16:ec:bd:1b:c8:7f:6b:41:43:c7:ca:d0:5e:23:a7:4a: 1c:32:90:58:1d:7b:36:20:41:72:bf:6d:4b:4c:9f:4d:08:37: 8f:22:a5:d9:9f:75:67:d6:00:8c:c7:ae:50:cb:f2:a4:bd:15: 7d:97:e0:5f:6f:c8:dd:c7:1a:d8:ce:8e:2d:ac:56:41:48:ab: 8f:90:3d:34:9d:75:37:a8:8b:72:50:ea:3b:db:8f:94:45:2b: a1:f4:dd:8a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUxMTA1MDUyMzQxWhcNMjUxMTEyMDUyMzQxWjAYMRYwFAYD VQQDEw02OTBhZGY1ZC04ZDMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IyIXokArvTTmdMARRny7PhFzBSeXfZ4EvSatTwiQkqnXxbzKnu8GGqG3fsq 3SWMfWmFTDM6EfNVAVZcSN7yO+CBPBMQr3w4YBfQmL4FDsZIGIbJP0LRqfMANTXS lcwcvTHG90EzE7ee+Wpy/8zpHoQDerhf2N8xfewpzpsf0vnCfOwGFgtqIMjkG6dC qlMSSHILogQuUTXmo/kzCTAk/ApfWvDj3mH7WXD4Qf323YxuKF7NGK1Z4o1mHxix AY043dk2HjMmB1omRo6t5nkqawSogzunQQhezPVd3cOIgBxhgJUlsfuzfzVlXy5n iY3J5n0uJRn3+ikwxf6cte2TgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKn0+lia QipxU2itI2RwL8XR2BLjMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVcJIUd1aKNA8B4He4acY82aePh+PV1KEyszkte9PGrLCzSJrmEzoY TuOxWr4B01WcCOWvXWaGbNXjvlIlsuTCEv7xIRhJy/M+dIIMGF4mLhiIMnfbK6tR 4mmzve+8j4z1sC0Hh6pyY65e6MCvQEP6jq/TbYJ7zPoyLEiAG55z/pZtAw8xaHEZ kouIo/3dhPr+V+jgTkR2vwG0XJ+AWEbVcusReRbsvRvIf2tBQ8fK0F4jp0ocMpBY HXs2IEFyv21LTJ9NCDePIqXZn3Vn1gCMx65Qy/KkvRV9l+Bfb8jdxxrYzo4trFZB SKuPkD00nXU3qItyUOo724+URSuh9N2K -----END CERTIFICATE-----Generated at Wed Nov 5 15:33:59 2025 by rpki-client