$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft File: Y19XnOBVlw4BocO3dQIcjj4ieIc.mft (raw, json) Hash identifier: c3V+eXQhcmvop/quyxa6YH2vDkoTjl7rhTOlu07Cn3M= Subject key identifier: 3E:93:94:CF:6F:41:DA:98:E9:A5:43:05:AA:DA:35:9C:B9:1B:9C:BE Authority key identifier: 63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 Certificate issuer: /CN=A91F4294/serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Certificate serial: 0E4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft Manifest number: 0E47 Signing time: Tue 04 Nov 2025 17:52:09 +0000 Manifest this update: Tue 04 Nov 2025 17:52:08 +0000 Manifest next update: Tue 11 Nov 2025 17:52:08 +0000 Files and hashes: 1: Y19XnOBVlw4BocO3dQIcjj4ieIc.crl (hash: RueWdA3To18+QSWDCWL6aZQCsyJalq54+U/EIaWzs5A=) 2: 1E018994AEBF11E993F33C65C4F9AE02.roa (hash: VAz7Q8OmwNVtqjw21t41eYyn3+glN8lqbyiXL2P+yek=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:52:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3663 (0xe4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4294, serialNumber=635F579CE055970E01A1C3B775021C8E3E227887 Validity Not Before: Nov 4 17:52:08 2025 GMT Not After : Nov 11 17:52:08 2025 GMT Subject: CN=690a3d48-37e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a5:02:ff:d8:71:60:ee:a7:d8:7c:30:71:dc: 73:8f:66:2e:1f:fb:37:d5:9b:e0:1e:80:a3:f5:7b: fb:b7:ae:db:74:96:08:0f:de:15:7a:10:3b:df:49: ed:db:40:4b:ee:b7:4a:de:34:1d:c8:eb:55:8d:d7: e7:8e:0f:cd:05:57:92:36:dd:6b:03:58:b3:06:d1: 17:0c:ed:a5:c6:d5:7a:db:d9:b6:8a:c6:9d:14:6f: 2b:95:4a:84:fb:ff:b2:c4:2d:54:be:1f:78:5c:36: 4b:5d:48:62:e5:6c:fa:a2:38:f1:93:b8:ce:1d:83: 9f:23:d9:e1:a7:69:c2:4e:a2:86:0d:82:11:45:d7: db:f2:cd:02:09:7c:4f:8f:41:cf:03:25:64:d6:06: 93:e1:a6:40:e1:48:f6:c6:5a:82:6c:34:e2:18:16: 49:dd:b9:3f:c4:d2:bc:ab:2f:1b:94:e5:04:93:fe: a1:7e:74:e8:78:36:2a:e3:3a:73:f6:44:f7:7a:1a: 66:45:41:4f:bc:9a:6b:4c:3f:3b:34:17:9d:2f:23: cb:a2:3d:6b:9e:9b:3c:89:3b:bb:e3:55:e7:a8:be: fb:a5:00:83:ec:88:96:a1:c9:fe:84:12:45:5e:45: 32:8a:c6:6c:c5:2f:b4:dc:09:41:de:d7:95:a7:a9: 9f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:93:94:CF:6F:41:DA:98:E9:A5:43:05:AA:DA:35:9C:B9:1B:9C:BE X509v3 Authority Key Identifier: keyid:63:5F:57:9C:E0:55:97:0E:01:A1:C3:B7:75:02:1C:8E:3E:22:78:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y19XnOBVlw4BocO3dQIcjj4ieIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4294/0CB5EAFAAEBE11E980FB4E63C4F9AE02/Y19XnOBVlw4BocO3dQIcjj4ieIc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:48:69:bf:03:b8:af:f4:da:a5:25:2f:ec:dd:b4:0f:b6:d6: c8:be:12:23:0b:5d:fa:3b:11:10:39:dd:fc:32:b3:7c:d0:dd: e4:21:3c:cf:68:5a:0e:f9:6c:c0:0e:a3:25:9b:ee:25:b1:60: e4:d3:f4:a8:7f:90:d3:7c:9f:28:14:23:61:b5:7c:16:3e:66: e9:5f:db:b8:e7:2b:7f:f1:25:7d:50:cb:10:71:e7:42:3e:af: a5:3b:1f:65:e3:9e:e6:92:d4:ea:45:7a:d4:09:4a:d4:3e:2a: 51:62:69:5d:a3:fb:7a:d4:26:4c:87:9a:b1:5d:dd:d1:47:02: 16:0e:6e:de:8e:8c:d4:d0:08:a3:38:2b:cf:54:04:f6:f0:d4: 99:5f:9d:8d:cd:52:d3:1f:43:a4:83:4c:2e:13:97:34:7e:7b: 74:11:89:5f:8f:81:22:bc:dd:12:98:ba:d3:7f:0a:5e:64:05: dc:43:d5:37:2b:23:be:f9:d4:d6:b8:91:86:49:dd:5e:44:60: a2:82:fb:ff:6c:e7:cf:55:77:de:2e:78:1b:38:eb:0e:a3:d8: 82:9c:66:0e:4a:54:0d:69:1b:25:98:34:11:24:cd:ab:22:9c: f4:45:56:6c:56:f6:c0:cb:d2:0b:de:80:c0:a0:a5:eb:78:3b: de:ef:2b:b0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQyOTQxMTAvBgNVBAUTKDYzNUY1NzlDRTA1NTk3MEUwMUExQzNCNzc1MDIxQzhF M0UyMjc4ODcwHhcNMjUxMTA0MTc1MjA4WhcNMjUxMTExMTc1MjA4WjAYMRYwFAYD VQQDEw02OTBhM2Q0OC0zN2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqqUC/9hxYO6n2Hwwcdxzj2YuH/s31ZvgHoCj9Xv7t67bdJYID94VehA730nt 20BL7rdK3jQdyOtVjdfnjg/NBVeSNt1rA1izBtEXDO2lxtV629m2isadFG8rlUqE +/+yxC1Uvh94XDZLXUhi5Wz6ojjxk7jOHYOfI9nhp2nCTqKGDYIRRdfb8s0CCXxP j0HPAyVk1gaT4aZA4Uj2xlqCbDTiGBZJ3bk/xNK8qy8blOUEk/6hfnToeDYq4zpz 9kT3ehpmRUFPvJprTD87NBedLyPLoj1rnps8iTu741XnqL77pQCD7IiWocn+hBJF XkUyisZsxS+03AlB3teVp6mfZQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD6TlM9v QdqY6aVDBaraNZy5G5y+MB8GA1UdIwQYMBaAFGNfV5zgVZcOAaHDt3UCHI4+IniH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDI5NC8wQ0I1RUFGQUFF QkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3NEJvY08zZFFJY2pqNGll SWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kxOVhuT0JWbHc0Qm9jTzNkUUljamo0aWVJYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDI5NC8wQ0I1RUFGQUFFQkUxMUU5ODBGQjRFNjNDNEY5QUUwMi9ZMTlYbk9CVmx3 NEJvY08zZFFJY2pqNGllSWMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCvSGm/A7iv9NqlJS/s3bQPttbIvhIjC136OxEQOd38MrN80N3kITzP aFoO+WzADqMlm+4lsWDk0/Sof5DTfJ8oFCNhtXwWPmbpX9u45yt/8SV9UMsQcedC Pq+lOx9l457mktTqRXrUCUrUPipRYmldo/t61CZMh5qxXd3RRwIWDm7ejozU0Aij OCvPVAT28NSZX52NzVLTH0Okg0wuE5c0fnt0EYlfj4EivN0SmLrTfwpeZAXcQ9U3 KyO++dTWuJGGSd1eRGCigvv/bOfPVXfeLngbOOsOo9iCnGYOSlQNaRslmDQRJM2r Ipz0RVZsVvbAy9IL3oDAoKXreDve7yuw -----END CERTIFICATE-----Generated at Wed Nov 5 05:48:22 2025 by rpki-client