$ rpki-client -vvf rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft File: sYTDX2rtv7hd2kET8nUuDInKOpA.mft (raw, json) Hash identifier: 6asTVwwEWE9QC9a6x4gWfe0HWGW4TMF/XM8yXRBVpGU= Subject key identifier: E9:90:CD:7D:79:D4:F6:82:F9:D4:4D:CA:7B:09:46:F2:30:DC:2D:22 Authority key identifier: B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 Certificate issuer: /CN=A91F88F4/serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Certificate serial: 0B42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft Manifest number: 0B3A Signing time: Sun 02 Nov 2025 19:13:57 +0000 Manifest this update: Sun 02 Nov 2025 19:13:57 +0000 Manifest next update: Sun 09 Nov 2025 19:13:57 +0000 Files and hashes: 1: sYTDX2rtv7hd2kET8nUuDInKOpA.crl (hash: jQ32BCY5Q9zmMgmYdr6fjAete9hbUC0p3VsIip2S/aw=) 2: F9D16F1CC7D811EDB42DFF20C4F9AE02.roa (hash: +JzejbKc1NZP24NoPrMtMcVkZZ9hm7s276rW0zhe0b0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:13:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2882 (0xb42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F88F4, serialNumber=B184C35F6AEDBFB85DDA4113F2752E0C89CA3A90 Validity Not Before: Nov 2 19:13:57 2025 GMT Not After : Nov 9 19:13:57 2025 GMT Subject: CN=6907ad75-9c96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:aa:2e:21:70:11:42:e1:fb:74:f7:54:0f:24: d8:7e:f3:6a:d1:25:55:ef:f4:46:47:a3:79:af:09: 15:0b:53:80:f0:dd:94:50:f8:8b:52:25:5a:8e:68: cc:eb:26:46:0a:e1:5a:f9:a9:99:f0:0a:ce:38:54: b9:7d:e1:c4:22:f1:bb:b9:bc:62:40:79:05:55:e2: f3:fc:71:4e:01:8f:c5:0b:bc:f2:52:6f:5b:66:15: d2:a6:24:3f:d4:43:75:12:99:04:a9:a4:ae:70:27: 44:6e:02:19:65:90:a0:6a:9e:5b:c4:9d:17:0f:27: 26:f3:99:b1:4e:72:bb:16:3e:d5:4b:b4:cf:dd:f7: 30:c1:f4:8e:f1:0e:1c:35:6c:59:a1:18:47:e7:e6: ae:44:31:33:ff:61:77:c9:6f:32:e4:c6:58:30:d3: 5f:82:4e:5e:a9:e8:63:aa:cd:8c:4d:74:e3:49:62: 6f:72:71:71:59:20:9a:41:47:a3:1a:bb:62:f2:94: 42:2e:c9:dd:b0:e0:4a:a4:ab:80:d5:a1:a7:68:15: b7:dc:90:35:88:85:b4:39:fc:cf:c2:cb:86:90:67: 0a:4e:ba:2d:05:9f:64:19:d9:4b:27:f0:86:bc:6b: c6:b9:0f:85:80:d7:fb:4b:6f:e2:46:e1:5e:fc:58: e4:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:90:CD:7D:79:D4:F6:82:F9:D4:4D:CA:7B:09:46:F2:30:DC:2D:22 X509v3 Authority Key Identifier: keyid:B1:84:C3:5F:6A:ED:BF:B8:5D:DA:41:13:F2:75:2E:0C:89:CA:3A:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sYTDX2rtv7hd2kET8nUuDInKOpA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F88F4/07AE77CC48CC11EAAEF50151C4F9AE02/sYTDX2rtv7hd2kET8nUuDInKOpA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:aa:88:95:51:0c:45:77:a0:50:f9:77:90:79:d4:95:15:1b: 85:6c:f8:c0:a8:0f:94:b7:61:ed:b7:d1:19:cb:78:80:2d:3d: 69:d5:2e:8c:54:52:9a:55:10:cc:d9:4e:28:75:99:2a:b0:21: 9a:b2:49:d0:c5:c3:d9:d3:b7:2b:c8:6f:74:40:3e:23:3c:bb: 4c:a3:ff:9a:3f:81:0d:2c:84:66:04:5e:d2:7e:ec:42:ba:29: b5:dc:4f:7c:88:30:a0:89:48:7c:c1:d8:a1:10:1a:06:44:ce: 5e:83:07:05:ee:c5:dc:dd:6e:c1:cd:3a:a8:88:0a:72:c7:3b: 96:83:91:ff:5c:d3:55:e3:15:2a:20:ca:20:60:17:37:2b:b2: a9:61:92:1b:92:c1:1c:e9:d1:7f:80:f3:42:3f:b0:ec:35:c4: 6b:19:00:02:9a:8d:a5:e2:db:ae:c8:62:48:87:fd:cd:d1:00: 5a:c1:71:15:00:ea:b5:27:cd:7b:4a:e1:a1:0e:ac:3c:bf:5a: 6d:17:cc:27:cb:12:b8:5b:f2:82:fc:64:42:a7:26:55:fd:3d: f1:a5:8f:0f:84:48:dc:4f:9b:2f:61:69:5b:55:b3:90:76:fc: 99:e4:22:29:de:f8:dd:96:45:a0:c4:d5:67:28:40:1b:03:c4: 2c:4c:2b:61 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg4RjQxMTAvBgNVBAUTKEIxODRDMzVGNkFFREJGQjg1RERBNDExM0YyNzUyRTBD ODlDQTNBOTAwHhcNMjUxMTAyMTkxMzU3WhcNMjUxMTA5MTkxMzU3WjAYMRYwFAYD VQQDEw02OTA3YWQ3NS05Yzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA16ouIXARQuH7dPdUDyTYfvNq0SVV7/RGR6N5rwkVC1OA8N2UUPiLUiVajmjM 6yZGCuFa+amZ8ArOOFS5feHEIvG7ubxiQHkFVeLz/HFOAY/FC7zyUm9bZhXSpiQ/ 1EN1EpkEqaSucCdEbgIZZZCgap5bxJ0XDycm85mxTnK7Fj7VS7TP3fcwwfSO8Q4c NWxZoRhH5+auRDEz/2F3yW8y5MZYMNNfgk5eqehjqs2MTXTjSWJvcnFxWSCaQUej Grti8pRCLsndsOBKpKuA1aGnaBW33JA1iIW0OfzPwsuGkGcKTrotBZ9kGdlLJ/CG vGvGuQ+FgNf7S2/iRuFe/FjkgQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOmQzX15 1PaC+dRNynsJRvIw3C0iMB8GA1UdIwQYMBaAFLGEw19q7b+4XdpBE/J1LgyJyjqQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODhGNC8wN0FFNzdDQzQ4 Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3aGQya0VUOG5VdURJbktP cEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NZVERYMnJ0djdoZDJrRVQ4blV1REluS09wQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG ODhGNC8wN0FFNzdDQzQ4Q0MxMUVBQUVGNTAxNTFDNEY5QUUwMi9zWVREWDJydHY3 aGQya0VUOG5VdURJbktPcEEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCpqoiVUQxFd6BQ+XeQedSVFRuFbPjAqA+Ut2Htt9EZy3iALT1p1S6M VFKaVRDM2U4odZkqsCGasknQxcPZ07cryG90QD4jPLtMo/+aP4ENLIRmBF7SfuxC uim13E98iDCgiUh8wdihEBoGRM5egwcF7sXc3W7BzTqoiApyxzuWg5H/XNNV4xUq IMogYBc3K7KpYZIbksEc6dF/gPNCP7DsNcRrGQACmo2l4tuuyGJIh/3N0QBawXEV AOq1J817SuGhDqw8v1ptF8wnyxK4W/KC/GRCpyZV/T3xpY8PhEjcT5svYWlbVbOQ dvyZ5CIp3vjdlkWgxNVnKEAbA8QsTCth -----END CERTIFICATE-----Generated at Mon Nov 3 18:18:29 2025 by rpki-client