$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft File: Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft (raw, json) Hash identifier: sMjjhYKmM3kKlt2Xw9t0rH0yWRNLB2Uhbgg8gXheR8c= Subject key identifier: A2:31:1C:BA:6E:68:79:C3:3D:F3:D7:FB:0E:2A:EC:E7:7A:27:52:49 Authority key identifier: 63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 Certificate issuer: /CN=A91AB238/serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Certificate serial: 0810 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft Manifest number: 0807 Signing time: Sun 02 Nov 2025 20:56:15 +0000 Manifest this update: Sun 02 Nov 2025 20:56:15 +0000 Manifest next update: Sun 09 Nov 2025 20:56:15 +0000 Files and hashes: 1: Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl (hash: atQoX7EtFJZ5VS3qTGrJtoAhG7tutN9HTCuIORe4a2U=) 2: 7634D328351411EBBF864670C4F9AE02.roa (hash: gJ6rfZA4kdz2sP4zhVk5qWSiiFvdYYEjJ3d1LC4TVQU=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 20:56:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2064 (0x810) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB238, serialNumber=63FAF4D23E683E93F607630DDFFD4B1AF6333F00 Validity Not Before: Nov 2 20:56:15 2025 GMT Not After : Nov 9 20:56:15 2025 GMT Subject: CN=6907c56f-98f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:53:f4:f2:e5:cd:f1:04:5a:21:3e:20:32:23: 02:53:fb:91:83:ad:0e:43:45:51:73:2a:41:5c:3d: 50:90:90:a8:57:a6:13:59:eb:47:35:43:27:cb:eb: 7d:7b:e8:3f:28:22:c9:ef:19:76:17:73:32:07:35: e3:ec:26:0a:bf:5f:78:4d:91:64:6d:48:55:f8:62: 71:74:9a:3b:26:ee:38:51:fd:08:8c:e2:39:dc:44: 07:d9:f7:00:ed:d6:3e:d8:c9:64:65:d7:f4:77:a5: 32:c4:7c:35:87:cf:fc:40:73:8e:2c:c3:fa:bc:d4: 24:1d:71:35:3c:05:52:5f:f2:06:40:a4:10:b3:af: 59:67:87:b5:cb:48:d2:cc:8c:64:0d:27:06:d5:23: 41:a6:2b:dc:e4:e3:a6:d3:22:dd:c3:ed:05:1e:1c: b8:df:a2:6c:33:c5:13:9b:8c:27:a0:8b:d4:b4:11: 89:7b:5d:39:f9:67:92:c7:3d:31:6b:7a:13:b8:4e: 62:6f:80:6d:57:39:b4:f9:b0:db:51:92:6d:8e:7a: b0:17:85:fd:25:95:cf:49:e0:a7:16:df:14:23:45: d2:32:cc:46:68:ec:95:3a:bd:86:eb:35:0e:79:18: fa:2c:5e:ae:e7:40:a7:76:b0:03:49:45:64:8e:98: fc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:31:1C:BA:6E:68:79:C3:3D:F3:D7:FB:0E:2A:EC:E7:7A:27:52:49 X509v3 Authority Key Identifier: keyid:63:FA:F4:D2:3E:68:3E:93:F6:07:63:0D:DF:FD:4B:1A:F6:33:3F:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y_r00j5oPpP2B2MN3_1LGvYzPwA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB238/8C7A3368FDFA11EA93AAFF0AC4F9AE02/Y_r00j5oPpP2B2MN3_1LGvYzPwA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:3c:cd:45:94:5a:1b:c3:9c:92:98:83:e1:f7:07:8a:b9:b2: 47:23:ca:4f:f6:80:a6:db:f0:69:8d:e0:ee:39:ad:bc:b8:33: 36:65:b5:b6:0c:3d:60:23:4b:4b:1e:7a:8c:9f:be:74:2f:81: 53:41:c6:23:8b:4f:a4:cc:c6:c1:64:33:e1:32:24:c6:71:71: 28:9e:0e:82:22:99:41:c8:5e:ae:db:af:89:6e:46:3c:45:93: f3:17:ec:7d:22:3a:e5:43:cb:42:55:a0:99:44:89:25:91:fb: d8:4d:0e:26:ba:64:48:7e:ca:48:7c:e0:ec:f4:77:61:10:c8: 25:b1:60:7b:fa:bf:c2:f8:a4:d3:23:0b:1b:e1:e1:ca:5c:06: ab:00:7b:1b:ee:d3:d2:63:af:0a:2d:bb:c0:f6:7e:8f:e9:f4: 84:ca:87:4b:ad:d1:85:93:2c:c8:53:d4:03:f9:f2:70:e8:03: d4:c3:02:d7:0f:33:f2:0f:17:f4:a2:59:86:1b:81:c8:ae:f4: 8a:01:3d:e0:8e:61:f6:29:9a:d4:57:ea:8a:9c:d4:16:74:05: 82:92:90:30:a1:e3:71:97:c0:cc:7e:b7:b9:8b:0c:49:2a:96: b5:76:bb:46:f8:dd:7f:06:0f:a3:50:1c:8b:a1:d1:5e:4b:f5: c6:18:2d:41 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMzgxMTAvBgNVBAUTKDYzRkFGNEQyM0U2ODNFOTNGNjA3NjMwRERGRkQ0QjFB RjYzMzNGMDAwHhcNMjUxMTAyMjA1NjE1WhcNMjUxMTA5MjA1NjE1WjAYMRYwFAYD VQQDEw02OTA3YzU2Zi05OGYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lP08uXN8QRaIT4gMiMCU/uRg60OQ0VRcypBXD1QkJCoV6YTWetHNUMny+t9 e+g/KCLJ7xl2F3MyBzXj7CYKv194TZFkbUhV+GJxdJo7Ju44Uf0IjOI53EQH2fcA 7dY+2MlkZdf0d6UyxHw1h8/8QHOOLMP6vNQkHXE1PAVSX/IGQKQQs69ZZ4e1y0jS zIxkDScG1SNBpivc5OOm0yLdw+0FHhy436JsM8UTm4wnoIvUtBGJe105+WeSxz0x a3oTuE5ib4BtVzm0+bDbUZJtjnqwF4X9JZXPSeCnFt8UI0XSMsxGaOyVOr2G6zUO eRj6LF6u50CndrADSUVkjpj8uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKIxHLpu aHnDPfPX+w4q7Od6J1JJMB8GA1UdIwQYMBaAFGP69NI+aD6T9gdjDd/9Sxr2Mz8A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIzOC84QzdBMzM2OEZE RkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1BwUDJCMk1OM18xTEd2WXpQ d0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lfcjAwajVvUHBQMkIyTU4zXzFMR3ZZelB3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjIzOC84QzdBMzM2OEZERkExMUVBOTNBQUZGMEFDNEY5QUUwMi9ZX3IwMGo1b1Bw UDJCMk1OM18xTEd2WXpQd0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBVPM1FlFobw5ySmIPh9weKubJHI8pP9oCm2/BpjeDuOa28uDM2ZbW2 DD1gI0tLHnqMn750L4FTQcYji0+kzMbBZDPhMiTGcXEong6CIplByF6u26+JbkY8 RZPzF+x9IjrlQ8tCVaCZRIklkfvYTQ4mumRIfspIfODs9HdhEMglsWB7+r/C+KTT Iwsb4eHKXAarAHsb7tPSY68KLbvA9n6P6fSEyodLrdGFkyzIU9QD+fJw6APUwwLX DzPyDxf0olmGG4HIrvSKAT3gjmH2KZrUV+qKnNQWdAWCkpAwoeNxl8DMfre5iwxJ Kpa1drtG+N1/Bg+jUByLodFeS/XGGC1B -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:01 2025 by rpki-client