$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft File: 1ybobzALJko1PClnPgdxb1RUteI.mft (raw, json) Hash identifier: f2xy4ciuffOrVEYunhRUronwFUx9yGzd4XDMEDgfLL4= Subject key identifier: FB:9A:2C:DB:59:50:7D:27:42:C8:3F:3D:6F:3E:3F:FC:25:72:51:B3 Authority key identifier: D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 Certificate issuer: /CN=A91B4053/serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Certificate serial: 48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft Manifest number: 47 Signing time: Mon 03 Nov 2025 07:22:53 +0000 Manifest this update: Mon 03 Nov 2025 07:22:52 +0000 Manifest next update: Mon 10 Nov 2025 07:22:52 +0000 Files and hashes: 1: 1ybobzALJko1PClnPgdxb1RUteI.crl (hash: ptHzPIBX9VF/eefSS68+c4Gd6k/G3+c0imnlu6URk38=) 2: D28B7DD450E411F081600061C4F9AE02.roa (hash: l4xDR8XfunCSdDdqhrbj6MNAoikH4sPGdjRT4Op4rI8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:22:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72 (0x48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4053, serialNumber=D726E86F300B264A353C29673E07716F5454B5E2 Validity Not Before: Nov 3 07:22:52 2025 GMT Not After : Nov 10 07:22:52 2025 GMT Subject: CN=6908584c-7e1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:7a:31:93:51:3d:35:10:2a:93:a5:0a:10: fc:11:90:eb:5f:b4:c5:0f:51:48:37:20:ba:34:83: b2:b6:b7:df:a4:74:69:5b:c3:8d:c0:a3:aa:2f:77: 73:92:e2:a8:a4:d7:d8:d0:3c:56:bb:c0:07:b3:79: c3:d4:4e:13:a3:9f:86:3c:43:7d:e5:70:e9:4c:4a: 19:26:88:50:a2:18:e2:b1:cf:30:81:52:3a:18:70: c6:fc:c2:f4:0b:77:09:c1:97:71:b6:a9:a6:8e:a7: a4:c1:ce:40:56:26:b1:e5:27:6d:cb:0d:78:cd:6b: f5:48:66:e3:51:cc:65:34:75:de:e8:2b:ba:94:06: ba:b7:79:f1:df:32:07:2c:ac:dd:88:3b:a5:b7:a3: 64:a5:6e:ae:b6:4d:0b:c2:35:02:f2:bd:c1:25:de: dd:15:67:2f:c0:ee:67:85:0e:37:c5:ad:a0:db:7a: 4b:30:ce:30:67:49:42:71:e4:83:ba:b9:ea:c8:8e: 66:4d:19:21:1e:b0:14:8e:e0:8d:2c:22:5f:75:81: 06:d0:db:1a:9c:97:a7:2b:01:b6:d9:af:4d:38:ac: 5b:ef:27:1d:97:41:b7:7a:74:10:fa:b4:bd:43:60: a3:dd:13:80:b3:0e:90:7e:89:7a:a4:fc:4d:d6:88: fe:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:9A:2C:DB:59:50:7D:27:42:C8:3F:3D:6F:3E:3F:FC:25:72:51:B3 X509v3 Authority Key Identifier: keyid:D7:26:E8:6F:30:0B:26:4A:35:3C:29:67:3E:07:71:6F:54:54:B5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1ybobzALJko1PClnPgdxb1RUteI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4053/3EDB83FC50E111F091C4BB74C4F9AE02/1ybobzALJko1PClnPgdxb1RUteI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:c9:85:10:4b:f9:ca:5a:24:0a:b1:f8:d2:60:94:86:d9:3a: 29:f8:70:bb:76:83:17:c5:35:c8:c5:62:11:ff:cf:40:89:98: 3c:b9:96:9a:3c:39:fb:69:5a:41:64:8c:70:82:fa:dc:07:77: 9e:87:cc:aa:3f:eb:e9:c1:a1:8b:78:cf:df:0f:df:e7:6a:cb: 67:8c:25:b9:2c:7c:33:8b:0c:89:3a:c8:e0:24:de:ae:60:58: 5c:31:5a:6b:28:3a:32:82:af:36:23:97:d5:73:c2:07:b3:1b: 7b:32:c6:17:09:02:a0:c8:b3:dd:80:e8:c7:23:07:a5:23:5c: ce:14:26:d5:8b:8d:83:85:78:b4:b5:51:24:ad:5c:31:0e:df: 4f:92:99:28:ec:84:b2:b6:95:1f:b8:d4:3e:24:7d:a2:51:4d: 1e:63:99:44:fb:e6:e5:2e:53:50:8a:1d:87:16:11:dc:bf:73: c0:20:d9:9a:fc:1c:50:6b:34:27:e0:ff:e1:15:ed:1d:5c:77: 9c:1c:c5:18:05:ba:47:8c:f8:7d:c8:d9:9c:75:7d:18:ca:f6: 0b:64:c3:f5:70:d2:48:f6:60:99:b0:b7:ca:d1:f7:6e:e5:63: ee:c2:b8:cf:7d:49:f0:c8:0a:8d:26:22:c2:ee:3f:e0:fa:60: 3d:50:22:64 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDA1MzExMC8GA1UEBRMoRDcyNkU4NkYzMDBCMjY0QTM1M0MyOTY3M0UwNzcxNkY1 NDU0QjVFMjAeFw0yNTExMDMwNzIyNTJaFw0yNTExMTAwNzIyNTJaMBgxFjAUBgNV BAMTDTY5MDg1ODRjLTdlMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKWnoxk1E9NRAqk6UKEPwRkOtftMUPUUg3ILo0g7K2t9+kdGlbw43Ao6ovd3OS 4qik19jQPFa7wAezecPUThOjn4Y8Q33lcOlMShkmiFCiGOKxzzCBUjoYcMb8wvQL dwnBl3G2qaaOp6TBzkBWJrHlJ23LDXjNa/VIZuNRzGU0dd7oK7qUBrq3efHfMgcs rN2IO6W3o2Slbq62TQvCNQLyvcEl3t0VZy/A7meFDjfFraDbekswzjBnSUJx5IO6 uerIjmZNGSEesBSO4I0sIl91gQbQ2xqcl6crAbbZr004rFvvJx2XQbd6dBD6tL1D YKPdE4CzDpB+iXqk/E3WiP4BAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQU+5os21lQ fSdCyD89bz4//CVyUbMwHwYDVR0jBBgwFoAU1ybobzALJko1PClnPgdxb1RUteIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0MDUzLzNFREI4M0ZDNTBF MTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtvMVBDbG5QZ2R4YjFSVXRl SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMXlib2J6QUxKa28xUENsblBnZHhiMVJVdGVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0 MDUzLzNFREI4M0ZDNTBFMTExRjA5MUM0QkI3NEM0RjlBRTAyLzF5Ym9iekFMSmtv MVBDbG5QZ2R4YjFSVXRlSS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJPJhRBL+cpaJAqx+NJglIbZOin4cLt2gxfFNcjFYhH/z0CJmDy5lpo8 OftpWkFkjHCC+twHd56HzKo/6+nBoYt4z98P3+dqy2eMJbksfDOLDIk6yOAk3q5g WFwxWmsoOjKCrzYjl9VzwgezG3syxhcJAqDIs92A6McjB6UjXM4UJtWLjYOFeLS1 USStXDEO30+SmSjshLK2lR+41D4kfaJRTR5jmUT75uUuU1CKHYcWEdy/c8Ag2Zr8 HFBrNCfg/+EV7R1cd5wcxRgFukeM+H3I2Zx1fRjK9gtkw/Vw0kj2YJmwt8rR927l Y+7CuM99SfDICo0mIsLuP+D6YD1QImQ= -----END CERTIFICATE-----Generated at Wed Nov 5 05:24:59 2025 by rpki-client