$ rpki-client -vvf rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft File: YmEJu-zJi6UufzmbgJYtOv5astQ.mft (raw, json) Hash identifier: LiWIohnPtc0QOr8oUGlbXTpSKmOshfCBUeuxeBGFuDs= Subject key identifier: F5:B4:33:74:CD:EE:73:22:34:93:40:09:1D:EF:D2:1F:6F:CA:DC:DA Authority key identifier: 62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 Certificate issuer: /CN=A91D50A2/serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Certificate serial: 0145 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft Manifest number: 0142 Signing time: Wed 05 Nov 2025 04:33:42 +0000 Manifest this update: Wed 05 Nov 2025 04:33:42 +0000 Manifest next update: Wed 12 Nov 2025 04:33:42 +0000 Files and hashes: 1: YmEJu-zJi6UufzmbgJYtOv5astQ.crl (hash: tFjRcVkjRBov02eC0UuxiyughXxL2l276fB0mTu6WDs=) 2: 7447BEF0928411EFB854A522C4F9AE02.roa (hash: 8r1ggxGUtscfFUhVNnn2tSXuD/VeviYdi6zXjlI+agM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:33:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D50A2, serialNumber=626109BBECC98BA52E7F399B80962D3AFE5AB2D4 Validity Not Before: Nov 5 04:33:42 2025 GMT Not After : Nov 12 04:33:42 2025 GMT Subject: CN=690ad3a6-45d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d1:85:de:14:5e:24:25:04:db:78:ea:64:70: 70:38:e2:78:e9:4f:1d:c3:94:ea:b6:5b:1f:d1:88: 86:1d:f2:29:41:77:0c:d1:62:f2:2c:93:5c:3b:21: f1:08:57:a9:ed:6b:ff:6e:9a:0b:de:d0:5a:86:0f: eb:50:f6:9e:4f:c2:0a:ba:99:13:a0:a9:1d:bb:8f: 2c:32:23:1f:71:7e:17:53:05:c6:0c:6b:d0:c1:ff: 9b:7c:ab:77:4e:13:9d:47:03:32:2a:12:75:96:20: f5:31:4e:19:04:09:8c:7d:20:a0:36:f2:2a:c0:ab: 9e:d9:e3:7f:a8:55:9e:ea:69:40:69:d4:c7:aa:69: 23:5a:c8:d5:0b:d2:59:b6:f9:d5:e4:59:ee:ce:a7: 14:56:4f:34:01:c2:83:55:28:8d:d5:2b:3f:83:c4: da:60:0c:65:43:e7:ad:cf:05:a6:dd:6b:28:81:aa: 79:f0:f4:36:a3:8c:c1:96:1c:14:11:44:69:b5:75: f8:5f:f8:0b:29:0d:ab:6c:39:4a:07:28:93:1c:8f: 02:cb:af:56:58:50:b0:05:69:89:a6:ab:8b:65:4e: 36:46:90:0a:35:ff:8b:ce:e5:a4:f0:63:bc:27:ae: 3a:6a:f1:e1:19:ee:0f:7e:98:b9:b0:b5:e2:3c:f2: aa:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B4:33:74:CD:EE:73:22:34:93:40:09:1D:EF:D2:1F:6F:CA:DC:DA X509v3 Authority Key Identifier: keyid:62:61:09:BB:EC:C9:8B:A5:2E:7F:39:9B:80:96:2D:3A:FE:5A:B2:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmEJu-zJi6UufzmbgJYtOv5astQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D50A2/EE31D874D02711EEBF5B693CC4F9AE02/YmEJu-zJi6UufzmbgJYtOv5astQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:9f:f9:85:9e:0f:11:47:83:4e:40:d2:a8:cd:6e:ad:a4:23: ad:45:9b:44:18:b9:c5:62:39:fe:f3:13:c1:b1:d7:d0:05:3b: 31:ff:e2:9d:24:39:a5:61:9b:e7:05:18:99:e6:f2:04:48:62: 5d:85:c8:0a:64:0c:7d:f1:60:9c:4f:2c:39:f5:60:ed:0c:1c: 13:49:9b:f2:ed:70:6e:56:73:43:bb:84:bb:fa:32:d7:de:69: ae:22:2c:7a:ce:9a:f7:a4:79:01:14:e2:b5:2a:05:54:b1:6c: 5d:d2:6f:60:51:70:dd:4c:8a:eb:42:ea:ab:ba:f1:97:00:4d: 82:a4:9c:c3:b7:f6:5b:58:1a:c0:d7:e6:01:57:67:50:28:bb: da:79:00:6c:10:75:3c:d5:4f:48:e5:55:bf:4a:17:fd:7f:9b: 28:16:6a:a5:b7:e2:d9:91:cf:0d:06:0d:b5:69:b0:7b:1b:af: 07:98:2b:fb:04:a4:79:ee:38:0b:08:de:41:76:48:1f:3d:9f: f7:12:01:43:f9:97:21:99:19:4c:1b:a9:46:ad:9c:90:f8:ee: ff:9e:68:fd:76:d0:91:0b:9e:3d:5d:b8:bc:38:40:3d:7e:0d: e5:31:09:23:83:24:0e:0f:7b:80:c0:60:6c:c1:af:b9:05:30: 8c:08:88:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDUwQTIxMTAvBgNVBAUTKDYyNjEwOUJCRUNDOThCQTUyRTdGMzk5QjgwOTYyRDNB RkU1QUIyRDQwHhcNMjUxMTA1MDQzMzQyWhcNMjUxMTEyMDQzMzQyWjAYMRYwFAYD VQQDEw02OTBhZDNhNi00NWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydGF3hReJCUE23jqZHBwOOJ46U8dw5Tqtlsf0YiGHfIpQXcM0WLyLJNcOyHx CFep7Wv/bpoL3tBahg/rUPaeT8IKupkToKkdu48sMiMfcX4XUwXGDGvQwf+bfKt3 ThOdRwMyKhJ1liD1MU4ZBAmMfSCgNvIqwKue2eN/qFWe6mlAadTHqmkjWsjVC9JZ tvnV5FnuzqcUVk80AcKDVSiN1Ss/g8TaYAxlQ+etzwWm3Wsogap58PQ2o4zBlhwU EURptXX4X/gLKQ2rbDlKByiTHI8Cy69WWFCwBWmJpquLZU42RpAKNf+LzuWk8GO8 J646avHhGe4Pfpi5sLXiPPKqiQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPW0M3TN 7nMiNJNACR3v0h9vytzaMB8GA1UdIwQYMBaAFGJhCbvsyYulLn85m4CWLTr+WrLU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTBBMi9FRTMxRDg3NEQw MjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2VXVmem1iZ0pZdE92NWFz dFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltRUp1LXpKaTZVdWZ6bWJnSll0T3Y1YXN0US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTBBMi9FRTMxRDg3NEQwMjcxMUVFQkY1QjY5M0NDNEY5QUUwMi9ZbUVKdS16Smk2 VXVmem1iZ0pZdE92NWFzdFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCKn/mFng8RR4NOQNKozW6tpCOtRZtEGLnFYjn+8xPBsdfQBTsx/+Kd JDmlYZvnBRiZ5vIESGJdhcgKZAx98WCcTyw59WDtDBwTSZvy7XBuVnNDu4S7+jLX 3mmuIix6zpr3pHkBFOK1KgVUsWxd0m9gUXDdTIrrQuqruvGXAE2CpJzDt/ZbWBrA 1+YBV2dQKLvaeQBsEHU81U9I5VW/Shf9f5soFmqlt+LZkc8NBg21abB7G68HmCv7 BKR57jgLCN5BdkgfPZ/3EgFD+ZchmRlMG6lGrZyQ+O7/nmj9dtCRC549Xbi8OEA9 fg3lMQkjgyQOD3uAwGBswa+5BTCMCIgu -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:46 2025 by rpki-client