$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft File: yOujNL19pukuZ8QIvQN4e66uDK0.mft (raw, json) Hash identifier: ZeLKJbdUESneLGRp88UnCFUEKinbIb+Vysdb+/DLH5I= Subject key identifier: DB:74:66:C5:F9:24:AC:BA:D8:1C:AA:E3:12:BB:22:B4:F9:63:80:39 Authority key identifier: C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD Certificate issuer: /CN=A91CFE07/serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Certificate serial: 0DB6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft Manifest number: 0DA1 Signing time: Tue 04 Nov 2025 18:00:04 +0000 Manifest this update: Tue 04 Nov 2025 18:00:03 +0000 Manifest next update: Tue 11 Nov 2025 18:00:03 +0000 Files and hashes: 1: yOujNL19pukuZ8QIvQN4e66uDK0.crl (hash: 0tLDfgiHbwGlRB65peqGf1+LABHm9gUYugt7jY+mIFc=) 2: A95EC0B2C9FA11EBB7F2E749C4F9AE02.roa (hash: h9Ek+uVHJkd43jpvXLhIeId4TZWOhn+0W2MAspUZuOw=) 3: 226B7BC2AAC611EE9F22785DC4F9AE02.roa (hash: sy4Su4ASjc+OqwWE5jPxA/U7NJeDsxDapY34Q7SzDAE=) 4: A82C70A4C9FA11EBB7F2E749C4F9AE02.roa (hash: +QLq15+GCrbTMv3T/U18UwN/WHFJnfWgXMxuf5yq0ts=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:00:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3510 (0xdb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFE07, serialNumber=C8EBA334BD7DA6E92E67C408BD03787BAEAE0CAD Validity Not Before: Nov 4 18:00:03 2025 GMT Not After : Nov 11 18:00:03 2025 GMT Subject: CN=690a3f23-8e2f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5a:44:d3:83:3f:ba:d6:b1:91:bb:8a:bc:66: c2:34:b8:f9:8c:d8:db:5f:72:c8:7e:cd:38:96:02: 53:1d:dd:a5:50:46:59:f8:cf:95:1f:c0:46:c8:e5: 99:76:34:ee:ea:64:6f:c1:6a:33:93:1f:35:07:31: 1c:9c:ca:59:92:c1:19:b1:fb:f9:66:79:3e:59:b9: f8:75:50:1b:2a:4c:d5:c7:1f:b3:9d:4d:2a:31:1d: 68:6e:2f:69:94:59:13:4c:2c:7d:65:0d:e8:44:30: 0c:b3:3a:f1:77:3f:3c:cb:f7:70:e1:de:22:33:21: 8a:94:fd:64:59:5c:ef:04:61:f3:1e:07:b8:28:8f: 65:0c:55:80:c7:1f:85:c1:0c:d8:43:3a:3e:00:0b: f5:45:16:63:8d:5a:66:a8:7e:d9:7e:be:47:cb:43: ce:e5:a9:88:30:b2:6a:40:12:0e:c5:03:0a:6a:3c: db:31:00:13:a0:b8:f8:ff:64:10:c1:35:30:d8:ff: 3b:59:18:a7:48:10:8e:5d:f5:70:41:3c:4d:e9:c4: ec:c4:72:29:d5:08:d3:ee:97:bb:b1:9c:da:30:84: b6:d0:93:f0:38:6f:95:3e:5b:64:02:3e:d5:a9:38: ea:01:31:50:18:99:96:aa:e1:a6:23:5f:67:38:36: bb:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:74:66:C5:F9:24:AC:BA:D8:1C:AA:E3:12:BB:22:B4:F9:63:80:39 X509v3 Authority Key Identifier: keyid:C8:EB:A3:34:BD:7D:A6:E9:2E:67:C4:08:BD:03:78:7B:AE:AE:0C:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOujNL19pukuZ8QIvQN4e66uDK0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFE07/962C4B7ED2BF11E9A84D6622C4F9AE02/yOujNL19pukuZ8QIvQN4e66uDK0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption bb:95:94:2e:86:f2:36:da:48:29:e3:3e:35:ba:04:39:02:e9: 13:86:ba:1d:b7:65:dc:0e:da:1e:de:8a:67:81:31:7d:26:9e: 93:9b:22:0a:0e:b2:a7:73:c5:0d:e5:01:3c:a5:2b:52:c0:82: 2d:1f:51:fc:c0:1b:50:9e:f5:4a:2b:28:db:8b:81:ca:67:dc: 04:03:b9:48:e2:de:2e:e9:65:36:5b:e6:f1:0e:87:ec:10:7d: 06:aa:d0:7a:bc:28:b4:39:27:26:74:c0:e4:ee:82:d4:07:bb: 2f:f1:e8:21:69:61:42:fd:f6:76:99:46:c2:9a:08:51:44:81: 53:47:03:0b:35:56:68:8e:1d:04:65:77:72:5f:77:5f:b3:7b: 9a:a1:d5:b8:fb:2d:f3:93:8d:35:ac:b3:52:a1:e0:bc:32:5f: 63:33:50:d7:b3:09:60:aa:39:77:55:e4:2b:33:9e:0c:ea:c6: 6e:4a:b9:54:46:84:de:e2:ff:11:52:22:3d:56:62:83:0a:d4: 67:f9:0f:9f:a9:0d:91:03:7d:67:b2:1c:38:83:88:ec:ce:bd: d1:fc:c0:67:a0:3b:ce:6c:d5:82:ec:b5:8b:ed:2c:3b:5b:d2: 90:73:ef:07:ce:46:70:31:e2:1c:6d:66:a2:4e:ce:5f:0e:52: 32:c8:f8:be -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZFMDcxMTAvBgNVBAUTKEM4RUJBMzM0QkQ3REE2RTkyRTY3QzQwOEJEMDM3ODdC QUVBRTBDQUQwHhcNMjUxMTA0MTgwMDAzWhcNMjUxMTExMTgwMDAzWjAYMRYwFAYD VQQDEw02OTBhM2YyMy04ZTJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lpE04M/utaxkbuKvGbCNLj5jNjbX3LIfs04lgJTHd2lUEZZ+M+VH8BGyOWZ djTu6mRvwWozkx81BzEcnMpZksEZsfv5Znk+Wbn4dVAbKkzVxx+znU0qMR1obi9p lFkTTCx9ZQ3oRDAMszrxdz88y/dw4d4iMyGKlP1kWVzvBGHzHge4KI9lDFWAxx+F wQzYQzo+AAv1RRZjjVpmqH7Zfr5Hy0PO5amIMLJqQBIOxQMKajzbMQAToLj4/2QQ wTUw2P87WRinSBCOXfVwQTxN6cTsxHIp1QjT7pe7sZzaMIS20JPwOG+VPltkAj7V qTjqATFQGJmWquGmI19nODa7SQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNt0ZsX5 JKy62Byq4xK7IrT5Y4A5MB8GA1UdIwQYMBaAFMjrozS9fabpLmfECL0DeHuurgyt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkUwNy85NjJDNEI3RUQy QkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1a3VaOFFJdlFONGU2NnVE SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPdWpOTDE5cHVrdVo4UUl2UU40ZTY2dURLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkUwNy85NjJDNEI3RUQyQkYxMUU5QTg0RDY2MjJDNEY5QUUwMi95T3VqTkwxOXB1 a3VaOFFJdlFONGU2NnVESzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC7lZQuhvI22kgp4z41ugQ5AukThrodt2XcDtoe3opngTF9Jp6TmyIK DrKnc8UN5QE8pStSwIItH1H8wBtQnvVKKyjbi4HKZ9wEA7lI4t4u6WU2W+bxDofs EH0GqtB6vCi0OScmdMDk7oLUB7sv8eghaWFC/fZ2mUbCmghRRIFTRwMLNVZojh0E ZXdyX3dfs3uaodW4+y3zk401rLNSoeC8Ml9jM1DXswlgqjl3VeQrM54M6sZuSrlU RoTe4v8RUiI9VmKDCtRn+Q+fqQ2RA31nshw4g4jszr3R/MBnoDvObNWC7LWL7Sw7 W9KQc+8HzkZwMeIcbWaiTs5fDlIyyPi+ -----END CERTIFICATE-----Generated at Wed Nov 5 19:32:41 2025 by rpki-client