$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft File: YN1l7H9y62x9qLk3BuLTug8GW_w.mft (raw, json) Hash identifier: xD/OmWlAmqh6kQ/Hf6HQLPHXYclqwk9WfwDvwyeO4Qg= Subject key identifier: F9:2B:F9:E5:23:9F:F5:A6:2B:76:F0:66:E2:77:55:A2:6A:13:78:1C Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1AB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft Manifest number: 1AA2 Signing time: Wed 22 Oct 2025 16:36:12 +0000 Manifest this update: Wed 22 Oct 2025 16:36:12 +0000 Manifest next update: Wed 29 Oct 2025 16:36:12 +0000 Files and hashes: 1: YN1l7H9y62x9qLk3BuLTug8GW_w.crl (hash: tk5fKIEhlLQSM6ZFkyWZv8ypsmiZp1O+6pTfcH1OJxY=) 2: D75BE71A410511E7970A2A5FC4F9AE02.roa (hash: rSf0co4QElknqmx/HUwcUze0T308M2kPbS2aUDzOJyo=) 3: 91CB97905BD211EBA9178181C4F9AE02.roa (hash: Wesd0InqJ/VHy6+SYHu7ABNFnSg/btyWb+0cbj+CPEk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 16:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6833 (0x1ab1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264, serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Oct 22 16:36:12 2025 GMT Not After : Oct 29 16:36:12 2025 GMT Subject: CN=68f907fc-027a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:31:4d:92:02:88:c5:34:2b:b1:01:c6:d3:9b: 08:1f:13:88:c5:8d:9b:3d:30:a6:4b:db:c5:11:b3: b2:33:6b:59:72:93:ff:e3:c9:12:35:ba:46:0b:fb: f4:87:df:0b:93:3f:cf:44:21:df:f7:1f:0f:c2:18: 0b:5e:24:d4:96:3d:1f:39:63:ed:c0:09:d5:d2:34: c9:db:0d:7e:d0:10:7d:7a:bf:9e:a9:64:f5:78:be: fe:63:31:b3:a6:90:94:95:e6:98:13:b5:e2:3a:e8: 30:68:a5:a0:5c:41:f3:a8:99:ba:d0:19:9a:e8:4f: b4:03:7e:c3:cc:d5:55:41:de:bd:33:c8:9b:74:69: 23:e1:3f:95:b4:4b:9b:42:2b:ff:77:02:08:a8:1e: f4:fc:6d:ed:7d:6c:19:40:d7:0c:98:af:72:63:fd: 40:2f:72:56:a5:a9:5d:35:fb:7c:8f:08:41:d8:e0: f9:53:bf:d1:2a:37:d2:a0:b0:36:47:53:29:06:70: 26:b0:9a:f9:4c:0e:12:a5:4e:dd:95:92:4f:26:cf: b3:7a:4e:bb:62:12:b8:c4:9f:48:57:ab:bf:27:ca: 8c:06:3e:77:bc:eb:52:9b:e3:4e:3a:f4:ca:9e:5b: bb:16:95:0a:d9:56:a5:94:50:40:29:d3:17:b2:fe: 20:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:2B:F9:E5:23:9F:F5:A6:2B:76:F0:66:E2:77:55:A2:6A:13:78:1C X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:22:be:d9:ee:d9:16:07:53:af:36:5e:ff:fc:c0:c5:31:0c: 91:01:90:c0:ff:32:c4:af:77:74:f9:9d:e4:a3:d3:36:ec:5b: f3:32:6d:37:be:2f:34:9f:7c:df:81:0f:ca:fc:f4:c6:64:73: 38:cb:2e:74:99:51:70:15:e6:db:02:db:b3:cd:d0:0d:c3:57: 67:48:b2:19:28:36:0a:e3:9f:de:64:54:18:8f:33:c8:7f:36: ae:fa:03:5b:7e:91:ca:74:91:bc:59:f8:1c:72:9c:d8:1e:0f: 4e:62:4b:f1:d2:7a:16:0e:6b:cd:76:68:82:01:23:38:c3:63: e9:52:07:7c:c4:28:32:6a:e7:dd:bf:0a:3a:8c:36:7b:b6:e4: bb:85:ad:de:59:7c:7b:dc:c7:7f:be:8f:7b:89:71:71:fa:ce: da:6d:6c:2d:6c:61:3b:7f:9b:a0:bd:d1:1e:4b:77:51:52:d3: 09:86:82:3e:46:b7:19:99:ee:8c:35:26:f7:f5:00:08:19:f7: 81:87:f4:41:80:fc:d8:0f:92:5e:c7:91:8c:ae:11:56:8f:74: a2:f9:f0:23:0e:38:c7:53:b5:e9:4b:4e:f1:e8:2d:b3:7f:4b: 96:59:ea:0f:95:cb:9b:04:5e:1d:1c:ca:9e:4f:93:4f:b5:9f: 89:11:4f:a9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICGrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjUxMDIyMTYzNjEyWhcNMjUxMDI5MTYzNjEyWjAYMRYwFAYD VQQDEw02OGY5MDdmYy0wMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6TFNkgKIxTQrsQHG05sIHxOIxY2bPTCmS9vFEbOyM2tZcpP/48kSNbpGC/v0 h98Lkz/PRCHf9x8PwhgLXiTUlj0fOWPtwAnV0jTJ2w1+0BB9er+eqWT1eL7+YzGz ppCUleaYE7XiOugwaKWgXEHzqJm60Bma6E+0A37DzNVVQd69M8ibdGkj4T+VtEub Qiv/dwIIqB70/G3tfWwZQNcMmK9yY/1AL3JWpaldNft8jwhB2OD5U7/RKjfSoLA2 R1MpBnAmsJr5TA4SpU7dlZJPJs+zek67YhK4xJ9IV6u/J8qMBj53vOtSm+NOOvTK nlu7FpUK2VallFBAKdMXsv4gBwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPkr+eUj n/WmK3bwZuJ3VaJqE3gcMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDI2NC9DNThENkZGQTQxMDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYy eDlxTGszQnVMVHVnOEdXX3cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCDIr7Z7tkWB1OvNl7//MDFMQyRAZDA/zLEr3d0+Z3ko9M27FvzMm03 vi80n3zfgQ/K/PTGZHM4yy50mVFwFebbAtuzzdANw1dnSLIZKDYK45/eZFQYjzPI fzau+gNbfpHKdJG8WfgccpzYHg9OYkvx0noWDmvNdmiCASM4w2PpUgd8xCgyaufd vwo6jDZ7tuS7ha3eWXx73Md/vo97iXFx+s7abWwtbGE7f5ugvdEeS3dRUtMJhoI+ RrcZme6MNSb39QAIGfeBh/RBgPzYD5Jex5GMrhFWj3Si+fAjDjjHU7XpS07x6C2z f0uWWeoPlcubBF4dHMqeT5NPtZ+JEU+p -----END CERTIFICATE-----Generated at Thu Oct 23 10:00:10 2025 by rpki-client