$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: 0sGrD4kzg4XtwGeWYVHgf6jc/d4fzXlJEAvF4K/33/c= Subject key identifier: CF:3B:69:AD:05:89:81:0E:5E:66:EE:27:4B:7C:79:11:F4:0F:6C:CA Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 0124 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 0122 Signing time: Mon 03 Nov 2025 04:41:40 +0000 Manifest this update: Mon 03 Nov 2025 04:41:40 +0000 Manifest next update: Mon 10 Nov 2025 04:41:40 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: 86zKTqCiuwFxJLWvzN7CSopte2Wo8UCrABJ3Xg/r1dY=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 04:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 292 (0x124) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Nov 3 04:41:40 2025 GMT Not After : Nov 10 04:41:40 2025 GMT Subject: CN=69083284-50be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:78:45:93:9d:b8:b8:cc:c7:67:8c:27:4a:eb: 9a:07:6e:7b:eb:d7:5c:ee:28:3d:6f:23:e8:7d:18: b4:15:14:c7:ef:ee:fb:76:54:7a:54:d7:4c:99:bf: 22:00:87:50:e0:f8:10:aa:2b:36:df:70:07:f4:00: 0d:a7:71:0b:01:ba:07:c4:04:3f:72:99:d7:13:a4: f1:ae:cd:1c:b0:b0:42:98:c6:85:e3:a2:d1:a0:6f: b6:20:c7:0a:f8:02:f0:d0:89:76:7a:6d:06:fd:2e: 7e:e7:dc:50:81:7e:51:ac:6d:88:2f:af:4e:33:3d: 3e:fa:8d:da:02:fe:4f:f4:a2:fd:2a:7e:71:76:17: 54:91:53:28:6f:ef:54:37:5d:42:39:ab:ae:44:28: 30:3f:3b:d0:b0:62:c6:5e:49:84:02:93:46:e5:ff: a4:03:be:da:f9:c5:74:6b:d0:7b:aa:a0:75:11:22: 2d:4f:32:30:a1:8f:32:f9:63:26:6a:bb:12:17:95: f9:e4:73:07:e3:36:06:3e:0a:2a:65:2d:cd:2d:ab: 1b:97:4a:11:29:0c:91:09:6e:7b:0f:36:85:d2:bc: 88:91:44:39:ec:de:30:a4:c7:52:2c:8e:9c:d2:da: d7:63:2e:db:8f:16:55:7f:ec:8a:fe:7e:2f:02:9f: 89:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:3B:69:AD:05:89:81:0E:5E:66:EE:27:4B:7C:79:11:F4:0F:6C:CA X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a3:ab:9a:e4:b6:3f:df:c7:e5:23:f3:01:9b:13:f5:ea:fa:00: 70:82:f6:1f:42:68:b6:f0:d3:12:38:a6:2c:44:11:2e:9b:ac: 3a:89:9e:df:b1:ca:e1:fe:0e:cf:77:46:89:55:cb:28:68:60: 43:b3:56:19:91:17:a1:af:7f:be:e0:ec:d8:77:bf:c1:9e:bc: 40:a6:56:4f:4f:ff:1c:80:24:3d:09:9f:bc:f4:26:5d:9d:e9: e2:79:9c:86:eb:9a:1b:22:47:38:f4:32:d0:f6:91:4f:e1:65: 56:51:a7:4c:33:84:4f:e6:3a:73:6a:61:3a:58:ec:6e:2a:f9: b2:3c:1c:c0:8d:5c:0a:52:b3:93:b2:e0:3e:aa:79:e3:67:c0: 08:69:7d:a0:43:ca:2c:4a:af:eb:ca:8d:f3:5e:6c:69:a8:a2: b5:e4:8b:9a:2e:4b:b7:34:e2:2a:e7:62:de:3a:a5:63:be:2e: 4c:07:cb:c6:7b:de:ed:37:51:da:15:59:9d:e8:44:8d:7d:3b: c7:fb:d5:ba:f6:21:e4:39:87:97:a5:f2:89:cf:25:65:af:79: 1b:a2:97:c7:f2:4b:0d:96:ea:f4:7d:73:a6:79:35:f0:31:11: c7:11:aa:e5:18:4c:31:13:85:0d:f5:b7:5c:d5:40:05:54:87: 27:b7:87:75 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICASQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUxMTAzMDQ0MTQwWhcNMjUxMTEwMDQ0MTQwWjAYMRYwFAYD VQQDEw02OTA4MzI4NC01MGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHhFk524uMzHZ4wnSuuaB25769dc7ig9byPofRi0FRTH7+77dlR6VNdMmb8i AIdQ4PgQqis233AH9AANp3ELAboHxAQ/cpnXE6Txrs0csLBCmMaF46LRoG+2IMcK +ALw0Il2em0G/S5+59xQgX5RrG2IL69OMz0++o3aAv5P9KL9Kn5xdhdUkVMob+9U N11COauuRCgwPzvQsGLGXkmEApNG5f+kA77a+cV0a9B7qqB1ESItTzIwoY8y+WMm arsSF5X55HMH4zYGPgoqZS3NLasbl0oRKQyRCW57DzaF0ryIkUQ57N4wpMdSLI6c 0trXYy7bjxZVf+yK/n4vAp+JUQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFM87aa0F iYEOXmbuJ0t8eRH0D2zKMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCjq5rktj/fx+Uj8wGbE/Xq+gBwgvYfQmi28NMSOKYsRBEum6w6iZ7f scrh/g7Pd0aJVcsoaGBDs1YZkRehr3++4OzYd7/BnrxAplZPT/8cgCQ9CZ+89CZd nenieZyG65obIkc49DLQ9pFP4WVWUadMM4RP5jpzamE6WOxuKvmyPBzAjVwKUrOT suA+qnnjZ8AIaX2gQ8osSq/ryo3zXmxpqKK15IuaLku3NOIq52LeOqVjvi5MB8vG e97tN1HaFVmd6ESNfTvH+9W69iHkOYeXpfKJzyVlr3kbopfH8ksNlur0fXOmeTXw MRHHEarlGEwxE4UN9bdc1UAFVIcnt4d1 -----END CERTIFICATE-----Generated at Mon Nov 3 18:06:38 2025 by rpki-client