$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft File: yoXhM8HiOWFMnFd4ARi9swlSjnY.mft (raw, json) Hash identifier: uqK0HlWOeXHUMELN4h+acf6ZuYpRVH/1Fq+fgw1U4JY= Subject key identifier: 7D:51:E9:27:B7:E5:D4:C1:4F:20:43:81:ED:DB:F1:A6:DF:24:75:4D Authority key identifier: CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 Certificate issuer: /CN=A91DC42E/serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Certificate serial: 07DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft Manifest number: 07D6 Signing time: Sat 18 Oct 2025 22:26:22 +0000 Manifest this update: Sat 18 Oct 2025 22:26:21 +0000 Manifest next update: Sat 25 Oct 2025 22:26:21 +0000 Files and hashes: 1: yoXhM8HiOWFMnFd4ARi9swlSjnY.crl (hash: wucfFDxotnvpHBSNKXPelpCFvEUlZvLEF8rBPZA4bP4=) 2: 4AAD8CFE0D1E11EB83C9B637C4F9AE02.roa (hash: dqlBL+Mvfc+xCr3YIFtIl73lm9u/ZT3pHNyxLQdBwx0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:26:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2013 (0x7dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC42E, serialNumber=CA85E133C1E239614C9C57780118BDB309528E76 Validity Not Before: Oct 18 22:26:21 2025 GMT Not After : Oct 25 22:26:21 2025 GMT Subject: CN=68f4140d-d70a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:33:bb:44:21:2f:36:f1:b3:c7:3f:94:bd:a6: 29:ec:f3:8c:9f:ae:c6:32:fd:5e:47:8f:26:4b:d4: ee:20:e0:e5:a4:04:6c:a9:5b:3e:a6:8d:f3:8d:0d: fb:cb:b5:cc:fe:60:e5:ea:48:57:bf:40:7e:23:e8: fe:39:9c:a7:48:1d:15:c6:c2:d9:52:5f:2d:c2:b6: b2:ae:0e:b5:43:dd:f9:2f:34:d8:0a:f0:e1:67:a7: 3a:44:b0:b0:61:f0:0a:94:2c:5f:7d:62:05:51:10: 96:cd:ab:bb:20:6d:f1:eb:29:ed:13:5c:af:71:d3: b9:77:ef:82:39:ff:9f:6e:34:d0:b7:62:7f:71:00: 1f:82:43:47:e3:84:f4:af:33:d6:4d:23:2c:44:94: bf:e5:c1:ea:a5:ec:a3:81:c8:73:d7:5e:12:73:2f: 02:cb:2a:e6:ac:7c:0d:51:4f:9d:57:4f:0f:67:92: b7:16:76:6f:83:11:1a:d8:ec:89:85:83:91:db:f0: 6e:77:06:c2:b8:8e:7c:a8:84:af:94:c4:62:b7:2c: 11:f1:9f:a1:56:eb:7b:08:66:d9:19:09:98:d2:79: 4a:1f:59:d8:ec:43:19:b5:15:47:0b:89:ff:ed:fc: 56:fc:8a:07:3c:ea:63:91:95:72:0a:06:be:b5:d3: 70:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:51:E9:27:B7:E5:D4:C1:4F:20:43:81:ED:DB:F1:A6:DF:24:75:4D X509v3 Authority Key Identifier: keyid:CA:85:E1:33:C1:E2:39:61:4C:9C:57:78:01:18:BD:B3:09:52:8E:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yoXhM8HiOWFMnFd4ARi9swlSjnY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC42E/D6A7FF480D1711EBA741A50AC4F9AE02/yoXhM8HiOWFMnFd4ARi9swlSjnY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:71:dd:95:8c:ad:63:52:10:f1:88:c9:27:8e:6c:b5:cb:4b: de:60:f6:b9:98:37:a4:f9:bc:52:9f:72:86:d9:53:53:ac:bc: 03:fc:04:e8:66:dd:0a:04:a8:7e:81:30:30:fa:75:ab:23:3e: d7:e1:78:ce:c8:0f:a4:76:62:f7:78:a7:a3:bf:13:55:e2:0c: 34:cd:56:10:bd:9c:21:cc:8c:68:55:4d:41:8d:23:d2:8b:6e: 11:0d:63:e1:bc:71:73:36:a8:2f:d4:46:ec:27:c2:ed:29:ae: c3:0c:5f:55:fc:2b:43:92:b3:a7:62:e8:40:d4:c9:2a:d5:69: f1:ee:b4:71:cb:26:13:c6:e4:15:39:d4:46:ef:a6:85:f6:8f: d1:ba:dc:b3:4a:91:45:18:b7:6d:63:ae:b3:e7:b5:2b:8e:8f: 14:f5:76:55:5f:ef:e8:c0:e7:c8:24:05:47:24:97:9a:cf:39: 49:ad:42:22:ad:f5:74:36:3f:68:0c:4e:2e:ba:e6:2d:5e:76: a7:82:ad:f6:b9:03:e6:0c:c5:5a:70:79:5a:a7:01:8c:a9:0f: d8:f8:7a:b3:d5:d5:09:79:c0:d9:90:1f:5b:68:1f:d2:f0:7d: a7:98:31:1b:75:4f:ae:d9:26:40:96:e9:7b:49:ea:da:94:66: 31:b9:28:4a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICB90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0MkUxMTAvBgNVBAUTKENBODVFMTMzQzFFMjM5NjE0QzlDNTc3ODAxMThCREIz MDk1MjhFNzYwHhcNMjUxMDE4MjIyNjIxWhcNMjUxMDI1MjIyNjIxWjAYMRYwFAYD VQQDEw02OGY0MTQwZC1kNzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwDO7RCEvNvGzxz+UvaYp7POMn67GMv1eR48mS9TuIODlpARsqVs+po3zjQ37 y7XM/mDl6khXv0B+I+j+OZynSB0VxsLZUl8twrayrg61Q935LzTYCvDhZ6c6RLCw YfAKlCxffWIFURCWzau7IG3x6yntE1yvcdO5d++COf+fbjTQt2J/cQAfgkNH44T0 rzPWTSMsRJS/5cHqpeyjgchz114Scy8CyyrmrHwNUU+dV08PZ5K3FnZvgxEa2OyJ hYOR2/BudwbCuI58qISvlMRitywR8Z+hVut7CGbZGQmY0nlKH1nY7EMZtRVHC4n/ 7fxW/IoHPOpjkZVyCga+tdNw2wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH1R6Se3 5dTBTyBDge3b8abfJHVNMB8GA1UdIwQYMBaAFMqF4TPB4jlhTJxXeAEYvbMJUo52 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQyRS9ENkE3RkY0ODBE MTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9XRk1uRmQ0QVJpOXN3bFNq blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvWGhNOEhpT1dGTW5GZDRBUmk5c3dsU2puWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQyRS9ENkE3RkY0ODBEMTcxMUVCQTc0MUE1MEFDNEY5QUUwMi95b1hoTThIaU9X Rk1uRmQ0QVJpOXN3bFNqblkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA7cd2VjK1jUhDxiMknjmy1y0veYPa5mDek+bxSn3KG2VNTrLwD/ATo Zt0KBKh+gTAw+nWrIz7X4XjOyA+kdmL3eKejvxNV4gw0zVYQvZwhzIxoVU1BjSPS i24RDWPhvHFzNqgv1EbsJ8LtKa7DDF9V/CtDkrOnYuhA1Mkq1Wnx7rRxyyYTxuQV OdRG76aF9o/RutyzSpFFGLdtY66z57Urjo8U9XZVX+/owOfIJAVHJJeazzlJrUIi rfV0Nj9oDE4uuuYtXnangq32uQPmDMVacHlapwGMqQ/Y+Hqz1dUJecDZkB9baB/S 8H2nmDEbdU+u2SZAlul7SeralGYxuShK -----END CERTIFICATE-----Generated at Wed Oct 22 18:40:05 2025 by rpki-client