$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft File: yCFQSaXsETZftnQLghcGdiaArRc.mft (raw, json) Hash identifier: kgwpmok+TuoOcuJGcV+1pUt27pZwcJy2SxxorTqVEDA= Subject key identifier: 49:AA:07:AD:0E:31:A0:62:B0:70:4E:48:B9:B9:19:97:39:EE:0E:8B Authority key identifier: C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 Certificate issuer: /CN=A91DC459/serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Certificate serial: 0127 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft Manifest number: 0125 Signing time: Wed 05 Nov 2025 04:49:38 +0000 Manifest this update: Wed 05 Nov 2025 04:49:38 +0000 Manifest next update: Wed 12 Nov 2025 04:49:38 +0000 Files and hashes: 1: yCFQSaXsETZftnQLghcGdiaArRc.crl (hash: uIG2PMO7mA8amp0ExclJ3xBR3aAgG35w29gaRE46eJ4=) 2: 264C45FAFA3F11EE8A884F09C4F9AE02.roa (hash: 5Qk7wqUj4bSez6DKvrGbvLq6LTkbYNIBEPZBlcBLEEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:49:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC459, serialNumber=C8215049A5EC11365FB6740B821706762680AD17 Validity Not Before: Nov 5 04:49:38 2025 GMT Not After : Nov 12 04:49:38 2025 GMT Subject: CN=690ad762-1673 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:d4:52:aa:71:23:1a:cb:28:3a:d0:9b:8f:73: 5a:f2:5b:60:b1:af:04:09:4b:59:3c:c0:d7:2f:76: 0a:f6:c2:3d:be:0f:33:79:69:7e:db:4d:df:82:d0: fc:95:17:d3:db:9d:97:c6:0f:f5:56:f1:14:a5:37: d8:4f:38:dc:b4:ad:71:25:72:1d:f8:ec:6f:fa:e1: cd:9f:0d:53:87:ba:03:29:5b:d0:4d:c3:27:28:4c: 5d:5d:6f:5f:43:0b:7c:04:1d:31:72:99:0a:76:d7: 0c:e0:d7:d7:b1:cc:2b:cf:f7:46:26:61:e6:00:17: 48:1a:c3:2c:30:1d:e5:4e:0a:b6:69:65:ea:9b:df: 01:a2:ae:d8:80:1c:d6:3e:33:af:b4:18:89:e5:2f: 3b:db:bd:ef:27:4d:35:fc:2f:d2:72:90:c4:2f:54: 53:18:3e:04:59:53:9d:a4:74:6d:f3:93:c3:5f:90: 56:23:af:82:b7:a5:a8:62:d9:51:7a:10:82:41:f2: c4:7d:42:3f:c8:6c:d8:82:3c:69:33:7c:d0:0f:95: 78:1b:8b:e5:3f:23:fd:1c:8e:f4:95:59:b3:3e:3c: f2:b4:1d:5a:6d:82:6c:b1:53:16:46:46:82:da:41: f7:16:64:3a:ad:21:a8:3d:08:eb:b9:de:11:cd:c7: cd:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AA:07:AD:0E:31:A0:62:B0:70:4E:48:B9:B9:19:97:39:EE:0E:8B X509v3 Authority Key Identifier: keyid:C8:21:50:49:A5:EC:11:36:5F:B6:74:0B:82:17:06:76:26:80:AD:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yCFQSaXsETZftnQLghcGdiaArRc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC459/A93507BCF6D511EEB8783C1EC4F9AE02/yCFQSaXsETZftnQLghcGdiaArRc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 47:f9:0d:c7:a8:6f:00:b1:d4:31:af:eb:8c:c0:5d:3d:ca:89: 55:6e:a8:ac:41:e2:92:51:1d:9e:be:c5:3e:7e:85:81:30:9c: cc:2f:0e:9f:db:b3:48:b6:ed:1a:cb:80:31:03:ba:53:60:45: 0f:7f:80:ad:9f:7a:fe:cb:f7:2b:c3:37:26:e1:1d:68:24:dc: 21:18:75:f8:82:19:ec:08:e7:aa:5d:b4:60:96:ed:0d:56:9c: 13:4e:71:3e:24:1a:7f:6e:a6:f3:9c:8c:fa:19:07:36:a7:b3: 10:c1:ed:6a:78:46:24:f4:9b:98:e2:4d:0b:75:ab:21:59:6f: aa:b8:d2:e3:ac:cc:89:cc:cb:85:cd:c8:d7:18:df:9c:0f:2c: 8b:4a:b0:26:2e:a9:67:80:38:d3:83:99:94:d6:ef:cf:16:3f: 32:be:4d:5f:eb:32:e8:93:2d:c5:f7:85:84:6e:a4:83:e8:8a: 4f:75:92:83:8c:b6:e4:06:a6:8d:69:c1:66:87:19:0f:ef:e8: 77:53:7c:ad:51:f4:c5:a9:a9:47:74:1a:ae:1a:4b:d9:1c:3e: f1:25:81:92:a2:65:32:ef:58:66:aa:a4:8b:9e:b4:65:6f:e9: b6:f3:fc:eb:a0:bc:ad:56:1a:9c:83:57:41:98:38:1e:f6:de: 05:c5:87:d7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM0NTkxMTAvBgNVBAUTKEM4MjE1MDQ5QTVFQzExMzY1RkI2NzQwQjgyMTcwNjc2 MjY4MEFEMTcwHhcNMjUxMTA1MDQ0OTM4WhcNMjUxMTEyMDQ0OTM4WjAYMRYwFAYD VQQDEw02OTBhZDc2Mi0xNjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx9RSqnEjGssoOtCbj3Na8ltgsa8ECUtZPMDXL3YK9sI9vg8zeWl+203fgtD8 lRfT252Xxg/1VvEUpTfYTzjctK1xJXId+Oxv+uHNnw1Th7oDKVvQTcMnKExdXW9f Qwt8BB0xcpkKdtcM4NfXscwrz/dGJmHmABdIGsMsMB3lTgq2aWXqm98Boq7YgBzW PjOvtBiJ5S87273vJ001/C/ScpDEL1RTGD4EWVOdpHRt85PDX5BWI6+Ct6WoYtlR ehCCQfLEfUI/yGzYgjxpM3zQD5V4G4vlPyP9HI70lVmzPjzytB1abYJssVMWRkaC 2kH3FmQ6rSGoPQjrud4RzcfN5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEmqB60O MaBisHBOSLm5GZc57g6LMB8GA1UdIwQYMBaAFMghUEml7BE2X7Z0C4IXBnYmgK0X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzQ1OS9BOTM1MDdCQ0Y2 RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VUWmZ0blFMZ2hjR2RpYUFy UmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lDRlFTYVhzRVRaZnRuUUxnaGNHZGlhQXJSYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzQ1OS9BOTM1MDdCQ0Y2RDUxMUVFQjg3ODNDMUVDNEY5QUUwMi95Q0ZRU2FYc0VU WmZ0blFMZ2hjR2RpYUFyUmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBH+Q3HqG8AsdQxr+uMwF09yolVbqisQeKSUR2evsU+foWBMJzMLw6f 27NItu0ay4AxA7pTYEUPf4Ctn3r+y/crwzcm4R1oJNwhGHX4ghnsCOeqXbRglu0N VpwTTnE+JBp/bqbznIz6GQc2p7MQwe1qeEYk9JuY4k0LdashWW+quNLjrMyJzMuF zcjXGN+cDyyLSrAmLqlngDjTg5mU1u/PFj8yvk1f6zLoky3F94WEbqSD6IpPdZKD jLbkBqaNacFmhxkP7+h3U3ytUfTFqalHdBquGkvZHD7xJYGSomUy71hmqqSLnrRl b+m28/zroLytVhqcg1dBmDge9t4FxYfX -----END CERTIFICATE-----Generated at Wed Nov 5 19:28:24 2025 by rpki-client