$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft File: yKkupf322jjqQIWq7lWnJIzTTzo.mft (raw, json) Hash identifier: s5POAy5uYpW0XGKPrwaOSxDQFz5W6PCETvwdXYnJVIA= Subject key identifier: E1:38:B7:12:77:D6:A5:11:EB:C3:41:BE:5D:57:72:17:F5:4F:40:60 Authority key identifier: C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A Certificate issuer: /CN=A91B3E17/serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Certificate serial: 033B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft Manifest number: 0337 Signing time: Mon 03 Nov 2025 01:00:31 +0000 Manifest this update: Mon 03 Nov 2025 01:00:30 +0000 Manifest next update: Mon 10 Nov 2025 01:00:30 +0000 Files and hashes: 1: yKkupf322jjqQIWq7lWnJIzTTzo.crl (hash: WCDhyAzjVPfVzJhFNiZYuRCGsBzpkAkF1iItbBo5T2I=) 2: 3166C07AE16C11ECB2629D1AC4F9AE02.roa (hash: ipLQrTfxlsH1xbpA5Xtx6FI7FTiCB5Vq0xVbQe7ALKk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 827 (0x33b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3E17, serialNumber=C8A92EA5FDF6DA38EA4085AAEE55A7248CD34F3A Validity Not Before: Nov 3 01:00:30 2025 GMT Not After : Nov 10 01:00:30 2025 GMT Subject: CN=6907feaf-9e71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:2c:19:a2:15:58:6f:d4:76:62:55:9f:91:6e: 1e:c9:b6:3d:5a:f4:4a:28:4f:a1:a4:e6:05:d4:b0: 64:16:8f:02:74:41:f9:01:ea:24:19:1a:66:36:73: df:00:1a:08:37:b1:fc:11:a4:ae:79:00:05:8a:d9: 3a:37:e4:4a:51:ac:5e:a3:85:0c:bd:ea:d0:e6:68: 90:51:8d:d3:38:8d:01:0d:66:22:f2:b0:9d:63:b4: 15:4a:0f:45:38:07:c2:d3:a5:82:0e:d7:a1:f2:ac: 00:a2:b0:a2:e2:6d:fc:f9:68:73:91:88:05:85:7e: fc:44:66:23:c4:7e:23:94:df:41:d8:63:46:8f:41: bb:35:33:24:ef:fc:cc:b1:6d:a7:60:2b:d7:71:e2: b6:98:25:6e:bc:ee:78:eb:cb:e8:6f:f4:c6:0c:e9: 7f:1f:7e:e2:9b:9f:7c:b1:5a:2c:5e:46:a8:58:3b: 55:49:c8:50:fd:e0:e0:00:f8:e5:59:b8:7f:3d:86: c4:b1:1c:5a:0b:d3:ac:fd:9f:ef:00:a7:5a:6e:03: 0b:00:7a:60:55:5a:5e:6c:fe:66:77:e1:d5:9f:ec: ec:e1:d5:0a:47:ab:1b:48:45:2f:ac:d8:1d:a6:74: 72:1f:aa:d3:92:36:36:52:a4:18:a2:15:c6:d4:22: dd:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:38:B7:12:77:D6:A5:11:EB:C3:41:BE:5D:57:72:17:F5:4F:40:60 X509v3 Authority Key Identifier: keyid:C8:A9:2E:A5:FD:F6:DA:38:EA:40:85:AA:EE:55:A7:24:8C:D3:4F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yKkupf322jjqQIWq7lWnJIzTTzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3E17/920C5ECAE16811ECAAD8F818C4F9AE02/yKkupf322jjqQIWq7lWnJIzTTzo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3a:c0:ae:d4:46:72:9f:a0:46:29:87:ba:dc:27:92:75:ca:03: d8:fe:aa:c3:2f:cf:df:6a:6d:05:40:14:1c:82:65:39:00:92: 21:ac:4a:2b:84:35:a4:f4:64:89:e0:7a:ad:c0:45:eb:0e:56: 20:e5:5a:03:e8:74:07:58:e3:c6:f1:fe:79:bc:10:1a:0c:fb: d8:7e:66:cd:b8:a0:68:fe:01:fe:21:41:a7:76:18:7d:29:e2: a6:69:db:4e:b3:56:de:54:84:6a:38:85:ed:e0:71:54:c7:fc: 91:7b:52:02:52:4a:1b:bd:69:36:50:39:74:12:ee:21:3b:b1: 9c:ca:d7:55:86:62:12:96:6f:a5:3d:d5:6a:dc:67:10:89:c0: 90:2f:7a:11:20:f7:aa:06:1b:b9:b2:06:de:fa:c3:65:62:f4: aa:f2:91:fa:d1:d3:f4:9c:db:2c:8a:0d:06:15:d1:a9:69:59: e5:6e:4f:c4:50:9a:18:1a:30:22:56:d9:be:99:83:a0:c6:7d: 29:69:0b:d2:77:1c:6d:9c:54:3a:6d:d6:b8:c2:cd:48:43:45: 59:c6:b3:87:c3:56:e5:f6:25:59:a7:25:9d:45:42:ea:d0:1b: 56:61:cb:fa:0f:3e:8d:68:ca:29:e5:db:8d:79:82:c8:9f:16: 51:33:df:2a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAzswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNFMTcxMTAvBgNVBAUTKEM4QTkyRUE1RkRGNkRBMzhFQTQwODVBQUVFNTVBNzI0 OENEMzRGM0EwHhcNMjUxMTAzMDEwMDMwWhcNMjUxMTEwMDEwMDMwWjAYMRYwFAYD VQQDEw02OTA3ZmVhZi05ZTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCwZohVYb9R2YlWfkW4eybY9WvRKKE+hpOYF1LBkFo8CdEH5AeokGRpmNnPf ABoIN7H8EaSueQAFitk6N+RKUaxeo4UMverQ5miQUY3TOI0BDWYi8rCdY7QVSg9F OAfC06WCDteh8qwAorCi4m38+WhzkYgFhX78RGYjxH4jlN9B2GNGj0G7NTMk7/zM sW2nYCvXceK2mCVuvO5468vob/TGDOl/H37im598sVosXkaoWDtVSchQ/eDgAPjl Wbh/PYbEsRxaC9Os/Z/vAKdabgMLAHpgVVpebP5md+HVn+zs4dUKR6sbSEUvrNgd pnRyH6rTkjY2UqQYohXG1CLdPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOE4txJ3 1qUR68NBvl1Xchf1T0BgMB8GA1UdIwQYMBaAFMipLqX99to46kCFqu5VpySM0086 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0UxNy85MjBDNUVDQUUx NjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJqanFRSVdxN2xXbkpJelRU em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lLa3VwZjMyMmpqcVFJV3E3bFduSkl6VFR6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC M0UxNy85MjBDNUVDQUUxNjgxMUVDQUFEOEY4MThDNEY5QUUwMi95S2t1cGYzMjJq anFRSVdxN2xXbkpJelRUem8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA6wK7URnKfoEYph7rcJ5J1ygPY/qrDL8/fam0FQBQcgmU5AJIhrEor hDWk9GSJ4HqtwEXrDlYg5VoD6HQHWOPG8f55vBAaDPvYfmbNuKBo/gH+IUGndhh9 KeKmadtOs1beVIRqOIXt4HFUx/yRe1ICUkobvWk2UDl0Eu4hO7GcytdVhmISlm+l PdVq3GcQicCQL3oRIPeqBhu5sgbe+sNlYvSq8pH60dP0nNssig0GFdGpaVnlbk/E UJoYGjAiVtm+mYOgxn0paQvSdxxtnFQ6bda4ws1IQ0VZxrOHw1bl9iVZpyWdRULq 0BtWYcv6Dz6NaMop5duNeYLInxZRM98q -----END CERTIFICATE-----Generated at Mon Nov 3 18:08:22 2025 by rpki-client