$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft File: 0ypa3AVCwugXwgK-a3KB6GnReJc.mft (raw, json) Hash identifier: L/OlKZ1+6ASFq/NwpXblrYNU9jqmU94p0/FOcS1ItIU= Subject key identifier: 65:7F:F2:0E:C6:A6:2C:EC:C5:06:F2:CC:D0:1D:83:85:C5:57:E4:E4 Authority key identifier: D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 Certificate issuer: /CN=A91E0855/serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Certificate serial: 0100 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft Manifest number: F9 Signing time: Mon 27 Oct 2025 07:25:08 +0000 Manifest this update: Mon 27 Oct 2025 07:25:08 +0000 Manifest next update: Mon 03 Nov 2025 07:25:08 +0000 Files and hashes: 1: 0ypa3AVCwugXwgK-a3KB6GnReJc.crl (hash: l1RYvsxegxp6hE5FuV3aINAkghKJvbsRHtQch3dbqkQ=) 2: 6F723CC0830B11F0B82E836DC4F9AE02.roa (hash: 20LByREQakyZFtw7XXZgcAlPRUMCZmgOccSGiPQln6o=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 256 (0x100) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0855, serialNumber=D32A5ADC0542C2E817C202BE6B7281E869D17897 Validity Not Before: Oct 27 07:25:08 2025 GMT Not After : Nov 3 07:25:08 2025 GMT Subject: CN=68ff1e54-ab60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ef:02:62:85:65:b6:bd:0e:07:40:d0:b3:05: 15:5b:77:63:c1:39:bd:41:e0:f0:c1:fb:b4:cc:88: 52:05:3e:a0:c1:f9:f0:2f:a6:20:70:fa:4f:d1:fd: df:ea:1b:47:8b:58:08:f8:24:4e:ab:72:b2:45:11: 9b:eb:e2:3c:ea:e4:f8:6c:b6:81:a1:18:76:b9:ef: c3:cc:fd:43:41:09:13:0f:9d:23:82:b9:f9:53:a2: f8:b9:7b:0e:af:de:84:40:f8:60:36:f5:10:93:3d: 8a:34:ce:00:c1:8c:f7:91:1a:e5:12:20:4d:45:f5: 41:9c:26:01:ef:92:81:9e:93:ca:91:3a:68:cf:26: 80:f9:83:99:96:06:ef:e2:06:0c:a8:f6:87:21:87: 6e:11:7a:6c:7c:10:6b:dc:bb:4b:03:0f:13:ce:36: 68:3c:4c:c0:97:08:e6:d3:21:79:77:b5:d1:97:ab: b9:c7:bd:05:81:71:e7:c6:70:a2:cb:96:72:82:6a: bc:24:57:5a:02:85:d8:35:2c:eb:c1:55:53:35:c7: be:78:22:e6:14:04:42:77:8e:f6:cc:68:be:ba:e9: 39:3e:d9:db:0c:a0:3c:80:a8:2a:04:25:29:3f:20: 0f:50:d9:93:50:fc:1d:fa:80:dd:ea:fa:29:54:44: ce:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:7F:F2:0E:C6:A6:2C:EC:C5:06:F2:CC:D0:1D:83:85:C5:57:E4:E4 X509v3 Authority Key Identifier: keyid:D3:2A:5A:DC:05:42:C2:E8:17:C2:02:BE:6B:72:81:E8:69:D1:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0ypa3AVCwugXwgK-a3KB6GnReJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0855/504CFFE2449611EF8E84E63DC4F9AE02/0ypa3AVCwugXwgK-a3KB6GnReJc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0f:04:2d:a4:2e:4c:8a:89:9b:c1:6e:65:de:12:a6:be:26:f6: 4b:7d:ae:a5:20:53:e0:18:ef:d1:5b:aa:86:af:c7:12:07:c7: b1:f8:a2:1f:d8:38:22:7a:2c:4d:38:09:1e:6b:17:89:82:79: 35:6d:ad:cf:d4:ca:c2:25:ee:70:32:6b:a4:cd:ee:6f:06:6c: c5:22:3a:b4:1a:d7:9d:1c:1c:36:2a:8a:99:e0:3d:bb:b6:b3: bb:79:b8:fb:ab:99:f6:c2:1b:81:58:32:67:ae:72:8a:2d:c4: 1c:15:0f:52:1c:b2:5d:28:1e:87:62:ea:02:08:bf:b2:15:9a: 8f:1b:c6:71:9f:16:aa:c7:71:6f:f0:2c:dd:e9:6a:c6:bf:ba: bd:6e:79:c1:83:33:15:0f:4e:81:27:22:e6:0b:d5:a6:46:c4: e8:4d:ce:a5:bf:a1:ad:3b:5e:23:98:ef:fe:53:76:f7:48:54: 6e:ea:df:26:7f:12:4e:c6:d5:0f:b8:ae:c5:80:a9:62:31:17: 57:e2:7f:e9:0f:f4:8e:34:2f:c1:14:43:6a:d4:1a:08:4d:da: 2d:74:90:0f:8e:82:b0:3b:7f:53:93:b7:45:bf:81:ab:5c:f5: 6f:60:c0:5a:59:07:3a:35:33:19:9f:03:0c:0b:ab:5c:07:1c: 97:61:37:6e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTA4NTUxMTAvBgNVBAUTKEQzMkE1QURDMDU0MkMyRTgxN0MyMDJCRTZCNzI4MUU4 NjlEMTc4OTcwHhcNMjUxMDI3MDcyNTA4WhcNMjUxMTAzMDcyNTA4WjAYMRYwFAYD VQQDEw02OGZmMWU1NC1hYjYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0e8CYoVltr0OB0DQswUVW3djwTm9QeDwwfu0zIhSBT6gwfnwL6YgcPpP0f3f 6htHi1gI+CROq3KyRRGb6+I86uT4bLaBoRh2ue/DzP1DQQkTD50jgrn5U6L4uXsO r96EQPhgNvUQkz2KNM4AwYz3kRrlEiBNRfVBnCYB75KBnpPKkTpozyaA+YOZlgbv 4gYMqPaHIYduEXpsfBBr3LtLAw8TzjZoPEzAlwjm0yF5d7XRl6u5x70FgXHnxnCi y5Zygmq8JFdaAoXYNSzrwVVTNce+eCLmFARCd472zGi+uuk5PtnbDKA8gKgqBCUp PyAPUNmTUPwd+oDd6vopVETOIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGV/8g7G pizsxQbyzNAdg4XFV+TkMB8GA1UdIwQYMBaAFNMqWtwFQsLoF8ICvmtygehp0XiX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMDg1NS81MDRDRkZFMjQ0 OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1Z1h3Z0stYTNLQjZHblJl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzB5cGEzQVZDd3VnWHdnSy1hM0tCNkduUmVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MDg1NS81MDRDRkZFMjQ0OTYxMUVGOEU4NEU2M0RDNEY5QUUwMi8weXBhM0FWQ3d1 Z1h3Z0stYTNLQjZHblJlSmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAPBC2kLkyKiZvBbmXeEqa+JvZLfa6lIFPgGO/RW6qGr8cSB8ex+KIf 2DgieixNOAkeaxeJgnk1ba3P1MrCJe5wMmukze5vBmzFIjq0GtedHBw2KoqZ4D27 trO7ebj7q5n2whuBWDJnrnKKLcQcFQ9SHLJdKB6HYuoCCL+yFZqPG8Zxnxaqx3Fv 8Czd6WrGv7q9bnnBgzMVD06BJyLmC9WmRsToTc6lv6GtO14jmO/+U3b3SFRu6t8m fxJOxtUPuK7FgKliMRdX4n/pD/SONC/BFENq1BoITdotdJAPjoKwO39Tk7dFv4Gr XPVvYMBaWQc6NTMZnwMMC6tcBxyXYTdu -----END CERTIFICATE-----Generated at Tue Oct 28 01:31:01 2025 by rpki-client