$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft File: y_Kp2oisCPjVEG3svXLW-gnIGOk.mft (raw, json) Hash identifier: z4r9Fj3DlrYZyBVlC05EiCKr2B6dPAwVZLQA7T2xkPE= Subject key identifier: AA:A9:CB:06:1C:8E:A1:68:58:F2:FA:10:7C:AB:42:2E:4C:B5:D5:59 Authority key identifier: CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 Certificate issuer: /CN=A91D5C25/serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Certificate serial: 0F72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft Manifest number: 0F69 Signing time: Sun 02 Nov 2025 17:35:06 +0000 Manifest this update: Sun 02 Nov 2025 17:35:06 +0000 Manifest next update: Sun 09 Nov 2025 17:35:06 +0000 Files and hashes: 1: y_Kp2oisCPjVEG3svXLW-gnIGOk.crl (hash: 6oV0W3bKCuU9X2XxJhMWAV1KJb3mjxoFkIqJID3+Tmc=) 2: 4ECF0A4C765C11E9A01A6E34C4F9AE02.roa (hash: pLwEgd+VwWLgIg3V6a+yYMrZGmHsHcB345LFbQql9+8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 17:35:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3954 (0xf72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5C25, serialNumber=CBF2A9DA88AC08F8D5106DECBD72D6FA09C818E9 Validity Not Before: Nov 2 17:35:06 2025 GMT Not After : Nov 9 17:35:06 2025 GMT Subject: CN=6907964a-e403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:67:10:81:e8:82:b8:45:46:db:8e:28:17:e6: 7c:30:f6:3a:b7:33:2b:c3:e8:6e:dc:62:5f:8d:9c: d1:75:8d:eb:ca:13:b3:a9:5e:75:b6:78:f3:39:c0: c3:1c:03:ab:58:5d:78:6c:3c:49:c2:42:dc:3b:a4: 03:4e:af:6a:75:ea:a6:a9:cc:08:67:93:10:09:91: db:3e:74:7c:5e:db:13:48:26:de:12:f9:dc:2b:28: 96:57:9a:7d:07:f6:a0:44:7f:15:80:97:d8:1e:d9: de:81:26:3f:30:35:1d:b1:b4:6b:c4:85:19:46:5d: 12:35:29:e0:14:8a:20:da:aa:d6:09:25:30:01:3d: f2:c2:b1:ee:4e:ad:bb:00:93:6c:a3:cf:7e:71:8e: b5:d7:2c:29:cf:38:22:b3:d7:e6:2b:55:d7:9a:d8: 15:86:f5:38:cc:d4:76:1f:5a:da:40:49:1a:bd:b8: da:78:f7:02:e5:e0:4b:0f:96:d1:18:0a:c7:b2:0a: 74:53:c4:45:ed:5b:4f:18:43:34:79:0a:61:ac:8a: 2e:5a:de:58:f5:86:a1:63:bb:6c:d4:4b:ab:c6:ad: c8:ec:88:78:36:7a:15:a8:f8:2c:b7:a9:b3:a4:e9: c8:90:83:83:04:e6:90:11:f6:79:30:c5:dd:e5:fd: d2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:A9:CB:06:1C:8E:A1:68:58:F2:FA:10:7C:AB:42:2E:4C:B5:D5:59 X509v3 Authority Key Identifier: keyid:CB:F2:A9:DA:88:AC:08:F8:D5:10:6D:EC:BD:72:D6:FA:09:C8:18:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y_Kp2oisCPjVEG3svXLW-gnIGOk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5C25/687A10A6765A11E99D01E42EC4F9AE02/y_Kp2oisCPjVEG3svXLW-gnIGOk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:31:40:78:30:8d:6e:40:d3:f7:3b:8c:22:6c:68:1f:76:51: be:d5:89:ad:ef:5c:2f:71:77:8e:01:c5:b5:29:9c:97:d3:46: 0e:31:44:a3:17:cf:bf:cf:48:24:3c:86:2a:6c:f9:32:b3:2f: f8:72:b9:89:4e:ad:4c:e6:06:6f:a4:15:96:70:c6:85:66:5f: 0b:2a:06:f2:d2:60:c6:69:00:88:0a:f5:5e:0f:44:60:16:35: ec:36:78:cd:38:03:de:a2:f4:f8:1a:61:dc:59:71:76:a2:e7: ad:da:5e:5a:68:87:31:21:ef:fd:2d:ae:98:4c:2d:01:01:73: 78:84:87:bb:c1:11:74:49:33:53:9e:91:27:f3:e3:30:81:01: 67:5a:51:d8:6f:9b:e6:22:94:01:ea:7c:9e:6c:af:b9:3a:2e: 81:49:cc:d7:fa:2f:e9:80:b4:fc:00:e4:bd:00:1f:41:19:ae: 7d:19:13:e6:41:da:9e:bf:1a:cb:7a:8b:8b:8a:ed:71:b5:4f: 40:a2:61:cb:74:02:3d:62:b2:8b:31:73:86:c7:58:cb:88:ba: a5:b7:b8:e6:fe:d6:13:d9:77:e8:01:c8:8a:f0:77:3a:a3:b8: 8f:92:ad:e3:95:9b:13:31:73:52:76:03:6f:15:3d:d5:f3:0f: 61:02:3e:87 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVDMjUxMTAvBgNVBAUTKENCRjJBOURBODhBQzA4RjhENTEwNkRFQ0JENzJENkZB MDlDODE4RTkwHhcNMjUxMTAyMTczNTA2WhcNMjUxMTA5MTczNTA2WjAYMRYwFAYD VQQDEw02OTA3OTY0YS1lNDAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmcQgeiCuEVG244oF+Z8MPY6tzMrw+hu3GJfjZzRdY3ryhOzqV51tnjzOcDD HAOrWF14bDxJwkLcO6QDTq9qdeqmqcwIZ5MQCZHbPnR8XtsTSCbeEvncKyiWV5p9 B/agRH8VgJfYHtnegSY/MDUdsbRrxIUZRl0SNSngFIog2qrWCSUwAT3ywrHuTq27 AJNso89+cY611ywpzzgis9fmK1XXmtgVhvU4zNR2H1raQEkavbjaePcC5eBLD5bR GArHsgp0U8RF7VtPGEM0eQphrIouWt5Y9YahY7ts1Eurxq3I7Ih4NnoVqPgst6mz pOnIkIODBOaQEfZ5MMXd5f3SKwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKqpywYc jqFoWPL6EHyrQi5MtdVZMB8GA1UdIwQYMBaAFMvyqdqIrAj41RBt7L1y1voJyBjp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUMyNS82ODdBMTBBNjc2 NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQalZFRzNzdlhMVy1nbklH T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lfS3Ayb2lzQ1BqVkVHM3N2WExXLWduSUdPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NUMyNS82ODdBMTBBNjc2NUExMUU5OUQwMUU0MkVDNEY5QUUwMi95X0twMm9pc0NQ alZFRzNzdlhMVy1nbklHT2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBcMUB4MI1uQNP3O4wibGgfdlG+1Ymt71wvcXeOAcW1KZyX00YOMUSj F8+/z0gkPIYqbPkysy/4crmJTq1M5gZvpBWWcMaFZl8LKgby0mDGaQCICvVeD0Rg FjXsNnjNOAPeovT4GmHcWXF2ouet2l5aaIcxIe/9La6YTC0BAXN4hIe7wRF0STNT npEn8+MwgQFnWlHYb5vmIpQB6nyebK+5Oi6BSczX+i/pgLT8AOS9AB9BGa59GRPm QdqevxrLeouLiu1xtU9AomHLdAI9YrKLMXOGx1jLiLqlt7jm/tYT2XfoAciK8Hc6 o7iPkq3jlZsTMXNSdgNvFT3V8w9hAj6H -----END CERTIFICATE-----Generated at Mon Nov 3 18:11:13 2025 by rpki-client