$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft File: 1Ycen8b73n3HG36JXIoEw9ACHYU.mft (raw, json) Hash identifier: DdV0K7ygpkLuFPeJFxE5B/0ubzLQKGWBwZHqIbW3yBw= Subject key identifier: BB:25:F4:EB:67:9D:96:3D:55:07:A8:58:4D:BF:D3:06:97:B6:97:6C Authority key identifier: D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 Certificate issuer: /CN=A91F8A49/serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Certificate serial: 01A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft Manifest number: 019E Signing time: Mon 03 Nov 2025 03:23:14 +0000 Manifest this update: Mon 03 Nov 2025 03:23:14 +0000 Manifest next update: Mon 10 Nov 2025 03:23:14 +0000 Files and hashes: 1: 1Ycen8b73n3HG36JXIoEw9ACHYU.crl (hash: 0hoNLK/V48UcXQg0iTWFHPZCDpcdbMRtWG1XFzaK8wo=) 2: B78CCA4E4C5711EE9FE2EA35C4F9AE02.roa (hash: yOezlN4+53IwwnSsCKNCBTmWXo8aQEvNaQEYhS9yato=) 3: A355C1A8B6D511F089793D6DC4F9AE02.roa (hash: 0SnBjCkd1/QSiUJjvI651mo+kVttGehwO0xz/nqsNeY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 420 (0x1a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8A49, serialNumber=D5871E9FC6FBDE7DC71B7E895C8A04C3D0021D85 Validity Not Before: Nov 3 03:23:14 2025 GMT Not After : Nov 10 03:23:14 2025 GMT Subject: CN=69082022-0a2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d4:00:79:b0:32:2d:b3:3c:00:1a:ac:9a:c8: fd:4e:77:c3:93:c6:7d:65:ac:af:49:db:8a:b0:02: 8a:79:47:6d:b7:3d:3d:a5:8e:3b:e9:98:00:59:d9: b6:84:8b:b4:63:4f:3b:43:ad:b8:b2:64:01:69:e9: 11:4c:9a:e1:c5:27:29:6f:b3:51:d7:8d:20:93:c3: c2:ca:58:e2:75:5e:bb:3f:fc:59:0a:03:e8:20:12: e4:fb:bb:e5:5d:8c:b9:f0:b6:67:13:59:77:cb:9f: 77:09:60:dc:5a:19:80:90:2d:c0:ce:33:06:6a:0e: 76:e1:f7:de:52:50:1e:02:a7:10:85:b9:c6:f5:8a: 11:18:52:3c:cf:94:c2:93:78:55:fd:ae:be:53:0a: f5:4c:c6:34:5e:f2:1b:f0:b2:d6:4d:3f:ae:ef:2d: 48:5b:7f:d6:63:1b:30:23:c7:2f:fe:f1:5e:ca:f5: 9e:04:db:68:ed:22:be:69:54:fd:ef:f1:f8:9e:3b: 4a:e4:f1:a5:14:06:16:c9:49:3a:ae:40:f4:a2:2b: c8:33:b3:fd:fa:63:15:b9:13:aa:25:df:9f:91:16: a2:66:42:8d:ae:cf:18:ca:64:61:9c:80:05:58:da: 33:ef:37:0d:0e:d1:e3:29:4b:61:e0:b1:6f:09:15: b1:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:25:F4:EB:67:9D:96:3D:55:07:A8:58:4D:BF:D3:06:97:B6:97:6C X509v3 Authority Key Identifier: keyid:D5:87:1E:9F:C6:FB:DE:7D:C7:1B:7E:89:5C:8A:04:C3:D0:02:1D:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Ycen8b73n3HG36JXIoEw9ACHYU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8A49/47D0446447B711EE8A0A9C43C4F9AE02/1Ycen8b73n3HG36JXIoEw9ACHYU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8b:1c:e1:cc:55:fe:8a:d5:3f:d1:15:da:86:58:26:6d:91:6a: a8:d9:b7:8b:1b:c8:70:a4:93:03:9b:bf:45:c2:33:74:de:46: 30:50:33:bb:25:6e:e2:0f:fa:8b:c5:a7:51:eb:ce:e2:77:4b: c0:57:32:b0:7e:92:11:c4:3d:17:bb:78:f7:12:99:ec:b5:6d: f8:53:b6:b6:af:4e:a6:02:01:89:9a:dc:0a:02:3a:b0:65:ac: 64:65:12:47:c5:37:74:38:7e:cf:3a:70:2e:95:29:e1:07:07: 17:f5:b8:bb:18:12:03:78:46:02:05:12:7a:c0:8e:9e:38:e5: 25:6f:82:8f:1c:df:1c:e2:be:25:81:97:a8:ee:9b:40:be:13: a6:37:e1:44:52:c3:02:da:83:af:64:5d:ce:70:c8:18:05:63: c6:26:f1:db:d4:bf:11:e3:20:9d:f6:ea:73:26:95:30:cc:75: cb:ff:cc:87:28:3f:8e:c0:c6:70:27:66:c2:72:cc:09:70:1b: cd:6e:f3:4e:20:c4:6a:fd:aa:f4:24:4f:5b:22:1d:37:62:9e: f1:ab:58:04:0e:1e:1a:cd:fa:d9:37:e1:d7:c0:59:6a:bf:a2: 16:f1:c5:43:30:cd:3e:9a:ef:26:8e:35:c7:73:db:a9:c3:58: 44:d0:11:ec -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAaQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhBNDkxMTAvBgNVBAUTKEQ1ODcxRTlGQzZGQkRFN0RDNzFCN0U4OTVDOEEwNEMz RDAwMjFEODUwHhcNMjUxMTAzMDMyMzE0WhcNMjUxMTEwMDMyMzE0WjAYMRYwFAYD VQQDEw02OTA4MjAyMi0wYTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA79QAebAyLbM8ABqsmsj9TnfDk8Z9ZayvSduKsAKKeUdttz09pY476ZgAWdm2 hIu0Y087Q624smQBaekRTJrhxScpb7NR140gk8PCyljidV67P/xZCgPoIBLk+7vl XYy58LZnE1l3y593CWDcWhmAkC3AzjMGag524ffeUlAeAqcQhbnG9YoRGFI8z5TC k3hV/a6+Uwr1TMY0XvIb8LLWTT+u7y1IW3/WYxswI8cv/vFeyvWeBNto7SK+aVT9 7/H4njtK5PGlFAYWyUk6rkD0oivIM7P9+mMVuROqJd+fkRaiZkKNrs8YymRhnIAF WNoz7zcNDtHjKUth4LFvCRWxPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLsl9Otn nZY9VQeoWE2/0waXtpdsMB8GA1UdIwQYMBaAFNWHHp/G+959xxt+iVyKBMPQAh2F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEE0OS80N0QwNDQ2NDQ3 QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNuM0hHMzZKWElvRXc5QUNI WVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFZY2VuOGI3M24zSEczNkpYSW9FdzlBQ0hZVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG OEE0OS80N0QwNDQ2NDQ3QjcxMUVFOEEwQTlDNDNDNEY5QUUwMi8xWWNlbjhiNzNu M0hHMzZKWElvRXc5QUNIWVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCLHOHMVf6K1T/RFdqGWCZtkWqo2beLG8hwpJMDm79FwjN03kYwUDO7 JW7iD/qLxadR687id0vAVzKwfpIRxD0Xu3j3EpnstW34U7a2r06mAgGJmtwKAjqw ZaxkZRJHxTd0OH7POnAulSnhBwcX9bi7GBIDeEYCBRJ6wI6eOOUlb4KPHN8c4r4l gZeo7ptAvhOmN+FEUsMC2oOvZF3OcMgYBWPGJvHb1L8R4yCd9upzJpUwzHXL/8yH KD+OwMZwJ2bCcswJcBvNbvNOIMRq/ar0JE9bIh03Yp7xq1gEDh4azfrZN+HXwFlq v6IW8cVDMM0+mu8mjjXHc9upw1hE0BHs -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:46 2025 by rpki-client