$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft File: yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft (raw, json) Hash identifier: A+VfkyJG0Z3R0gzgYdZLDErS1fiFKEi+/TS6qOPTEcw= Subject key identifier: 45:89:F7:D9:01:3E:C8:EC:C1:7C:10:F9:18:7B:AD:5B:E0:42:60:B4 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 061A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft Manifest number: 05FE Signing time: Sun 02 Nov 2025 22:59:49 +0000 Manifest this update: Sun 02 Nov 2025 22:59:49 +0000 Manifest next update: Sun 09 Nov 2025 22:59:49 +0000 Files and hashes: 1: yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl (hash: q6S99QgmZsmAlJlw1BMMii9kTshNiZguVv8cnVOerrM=) 2: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (hash: b5uDJzQg7fsmYh3ElST7vyFH7ynXatbdm3FZHCbVe+4=) 3: 3003C4BA7C7711EEB9E0BE15C4F9AE02.roa (hash: vtLAm7IVt53zIg8Nc5apkEjvAOJhd3yNQjgM+aQMRxs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1562 (0x61a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Nov 2 22:59:49 2025 GMT Not After : Nov 9 22:59:49 2025 GMT Subject: CN=6907e265-975b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:91:2f:43:41:ce:a7:09:a3:9d:68:dd:d9:7a: 75:d3:22:38:f6:20:2b:97:1d:55:5d:a6:51:a2:94: fe:a9:57:73:08:4c:eb:62:5b:56:a9:34:d4:2d:44: 87:f7:e8:66:2b:df:a5:86:c4:69:2f:cd:7b:52:53: d1:5d:c5:58:fa:29:4e:1b:5e:d8:67:58:9d:28:17: 4e:44:58:6c:43:a7:bd:71:ec:c7:e8:f0:26:a4:4b: 07:a3:b6:8c:d2:9d:d0:e1:98:c9:ee:fa:4c:d5:56: 14:9a:d1:0a:29:fc:64:fe:34:70:35:f8:49:cb:79: 8d:d9:9b:17:6a:1f:e3:ba:5b:8c:52:c4:ba:cf:ee: 1b:a5:5e:50:7a:4c:87:44:4a:76:c8:f1:9f:8f:2e: 94:4c:52:48:d0:04:f9:01:42:98:4f:bd:df:bf:e9: 8d:9c:d5:f6:f4:3b:d9:57:6d:e2:e1:73:69:d9:84: 69:1d:36:2b:d7:a8:59:72:45:a1:20:f5:09:d7:1f: ef:52:cb:ba:e7:78:46:f6:1e:25:39:0b:66:83:81: 41:74:5c:85:01:30:3c:3e:1e:f7:44:7d:f1:c1:a4: cd:e8:d9:d8:2c:39:a5:c5:05:87:03:80:dc:a1:04: 98:e4:86:00:05:3a:ce:d0:62:41:53:f4:42:db:b9: cd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:89:F7:D9:01:3E:C8:EC:C1:7C:10:F9:18:7B:AD:5B:E0:42:60:B4 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:12:6c:8d:04:58:4d:20:12:ff:46:c6:ef:2d:9c:a0:6a:db: f6:5d:aa:1a:34:93:d6:ba:29:10:23:da:d7:2c:e5:31:df:fe: 5d:8e:a8:85:6e:24:a1:92:04:e2:f5:70:c1:42:10:ec:29:24: 40:16:67:85:69:97:03:52:12:c0:9c:1f:a3:ff:38:06:9f:9d: 0c:db:45:70:02:8b:20:f9:c1:41:d9:df:dc:a2:2a:b1:32:db: 26:43:35:5b:61:63:74:44:23:25:8f:1a:dc:59:52:9e:82:05: 4d:54:ff:82:1a:18:e9:85:c6:bb:0e:f1:7f:42:de:9c:c6:96: 0b:27:72:e5:1b:83:78:4a:f1:27:76:d0:35:64:8d:ea:1c:0f: 77:79:46:c8:38:31:0c:36:49:21:21:32:c2:8b:b4:da:ec:e3: 09:12:df:05:f5:49:4c:14:c3:37:c5:e4:4c:98:15:7b:2d:82: 63:19:0e:2d:3f:04:31:79:0c:ad:9d:4b:aa:3b:86:48:09:b6: cd:37:c6:7a:b9:27:80:72:cc:24:89:1f:8d:41:36:11:86:38: d0:6d:8d:3f:db:f0:e8:b3:dc:2c:c0:5e:8f:c5:26:fc:59:2e: 36:a7:04:e0:cc:67:c7:52:8c:2c:76:63:a0:e8:1d:d0:5c:42: d7:dd:eb:c9 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUxMTAyMjI1OTQ5WhcNMjUxMTA5MjI1OTQ5WjAYMRYwFAYD VQQDEw02OTA3ZTI2NS05NzViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA25EvQ0HOpwmjnWjd2Xp10yI49iArlx1VXaZRopT+qVdzCEzrYltWqTTULUSH 9+hmK9+lhsRpL817UlPRXcVY+ilOG17YZ1idKBdORFhsQ6e9cezH6PAmpEsHo7aM 0p3Q4ZjJ7vpM1VYUmtEKKfxk/jRwNfhJy3mN2ZsXah/juluMUsS6z+4bpV5QekyH REp2yPGfjy6UTFJI0AT5AUKYT73fv+mNnNX29DvZV23i4XNp2YRpHTYr16hZckWh IPUJ1x/vUsu653hG9h4lOQtmg4FBdFyFATA8Ph73RH3xwaTN6NnYLDmlxQWHA4Dc oQSY5IYABTrO0GJBU/RC27nNUwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEWJ99kB PsjswXwQ+Rh7rVvgQmC0MB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEQzRC9CMDIwMkQzMkQ4QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1Vm LUs3ZURlRERZSDdybVA5d0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQALEmyNBFhNIBL/RsbvLZygatv2XaoaNJPWuikQI9rXLOUx3/5djqiF biShkgTi9XDBQhDsKSRAFmeFaZcDUhLAnB+j/zgGn50M20VwAosg+cFB2d/coiqx MtsmQzVbYWN0RCMljxrcWVKeggVNVP+CGhjphca7DvF/Qt6cxpYLJ3LlG4N4SvEn dtA1ZI3qHA93eUbIODEMNkkhITLCi7Ta7OMJEt8F9UlMFMM3xeRMmBV7LYJjGQ4t PwQxeQytnUuqO4ZICbbNN8Z6uSeAcswkiR+NQTYRhjjQbY0/2/Dos9wswF6PxSb8 WS42pwTgzGfHUowsdmOg6B3QXELX3evJ -----END CERTIFICATE-----Generated at Tue Nov 4 22:22:35 2025 by rpki-client