$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft File: y78mA3JNeFZrHBLDLVxIH10w8fI.mft (raw, json) Hash identifier: 6cPehWRYoEqEqrKJFcDZzwLj7nSyIpcEW/NhghAI+S4= Subject key identifier: 75:D6:B8:74:4B:E1:B4:67:A1:88:46:EC:CC:7B:6F:C4:8D:1B:DD:2D Authority key identifier: CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 Certificate issuer: /CN=A91B7700/serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Certificate serial: 03B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft Manifest number: 03B5 Signing time: Mon 27 Oct 2025 01:59:31 +0000 Manifest this update: Mon 27 Oct 2025 01:59:30 +0000 Manifest next update: Mon 03 Nov 2025 01:59:30 +0000 Files and hashes: 1: y78mA3JNeFZrHBLDLVxIH10w8fI.crl (hash: uDKcoLhdOeqF4BT6QQ1l8NIVIt/M0HnXS/NrvMr1osA=) 2: 93D60566AE5B11ECB19C1569C4F9AE02.roa (hash: mfWKFm3R9Zz1cfvfe7gZWjinbVCRooVyIR4rmFi/Bec=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 01:59:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7700, serialNumber=CBBF2603724D78566B1C12C32D5C481F5D30F1F2 Validity Not Before: Oct 27 01:59:30 2025 GMT Not After : Nov 3 01:59:30 2025 GMT Subject: CN=68fed203-24f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:95:a1:fb:1d:b0:68:9e:18:6e:4e:3b:b4:46: fb:7f:df:84:b4:d2:27:d9:21:b1:ce:75:3f:db:00: 2e:28:8f:60:d7:72:e5:11:ad:64:bc:1a:1a:d3:d7: 24:21:5b:0c:60:8b:59:4b:a0:69:80:76:eb:d6:72: e5:51:26:42:78:d6:9d:ef:ef:e3:b6:07:f7:4a:78: fc:19:3e:52:68:79:f7:ff:92:90:93:d5:d4:f7:0f: c5:c9:50:76:db:31:25:ae:26:32:55:05:fd:cb:5e: cc:09:96:c0:f7:de:f1:7d:63:55:46:b4:8e:b8:29: 5f:af:fb:bf:38:27:d0:dd:85:7d:31:e8:8c:4d:b2: 48:2a:73:d5:d1:36:8d:5f:4c:d3:98:af:c9:e7:68: cc:90:8d:79:02:64:5d:05:7e:c1:f0:56:a2:6d:65: 8f:c1:f3:9c:0d:62:5a:27:69:7d:c3:16:f0:64:cd: cd:57:49:43:ca:37:14:1f:f5:57:b0:53:29:95:9f: 87:67:74:e3:81:4b:8b:fa:9e:3f:91:bc:62:68:66: 81:f3:31:6b:0a:3c:93:fe:7c:da:1f:57:1a:f6:36: 46:12:88:ca:2c:5d:42:ee:1b:20:39:49:92:7c:5b: b3:66:b5:ef:fb:47:9a:b6:3d:10:94:2f:50:0b:2a: 46:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D6:B8:74:4B:E1:B4:67:A1:88:46:EC:CC:7B:6F:C4:8D:1B:DD:2D X509v3 Authority Key Identifier: keyid:CB:BF:26:03:72:4D:78:56:6B:1C:12:C3:2D:5C:48:1F:5D:30:F1:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y78mA3JNeFZrHBLDLVxIH10w8fI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7700/CCDBF4F0AE5711ECB4A1DA64C4F9AE02/y78mA3JNeFZrHBLDLVxIH10w8fI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3e:a9:62:5e:90:cd:5a:9b:d3:a7:7e:9b:5a:38:7c:7a:c0:2b: 3e:7f:1f:49:2c:fe:50:cc:8f:d4:50:48:3a:9e:9e:26:96:7c: 09:fd:33:42:a1:b0:a0:50:30:63:23:f9:b2:74:f7:35:8d:54: 9a:d9:f3:c8:d0:a1:be:32:4e:6d:2d:be:9c:0f:94:7a:44:e0: 8f:37:7d:85:94:77:e2:1b:41:5c:70:99:9b:5f:d8:24:e6:a6: 5e:b8:e5:7c:fd:df:a1:8e:58:f5:65:fd:74:40:5f:9a:78:29: 57:77:64:f9:51:1e:b4:bc:f9:3a:b8:32:46:88:02:83:39:f3: de:e0:30:a9:7c:ca:26:11:87:6f:71:1a:a8:0a:77:bd:ef:3e: 4f:06:5d:22:28:62:93:db:2b:57:4c:8c:21:74:ac:61:6e:c4: 30:b3:9d:d2:8b:34:7b:6d:c5:ba:a5:da:d3:4f:7f:c7:ce:d6: d5:42:1d:5d:dd:1f:05:e2:3b:da:d5:43:d5:eb:62:39:26:4a: 1d:89:f0:cd:d9:22:78:cc:b5:2a:4b:93:9f:9e:4f:7d:72:02: ac:2d:67:cc:19:f7:39:19:e3:95:f5:56:9f:bb:6b:02:3a:4f: 59:19:fc:59:16:41:47:65:ec:83:9e:79:b0:88:d8:5f:7f:2f: 45:4f:df:d0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3MDAxMTAvBgNVBAUTKENCQkYyNjAzNzI0RDc4NTY2QjFDMTJDMzJENUM0ODFG NUQzMEYxRjIwHhcNMjUxMDI3MDE1OTMwWhcNMjUxMTAzMDE1OTMwWjAYMRYwFAYD VQQDEw02OGZlZDIwMy0yNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzpWh+x2waJ4Ybk47tEb7f9+EtNIn2SGxznU/2wAuKI9g13LlEa1kvBoa09ck IVsMYItZS6BpgHbr1nLlUSZCeNad7+/jtgf3Snj8GT5SaHn3/5KQk9XU9w/FyVB2 2zElriYyVQX9y17MCZbA997xfWNVRrSOuClfr/u/OCfQ3YV9MeiMTbJIKnPV0TaN X0zTmK/J52jMkI15AmRdBX7B8FaibWWPwfOcDWJaJ2l9wxbwZM3NV0lDyjcUH/VX sFMplZ+HZ3TjgUuL+p4/kbxiaGaB8zFrCjyT/nzaH1ca9jZGEojKLF1C7hsgOUmS fFuzZrXv+0eatj0QlC9QCypGrwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHXWuHRL 4bRnoYhG7Mx7b8SNG90tMB8GA1UdIwQYMBaAFMu/JgNyTXhWaxwSwy1cSB9dMPHy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzcwMC9DQ0RCRjRGMEFF NTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVGWnJIQkxETFZ4SUgxMHc4 ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3OG1BM0pOZUZackhCTERMVnhJSDEwdzhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NzcwMC9DQ0RCRjRGMEFFNTcxMUVDQjRBMURBNjRDNEY5QUUwMi95NzhtQTNKTmVG WnJIQkxETFZ4SUgxMHc4ZkkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA+qWJekM1am9OnfptaOHx6wCs+fx9JLP5QzI/UUEg6np4mlnwJ/TNC obCgUDBjI/mydPc1jVSa2fPI0KG+Mk5tLb6cD5R6ROCPN32FlHfiG0FccJmbX9gk 5qZeuOV8/d+hjlj1Zf10QF+aeClXd2T5UR60vPk6uDJGiAKDOfPe4DCpfMomEYdv cRqoCne97z5PBl0iKGKT2ytXTIwhdKxhbsQws53SizR7bcW6pdrTT3/HztbVQh1d 3R8F4jva1UPV62I5JkodifDN2SJ4zLUqS5Ofnk99cgKsLWfMGfc5GeOV9Vafu2sC Ok9ZGfxZFkFHZeyDnnmwiNhffy9FT9/Q -----END CERTIFICATE-----Generated at Tue Oct 28 13:46:42 2025 by rpki-client