$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft File: _RYHGGNz6B9E0TeyoOlpV-YquKE.mft (raw, json) Hash identifier: vD32LGs10qFgIEE1/F/gmZgcuhY/zWg4JA6/IRZrl8o= Subject key identifier: 09:B4:56:5C:7D:06:17:86:EC:9B:72:B2:79:E5:27:04:66:69:F7:69 Authority key identifier: FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 Certificate issuer: /CN=A91EA958/serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Certificate serial: 3514 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft Manifest number: 34F4 Signing time: Wed 22 Oct 2025 03:49:11 +0000 Manifest this update: Wed 22 Oct 2025 03:49:09 +0000 Manifest next update: Wed 29 Oct 2025 03:49:09 +0000 Files and hashes: 1: _RYHGGNz6B9E0TeyoOlpV-YquKE.crl (hash: 16AXZXsIKx0zQl/BcK3cvthZj+vdfpl5erBAbJVrzKI=) 2: 5A7BB752BD2F11EBB84EE532C4F9AE02.roa (hash: LB+KlOsPvF4imD5dH4Y/7ETYXLpR1TopuFn08dtZ6UQ=) 3: D347187A7E9511ECA9132A0BC4F9AE02.roa (hash: kxrZR2YgejKdZw2KSRqTPBaBWQsbx9P5F4vQ2qVIgKA=) 4: 59F4A758BD2F11EBB84EE532C4F9AE02.roa (hash: uAMH22czrWhCVXR1Yh4Gb924YIN0PWuUVG5CCQ0T0QI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 03:49:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13588 (0x3514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=FD1607186373E81F44D137B2A0E96957E62AB8A1 Validity Not Before: Oct 22 03:49:09 2025 GMT Not After : Oct 29 03:49:09 2025 GMT Subject: CN=68f85436-3817 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:56:91:90:ec:af:f6:5a:8a:f5:e4:c3:87:eb: 39:65:3f:fd:fd:5c:c1:4f:8c:83:e5:97:e8:95:7d: 49:2f:bb:07:53:e1:95:1a:c8:fc:1e:6f:e4:be:8b: 44:16:07:6a:74:39:38:b4:98:b9:ec:e0:9b:c8:d7: 23:62:b9:34:ed:cc:e6:30:f9:57:0e:ab:a6:ee:3d: 53:c7:1d:82:0e:da:b0:fc:ad:70:b8:a8:0d:b4:51: 7b:42:e0:e6:b8:ce:42:42:92:7e:98:fa:e9:cd:fd: 41:49:17:a4:36:80:4a:6a:be:c0:42:0f:75:13:bd: 26:3e:e7:dd:37:6f:ee:6a:b0:b8:6c:85:48:b4:04: 46:00:77:65:0d:0c:db:67:f0:25:6a:be:1c:ee:eb: 32:db:5d:10:73:9e:c0:a6:ae:c7:7e:11:03:fa:c9: 73:5f:8a:ad:6e:7c:a0:f0:43:2b:23:aa:94:57:4f: f2:5e:89:63:90:19:ef:8e:cc:10:78:33:5b:36:1e: 6f:18:25:69:a6:14:2e:50:1e:f9:3f:dd:35:25:52: e9:ea:b2:61:0f:80:8e:c8:f8:07:57:eb:5d:77:2e: 39:fd:e9:7d:6b:42:21:51:0e:c8:53:bd:e4:8e:54: eb:8b:62:b6:8c:0f:66:ee:75:fb:89:56:40:aa:68: b5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B4:56:5C:7D:06:17:86:EC:9B:72:B2:79:E5:27:04:66:69:F7:69 X509v3 Authority Key Identifier: keyid:FD:16:07:18:63:73:E8:1F:44:D1:37:B2:A0:E9:69:57:E6:2A:B8:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_RYHGGNz6B9E0TeyoOlpV-YquKE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/5AE197F41D9F11E2BCBFF78F08B02CD2/_RYHGGNz6B9E0TeyoOlpV-YquKE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:2d:47:a8:34:fd:d9:74:fb:4f:07:81:7f:36:ee:a8:1d:bb: 5a:f2:7d:8b:c5:e6:17:cb:fe:e8:6e:f4:ce:a0:82:d8:20:8d: 4e:0b:e3:8e:77:23:01:36:19:dc:00:6e:fb:94:17:01:a2:1a: 22:fb:9b:8e:50:1b:82:95:8d:16:0b:03:5f:05:de:07:f8:01: 0e:55:b1:62:f3:06:8a:e1:8c:9a:d0:28:89:75:d9:d8:c2:19: 26:fc:ad:6d:eb:42:78:eb:71:c1:74:81:6b:cb:2f:b4:32:38: b0:33:6a:85:3a:c7:c0:8f:12:a5:83:41:67:3b:66:cf:02:a9: d1:92:a5:c5:ae:2b:de:7e:d8:f1:7a:66:76:0a:c1:5d:3d:26: 0f:eb:4b:e7:9f:17:50:5d:04:d5:f5:38:97:a1:c5:c6:09:6c: 4f:d7:f5:9a:0b:f7:c3:5c:10:f4:7a:4b:44:42:b6:e2:62:28: 0a:3e:ae:a7:2b:83:8f:0f:84:97:ad:ea:95:9a:f1:2b:d1:69: 0d:d6:04:85:d0:5b:8b:f8:ed:82:3c:e2:d8:d5:2e:5a:0b:44: 8b:fd:ac:6a:a0:82:6c:ef:8c:d8:f7:6f:c0:0f:03:d5:8e:c5: e2:c2:58:09:a1:90:1c:33:fd:d2:1c:2a:6f:72:8a:8b:2c:c2: 5a:32:84:e6 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKEZEMTYwNzE4NjM3M0U4MUY0NEQxMzdCMkEwRTk2OTU3 RTYyQUI4QTEwHhcNMjUxMDIyMDM0OTA5WhcNMjUxMDI5MDM0OTA5WjAYMRYwFAYD VQQDEw02OGY4NTQzNi0zODE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1aRkOyv9lqK9eTDh+s5ZT/9/VzBT4yD5ZfolX1JL7sHU+GVGsj8Hm/kvotE FgdqdDk4tJi57OCbyNcjYrk07czmMPlXDqum7j1Txx2CDtqw/K1wuKgNtFF7QuDm uM5CQpJ+mPrpzf1BSRekNoBKar7AQg91E70mPufdN2/uarC4bIVItARGAHdlDQzb Z/Alar4c7usy210Qc57Apq7HfhED+slzX4qtbnyg8EMrI6qUV0/yXoljkBnvjswQ eDNbNh5vGCVpphQuUB75P901JVLp6rJhD4COyPgHV+tddy45/el9a0IhUQ7IU73k jlTri2K2jA9m7nX7iVZAqmi1oQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAm0Vlx9 BheG7JtysnnlJwRmafdpMB8GA1UdIwQYMBaAFP0WBxhjc+gfRNE3sqDpaVfmKrih MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC81QUUxOTdGNDFE OUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZCOUUwVGV5b09scFYtWXF1 S0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19SWUhHR056NkI5RTBUZXlvT2xwVi1ZcXVLRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTk1OC81QUUxOTdGNDFEOUYxMUUyQkNCRkY3OEYwOEIwMkNEMi9fUllIR0dOejZC OUUwVGV5b09scFYtWXF1S0UubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCHLUeoNP3ZdPtPB4F/Nu6oHbta8n2LxeYXy/7obvTOoILYII1OC+OO dyMBNhncAG77lBcBohoi+5uOUBuClY0WCwNfBd4H+AEOVbFi8waK4Yya0CiJddnY whkm/K1t60J463HBdIFryy+0MjiwM2qFOsfAjxKlg0FnO2bPAqnRkqXFriveftjx emZ2CsFdPSYP60vnnxdQXQTV9TiXocXGCWxP1/WaC/fDXBD0ektEQrbiYigKPq6n K4OPD4SXreqVmvEr0WkN1gSF0FuL+O2CPOLY1S5aC0SL/axqoIJs74zY92/ADwPV jsXiwlgJoZAcM/3SHCpvcoqLLMJaMoTm -----END CERTIFICATE-----Generated at Wed Oct 22 10:49:06 2025 by rpki-client