$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft File: YbAiM19NheFtR3oAatyOPy_alGA.mft (raw, json) Hash identifier: WsSngdcIu2rV4M3jzlKaTzhM0pim6kd+4lFZf7BG7G8= Subject key identifier: E8:E2:07:26:75:4D:73:BF:11:89:48:A8:DB:C8:60:54:82:DD:48:24 Authority key identifier: 61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 Certificate issuer: /CN=A91A7C77/serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Certificate serial: 04DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft Manifest number: 04DC Signing time: Sat 25 Oct 2025 02:38:02 +0000 Manifest this update: Sat 25 Oct 2025 02:38:01 +0000 Manifest next update: Sat 01 Nov 2025 02:38:01 +0000 Files and hashes: 1: YbAiM19NheFtR3oAatyOPy_alGA.crl (hash: F/xN0tM1pZ9jC34vDiWSl7H4jlkIg/3+k8jmQkkQHOY=) 2: FF4EB6B2395811ECA422C462C4F9AE02.roa (hash: rSYICcW+HFCzDD9ABBiFdKCTDCOz7xqqAaQJc2BnfOg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 02:38:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1247 (0x4df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7C77, serialNumber=61B022335F4D85E16D477A006ADC8E3F2FDA9460 Validity Not Before: Oct 25 02:38:01 2025 GMT Not After : Nov 1 02:38:01 2025 GMT Subject: CN=68fc3809-b722 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:a6:23:85:6f:9a:21:b2:95:57:de:13:d1:c1: 3c:36:70:7b:1a:f7:32:94:bd:63:95:60:f9:cb:46: 63:a2:96:a5:d6:3c:e6:0a:48:a6:12:5f:55:40:94: b5:fd:08:85:58:51:61:83:2a:6e:54:83:73:0a:f4: 95:88:dc:09:a8:f8:2a:4d:6f:32:f8:e9:5b:54:ac: 9f:2e:cd:9d:19:73:25:89:b6:2c:f0:5c:29:1f:85: 90:fe:48:48:1d:4b:60:a9:f3:7f:0f:83:11:ee:f8: 06:35:2f:99:8c:0a:db:cd:e9:e4:ba:92:83:30:70: 78:0d:18:e9:5f:af:84:65:7d:62:58:d6:e0:c8:c7: 39:cd:ff:91:be:57:25:a2:a7:00:66:39:ad:33:52: 64:b3:14:00:5e:44:40:b0:03:1a:5f:60:6c:db:7b: 91:a1:a2:18:e3:e9:fd:92:1e:00:5a:31:ce:c3:1b: 11:f4:80:a8:60:78:bd:d4:9c:5d:1f:51:04:be:39: 45:76:d7:95:25:55:87:af:5f:fa:c5:5e:cf:d1:38: 3b:a4:e4:e3:66:26:b0:b4:6f:53:0a:8e:37:9b:ed: 19:d6:fd:44:0f:ea:9a:b1:89:66:1c:d6:87:f4:a4: fc:38:a7:1c:9a:18:c4:06:aa:7a:3f:eb:0c:8c:87: 10:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:E2:07:26:75:4D:73:BF:11:89:48:A8:DB:C8:60:54:82:DD:48:24 X509v3 Authority Key Identifier: keyid:61:B0:22:33:5F:4D:85:E1:6D:47:7A:00:6A:DC:8E:3F:2F:DA:94:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YbAiM19NheFtR3oAatyOPy_alGA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7C77/DC201AFE395411EC80D9D359C4F9AE02/YbAiM19NheFtR3oAatyOPy_alGA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:22:b3:a3:5a:22:7a:51:df:39:3e:0b:48:56:e1:84:18:a6: 78:47:76:bf:25:34:47:b3:b8:e9:d8:33:79:af:13:5b:94:c8: a5:81:89:a6:ba:8f:49:bc:b8:72:23:9e:ca:e1:98:71:81:d4: 60:78:66:a4:4e:d4:00:98:e7:d2:f8:eb:66:a6:a5:41:ee:d6: 2e:ef:c6:98:d0:55:fd:f5:62:bc:17:95:73:cb:de:69:e0:5d: 49:26:54:d4:0a:d7:7d:bb:51:69:09:71:2c:76:53:49:a2:66: 4f:7d:bd:40:63:36:b9:1e:c4:db:ea:16:b4:32:71:c0:a9:d2: d5:a7:c6:d0:0c:ca:e0:da:47:c2:93:c4:2f:b0:08:ab:c4:04: 5a:97:df:4c:7e:b2:09:f1:b1:ec:6d:82:56:0b:44:6a:13:f5: 9f:12:70:06:f0:4b:f8:3b:fb:aa:b0:80:4d:e5:50:19:aa:42: 4e:fe:e4:88:e7:3e:e5:e1:bd:7e:dd:fa:e1:be:4f:fe:14:9e: 86:b9:53:0c:2b:ce:70:99:2d:e8:57:f2:12:a1:46:cb:3c:14: e1:4b:82:eb:93:01:6e:20:b6:9e:4c:4a:ff:6c:0e:cf:82:3b: 25:1a:fe:01:33:6d:d9:05:5d:ca:58:31:f2:8c:fc:d0:ce:6a: dd:cd:34:ed -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdDNzcxMTAvBgNVBAUTKDYxQjAyMjMzNUY0RDg1RTE2RDQ3N0EwMDZBREM4RTNG MkZEQTk0NjAwHhcNMjUxMDI1MDIzODAxWhcNMjUxMTAxMDIzODAxWjAYMRYwFAYD VQQDEw02OGZjMzgwOS1iNzIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA/qYjhW+aIbKVV94T0cE8NnB7GvcylL1jlWD5y0Zjopal1jzmCkimEl9VQJS1 /QiFWFFhgypuVINzCvSViNwJqPgqTW8y+OlbVKyfLs2dGXMlibYs8FwpH4WQ/khI HUtgqfN/D4MR7vgGNS+ZjArbzenkupKDMHB4DRjpX6+EZX1iWNbgyMc5zf+Rvlcl oqcAZjmtM1JksxQAXkRAsAMaX2Bs23uRoaIY4+n9kh4AWjHOwxsR9ICoYHi91Jxd H1EEvjlFdteVJVWHr1/6xV7P0Tg7pOTjZiawtG9TCo43m+0Z1v1ED+qasYlmHNaH 9KT8OKccmhjEBqp6P+sMjIcQYQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOjiByZ1 TXO/EYlIqNvIYFSC3UgkMB8GA1UdIwQYMBaAFGGwIjNfTYXhbUd6AGrcjj8v2pRg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0M3Ny9EQzIwMUFGRTM5 NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5TmhlRnRSM29BYXR5T1B5X2Fs R0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liQWlNMTlOaGVGdFIzb0FhdHlPUHlfYWxHQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB N0M3Ny9EQzIwMUFGRTM5NTQxMUVDODBEOUQzNTlDNEY5QUUwMi9ZYkFpTTE5Tmhl RnRSM29BYXR5T1B5X2FsR0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDNIrOjWiJ6Ud85PgtIVuGEGKZ4R3a/JTRHs7jp2DN5rxNblMilgYmm uo9JvLhyI57K4ZhxgdRgeGakTtQAmOfS+OtmpqVB7tYu78aY0FX99WK8F5Vzy95p 4F1JJlTUCtd9u1FpCXEsdlNJomZPfb1AYza5HsTb6ha0MnHAqdLVp8bQDMrg2kfC k8QvsAirxARal99MfrIJ8bHsbYJWC0RqE/WfEnAG8Ev4O/uqsIBN5VAZqkJO/uSI 5z7l4b1+3frhvk/+FJ6GuVMMK85wmS3oV/ISoUbLPBThS4LrkwFuILaeTEr/bA7P gjslGv4BM23ZBV3KWDHyjPzQzmrdzTTt -----END CERTIFICATE-----Generated at Sun Oct 26 20:37:38 2025 by rpki-client