$ rpki-client -vvf rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft File: Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft (raw, json) Hash identifier: IqVhiam/V0/YkeoDEzVcvyfcM9aBhQC5fkYcl97fY8Y= Subject key identifier: 09:CA:29:FF:D1:D4:C3:B4:B1:7D:28:5B:A9:B6:9B:4F:E7:21:A8:FE Authority key identifier: 63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E Certificate issuer: /CN=A91F7315/serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Certificate serial: 0BAA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft Manifest number: 1453 Signing time: Sun 02 Nov 2025 18:56:51 +0000 Manifest this update: Sun 02 Nov 2025 18:56:51 +0000 Manifest next update: Sun 09 Nov 2025 18:56:51 +0000 Files and hashes: 1: Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl (hash: 8wIiNUekFViLNVQyu3IpQT4lfaqIwi52arNbWhXtxB8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:56:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F7315, serialNumber=63EBA48502511340B825261D5EC20A9127AF295E Validity Not Before: Nov 2 18:56:51 2025 GMT Not After : Nov 9 18:56:51 2025 GMT Subject: CN=6907a973-0d97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:61:c4:ce:67:44:40:d0:df:54:c7:f6:4f:be: a1:f4:81:b3:ad:c7:c9:1d:6e:ee:f9:5c:a7:37:97: 61:4e:f1:fb:1b:0b:63:a8:c0:34:44:3b:b8:15:4e: 8c:f4:1f:5f:7d:05:82:a8:fe:e0:a0:37:ea:70:f7: db:4a:0e:68:7a:f2:d2:bb:57:d6:21:5a:03:03:f7: 05:d1:60:47:46:ea:a7:d5:8b:0e:ac:f7:ef:53:2d: b2:0c:7c:d4:28:26:5a:ac:f5:2c:bc:f2:2f:6e:fd: 45:21:03:bb:37:34:24:2d:3f:69:a1:e5:97:14:e7: bd:8f:61:53:f7:08:59:6c:0d:80:13:83:2e:10:88: 52:8a:95:6d:97:92:d9:88:2f:63:27:fa:61:85:8f: ab:e4:30:b4:71:8d:db:f0:06:b7:8c:78:57:15:50: f0:08:16:d2:3f:db:ac:b2:5b:f8:67:ae:ca:bb:81: 9e:36:12:47:fa:d6:b4:ab:1e:30:b1:8e:45:52:c9: 62:2e:8e:d1:4b:b6:c3:50:62:71:b8:ea:8a:7d:48: b8:f3:fb:fd:1b:83:2a:a8:69:f0:0b:0f:7e:62:c1: 5a:00:80:67:8b:bb:7e:37:ad:4f:fc:4c:3c:1d:68: 84:2d:dc:50:a5:69:0c:7f:ba:90:4b:ae:02:8a:fc: 05:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:CA:29:FF:D1:D4:C3:B4:B1:7D:28:5B:A9:B6:9B:4F:E7:21:A8:FE X509v3 Authority Key Identifier: keyid:63:EB:A4:85:02:51:13:40:B8:25:26:1D:5E:C2:0A:91:27:AF:29:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-ukhQJRE0C4JSYdXsIKkSevKV4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F7315/8206F83232E211EA99A43E64C4F9AE02/Y-ukhQJRE0C4JSYdXsIKkSevKV4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:a9:ec:f4:84:a6:fb:30:d1:0a:fc:b6:7e:79:f1:41:46:c6: d3:f0:57:31:2f:ac:5c:b9:6a:f4:3a:64:37:4f:dc:f0:3d:53: 8c:d2:d7:35:27:d7:57:c7:73:43:90:2e:b7:85:07:98:09:96: 43:b2:51:ec:00:4f:69:b2:2a:7f:04:0d:57:34:bb:17:c9:eb: 66:87:0d:d8:d1:e8:56:c7:e0:d0:fb:c1:05:b6:a1:46:63:73: 6a:5e:74:6a:b0:7a:80:6f:a9:4d:21:58:92:94:9b:14:29:ad: df:03:00:b8:d3:6b:8e:e1:6e:11:9a:ac:f1:01:07:83:e1:37: f8:1e:c7:3f:cc:1a:16:76:48:19:ac:92:59:cb:12:41:ea:27: 86:c7:07:09:c3:ee:b8:6e:fc:78:6e:94:26:11:f6:7c:10:50: cb:42:8d:0c:f3:fb:5a:b8:6b:61:18:9e:75:a8:f8:5e:32:3a: 99:e7:5c:bb:51:42:6e:6b:51:58:7b:fa:a7:28:1c:64:9b:fc: ca:f4:74:12:3e:12:e1:6a:8f:d7:ea:da:38:2b:be:44:25:e2: 08:87:be:7c:1c:31:89:d5:e3:c7:fb:67:84:54:20:98:26:71: b7:71:6f:39:57:5e:1c:d2:64:0f:9b:b3:62:80:ad:60:b3:8b: e8:a6:f4:a0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC6owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMTUxMTAvBgNVBAUTKDYzRUJBNDg1MDI1MTEzNDBCODI1MjYxRDVFQzIwQTkx MjdBRjI5NUUwHhcNMjUxMTAyMTg1NjUxWhcNMjUxMTA5MTg1NjUxWjAYMRYwFAYD VQQDEw02OTA3YTk3My0wZDk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxWHEzmdEQNDfVMf2T76h9IGzrcfJHW7u+VynN5dhTvH7GwtjqMA0RDu4FU6M 9B9ffQWCqP7goDfqcPfbSg5oevLSu1fWIVoDA/cF0WBHRuqn1YsOrPfvUy2yDHzU KCZarPUsvPIvbv1FIQO7NzQkLT9poeWXFOe9j2FT9whZbA2AE4MuEIhSipVtl5LZ iC9jJ/phhY+r5DC0cY3b8Aa3jHhXFVDwCBbSP9usslv4Z67Ku4GeNhJH+ta0qx4w sY5FUsliLo7RS7bDUGJxuOqKfUi48/v9G4MqqGnwCw9+YsFaAIBni7t+N61P/Ew8 HWiELdxQpWkMf7qQS64CivwFlQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAnKKf/R 1MO0sX0oW6m2m0/nIaj+MB8GA1UdIwQYMBaAFGPrpIUCURNAuCUmHV7CCpEnryle MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxNS84MjA2RjgzMjMy RTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUwQzRKU1lkWHNJS2tTZXZL VjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktdWtoUUpSRTBDNEpTWWRYc0lLa1NldktWNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NzMxNS84MjA2RjgzMjMyRTIxMUVBOTlBNDNFNjRDNEY5QUUwMi9ZLXVraFFKUkUw QzRKU1lkWHNJS2tTZXZLVjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQApqez0hKb7MNEK/LZ+efFBRsbT8FcxL6xcuWr0OmQ3T9zwPVOM0tc1 J9dXx3NDkC63hQeYCZZDslHsAE9psip/BA1XNLsXyetmhw3Y0ehWx+DQ+8EFtqFG Y3NqXnRqsHqAb6lNIViSlJsUKa3fAwC402uO4W4RmqzxAQeD4Tf4Hsc/zBoWdkgZ rJJZyxJB6ieGxwcJw+64bvx4bpQmEfZ8EFDLQo0M8/tauGthGJ51qPheMjqZ51y7 UUJua1FYe/qnKBxkm/zK9HQSPhLhao/X6to4K75EJeIIh758HDGJ1ePH+2eEVCCY JnG3cW85V14c0mQPm7NigK1gs4vopvSg -----END CERTIFICATE-----Generated at Mon Nov 3 18:19:34 2025 by rpki-client