$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft File: YOVPYFHttB6nqVCJbNm71nASDWM.mft (raw, json) Hash identifier: 4IBfHG3yti7LiO4EVWDo3Pgnz72wSl6Qks4GmaRjbMk= Subject key identifier: 42:20:ED:0C:5B:51:E5:D2:CA:74:1E:49:C9:85:45:8D:39:F1:DF:2B Authority key identifier: 60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 Certificate issuer: /CN=A91FF89A/serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Certificate serial: 010D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft Manifest number: 010B Signing time: Wed 17 Sep 2025 05:34:38 +0000 Manifest this update: Wed 17 Sep 2025 05:34:38 +0000 Manifest next update: Wed 24 Sep 2025 05:34:38 +0000 Files and hashes: 1: YOVPYFHttB6nqVCJbNm71nASDWM.crl (hash: E/WgC/S8I9mv5TnMYpg2tkgSK/7+OECZjH3nwWhh1LI=) 2: 99AA3580F88611EE8E9B3E71C4F9AE02.roa (hash: 5sqOGBsF1ucCZYwk5F1J19/8HxFnGjHNBCogN/tCysY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 05:34:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF89A, serialNumber=60E54F6051EDB41EA7A950896CD9BBD670120D63 Validity Not Before: Sep 17 05:34:38 2025 GMT Not After : Sep 24 05:34:38 2025 GMT Subject: CN=68ca486e-c8e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e8:06:33:d7:b4:b3:f4:44:a7:c6:9e:55:97: 60:35:84:1c:4d:fc:3b:31:b0:66:d5:0a:67:25:68: c6:41:5a:4b:98:12:89:0b:51:a9:14:3b:80:bf:93: 16:d2:88:48:76:b7:8b:6b:3c:42:e7:6b:a8:75:db: 74:9a:e1:ee:53:1f:b4:8e:50:4d:d3:27:ed:6d:2b: da:11:78:62:46:0c:48:6b:82:84:a4:a4:69:fe:33: 46:9e:11:c0:96:18:ca:58:2f:6e:29:f5:59:98:3d: 99:f4:29:b3:dd:48:65:d8:a5:58:ad:2c:14:fa:93: 3e:af:9e:46:82:4e:b0:ca:21:f7:ef:59:f5:a7:b8: 65:c5:14:0a:06:40:69:65:ee:d8:21:69:a8:26:b0: 63:2f:c4:9c:36:d4:b0:cd:5c:9d:76:9a:11:01:3b: 16:50:3b:a4:54:3e:48:fe:8a:a4:a1:90:4d:9a:db: fe:22:55:b1:41:f1:5c:9b:81:45:21:00:b7:34:a6: ae:5c:f2:df:93:33:e8:e9:1f:18:5f:9d:75:87:45: 03:16:2a:4c:97:28:b7:c2:fc:ae:96:21:66:cd:11: 98:cc:25:d8:84:ab:d1:cb:38:e8:48:c6:44:eb:18: ab:a0:f4:77:c3:a3:27:f7:64:d0:90:ba:74:f0:f6: b9:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:20:ED:0C:5B:51:E5:D2:CA:74:1E:49:C9:85:45:8D:39:F1:DF:2B X509v3 Authority Key Identifier: keyid:60:E5:4F:60:51:ED:B4:1E:A7:A9:50:89:6C:D9:BB:D6:70:12:0D:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YOVPYFHttB6nqVCJbNm71nASDWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF89A/8C704744F88411EEA7B3A750C4F9AE02/YOVPYFHttB6nqVCJbNm71nASDWM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9b:85:9e:64:7e:57:f9:79:7d:64:45:33:f3:a9:f9:1c:9f:bf: e0:e8:79:49:fa:b8:01:10:cd:46:61:12:bd:b0:fe:c8:e3:a0: 47:e2:00:80:ed:4d:7f:be:ce:8c:ff:c1:b3:08:ba:2b:c8:0f: 70:d5:fb:62:25:6f:f1:03:67:09:12:29:f0:e6:cf:29:8d:84: e8:7f:d2:c4:13:0f:fa:da:02:c6:ec:b4:d8:24:da:a0:d6:8b: 4d:57:f4:e1:67:0c:a3:ec:10:12:6b:05:c5:de:86:c2:45:93: 10:16:e9:85:31:02:37:67:c9:0c:89:6b:b0:dd:30:4e:02:c2: 46:43:2e:e8:57:cb:c8:eb:a6:0d:a1:d2:ff:e5:3e:18:59:53: 16:fe:9f:db:3a:df:4b:8a:00:75:42:a8:ed:ba:e5:e2:00:1a: 76:ee:b8:4e:e5:5d:9d:19:16:27:de:bd:31:1b:e5:52:76:82: f7:37:e9:ef:95:b2:f9:98:67:42:e8:78:b9:57:a5:9c:02:da: 5a:2f:52:c1:38:bb:a1:fe:65:d6:59:1f:bd:c7:14:5b:57:5b: 63:e6:85:ee:8d:dd:6d:9b:64:3d:9d:12:d0:48:e2:2b:72:1e: 0e:f1:82:92:5b:35:a7:40:a3:62:4f:f3:2a:a5:0a:99:42:f9: bb:d0:b9:f4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY4OUExMTAvBgNVBAUTKDYwRTU0RjYwNTFFREI0MUVBN0E5NTA4OTZDRDlCQkQ2 NzAxMjBENjMwHhcNMjUwOTE3MDUzNDM4WhcNMjUwOTI0MDUzNDM4WjAYMRYwFAYD VQQDEw02OGNhNDg2ZS1jOGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOgGM9e0s/REp8aeVZdgNYQcTfw7MbBm1QpnJWjGQVpLmBKJC1GpFDuAv5MW 0ohIdreLazxC52uoddt0muHuUx+0jlBN0yftbSvaEXhiRgxIa4KEpKRp/jNGnhHA lhjKWC9uKfVZmD2Z9Cmz3Uhl2KVYrSwU+pM+r55Ggk6wyiH371n1p7hlxRQKBkBp Ze7YIWmoJrBjL8ScNtSwzVyddpoRATsWUDukVD5I/oqkoZBNmtv+IlWxQfFcm4FF IQC3NKauXPLfkzPo6R8YX511h0UDFipMlyi3wvyuliFmzRGYzCXYhKvRyzjoSMZE 6xiroPR3w6Mn92TQkLp08Pa5FQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFEIg7Qxb UeXSynQeScmFRY058d8rMB8GA1UdIwQYMBaAFGDlT2BR7bQep6lQiWzZu9ZwEg1j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjg5QS84QzcwNDc0NEY4 ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRCNm5xVkNKYk5tNzFuQVNE V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lPVlBZRkh0dEI2bnFWQ0piTm03MW5BU0RXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Rjg5QS84QzcwNDc0NEY4ODQxMUVFQTdCM0E3NTBDNEY5QUUwMi9ZT1ZQWUZIdHRC Nm5xVkNKYk5tNzFuQVNEV00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCbhZ5kflf5eX1kRTPzqfkcn7/g6HlJ+rgBEM1GYRK9sP7I46BH4gCA 7U1/vs6M/8GzCLoryA9w1ftiJW/xA2cJEinw5s8pjYTof9LEEw/62gLG7LTYJNqg 1otNV/ThZwyj7BASawXF3obCRZMQFumFMQI3Z8kMiWuw3TBOAsJGQy7oV8vI66YN odL/5T4YWVMW/p/bOt9LigB1QqjtuuXiABp27rhO5V2dGRYn3r0xG+VSdoL3N+nv lbL5mGdC6Hi5V6WcAtpaL1LBOLuh/mXWWR+9xxRbV1tj5oXujd1tm2Q9nRLQSOIr ch4O8YKSWzWnQKNiT/MqpQqZQvm70Ln0 -----END CERTIFICATE-----Generated at Fri Sep 19 04:07:27 2025 by rpki-client