$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft File: yZBd5SSGuexO-HmgJkRccLD9lQU.mft (raw, json) Hash identifier: 9Y8GbXTGmmkiLsZZ5duJZx9pOUrnt8HasIYGzszxw9g= Subject key identifier: 82:ED:FE:92:16:87:1D:F7:91:35:C7:4E:77:BD:36:20:27:21:13:FE Authority key identifier: C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 Certificate issuer: /CN=A91E0C5F/serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Certificate serial: 0712 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft Manifest number: 16C1 Signing time: Tue 04 Nov 2025 17:35:57 +0000 Manifest this update: Tue 04 Nov 2025 17:35:56 +0000 Manifest next update: Tue 11 Nov 2025 17:35:56 +0000 Files and hashes: 1: yZBd5SSGuexO-HmgJkRccLD9lQU.crl (hash: ZWVaRw8zqPUrnGwd3xvPN3NBtQ/WhYbwDJdF58PGk8U=) 2: 039F32B465C411EBA408403CC4F9AE02.roa (hash: xyf+NgV/qzZzzx4oyqEQT3Z/16fLP6Y40HqsQl4nZiw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:35:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1810 (0x712) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C5F, serialNumber=C9905DE52486B9EC4EF879A026445C70B0FD9505 Validity Not Before: Nov 4 17:35:56 2025 GMT Not After : Nov 11 17:35:56 2025 GMT Subject: CN=690a397d-4112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f3:1c:0a:fd:77:28:43:2c:6d:42:24:96:30: 9f:6f:7a:fc:24:48:cd:c7:c7:da:e2:bf:f4:32:71: 58:5e:5a:a4:3e:0b:27:1c:4a:b0:0a:cd:e6:3c:a2: de:5c:5a:8a:5e:0d:0c:9d:fc:54:34:24:a0:86:b0: f0:85:11:70:8e:a6:07:b1:df:57:1d:4f:76:15:25: ce:62:02:82:59:cf:41:e0:8f:e2:3e:93:b3:1f:0e: e7:55:07:79:d6:96:01:89:7e:c5:d6:d7:37:03:57: 01:3a:f3:1f:f7:48:7b:84:b7:3f:e5:93:87:3b:8e: 49:e1:f5:b3:88:e2:cd:a1:ab:84:fd:e8:b5:9e:b2: c8:c9:4b:ca:d3:69:6f:a8:95:47:31:1c:d3:38:a1: fb:79:5a:6f:31:ca:c6:c6:46:23:4e:58:4f:19:53: 40:0d:dc:b0:63:39:98:ab:51:f3:dc:85:ab:ff:42: b0:85:eb:35:4e:1a:63:7f:9c:c8:7c:77:45:2f:ce: 8d:77:4c:aa:ba:8e:7e:96:c0:a4:65:bb:95:45:3b: 70:27:b5:a2:2c:c5:71:05:4b:d7:50:f5:54:bf:15: a1:e0:78:12:ec:bb:5a:2a:26:e7:a2:7b:16:e5:cc: 4b:1e:77:61:11:78:56:9a:bb:0d:87:ab:02:d0:b2: 6b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:ED:FE:92:16:87:1D:F7:91:35:C7:4E:77:BD:36:20:27:21:13:FE X509v3 Authority Key Identifier: keyid:C9:90:5D:E5:24:86:B9:EC:4E:F8:79:A0:26:44:5C:70:B0:FD:95:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZBd5SSGuexO-HmgJkRccLD9lQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C5F/8B547A72666411E982D05974C4F9AE02/yZBd5SSGuexO-HmgJkRccLD9lQU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:69:e6:ac:42:72:ca:50:0b:94:7f:d6:08:94:31:15:05:c3: 80:42:63:6f:de:b7:8e:27:b9:19:a2:ff:b9:f9:69:11:bf:d3: cf:48:2e:aa:fa:ac:06:5e:bb:9e:b6:3b:75:5a:64:7e:c7:8a: 8b:9c:bf:1a:4a:20:c8:fd:07:44:11:d9:60:0e:60:a9:12:12: 73:ff:4f:b8:a8:1e:29:08:d8:db:0a:3a:0d:04:21:c6:f1:7d: ad:da:6c:cd:98:aa:ae:35:8b:64:f8:6f:4e:46:f2:87:b7:db: 45:a1:49:96:42:09:be:e3:c6:c7:e0:0b:bb:a6:75:db:b4:ce: df:da:64:8a:2f:30:94:e4:91:a2:72:58:35:3e:3b:be:8f:b6: 39:e5:1e:13:af:eb:2e:4c:a2:a4:ac:37:73:df:94:47:0c:66: 24:39:a6:e3:9b:b4:27:6d:cf:dc:c7:b2:8e:8c:8d:42:9e:7b: dd:0a:52:ce:0d:69:39:de:86:00:ab:00:7e:53:f0:c8:cc:0b: b6:4b:f5:43:9f:1a:b7:a7:df:98:ed:98:ad:3e:2e:45:99:23: 34:18:56:70:50:53:20:53:c0:89:d8:50:f9:5e:57:b3:35:1a: 79:1a:07:bb:0f:7e:47:7d:c4:d4:75:12:74:17:6f:4a:d3:27: a2:f2:5c:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDNUYxMTAvBgNVBAUTKEM5OTA1REU1MjQ4NkI5RUM0RUY4NzlBMDI2NDQ1Qzcw QjBGRDk1MDUwHhcNMjUxMTA0MTczNTU2WhcNMjUxMTExMTczNTU2WjAYMRYwFAYD VQQDEw02OTBhMzk3ZC00MTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPMcCv13KEMsbUIkljCfb3r8JEjNx8fa4r/0MnFYXlqkPgsnHEqwCs3mPKLe XFqKXg0MnfxUNCSghrDwhRFwjqYHsd9XHU92FSXOYgKCWc9B4I/iPpOzHw7nVQd5 1pYBiX7F1tc3A1cBOvMf90h7hLc/5ZOHO45J4fWziOLNoauE/ei1nrLIyUvK02lv qJVHMRzTOKH7eVpvMcrGxkYjTlhPGVNADdywYzmYq1Hz3IWr/0Kwhes1Thpjf5zI fHdFL86Nd0yquo5+lsCkZbuVRTtwJ7WiLMVxBUvXUPVUvxWh4HgS7LtaKibnonsW 5cxLHndhEXhWmrsNh6sC0LJrJwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFILt/pIW hx33kTXHTne9NiAnIRP+MB8GA1UdIwQYMBaAFMmQXeUkhrnsTvh5oCZEXHCw/ZUF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEM1Ri84QjU0N0E3MjY2 NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3VleE8tSG1nSmtSY2NMRDls UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laQmQ1U1NHdWV4Ty1IbWdKa1JjY0xEOWxRVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MEM1Ri84QjU0N0E3MjY2NjQxMUU5ODJEMDU5NzRDNEY5QUUwMi95WkJkNVNTR3Vl eE8tSG1nSmtSY2NMRDlsUVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCZaeasQnLKUAuUf9YIlDEVBcOAQmNv3reOJ7kZov+5+WkRv9PPSC6q +qwGXruetjt1WmR+x4qLnL8aSiDI/QdEEdlgDmCpEhJz/0+4qB4pCNjbCjoNBCHG 8X2t2mzNmKquNYtk+G9ORvKHt9tFoUmWQgm+48bH4Au7pnXbtM7f2mSKLzCU5JGi clg1Pju+j7Y55R4Tr+suTKKkrDdz35RHDGYkOabjm7Qnbc/cx7KOjI1CnnvdClLO DWk53oYAqwB+U/DIzAu2S/VDnxq3p9+Y7ZitPi5FmSM0GFZwUFMgU8CJ2FD5Xlez NRp5Gge7D35HfcTUdRJ0F29K0yei8lw4 -----END CERTIFICATE-----Generated at Wed Nov 5 15:39:07 2025 by rpki-client