$ rpki-client -vvf rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft File: Yb6mqjOAZskOtcsyQAxq52BciKQ.mft (raw, json) Hash identifier: eSoYubbj31UZGPYkgdY1lOjsDj3mtEQ1fLlhn2cxpTY= Subject key identifier: 60:C3:36:3D:46:21:CA:8E:F5:AB:9D:6F:C6:D8:8A:77:D1:81:2D:F7 Authority key identifier: 61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 Certificate issuer: /CN=A91FA52B/serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Certificate serial: 0FF2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft Manifest number: 0FEB Signing time: Tue 04 Nov 2025 17:34:06 +0000 Manifest this update: Tue 04 Nov 2025 17:34:05 +0000 Manifest next update: Tue 11 Nov 2025 17:34:05 +0000 Files and hashes: 1: Yb6mqjOAZskOtcsyQAxq52BciKQ.crl (hash: mlhjW/YeP/qeUcmanIWC9ggpTnS1k+lRtQJHBSz7Y7A=) 2: ECB38BAA5C3211E9816E7981C4F9AE02.roa (hash: cCIRQV7ckuHtyIWMyZbPGhi3IsjwZT86WZjPdbGRO6M=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4082 (0xff2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FA52B, serialNumber=61BEA6AA338066C90EB5CB32400C6AE7605C88A4 Validity Not Before: Nov 4 17:34:05 2025 GMT Not After : Nov 11 17:34:05 2025 GMT Subject: CN=690a390d-66cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:bf:f7:f9:2f:d3:1f:9a:de:c8:0e:7f:6a:fa: 07:a9:b3:e7:8a:5b:b9:1a:66:9e:d5:9e:75:0e:c2: e6:3d:fb:93:8c:c7:5b:75:a1:5e:f8:f0:f2:50:fd: 5b:54:c1:5a:83:17:ff:6f:d3:3e:70:d8:57:c1:65: 35:be:7f:fc:b8:80:37:56:39:a0:ff:ad:46:c3:f0: 28:a3:5d:02:44:49:e5:8a:a2:4d:f7:23:1b:32:ee: e6:02:99:96:cf:b9:c5:6a:0c:9c:37:bc:2e:07:32: 44:4d:a7:5c:69:2c:4b:82:5e:6d:34:a1:01:3c:d5: 24:0d:07:5e:9e:a7:d0:c6:e5:7c:04:84:83:ca:4b: 48:f6:ac:8c:72:07:77:53:2f:28:9c:ef:e9:46:f6: c6:64:1e:c1:31:30:9e:68:bd:12:16:74:c0:96:e3: df:33:41:bd:f1:e1:83:e0:91:35:1f:59:20:10:e5: 04:12:7f:7c:d1:bc:84:68:2a:82:d7:e6:c3:ad:e2: 32:3b:f6:f7:ab:03:52:d8:a2:8f:a0:18:b6:17:fa: 81:b6:44:03:47:eb:1a:db:dd:be:e1:bf:a0:77:eb: 85:6e:13:03:69:78:f7:0a:d7:90:25:fa:84:18:81: a5:f9:77:c0:62:7e:b0:47:b6:a1:f0:f6:70:6e:3f: dd:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C3:36:3D:46:21:CA:8E:F5:AB:9D:6F:C6:D8:8A:77:D1:81:2D:F7 X509v3 Authority Key Identifier: keyid:61:BE:A6:AA:33:80:66:C9:0E:B5:CB:32:40:0C:6A:E7:60:5C:88:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb6mqjOAZskOtcsyQAxq52BciKQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FA52B/28CBFB145C3211E9AB624580C4F9AE02/Yb6mqjOAZskOtcsyQAxq52BciKQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:b5:8c:25:54:14:ab:14:1d:2b:6a:71:ca:74:33:5a:11:25: e6:55:ba:db:86:30:32:c2:5a:df:f8:cf:a4:7c:a7:3f:1b:e1: 14:b8:c2:c4:e2:d9:43:01:42:1f:51:51:fb:5d:4c:30:ce:02: d4:80:0f:d5:f8:71:4b:12:8a:95:9e:77:d3:60:0f:33:6d:a7: ec:3e:6d:ff:b0:cb:e1:54:03:73:88:51:2f:6c:74:ed:89:2f: d7:6e:f1:2b:2c:e3:2f:cc:95:6d:19:a2:73:3e:bc:1f:e0:67: fa:c7:c0:dc:23:d0:c0:a1:00:b6:70:99:c1:b1:07:87:31:09: bc:d7:47:1e:32:dc:25:53:bf:3a:29:e1:f5:90:0b:e8:06:91: 8c:5c:bc:5f:5a:fb:e9:9b:51:a4:e3:e4:dd:5b:b0:de:95:87: 90:46:0c:0d:65:dc:ed:9a:75:e4:dc:4b:ff:0d:d4:14:cb:a6: a1:9f:6d:f0:d5:46:48:fe:8d:73:56:ee:0c:1a:cf:de:ad:c8: 9e:a3:9b:47:a7:dc:39:ad:9a:cf:bb:dd:8d:5f:7e:48:91:1f: 6f:ed:d4:26:04:80:81:cb:7d:d7:0c:3e:f7:6a:95:14:bd:b0: bc:75:a3:5d:80:6d:0d:13:4b:f0:39:e2:a7:0e:99:e8:6d:54: 59:a3:5d:6f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICD/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkE1MkIxMTAvBgNVBAUTKDYxQkVBNkFBMzM4MDY2QzkwRUI1Q0IzMjQwMEM2QUU3 NjA1Qzg4QTQwHhcNMjUxMTA0MTczNDA1WhcNMjUxMTExMTczNDA1WjAYMRYwFAYD VQQDEw02OTBhMzkwZC02NmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzr/3+S/TH5reyA5/avoHqbPnilu5Gmae1Z51DsLmPfuTjMdbdaFe+PDyUP1b VMFagxf/b9M+cNhXwWU1vn/8uIA3Vjmg/61Gw/Aoo10CREnliqJN9yMbMu7mApmW z7nFagycN7wuBzJETadcaSxLgl5tNKEBPNUkDQdenqfQxuV8BISDyktI9qyMcgd3 Uy8onO/pRvbGZB7BMTCeaL0SFnTAluPfM0G98eGD4JE1H1kgEOUEEn980byEaCqC 1+bDreIyO/b3qwNS2KKPoBi2F/qBtkQDR+sa292+4b+gd+uFbhMDaXj3CteQJfqE GIGl+XfAYn6wR7ah8PZwbj/dIQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGDDNj1G IcqO9audb8bYinfRgS33MB8GA1UdIwQYMBaAFGG+pqozgGbJDrXLMkAMaudgXIik MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQTUyQi8yOENCRkIxNDVD MzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpza090Y3N5UUF4cTUyQmNp S1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liNm1xak9BWnNrT3Rjc3lRQXhxNTJCY2lLUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QTUyQi8yOENCRkIxNDVDMzIxMUU5QUI2MjQ1ODBDNEY5QUUwMi9ZYjZtcWpPQVpz a090Y3N5UUF4cTUyQmNpS1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBCtYwlVBSrFB0ranHKdDNaESXmVbrbhjAywlrf+M+kfKc/G+EUuMLE 4tlDAUIfUVH7XUwwzgLUgA/V+HFLEoqVnnfTYA8zbafsPm3/sMvhVANziFEvbHTt iS/XbvErLOMvzJVtGaJzPrwf4Gf6x8DcI9DAoQC2cJnBsQeHMQm810ceMtwlU786 KeH1kAvoBpGMXLxfWvvpm1Gk4+TdW7DelYeQRgwNZdztmnXk3Ev/DdQUy6ahn23w 1UZI/o1zVu4MGs/ercieo5tHp9w5rZrPu92NX35IkR9v7dQmBICBy33XDD73apUU vbC8daNdgG0NE0vwOeKnDpnobVRZo11v -----END CERTIFICATE-----Generated at Wed Nov 5 05:25:03 2025 by rpki-client