$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft File: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft (raw, json) Hash identifier: MleDrz2tYcHn4xWpL2KYH8pX7dHuIuyMnE7ZYqjBUrA= Subject key identifier: 65:58:A7:9A:4F:9F:49:25:A9:9C:0D:98:AD:EF:3D:BA:FC:81:B7:9E Authority key identifier: D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 Certificate issuer: /CN=A91F1B39/serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Certificate serial: 0245 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft Manifest number: 0241 Signing time: Wed 05 Nov 2025 01:52:58 +0000 Manifest this update: Wed 05 Nov 2025 01:52:57 +0000 Manifest next update: Wed 12 Nov 2025 01:52:57 +0000 Files and hashes: 1: 0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl (hash: pre0wDnm5BOaLrOz+3Lxb4gmuSmB8h7QUB8aP377XP0=) 2: C18E7856446C11EDA55DB951C4F9AE02.roa (hash: 389SWD8U0n/S34l3x1fnKTD4IcOssPuVilWlMrYufM0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:52:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 581 (0x245) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1B39, serialNumber=D18F98A41C0ADC8C8184B826A71F3EF27F195323 Validity Not Before: Nov 5 01:52:57 2025 GMT Not After : Nov 12 01:52:57 2025 GMT Subject: CN=690aadfa-6439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c5:4c:dd:11:66:e2:1f:34:de:52:fa:54:92: 46:41:cd:83:ea:31:6d:7f:e4:64:30:e6:bd:88:fc: 86:eb:3b:c0:44:78:98:37:34:88:b0:06:7e:e9:0d: 85:99:01:4c:b9:09:3f:2b:29:97:2a:85:fe:78:73: 80:1d:72:50:08:13:40:56:71:02:ab:84:4b:7d:4f: 0d:92:de:a4:9a:3f:f2:34:a7:6e:de:25:8f:d1:48: b1:13:b7:9d:38:59:0c:fe:3c:64:c3:48:73:cf:8d: 93:fa:f9:01:42:9b:5d:1e:fc:d4:f1:d6:e5:ea:42: 74:61:2f:a1:46:46:f0:e8:39:3f:8d:c5:69:06:16: 7e:b0:51:c6:4f:3c:d0:59:66:c9:57:26:2a:a2:36: 66:96:ca:f6:7a:98:bf:03:b9:33:53:e0:ce:39:7e: 82:b5:24:90:73:b6:79:97:c1:bc:53:6f:e3:8d:ea: f1:39:4c:d4:c4:5a:92:17:b2:99:3b:da:0f:92:6f: 60:21:7b:c5:d4:7c:4c:11:a2:36:37:ba:ab:6a:af: 66:18:a5:0f:f1:84:80:24:15:92:d3:ed:ca:41:cb: c6:fb:ff:75:cf:2b:25:e0:21:0b:86:79:72:9a:4b: ef:64:ca:90:51:f7:25:6c:81:15:da:c3:63:86:b8: 55:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:58:A7:9A:4F:9F:49:25:A9:9C:0D:98:AD:EF:3D:BA:FC:81:B7:9E X509v3 Authority Key Identifier: keyid:D1:8F:98:A4:1C:0A:DC:8C:81:84:B8:26:A7:1F:3E:F2:7F:19:53:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1B39/B7699D2C446911EDBE4E794CC4F9AE02/0Y-YpBwK3IyBhLgmpx8-8n8ZUyM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6a:b7:82:11:55:4b:8a:18:d6:71:69:22:30:b3:67:e4:d1: 83:7e:f0:c3:be:0e:2c:d5:11:24:ba:32:ba:c1:04:d7:ea:05: 3a:60:4c:a1:7e:6b:6f:ac:bc:e2:0d:a9:bc:96:6d:8d:01:d2: f2:6a:53:b5:ed:82:55:52:e5:cd:f3:ef:ff:b0:d5:39:7f:08: d0:be:ef:ef:86:f1:17:e0:66:8a:14:d5:b4:bb:d8:ce:61:6e: 93:41:29:1b:40:09:29:62:b9:ca:46:74:ae:79:c6:8c:ef:99: 63:1d:97:a8:d0:82:ff:e1:a0:22:9d:b0:fe:e4:8e:47:3c:40: 03:00:e2:2a:f6:bf:44:8e:59:e3:64:b7:d8:9e:7c:32:de:1c: 98:c9:19:32:0d:4e:22:9c:b1:ff:72:ab:6e:83:10:1a:54:47: 2d:a2:5a:4b:90:00:cb:34:16:a9:be:fe:1b:f1:cd:6f:36:39: 41:5f:82:66:54:9d:d9:7b:a1:be:5a:bb:b1:0d:54:a9:b9:4d: 7c:e5:17:1a:f4:a0:42:c0:a4:1f:d7:af:13:22:62:ee:3d:37: ca:24:d8:a9:c7:04:b0:4e:51:1b:b8:79:50:e1:cc:23:ed:00: 18:b5:0e:a7:1f:04:5e:59:59:96:18:c5:38:1f:3a:32:54:d2: cf:47:e2:3e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFCMzkxMTAvBgNVBAUTKEQxOEY5OEE0MUMwQURDOEM4MTg0QjgyNkE3MUYzRUYy N0YxOTUzMjMwHhcNMjUxMTA1MDE1MjU3WhcNMjUxMTEyMDE1MjU3WjAYMRYwFAYD VQQDEw02OTBhYWRmYS02NDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MVM3RFm4h803lL6VJJGQc2D6jFtf+RkMOa9iPyG6zvARHiYNzSIsAZ+6Q2F mQFMuQk/KymXKoX+eHOAHXJQCBNAVnECq4RLfU8Nkt6kmj/yNKdu3iWP0UixE7ed OFkM/jxkw0hzz42T+vkBQptdHvzU8dbl6kJ0YS+hRkbw6Dk/jcVpBhZ+sFHGTzzQ WWbJVyYqojZmlsr2epi/A7kzU+DOOX6CtSSQc7Z5l8G8U2/jjerxOUzUxFqSF7KZ O9oPkm9gIXvF1HxMEaI2N7qraq9mGKUP8YSAJBWS0+3KQcvG+/91zysl4CELhnly mkvvZMqQUfclbIEV2sNjhrhVVwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGVYp5pP n0klqZwNmK3vPbr8gbeeMB8GA1UdIwQYMBaAFNGPmKQcCtyMgYS4JqcfPvJ/GVMj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUIzOS9CNzY5OUQyQzQ0 NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJeUJoTGdtcHg4LThuOFpV eU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBZLVlwQndLM0l5QmhMZ21weDgtOG44WlV5TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUIzOS9CNzY5OUQyQzQ0NjkxMUVEQkU0RTc5NENDNEY5QUUwMi8wWS1ZcEJ3SzNJ eUJoTGdtcHg4LThuOFpVeU0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAbareCEVVLihjWcWkiMLNn5NGDfvDDvg4s1REkujK6wQTX6gU6YEyh fmtvrLziDam8lm2NAdLyalO17YJVUuXN8+//sNU5fwjQvu/vhvEX4GaKFNW0u9jO YW6TQSkbQAkpYrnKRnSuecaM75ljHZeo0IL/4aAinbD+5I5HPEADAOIq9r9Ejlnj ZLfYnnwy3hyYyRkyDU4inLH/cqtugxAaVEctolpLkADLNBapvv4b8c1vNjlBX4Jm VJ3Ze6G+WruxDVSpuU185Rca9KBCwKQf168TImLuPTfKJNipxwSwTlEbuHlQ4cwj 7QAYtQ6nHwReWVmWGMU4HzoyVNLPR+I+ -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:19 2025 by rpki-client