$ rpki-client -vvf rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft File: YBqj_Udwv8aa8kBvLoDtCOfca0M.mft (raw, json) Hash identifier: LR7PTh7FALl0fBK7NuvhbV4vY1s783d0vGSfHIp4tHY= Subject key identifier: F6:FB:8A:96:EE:79:92:CE:EF:43:26:52:FA:95:07:55:78:A6:9C:9C Authority key identifier: 60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 Certificate issuer: /CN=A91954E2/serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft Manifest number: FE Signing time: Wed 05 Nov 2025 05:16:52 +0000 Manifest this update: Wed 05 Nov 2025 05:16:51 +0000 Manifest next update: Wed 12 Nov 2025 05:16:51 +0000 Files and hashes: 1: YBqj_Udwv8aa8kBvLoDtCOfca0M.crl (hash: FvsXUBcqUDpMgvrQofq7FWTlaJKAhdItOnYrV+KF3Ao=) 2: CC8E710C347011EF9F04CE66C4F9AE02.roa (hash: zqqFgR8hZJd3tGWwh69g86T2JXS+0860K/pt4Nn27L8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91954E2, serialNumber=601AA3FD4770BFC69AF2406F2E80ED08E7DC6B43 Validity Not Before: Nov 5 05:16:51 2025 GMT Not After : Nov 12 05:16:51 2025 GMT Subject: CN=690addc4-24ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:13:e6:d2:e8:f3:68:41:a5:aa:a3:b2:55:e8: ec:41:55:88:88:55:6f:85:e6:3d:98:44:9a:18:b2: a3:d6:a5:86:fc:38:25:04:90:4b:c6:f1:12:37:e5: e3:36:59:03:5e:22:a1:00:03:04:65:f3:99:85:c0: bc:b8:34:b2:48:9b:9d:9d:de:34:59:f6:3d:5d:c3: e8:16:98:ba:ae:56:fa:57:cd:da:80:bb:e6:58:04: 00:da:64:44:29:85:9c:5d:75:cc:88:6b:bd:5b:ac: f8:75:d1:6b:bc:79:54:2b:7a:81:07:fc:62:ae:9a: 08:d7:bc:a7:47:40:ad:73:e3:6a:4c:10:cf:a5:39: 05:d5:02:f8:d6:a6:55:c3:38:20:b4:96:cd:ea:66: dd:80:37:51:5e:a6:49:fc:61:21:f8:da:b5:ef:e7: 3d:3c:95:11:11:51:e6:7a:53:6b:df:32:21:3a:37: 62:6e:86:e0:dd:9b:eb:e4:82:42:2b:ce:9f:b6:23: a6:d5:27:13:89:49:82:83:eb:48:c4:67:e1:e1:31: a7:37:b6:9d:51:44:30:fe:50:73:1c:d1:54:b7:e1: ab:6a:b7:17:98:df:c3:1c:e0:b3:91:5b:c6:35:bc: ce:5c:96:06:69:c6:bf:af:cb:9c:1c:37:75:b6:ea: 25:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:FB:8A:96:EE:79:92:CE:EF:43:26:52:FA:95:07:55:78:A6:9C:9C X509v3 Authority Key Identifier: keyid:60:1A:A3:FD:47:70:BF:C6:9A:F2:40:6F:2E:80:ED:08:E7:DC:6B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YBqj_Udwv8aa8kBvLoDtCOfca0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91954E2/73EBE6A2346F11EF97CA7546C4F9AE02/YBqj_Udwv8aa8kBvLoDtCOfca0M.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3c:75:f8:11:8e:f5:0a:df:1f:d0:5f:91:b9:64:95:2b:bd:ca: 37:8a:e2:ee:d8:31:6f:32:79:f5:d0:21:04:78:35:3a:8f:4c: 53:76:79:4f:4a:e8:c3:b4:f5:6e:3a:ab:d3:39:ab:e4:f5:f8: 57:0f:f4:03:ad:6e:1c:e3:f1:73:53:0c:5a:ca:16:47:ed:b1: 77:23:2a:ab:16:d7:f1:03:5a:f2:a3:54:a1:53:4d:60:d0:ce: 7b:2a:b1:52:95:db:33:91:c6:81:35:bd:a3:bd:47:28:08:83: a3:c0:cb:01:ef:38:53:23:ef:f9:d1:f1:07:00:85:db:05:5c: b0:c3:cf:b4:8c:62:b5:5d:41:76:a6:41:f1:13:8b:3d:3d:76: bc:f1:74:58:4a:b9:6d:63:07:83:0f:1f:dc:e7:6c:58:7e:1a: 72:07:64:b8:55:51:cf:14:6b:a8:c6:43:05:96:15:33:5a:99: bb:11:f5:e9:41:b4:c6:e2:3d:fd:cd:e7:b9:20:e1:bb:a3:86: 08:c9:d1:62:a0:53:e7:f7:b2:4c:9a:fc:7e:3f:26:0d:f4:b9: d0:8d:7f:23:c1:3c:1f:2c:5a:df:26:0e:c0:41:f6:2c:f2:a4: a2:77:5d:54:30:0b:9f:0b:4b:3d:5b:ab:00:f1:72:e9:d1:bd: 8e:40:80:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0RTIxMTAvBgNVBAUTKDYwMUFBM0ZENDc3MEJGQzY5QUYyNDA2RjJFODBFRDA4 RTdEQzZCNDMwHhcNMjUxMTA1MDUxNjUxWhcNMjUxMTEyMDUxNjUxWjAYMRYwFAYD VQQDEw02OTBhZGRjNC0yNGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxPm0ujzaEGlqqOyVejsQVWIiFVvheY9mESaGLKj1qWG/DglBJBLxvESN+Xj NlkDXiKhAAMEZfOZhcC8uDSySJudnd40WfY9XcPoFpi6rlb6V83agLvmWAQA2mRE KYWcXXXMiGu9W6z4ddFrvHlUK3qBB/xirpoI17ynR0Ctc+NqTBDPpTkF1QL41qZV wzggtJbN6mbdgDdRXqZJ/GEh+Nq17+c9PJUREVHmelNr3zIhOjdibobg3Zvr5IJC K86ftiOm1ScTiUmCg+tIxGfh4TGnN7adUUQw/lBzHNFUt+GrarcXmN/DHOCzkVvG NbzOXJYGaca/r8ucHDd1tuolbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPb7ipbu eZLO70MmUvqVB1V4ppycMB8GA1UdIwQYMBaAFGAao/1HcL/GmvJAby6A7Qjn3GtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTRFMi83M0VCRTZBMjM0 NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9ZQnFqX1Vkd3Y4YWE4a0J2TG9EdENPZmNh ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCcWpfVWR3djhhYThrQnZMb0R0Q09mY2EwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTRFMi83M0VCRTZBMjM0NkYxMUVGOTdDQTc1NDZDNEY5QUUwMi9ZQnFqX1Vkd3Y4 YWE4a0J2TG9EdENPZmNhME0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA8dfgRjvUK3x/QX5G5ZJUrvco3iuLu2DFvMnn10CEEeDU6j0xTdnlP SujDtPVuOqvTOavk9fhXD/QDrW4c4/FzUwxayhZH7bF3IyqrFtfxA1ryo1ShU01g 0M57KrFSldszkcaBNb2jvUcoCIOjwMsB7zhTI+/50fEHAIXbBVyww8+0jGK1XUF2 pkHxE4s9PXa88XRYSrltYweDDx/c52xYfhpyB2S4VVHPFGuoxkMFlhUzWpm7EfXp QbTG4j39zee5IOG7o4YIydFioFPn97JMmvx+PyYN9LnQjX8jwTwfLFrfJg7AQfYs 8qSid11UMAufC0s9W6sA8XLp0b2OQIAq -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:36 2025 by rpki-client