$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft File: Y7ooHVb6T-blNbEl4W34AdEvgJk.mft (raw, json) Hash identifier: VR0yxrgWn2XJ07lLgjwJT1Bv5mVfKbTuTOGDH04pUqQ= Subject key identifier: B0:77:05:81:66:9A:3F:B6:FD:A3:ED:E1:4D:60:E9:B7:ED:DA:33:96 Authority key identifier: 63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 Certificate issuer: /CN=A91ECBD9/serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Certificate serial: DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft Manifest number: DD Signing time: Wed 05 Nov 2025 05:41:48 +0000 Manifest this update: Wed 05 Nov 2025 05:41:48 +0000 Manifest next update: Wed 12 Nov 2025 05:41:48 +0000 Files and hashes: 1: Y7ooHVb6T-blNbEl4W34AdEvgJk.crl (hash: YSrjenUjJC6On927PWppnxyry3q0NzwkBfQw5XTbu7o=) 2: 4E67247C681911EFA2640B43C4F9AE02.roa (hash: ucm8jiY7/TEfoe7vYt6Xy9WiiLrmTGt3Yko/V2TTwzI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:41:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECBD9, serialNumber=63BA281D56FA4FE6E535B125E16DF801D12F8099 Validity Not Before: Nov 5 05:41:48 2025 GMT Not After : Nov 12 05:41:48 2025 GMT Subject: CN=690ae39c-889b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:19:b8:ca:80:04:4e:4f:7c:c1:90:87:74:ac: f8:63:aa:e5:c0:7c:d8:f2:60:3d:8d:2a:d1:75:b5: 05:89:e3:61:d3:81:d6:2c:5c:e8:34:5f:66:58:1c: 33:c4:e4:1b:af:f3:c2:97:ff:6b:ca:7b:8d:ae:b0: 7f:e1:48:1d:46:56:a9:df:b8:67:48:19:b2:20:4d: dc:56:ab:19:49:aa:0f:72:32:3c:28:de:cc:04:da: 32:4c:05:94:02:0c:5a:2a:bf:6b:1c:e3:95:33:05: b7:be:82:a8:ab:a5:fd:1d:34:1b:69:6b:b0:3b:39: 7a:98:fd:b6:05:28:15:85:fb:ce:73:45:57:26:03: 1e:ab:31:44:af:da:be:c6:de:34:b2:38:e6:26:5c: 5f:68:db:54:94:3c:df:98:0b:6e:d5:8a:b3:d8:f3: 1f:f7:14:bc:2b:ba:2f:9e:d5:63:b5:b0:6c:06:8b: c3:42:58:6e:9a:2c:0c:ca:a2:eb:3f:2f:28:cd:54: df:65:df:7e:d7:ed:e6:76:55:40:62:61:a8:54:f9: 89:0c:c4:d6:db:56:6e:e2:93:6d:d7:5b:cd:53:2d: f2:d5:de:4d:b5:cb:91:61:b5:b9:c7:38:8c:fe:66: 37:0b:be:f0:47:b0:b4:ca:f6:1a:8f:ce:26:ef:cf: 09:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:77:05:81:66:9A:3F:B6:FD:A3:ED:E1:4D:60:E9:B7:ED:DA:33:96 X509v3 Authority Key Identifier: keyid:63:BA:28:1D:56:FA:4F:E6:E5:35:B1:25:E1:6D:F8:01:D1:2F:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y7ooHVb6T-blNbEl4W34AdEvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECBD9/E046B0B6681811EF9A53E918C4F9AE02/Y7ooHVb6T-blNbEl4W34AdEvgJk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 87:de:9e:cd:56:82:44:a6:ce:c1:de:75:9f:da:4d:da:cf:bc: 47:41:4b:5d:7e:0f:39:b4:3a:80:40:d1:32:8a:9d:49:a0:d5: 6c:d5:b0:3b:c0:cc:2e:60:82:c3:2b:17:d0:0d:b1:b4:00:44: 2e:17:b4:7d:60:d9:9f:af:7f:81:05:00:9e:f1:ca:dd:ca:3a: 59:fd:19:8a:76:e4:66:e8:6f:5d:9f:f3:25:19:32:f0:99:88: 67:e7:2a:8a:03:e7:67:6a:57:ad:3f:50:81:19:dc:93:82:97: 77:2a:35:9c:4c:8b:11:ec:87:86:77:0e:17:26:e3:1d:7f:90: 7b:15:7b:48:97:29:93:cf:3e:ab:35:a8:8d:36:2a:f6:0f:03: 07:04:a6:9e:96:a1:ba:4e:b0:b0:80:b2:04:81:9e:d5:30:0f: cf:bf:7f:49:5e:49:5d:6b:04:76:92:a1:85:77:60:dc:76:4a: 08:d6:00:1e:bd:93:ea:1d:28:a5:02:fb:12:e0:6e:6c:fd:07: ec:ca:b5:10:26:00:2a:aa:ea:da:c8:10:f9:f1:e6:30:49:ef: 82:24:b4:05:16:58:45:b2:d6:dc:b1:d6:c6:e2:61:18:b1:50: 21:38:c0:98:31:a9:de:97:8e:37:14:b9:c9:8a:60:ce:c8:ec: 5a:69:26:4f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNCRDkxMTAvBgNVBAUTKDYzQkEyODFENTZGQTRGRTZFNTM1QjEyNUUxNkRGODAx RDEyRjgwOTkwHhcNMjUxMTA1MDU0MTQ4WhcNMjUxMTEyMDU0MTQ4WjAYMRYwFAYD VQQDEw02OTBhZTM5Yy04ODliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBm4yoAETk98wZCHdKz4Y6rlwHzY8mA9jSrRdbUFieNh04HWLFzoNF9mWBwz xOQbr/PCl/9rynuNrrB/4UgdRlap37hnSBmyIE3cVqsZSaoPcjI8KN7MBNoyTAWU AgxaKr9rHOOVMwW3voKoq6X9HTQbaWuwOzl6mP22BSgVhfvOc0VXJgMeqzFEr9q+ xt40sjjmJlxfaNtUlDzfmAtu1Yqz2PMf9xS8K7ovntVjtbBsBovDQlhumiwMyqLr Py8ozVTfZd9+1+3mdlVAYmGoVPmJDMTW21Zu4pNt11vNUy3y1d5NtcuRYbW5xziM /mY3C77wR7C0yvYaj84m788JgwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLB3BYFm mj+2/aPt4U1g6bft2jOWMB8GA1UdIwQYMBaAFGO6KB1W+k/m5TWxJeFt+AHRL4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0JEOS9FMDQ2QjBCNjY4 MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQtYmxOYkVsNFczNEFkRXZn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1k3b29IVmI2VC1ibE5iRWw0VzM0QWRFdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF Q0JEOS9FMDQ2QjBCNjY4MTgxMUVGOUE1M0U5MThDNEY5QUUwMi9ZN29vSFZiNlQt YmxOYkVsNFczNEFkRXZnSmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCH3p7NVoJEps7B3nWf2k3az7xHQUtdfg85tDqAQNEyip1JoNVs1bA7 wMwuYILDKxfQDbG0AEQuF7R9YNmfr3+BBQCe8crdyjpZ/RmKduRm6G9dn/MlGTLw mYhn5yqKA+dnaletP1CBGdyTgpd3KjWcTIsR7IeGdw4XJuMdf5B7FXtIlymTzz6r NaiNNir2DwMHBKaelqG6TrCwgLIEgZ7VMA/Pv39JXkldawR2kqGFd2DcdkoI1gAe vZPqHSilAvsS4G5s/QfsyrUQJgAqqurayBD58eYwSe+CJLQFFlhFstbcsdbG4mEY sVAhOMCYManel443FLnJimDOyOxaaSZP -----END CERTIFICATE-----Generated at Wed Nov 5 11:37:39 2025 by rpki-client