$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft File: YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft (raw, json) Hash identifier: PFJ22fzfOlbEPh3NfrMtonLy7QjRllRg85x72OoGSP8= Subject key identifier: E0:16:5B:81:52:FD:37:16:6D:6A:93:B7:D4:56:B9:20:69:9A:B3:38 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 01DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft Manifest number: 01D9 Signing time: Mon 03 Nov 2025 02:42:52 +0000 Manifest this update: Mon 03 Nov 2025 02:42:52 +0000 Manifest next update: Mon 10 Nov 2025 02:42:52 +0000 Files and hashes: 1: YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl (hash: dWT8UH7iaEFkpn8QF1oWEdKTI5V5cZYT0BsxhKoWcNA=) 2: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (hash: b95mpJ4EM9DYq2FEBTGRF8becbveDJsLEHAflxFwbco=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 476 (0x1dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08, serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Nov 3 02:42:52 2025 GMT Not After : Nov 10 02:42:52 2025 GMT Subject: CN=690816ac-e3fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ce:d9:b1:7a:30:fc:de:72:99:20:ab:84:c1: f9:96:c2:28:f1:55:4e:f9:c0:06:3e:62:df:5f:78: 35:da:60:de:2a:3b:57:16:89:6b:69:e3:a0:6e:98: 67:e7:2a:f2:40:53:7d:da:15:c2:82:95:20:36:2e: 6d:71:3f:a8:57:5f:55:19:e7:52:b5:3e:8a:5c:f5: d3:6a:21:a3:ab:55:2f:f6:8b:38:c3:e3:31:7f:e3: 2e:28:aa:fc:78:a5:06:b6:a0:59:11:8e:2a:1e:32: c0:e7:98:fd:d1:bd:9a:00:7d:31:d6:09:ae:a7:6e: 58:6f:50:37:66:2a:c5:aa:16:ef:e0:5b:8c:ac:be: 98:de:0c:1f:2e:d8:2e:58:b9:2c:f8:c1:fa:8c:bf: 94:fc:e9:fe:af:d2:d9:37:77:6a:f4:c7:7b:a7:fe: b3:a9:59:c7:d8:9b:ef:1c:79:c8:a2:c2:c2:44:52: b3:81:a7:92:cf:fb:21:2d:27:05:f1:7d:ce:19:f6: c0:88:73:75:e5:0d:0a:af:03:dc:85:bc:76:33:76: a3:3b:2c:09:bd:33:bc:fa:54:c6:55:3f:97:44:24: a3:e0:04:9b:46:93:67:d1:81:dc:91:4a:81:b1:45: 54:ca:78:d8:d4:e3:24:de:ef:83:18:90:e5:3e:02: 90:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:16:5B:81:52:FD:37:16:6D:6A:93:B7:D4:56:B9:20:69:9A:B3:38 X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:4c:a6:5a:66:bd:19:24:e9:3b:46:e3:5d:6d:ba:b5:5a:31: a3:15:01:9e:e2:21:10:19:49:9a:d7:7d:58:6d:28:16:ea:4b: c5:40:47:fe:44:93:ab:89:ef:a1:77:2c:ce:a4:be:25:80:e1: 29:9a:da:9c:0c:a4:2f:01:e2:a0:e5:06:8e:cd:f7:11:bf:75: 16:02:2a:6f:36:eb:b4:88:e2:cf:18:3e:58:5f:71:5c:f5:b8: f1:0d:5e:40:bc:0b:9c:6d:36:b5:19:38:4e:5f:00:08:34:48: 84:02:f8:44:65:eb:46:03:54:d9:63:74:a5:8b:7a:23:1c:fa: c7:b2:e7:40:e4:d1:44:91:09:40:ba:03:1e:9d:19:e5:c7:1c: 5d:89:d9:c9:58:d9:62:4d:66:f1:d8:35:9f:7a:66:9f:4a:54: 8e:fa:41:7b:fe:de:e6:88:89:de:0d:b2:46:a2:9a:0d:b1:cd: 6e:7e:e2:0c:9c:7c:87:83:48:f2:f9:12:19:48:bf:75:70:8e: 3d:52:e4:10:b3:0f:04:77:99:a2:f1:2a:85:16:ff:17:74:ff: 4a:7a:26:c0:33:5d:b4:a6:a0:70:15:d0:2d:8f:5a:d7:4d:89: d3:d2:8d:3d:2b:c9:5b:65:0d:5f:28:b8:e9:ef:f0:49:a8:31: 09:17:87:a7 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTVBMDgxMTAvBgNVBAUTKDYwMDZCOTY1ODMxM0Q4NjQ5OTE2MTlENjk3OUIwRjdF MDFFNEI2NjgwHhcNMjUxMTAzMDI0MjUyWhcNMjUxMTEwMDI0MjUyWjAYMRYwFAYD VQQDEw02OTA4MTZhYy1lM2ZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6M7ZsXow/N5ymSCrhMH5lsIo8VVO+cAGPmLfX3g12mDeKjtXFolraeOgbphn 5yryQFN92hXCgpUgNi5tcT+oV19VGedStT6KXPXTaiGjq1Uv9os4w+Mxf+MuKKr8 eKUGtqBZEY4qHjLA55j90b2aAH0x1gmup25Yb1A3ZirFqhbv4FuMrL6Y3gwfLtgu WLks+MH6jL+U/On+r9LZN3dq9Md7p/6zqVnH2JvvHHnIosLCRFKzgaeSz/shLScF 8X3OGfbAiHN15Q0KrwPchbx2M3ajOywJvTO8+lTGVT+XRCSj4ASbRpNn0YHckUqB sUVUynjY1OMk3u+DGJDlPgKQcQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOAWW4FS /TcWbWqTt9RWuSBpmrM4MB8GA1UdIwQYMBaAFGAGuWWDE9hkmRYZ1pebD34B5LZo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNUEwOC9CMDYwQ0M1NEUy NjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJHU1pGaG5XbDVzUGZnSGt0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3RtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9ZQWE1WllNVDJH U1pGaG5XbDVzUGZnSGt0bWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA0TKZaZr0ZJOk7RuNdbbq1WjGjFQGe4iEQGUma131YbSgW6kvFQEf+ RJOrie+hdyzOpL4lgOEpmtqcDKQvAeKg5QaOzfcRv3UWAipvNuu0iOLPGD5YX3Fc 9bjxDV5AvAucbTa1GThOXwAINEiEAvhEZetGA1TZY3Sli3ojHPrHsudA5NFEkQlA ugMenRnlxxxdidnJWNliTWbx2DWfemafSlSO+kF7/t7miIneDbJGopoNsc1ufuIM nHyHg0jy+RIZSL91cI49UuQQsw8Ed5mi8SqFFv8XdP9KeibAM120pqBwFdAtj1rX TYnT0o09K8lbZQ1fKLjp7/BJqDEJF4en -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:14 2025 by rpki-client