$ rpki-client -vvf rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft File: YZBA6DW609z1wgE5bYVxmVp6zFA.mft (raw, json) Hash identifier: kSSyoNJst6/qqNS5iEfXOs2lD6nwpryoGAuA8r/1N5Y= Subject key identifier: 67:3A:EF:A0:1E:E2:4F:24:03:4D:A2:B8:13:B2:93:2D:51:5A:59:5E Authority key identifier: 61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 Certificate issuer: /CN=A91FABEF/serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Certificate serial: 0149 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft Manifest number: 0145 Signing time: Wed 05 Nov 2025 04:31:51 +0000 Manifest this update: Wed 05 Nov 2025 04:31:51 +0000 Manifest next update: Wed 12 Nov 2025 04:31:51 +0000 Files and hashes: 1: YZBA6DW609z1wgE5bYVxmVp6zFA.crl (hash: FQcgDScmJPE4r010I9sGi2sClZVQ5SQdptsmTWakPRg=) 2: 8045E9A4CEEC11EEAFFC5E36C4F9AE02.roa (hash: QQ0CP8HHmI7PCShWjhNg26xSyERliRPL6u4e6U+9a/k=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:31:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 329 (0x149) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FABEF, serialNumber=619040E835BAD3DCF5C201396D8571995A7ACC50 Validity Not Before: Nov 5 04:31:51 2025 GMT Not After : Nov 12 04:31:51 2025 GMT Subject: CN=690ad337-e8a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:53:61:a1:4b:9c:52:55:cb:f7:fe:fe:d6:cf: aa:c6:58:3f:1b:1d:bb:3f:63:71:2c:03:e5:83:e7: 13:16:08:87:bb:cb:33:95:4c:8a:1d:49:82:1f:2f: 9d:b8:db:26:a6:99:33:25:e2:95:ce:98:05:3e:56: d5:4d:df:2d:29:49:f8:e6:11:f9:f8:fa:67:47:e6: 0c:81:8d:fe:09:b7:a7:05:4b:48:36:da:3e:e3:98: 88:55:b6:d7:7f:14:36:94:4e:89:f4:da:d3:bb:36: b3:c4:bf:c3:2c:90:c1:ba:9c:07:ab:59:90:4a:fd: 1f:c2:9a:dc:29:1c:d3:68:a8:e2:1e:fc:7d:cc:ec: 4c:cb:58:91:86:8d:f2:2d:07:5a:40:50:cc:e0:90: 82:ff:ae:e6:83:75:df:63:58:cf:0a:3b:02:b5:8a: 2e:b1:97:e8:2d:40:83:43:b0:ae:73:b7:35:08:3f: 4b:92:9e:9f:3d:ea:f5:66:cb:16:bd:81:1e:88:bf: 10:e4:4d:4b:60:74:89:f4:70:3e:61:19:dd:d3:fc: 33:26:dc:a5:c7:61:ea:c0:84:e1:4d:9b:61:02:c6: 6a:62:bb:32:72:88:c4:8b:db:da:37:f9:19:31:ce: 3d:9e:09:6a:e4:63:c6:6c:97:6c:fc:78:86:0a:16: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:3A:EF:A0:1E:E2:4F:24:03:4D:A2:B8:13:B2:93:2D:51:5A:59:5E X509v3 Authority Key Identifier: keyid:61:90:40:E8:35:BA:D3:DC:F5:C2:01:39:6D:85:71:99:5A:7A:CC:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YZBA6DW609z1wgE5bYVxmVp6zFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FABEF/C0764572CB1911EE815FAB68C4F9AE02/YZBA6DW609z1wgE5bYVxmVp6zFA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:88:17:3e:ba:63:b5:86:e3:2d:92:d5:47:02:af:78:9f:00: c0:f2:5e:6b:c4:b3:96:f2:bc:91:55:02:e3:aa:7b:68:0b:a8: f2:8c:2a:6f:6b:86:2f:aa:53:52:56:ae:80:44:b7:a1:b8:fe: fc:27:dc:5f:b3:f4:3f:7f:b1:e9:eb:a4:76:e8:46:4f:f8:42: 50:72:d8:6b:53:de:01:6f:e2:bb:27:c1:da:d1:a1:dd:77:46: 1d:dc:38:47:eb:7b:bf:1e:9f:ef:1c:30:08:85:f7:2e:05:c7: 80:8f:f8:69:68:24:76:cb:67:51:4a:33:e2:92:b3:7a:fb:5e: 6c:ce:68:dd:92:13:4c:2c:36:43:3a:07:5f:e7:c6:1b:2d:a1: 86:92:49:7b:a2:69:f3:ff:4e:9a:5e:7f:65:6f:53:94:98:2f: 73:26:91:c8:f8:ec:d6:d4:94:b1:d9:70:ef:d5:f2:7b:49:62: 40:16:4c:58:ad:53:db:a8:f8:04:31:da:20:de:f8:fc:95:7c: d1:0f:d7:88:9d:ff:8c:dc:d9:37:f3:31:7e:00:48:40:db:e7: a4:8f:67:e7:88:74:55:5d:72:cc:3b:ee:ae:49:51:d9:ac:55: 79:3d:c0:bd:08:d6:28:c8:68:b3:9a:7c:ce:c7:e0:d5:65:12: 7a:24:07:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFCRUYxMTAvBgNVBAUTKDYxOTA0MEU4MzVCQUQzRENGNUMyMDEzOTZEODU3MTk5 NUE3QUNDNTAwHhcNMjUxMTA1MDQzMTUxWhcNMjUxMTEyMDQzMTUxWjAYMRYwFAYD VQQDEw02OTBhZDMzNy1lOGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq1NhoUucUlXL9/7+1s+qxlg/Gx27P2NxLAPlg+cTFgiHu8szlUyKHUmCHy+d uNsmppkzJeKVzpgFPlbVTd8tKUn45hH5+PpnR+YMgY3+CbenBUtINto+45iIVbbX fxQ2lE6J9NrTuzazxL/DLJDBupwHq1mQSv0fwprcKRzTaKjiHvx9zOxMy1iRho3y LQdaQFDM4JCC/67mg3XfY1jPCjsCtYousZfoLUCDQ7Cuc7c1CD9Lkp6fPer1ZssW vYEeiL8Q5E1LYHSJ9HA+YRnd0/wzJtylx2HqwIThTZthAsZqYrsycojEi9vaN/kZ Mc49nglq5GPGbJds/HiGChbhDwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGc676Ae 4k8kA02iuBOyky1RWlleMB8GA1UdIwQYMBaAFGGQQOg1utPc9cIBOW2FcZlaesxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUJFRi9DMDc2NDU3MkNC MTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5ejF3Z0U1YllWeG1WcDZ6 RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1laQkE2RFc2MDl6MXdnRTViWVZ4bVZwNnpGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QUJFRi9DMDc2NDU3MkNCMTkxMUVFODE1RkFCNjhDNEY5QUUwMi9ZWkJBNkRXNjA5 ejF3Z0U1YllWeG1WcDZ6RkEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKiBc+umO1huMtktVHAq94nwDA8l5rxLOW8ryRVQLjqntoC6jyjCpv a4YvqlNSVq6ARLehuP78J9xfs/Q/f7Hp66R26EZP+EJQcthrU94Bb+K7J8Ha0aHd d0Yd3DhH63u/Hp/vHDAIhfcuBceAj/hpaCR2y2dRSjPikrN6+15szmjdkhNMLDZD Ogdf58YbLaGGkkl7omnz/06aXn9lb1OUmC9zJpHI+OzW1JSx2XDv1fJ7SWJAFkxY rVPbqPgEMdog3vj8lXzRD9eInf+M3Nk38zF+AEhA2+ekj2fniHRVXXLMO+6uSVHZ rFV5PcC9CNYoyGizmnzOx+DVZRJ6JAep -----END CERTIFICATE-----Generated at Wed Nov 5 07:52:23 2025 by rpki-client