$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft File: YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft (raw, json) Hash identifier: WzkI6RLjgVVZlviDZHDPpGF5BJAfdU+UvIpXkjch+HU= Subject key identifier: 67:E1:FF:7D:43:D4:7C:FB:B0:54:60:7F:B8:DE:05:FE:0B:2F:7C:9C Authority key identifier: 60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D Certificate issuer: /CN=A91FC01A/serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Certificate serial: 0365 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft Manifest number: 0361 Signing time: Mon 03 Nov 2025 00:54:18 +0000 Manifest this update: Mon 03 Nov 2025 00:54:17 +0000 Manifest next update: Mon 10 Nov 2025 00:54:17 +0000 Files and hashes: 1: YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl (hash: XalIhWb7MT9e1bTM3O2pwz0iaAFOkrSKen5fYxinDqE=) 2: 426D5CEAD12111ECBBAC1B7DC4F9AE02.roa (hash: PuEOajLEUChOIrthB/05mvECIB7cIWFQzgLmdVBLTBc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC01A, serialNumber=605BDA3D7ADCC02DAC7386AE39147A646593A89D Validity Not Before: Nov 3 00:54:17 2025 GMT Not After : Nov 10 00:54:17 2025 GMT Subject: CN=6907fd39-719c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:93:16:44:e4:3f:e6:93:61:08:bd:b8:6a:8c: dc:77:29:d9:55:c0:86:3d:80:ba:1a:d6:15:49:e6: a7:b0:ab:a1:d8:c7:27:f1:2f:8d:2e:67:45:a7:44: 7d:ce:2f:da:0b:9b:3f:b7:6f:a2:d1:19:76:60:b0: f1:24:88:7f:1e:42:a0:28:a8:6c:61:7b:b3:e9:c0: c4:23:8c:8a:0c:c2:61:d7:10:88:a2:c6:88:28:fe: 56:c5:e2:3b:80:7a:f4:20:86:27:84:df:ab:43:cb: 7c:13:74:3e:ac:e8:54:79:7b:42:46:36:05:39:e5: 74:91:b6:92:e6:57:75:97:7d:0e:d2:3f:62:92:e6: 29:da:36:d3:8d:a3:04:f7:81:73:af:27:80:22:4c: 21:7d:2b:1d:7d:f8:dd:fb:29:ed:e1:ff:a6:ce:4d: 8c:97:dd:82:73:24:4d:9f:9f:9f:cf:a9:c7:1d:fa: ca:7b:70:8e:2e:95:0f:97:00:31:aa:a0:87:96:d4: c7:79:a1:dc:51:6c:fc:70:38:18:dd:bb:91:83:0d: 88:f6:1f:1d:be:de:27:8c:95:12:a9:3b:ed:18:60: 76:62:60:f0:42:28:aa:97:a2:04:9d:c9:46:06:be: c0:aa:a6:ec:42:b7:b4:be:31:98:70:02:e5:6a:6c: b8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E1:FF:7D:43:D4:7C:FB:B0:54:60:7F:B8:DE:05:FE:0B:2F:7C:9C X509v3 Authority Key Identifier: keyid:60:5B:DA:3D:7A:DC:C0:2D:AC:73:86:AE:39:14:7A:64:65:93:A8:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YFvaPXrcwC2sc4auORR6ZGWTqJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC01A/0F85014CD11D11EC81696363C4F9AE02/YFvaPXrcwC2sc4auORR6ZGWTqJ0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:17:fd:0c:b6:9a:7d:14:40:68:08:29:91:2e:40:c2:41:46: f4:b9:e9:0c:50:3e:69:1c:5e:f3:04:08:e0:52:fb:3e:09:8f: 82:4c:4f:cd:ba:30:ec:57:a6:ce:eb:1e:f4:d0:60:51:a0:ef: c3:20:ab:3e:d5:ce:39:0b:bc:5b:f8:30:bb:63:0b:9a:98:79: 76:c0:00:f5:d7:35:be:ce:d9:59:48:f2:0f:82:26:c4:c1:73: 0f:44:4e:92:14:0d:59:34:d1:9c:ce:6f:13:55:49:02:77:cb: 82:76:cb:a0:69:bf:8f:7d:be:d4:ba:ce:46:92:31:34:99:14: 87:01:dc:94:bd:c4:2f:e3:4a:b0:55:11:a9:83:f7:15:36:bf: ed:e6:7f:8b:ef:96:42:37:cf:40:0e:a9:91:32:ed:c3:3a:ff: fc:8b:28:ed:a0:85:2a:5b:ca:95:0f:ef:0f:d7:7f:59:a1:d7: c4:d1:99:1a:58:a5:e5:03:d0:15:7a:89:18:9d:c1:cf:ec:a5: 3d:14:93:11:79:32:35:e1:21:6a:35:34:89:0c:32:08:51:a2: da:01:97:8f:6b:be:e8:4a:73:9d:99:96:2a:d0:c6:81:0f:5e: 75:5c:a8:f6:93:58:ef:3a:09:e5:3d:5d:87:b3:56:7e:5f:01: a2:18:ae:b1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkMwMUExMTAvBgNVBAUTKDYwNUJEQTNEN0FEQ0MwMkRBQzczODZBRTM5MTQ3QTY0 NjU5M0E4OUQwHhcNMjUxMTAzMDA1NDE3WhcNMjUxMTEwMDA1NDE3WjAYMRYwFAYD VQQDEw02OTA3ZmQzOS03MTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAppMWROQ/5pNhCL24aozcdynZVcCGPYC6GtYVSeansKuh2Mcn8S+NLmdFp0R9 zi/aC5s/t2+i0Rl2YLDxJIh/HkKgKKhsYXuz6cDEI4yKDMJh1xCIosaIKP5WxeI7 gHr0IIYnhN+rQ8t8E3Q+rOhUeXtCRjYFOeV0kbaS5ld1l30O0j9ikuYp2jbTjaME 94FzryeAIkwhfSsdffjd+ynt4f+mzk2Ml92CcyRNn5+fz6nHHfrKe3COLpUPlwAx qqCHltTHeaHcUWz8cDgY3buRgw2I9h8dvt4njJUSqTvtGGB2YmDwQiiql6IEnclG Br7AqqbsQre0vjGYcALlamy4uwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFGfh/31D 1Hz7sFRgf7jeBf4LL3ycMB8GA1UdIwQYMBaAFGBb2j163MAtrHOGrjkUemRlk6id MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzAxQS8wRjg1MDE0Q0Qx MUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dDMnNjNGF1T1JSNlpHV1Rx SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lGdmFQWHJjd0Myc2M0YXVPUlI2WkdXVHFKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QzAxQS8wRjg1MDE0Q0QxMUQxMUVDODE2OTYzNjNDNEY5QUUwMi9ZRnZhUFhyY3dD MnNjNGF1T1JSNlpHV1RxSjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBdF/0Mtpp9FEBoCCmRLkDCQUb0uekMUD5pHF7zBAjgUvs+CY+CTE/N ujDsV6bO6x700GBRoO/DIKs+1c45C7xb+DC7YwuamHl2wAD11zW+ztlZSPIPgibE wXMPRE6SFA1ZNNGczm8TVUkCd8uCdsugab+Pfb7Uus5GkjE0mRSHAdyUvcQv40qw VRGpg/cVNr/t5n+L75ZCN89ADqmRMu3DOv/8iyjtoIUqW8qVD+8P139ZodfE0Zka WKXlA9AVeokYncHP7KU9FJMReTI14SFqNTSJDDIIUaLaAZePa77oSnOdmZYq0MaB D151XKj2k1jvOgnlPV2Hs1Z+XwGiGK6x -----END CERTIFICATE-----Generated at Mon Nov 3 18:13:17 2025 by rpki-client