$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft File: Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft (raw, json) Hash identifier: 4PpnewpyyxuAlsFwHcvnxaoI2dozluxvRa2aGaUeb/Q= Subject key identifier: 59:10:41:92:D6:5F:B3:DE:AB:A3:25:D3:20:42:0E:1A:62:AE:CC:F6 Authority key identifier: 63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 Certificate issuer: /CN=A91BB629/serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Certificate serial: F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft Manifest number: F4 Signing time: Wed 05 Nov 2025 05:25:42 +0000 Manifest this update: Wed 05 Nov 2025 05:25:41 +0000 Manifest next update: Wed 12 Nov 2025 05:25:41 +0000 Files and hashes: 1: Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl (hash: LcqZGVAoOfYgdN120sIhkj5z5ZbKxgGAZVk7BOyuI6c=) 2: 7CE4326245B511EFBAC06E1EC4F9AE02.roa (hash: bllAWJknG6t7sgMmQWLY59vxPXpNHKXKelWOMC8ypAI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:25:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB629, serialNumber=630EFC8BC8247F99A01280741E4A1A0DB7F147B0 Validity Not Before: Nov 5 05:25:41 2025 GMT Not After : Nov 12 05:25:41 2025 GMT Subject: CN=690adfd5-3819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:9d:45:e9:ab:a8:36:e7:72:7f:23:2e:2d:d3: 00:87:32:f7:1d:95:a9:1d:5a:fd:39:cd:c4:d1:c5: b2:d2:c6:2e:35:76:d2:09:4d:7a:89:40:77:56:44: 7a:a7:62:3c:0d:51:e7:72:13:45:22:a5:c2:d7:91: 9d:8d:ab:e8:cd:ea:57:48:ed:45:1d:98:1d:93:57: cf:22:83:3b:5d:47:6e:e4:5a:75:b0:e5:f5:fe:af: e9:1b:2b:12:ba:db:d1:1a:b0:c3:c8:41:51:ee:84: 0a:b2:39:bc:43:31:e0:f3:ce:35:97:05:8c:11:50: 1d:5f:c0:50:23:db:af:35:f7:25:c4:2e:f7:12:eb: 4f:93:4b:77:d1:1e:54:f3:5e:35:35:79:32:18:1c: c2:f0:bd:68:14:55:9c:41:a5:a7:a1:c8:91:1f:42: 80:45:81:a3:2c:64:59:7b:33:a8:6a:f7:78:9a:f5: 50:16:44:25:cb:cf:50:33:47:ea:78:c0:9f:e8:6f: 9f:52:79:b6:db:5a:8f:96:72:d3:a4:8f:8f:58:e3: dd:24:80:de:61:80:73:8e:24:47:b2:d1:8e:64:1f: ac:98:6d:a9:7b:f9:60:9a:a6:ae:f6:db:60:ac:d5: c4:f8:dd:ec:76:9a:78:bc:ed:65:fb:06:36:8f:36: 21:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:10:41:92:D6:5F:B3:DE:AB:A3:25:D3:20:42:0E:1A:62:AE:CC:F6 X509v3 Authority Key Identifier: keyid:63:0E:FC:8B:C8:24:7F:99:A0:12:80:74:1E:4A:1A:0D:B7:F1:47:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yw78i8gkf5mgEoB0HkoaDbfxR7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB629/E2CF940A45B411EF8FDB741DC4F9AE02/Yw78i8gkf5mgEoB0HkoaDbfxR7A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:af:6d:6b:31:dc:8c:4a:ca:f7:88:a1:af:d1:80:36:08:fd: 7a:e8:bd:72:25:ca:89:e3:c7:5d:b3:98:f6:58:80:9b:bf:50: 30:cf:cf:c7:7c:02:77:5d:40:c1:91:21:fb:e5:2a:54:87:0c: 62:02:07:89:92:4a:4f:81:14:a3:48:aa:e7:90:90:f6:b3:84: 4d:17:28:f8:5f:58:18:77:87:5f:f4:2b:03:c8:b5:54:f8:56: 6d:0f:02:24:0a:42:fe:e5:2b:f1:6d:0b:4b:4c:9a:6a:7c:36: 8c:ea:78:42:11:46:44:87:7d:4a:01:bd:bb:40:52:6a:43:8b: f1:bd:f1:02:1a:fb:2e:11:b5:c5:06:86:15:97:4f:84:c9:13: b6:e0:89:f2:fb:58:c7:bd:8b:4f:a0:7e:7b:20:e7:c4:e3:50: ea:2f:3d:91:89:80:85:44:1d:73:cc:33:48:4c:a2:70:b0:f1: 3a:dd:a2:98:2b:c6:fb:06:be:64:34:e2:dd:43:ed:c3:10:52: 17:c9:ee:29:77:a1:09:a2:a7:f6:0b:33:80:bd:31:e4:46:ae: 10:08:f1:64:29:d0:94:0e:2c:4e:a6:9c:1e:da:a1:5d:b8:57: 99:f1:81:44:c5:2c:2c:72:ba:c2:31:d8:a4:08:38:8e:96:8e: 5e:04:15:29 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI2MjkxMTAvBgNVBAUTKDYzMEVGQzhCQzgyNDdGOTlBMDEyODA3NDFFNEExQTBE QjdGMTQ3QjAwHhcNMjUxMTA1MDUyNTQxWhcNMjUxMTEyMDUyNTQxWjAYMRYwFAYD VQQDEw02OTBhZGZkNS0zODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0J1F6auoNudyfyMuLdMAhzL3HZWpHVr9Oc3E0cWy0sYuNXbSCU16iUB3VkR6 p2I8DVHnchNFIqXC15GdjavozepXSO1FHZgdk1fPIoM7XUdu5Fp1sOX1/q/pGysS utvRGrDDyEFR7oQKsjm8QzHg8841lwWMEVAdX8BQI9uvNfclxC73EutPk0t30R5U 8141NXkyGBzC8L1oFFWcQaWnociRH0KARYGjLGRZezOoavd4mvVQFkQly89QM0fq eMCf6G+fUnm221qPlnLTpI+PWOPdJIDeYYBzjiRHstGOZB+smG2pe/lgmqau9ttg rNXE+N3sdpp4vO1l+wY2jzYhiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFkQQZLW X7Peq6Ml0yBCDhpirsz2MB8GA1UdIwQYMBaAFGMO/IvIJH+ZoBKAdB5KGg238Uew MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjYyOS9FMkNGOTQwQTQ1 QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1bWdFb0IwSGtvYURiZnhS N0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l3NzhpOGdrZjVtZ0VvQjBIa29hRGJmeFI3QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjYyOS9FMkNGOTQwQTQ1QjQxMUVGOEZEQjc0MURDNEY5QUUwMi9Zdzc4aThna2Y1 bWdFb0IwSGtvYURiZnhSN0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCkr21rMdyMSsr3iKGv0YA2CP166L1yJcqJ48dds5j2WICbv1Awz8/H fAJ3XUDBkSH75SpUhwxiAgeJkkpPgRSjSKrnkJD2s4RNFyj4X1gYd4df9CsDyLVU +FZtDwIkCkL+5SvxbQtLTJpqfDaM6nhCEUZEh31KAb27QFJqQ4vxvfECGvsuEbXF BoYVl0+EyRO24Iny+1jHvYtPoH57IOfE41DqLz2RiYCFRB1zzDNITKJwsPE63aKY K8b7Br5kNOLdQ+3DEFIXye4pd6EJoqf2CzOAvTHkRq4QCPFkKdCUDixOppwe2qFd uFeZ8YFExSwscrrCMdikCDiOlo5eBBUp -----END CERTIFICATE-----Generated at Wed Nov 5 12:25:06 2025 by rpki-client