$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft File: Y3kC4bqWiB1HLuyt-kW1V348HDE.mft (raw, json) Hash identifier: VG7+nkYjnkzNJHHPm9BnQp/pLM9UGwFZfO9DSIpNSWc= Subject key identifier: 00:C2:C8:28:6F:8D:73:6B:68:72:9D:E6:98:46:8F:FA:4E:64:F4:5B Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 0171 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft Manifest number: 016E Signing time: Mon 03 Nov 2025 03:52:50 +0000 Manifest this update: Mon 03 Nov 2025 03:52:49 +0000 Manifest next update: Mon 10 Nov 2025 03:52:49 +0000 Files and hashes: 1: Y3kC4bqWiB1HLuyt-kW1V348HDE.crl (hash: 4Q+kxSsthbE3WFBDwE8zZR/kI2WbUZEDGOltT1Oy3pM=) 2: FF1FE402898011EEB3403779C4F9AE02.roa (hash: kfUd7cLCmHmQ/k7ENeRjEkFUrum5OXV/qc4Vt8EOcIQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 369 (0x171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Nov 3 03:52:49 2025 GMT Not After : Nov 10 03:52:49 2025 GMT Subject: CN=69082711-c713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:fe:b9:0a:09:5b:5f:ef:b3:62:59:1c:35:80: 32:94:1d:d4:ef:01:5e:3e:2d:c1:2f:a7:29:41:ce: b1:91:90:a5:b7:eb:ef:f6:e2:46:d1:7a:64:63:2f: 68:cf:65:1a:9f:96:09:9e:25:35:c0:b3:f8:c7:d3: b0:ed:21:12:5f:53:b8:b0:00:fb:97:6a:f9:57:e5: 23:95:3d:65:0e:bb:6f:53:dc:48:0c:ca:f4:56:6b: 74:28:f2:73:6e:68:c5:c8:36:63:a7:1a:8b:ee:4f: 64:d7:bf:2a:ec:ab:da:05:43:27:47:58:54:79:2e: cb:13:17:4e:57:4d:22:f4:76:35:29:b6:12:a3:73: 93:94:36:2d:12:20:42:be:0d:28:42:03:f0:17:e4: 9c:c1:bd:ff:ca:27:5d:18:9f:a8:38:4c:d5:90:e1: 52:e8:66:74:2c:46:8a:ad:0a:6a:b5:66:cf:01:a8: 01:16:20:51:26:dd:f1:b7:0c:cb:9b:b6:f5:b0:4e: 73:52:fe:d7:f3:98:33:91:5b:ac:53:11:ad:7d:7f: 2e:53:fa:04:39:5c:f2:f0:c2:f7:b8:07:7f:b4:1b: b1:66:4d:e1:e5:cc:a2:6f:0d:13:a1:0c:9c:c6:5d: 80:43:a0:93:a0:41:83:5d:b7:5a:51:36:b0:8d:dc: eb:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:C2:C8:28:6F:8D:73:6B:68:72:9D:E6:98:46:8F:FA:4E:64:F4:5B X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:37:2e:93:60:20:56:ae:10:9f:d1:5c:57:f4:27:1c:e4:9a: f0:b8:eb:88:9a:01:98:e4:64:f1:5f:49:dd:39:c6:71:b7:08: 33:4f:eb:53:f3:fb:04:cf:09:31:a2:ad:7f:50:74:f9:75:23: bd:57:63:f5:76:ee:7d:a9:1c:0e:58:60:80:03:ce:44:39:89: 99:3a:ba:7e:cc:15:ec:9b:af:35:cf:80:c0:0f:6f:f3:3f:3c: 8e:aa:b5:d3:78:e5:aa:f5:e1:b3:79:b8:e9:b8:71:3f:c9:53: 1a:dc:25:13:3c:f5:54:77:86:69:2f:17:d3:d2:b1:0f:14:b9: cd:4a:39:bc:66:b1:03:bd:44:81:ad:bf:50:95:60:e1:87:dc: 9d:b1:a1:23:3a:ef:e8:04:07:b0:04:8d:69:66:19:95:70:2e: 63:db:67:2f:eb:ba:20:69:54:3a:59:9e:c0:1b:c0:60:a1:fb: 1e:dc:f3:5a:6c:5e:3d:bc:fe:bf:af:86:7a:30:0d:c4:25:da: 53:96:d7:a4:f6:19:e1:16:59:78:0b:5b:e2:a4:2d:70:30:fd: d6:aa:55:73:20:81:68:4e:79:4e:29:d8:5f:ca:82:61:b0:67: 7f:53:93:44:00:20:00:53:51:ff:d3:d3:9d:e1:29:d6:1d:c0: 92:22:ef:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAXEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUxMTAzMDM1MjQ5WhcNMjUxMTEwMDM1MjQ5WjAYMRYwFAYD VQQDEw02OTA4MjcxMS1jNzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw/65CglbX++zYlkcNYAylB3U7wFePi3BL6cpQc6xkZClt+vv9uJG0XpkYy9o z2Uan5YJniU1wLP4x9Ow7SESX1O4sAD7l2r5V+UjlT1lDrtvU9xIDMr0Vmt0KPJz bmjFyDZjpxqL7k9k178q7KvaBUMnR1hUeS7LExdOV00i9HY1KbYSo3OTlDYtEiBC vg0oQgPwF+Scwb3/yiddGJ+oOEzVkOFS6GZ0LEaKrQpqtWbPAagBFiBRJt3xtwzL m7b1sE5zUv7X85gzkVusUxGtfX8uU/oEOVzy8ML3uAd/tBuxZk3h5cyibw0ToQyc xl2AQ6CToEGDXbdaUTawjdzr5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFADCyChv jXNraHKd5phGj/pOZPRbMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTUyNC8wQzJDMkJENjg4QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lC MUhMdXl0LWtXMVYzNDhIREUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCqNy6TYCBWrhCf0VxX9Ccc5JrwuOuImgGY5GTxX0ndOcZxtwgzT+tT 8/sEzwkxoq1/UHT5dSO9V2P1du59qRwOWGCAA85EOYmZOrp+zBXsm681z4DAD2/z PzyOqrXTeOWq9eGzebjpuHE/yVMa3CUTPPVUd4ZpLxfT0rEPFLnNSjm8ZrEDvUSB rb9QlWDhh9ydsaEjOu/oBAewBI1pZhmVcC5j22cv67ogaVQ6WZ7AG8Bgofse3PNa bF49vP6/r4Z6MA3EJdpTltek9hnhFll4C1vipC1wMP3WqlVzIIFoTnlOKdhfyoJh sGd/U5NEACAAU1H/09Od4SnWHcCSIu+G -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:14 2025 by rpki-client