$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft File: y1IFTj13aOoWtrColMdzon3qkho.mft (raw, json) Hash identifier: 4N+zlwchW+oulKUzG9gfFwIS1nKj1osqduPMFYOfz0s= Subject key identifier: 37:AA:85:6C:2D:EB:7B:D9:2C:7F:00:EE:09:2B:41:84:50:91:D5:E9 Authority key identifier: CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A Certificate issuer: /CN=A91EB6AC/serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Certificate serial: 0C4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft Manifest number: 0C40 Signing time: Sun 02 Nov 2025 18:38:36 +0000 Manifest this update: Sun 02 Nov 2025 18:38:35 +0000 Manifest next update: Sun 09 Nov 2025 18:38:35 +0000 Files and hashes: 1: y1IFTj13aOoWtrColMdzon3qkho.crl (hash: Wxld5WYLLCJgJ+CbGdlLo8ajPdoNeqs/tW7ZVFfLBok=) 2: 12D352766D2911F0B26CB33BC4F9AE02.roa (hash: d+PNEJYkgwfN/EWh9YAvK3NrsnGHrIa0Ji1QGqGUhS8=) 3: 9DA63F546D2811F09647053BC4F9AE02.roa (hash: 3gAyCRS9eTrSpT6uGMaC2W//L+1mB9VyFAfUFmHY1AA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:38:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3146 (0xc4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB6AC, serialNumber=CB52054E3D7768EA16B6B0A894C773A27DEA921A Validity Not Before: Nov 2 18:38:35 2025 GMT Not After : Nov 9 18:38:35 2025 GMT Subject: CN=6907a52c-43c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:87:bd:1d:05:ae:4f:75:4c:82:8f:89:65:c5: f8:3d:6a:71:a0:64:9e:0e:2f:d7:39:c3:1c:56:71: 12:4c:4b:54:31:09:3d:4c:99:53:47:f6:90:34:da: ea:39:9a:70:4a:7c:18:fe:19:2c:8f:4b:f6:71:bf: e0:87:f1:22:f8:64:31:9a:c3:1e:8f:e8:99:c2:25: 86:ba:cd:5b:4e:88:92:e6:11:95:77:a3:1f:6f:ed: 91:25:2e:36:f8:b3:12:4b:4f:5d:68:30:0d:5d:f4: 9f:a4:25:bb:74:27:b5:f2:15:af:62:05:0a:91:92: aa:a4:70:10:07:97:92:fe:18:ea:6e:30:3d:5f:f5: 9b:c2:b7:d1:c3:6e:1f:f6:d8:69:85:f8:0a:05:f8: a7:3e:6e:75:f4:fe:fa:ad:26:82:8a:5e:1f:ff:fa: 63:6d:8b:1b:5d:70:38:54:32:c2:d0:05:54:07:51: 73:09:30:69:b9:ab:37:aa:a2:ea:c0:03:58:5c:87: 85:91:a3:d8:66:80:f0:c9:04:00:f2:ab:c4:a0:a2: 73:6c:f7:4e:1d:0d:dc:63:46:eb:92:82:43:6d:3f: e4:01:54:bf:f4:39:15:de:c9:c8:9b:e0:98:b8:5a: 36:ca:8f:5a:d7:1d:eb:83:2c:ed:f8:4e:10:f9:d4: cf:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:AA:85:6C:2D:EB:7B:D9:2C:7F:00:EE:09:2B:41:84:50:91:D5:E9 X509v3 Authority Key Identifier: keyid:CB:52:05:4E:3D:77:68:EA:16:B6:B0:A8:94:C7:73:A2:7D:EA:92:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y1IFTj13aOoWtrColMdzon3qkho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB6AC/D7E98A6E15D011EA93CA0E19C4F9AE02/y1IFTj13aOoWtrColMdzon3qkho.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d9:f8:a4:7e:a0:b0:db:81:b0:c3:e7:d1:e7:4f:77:ac:11:32: e9:20:b9:90:36:09:ab:ef:55:b3:8c:f3:b9:44:c7:3f:84:20: ae:77:1e:3b:5f:fc:6b:16:d1:de:02:48:63:09:91:8c:bf:80: 69:bb:af:08:ed:c3:74:b0:f2:3d:7a:d2:2d:c9:b5:af:7b:cf: 4f:c6:66:22:68:bd:ba:3e:d5:90:91:ce:e3:6d:4b:53:b0:59: 1a:d4:fe:4d:63:ba:ec:98:61:f1:2d:1b:42:58:7a:55:2b:17: 17:40:46:c3:d0:49:7e:4a:14:9d:26:9c:d1:a6:57:48:72:14: 60:31:09:6f:69:1a:39:6a:52:df:78:80:81:5c:a6:25:4a:1c: b9:4c:05:45:e5:b6:c7:8c:66:85:07:c7:11:43:e0:2a:04:31: 9f:66:98:a0:cf:3a:a3:66:32:4f:67:54:40:03:ea:45:d2:ac: 1a:d0:06:7c:77:b8:e8:c3:4f:e2:1d:fe:eb:84:d4:30:b3:fc: d6:c1:53:31:4a:4a:99:76:e0:4c:fa:05:52:16:68:b9:d4:cc: a6:45:00:88:9c:50:db:01:70:6e:aa:d2:0a:e3:4f:1c:ed:0c: af:7b:8a:54:28:35:de:70:dd:6c:41:8f:ab:a9:b0:cc:d1:12: e5:4b:67:7e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDEowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI2QUMxMTAvBgNVBAUTKENCNTIwNTRFM0Q3NzY4RUExNkI2QjBBODk0Qzc3M0Ey N0RFQTkyMUEwHhcNMjUxMTAyMTgzODM1WhcNMjUxMTA5MTgzODM1WjAYMRYwFAYD VQQDEw02OTA3YTUyYy00M2M5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtYe9HQWuT3VMgo+JZcX4PWpxoGSeDi/XOcMcVnESTEtUMQk9TJlTR/aQNNrq OZpwSnwY/hksj0v2cb/gh/Ei+GQxmsMej+iZwiWGus1bToiS5hGVd6Mfb+2RJS42 +LMSS09daDANXfSfpCW7dCe18hWvYgUKkZKqpHAQB5eS/hjqbjA9X/WbwrfRw24f 9thphfgKBfinPm519P76rSaCil4f//pjbYsbXXA4VDLC0AVUB1FzCTBpuas3qqLq wANYXIeFkaPYZoDwyQQA8qvEoKJzbPdOHQ3cY0brkoJDbT/kAVS/9DkV3snIm+CY uFo2yo9a1x3rgyzt+E4Q+dTP5QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDeqhWwt 63vZLH8A7gkrQYRQkdXpMB8GA1UdIwQYMBaAFMtSBU49d2jqFrawqJTHc6J96pIa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjZBQy9EN0U5OEE2RTE1 RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FPb1d0ckNvbE1kem9uM3Fr aG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3kxSUZUajEzYU9vV3RyQ29sTWR6b24zcWtoby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjZBQy9EN0U5OEE2RTE1RDAxMUVBOTNDQTBFMTlDNEY5QUUwMi95MUlGVGoxM2FP b1d0ckNvbE1kem9uM3FraG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDZ+KR+oLDbgbDD59HnT3esETLpILmQNgmr71WzjPO5RMc/hCCudx47 X/xrFtHeAkhjCZGMv4Bpu68I7cN0sPI9etItybWve89PxmYiaL26PtWQkc7jbUtT sFka1P5NY7rsmGHxLRtCWHpVKxcXQEbD0El+ShSdJpzRpldIchRgMQlvaRo5alLf eICBXKYlShy5TAVF5bbHjGaFB8cRQ+AqBDGfZpigzzqjZjJPZ1RAA+pF0qwa0AZ8 d7jow0/iHf7rhNQws/zWwVMxSkqZduBM+gVSFmi51MymRQCInFDbAXBuqtIK408c 7Qyve4pUKDXecN1sQY+rqbDM0RLlS2d+ -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:11 2025 by rpki-client