$ rpki-client -vvf rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft File: YeT4YWtiQmYakffQErbNHkCTiQs.mft (raw, json) Hash identifier: qTxT1+b0shsxwPe5mY8EWgDkH0qyfYJTiZX+GPdHVkI= Subject key identifier: 02:0A:C1:A0:0E:4B:7E:4A:72:15:55:BE:70:0A:AF:5A:64:BA:DB:9F Authority key identifier: 61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B Certificate issuer: /CN=A91605D7/serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Certificate serial: 0134 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft Manifest number: 0131 Signing time: Wed 05 Nov 2025 04:41:37 +0000 Manifest this update: Wed 05 Nov 2025 04:41:37 +0000 Manifest next update: Wed 12 Nov 2025 04:41:37 +0000 Files and hashes: 1: YeT4YWtiQmYakffQErbNHkCTiQs.crl (hash: 6ym2Ga+8j4kuoAaEHKOjvmbcxjyfFTfG89q80OvMuok=) 2: EA46D7ECE57F11EE96F8FB39C4F9AE02.roa (hash: yl/E8QHLka4/lwMsB6BevGouPJwrIPgnFEOjdbPwsG0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:41:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91605D7, serialNumber=61E4F8616B6242661A91F7D012B6CD1E4093890B Validity Not Before: Nov 5 04:41:37 2025 GMT Not After : Nov 12 04:41:37 2025 GMT Subject: CN=690ad581-cae0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fc:64:b3:27:e0:60:75:d0:7b:9b:36:8b:58: 30:c0:2b:52:f3:2f:18:6e:6a:b5:5f:d0:00:e1:46: 9a:0a:19:49:a2:16:a1:79:86:22:76:83:a9:a5:a7: fc:02:ca:35:be:4e:c5:47:44:28:58:62:e6:7e:1d: 20:40:a9:45:f9:ec:b9:e8:07:f8:7b:aa:34:d3:b8: 28:f4:09:f5:63:5b:92:de:06:12:98:ea:80:e3:76: 2d:d8:42:b2:9c:a3:c8:bb:81:2d:33:46:78:b5:94: de:e9:0d:2e:99:2b:03:49:61:a7:cc:0d:de:40:ba: 26:19:72:f6:b3:cd:04:81:de:75:7d:8a:4d:73:d7: 43:91:be:fb:f3:1e:dc:1b:d8:3a:17:7f:fd:39:59: 64:eb:db:cf:c8:cc:f8:ac:70:df:05:76:ed:a5:99: 99:8d:34:83:ce:8a:13:41:01:40:ff:fa:01:62:28: 4e:6d:9e:36:6b:75:aa:70:43:13:b4:1b:aa:36:1e: fd:b1:7e:b1:7a:d5:a0:86:95:57:08:4c:03:39:ff: db:ae:8c:bc:4b:1f:4d:cd:be:bb:51:1d:ac:1c:fa: da:be:bc:6f:d5:b6:12:b0:b5:3f:82:cc:49:72:6f: 87:ba:65:23:32:77:5c:df:1f:4b:0c:c0:b4:f9:e2: 02:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:0A:C1:A0:0E:4B:7E:4A:72:15:55:BE:70:0A:AF:5A:64:BA:DB:9F X509v3 Authority Key Identifier: keyid:61:E4:F8:61:6B:62:42:66:1A:91:F7:D0:12:B6:CD:1E:40:93:89:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YeT4YWtiQmYakffQErbNHkCTiQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91605D7/3B50F132E57F11EEAF1D291BC4F9AE02/YeT4YWtiQmYakffQErbNHkCTiQs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:61:74:05:37:4c:24:a5:7c:e1:59:f5:8e:ca:c8:97:ef:db: da:86:34:f5:b8:5b:c6:b2:95:82:42:77:e2:d6:e7:07:eb:a6: 98:79:28:c8:8a:13:bd:12:eb:a7:1e:87:c9:f5:19:f6:84:ec: d7:3f:00:f7:5a:31:89:47:1b:32:17:e1:c3:83:b8:90:81:5e: 8c:77:6b:83:73:3b:a0:40:93:97:12:44:eb:20:54:fa:7f:9b: ac:4d:86:34:be:6d:a0:8a:2c:49:15:23:83:8c:f2:cc:2e:2a: 18:cf:82:6a:90:fb:64:fe:f7:b5:6b:b0:5a:d6:b8:a0:a7:08: 29:6f:32:ce:5d:89:40:30:4f:31:e2:b3:da:5d:a6:2f:08:d9: e6:d8:3f:59:9d:c2:87:78:dc:5f:a5:2d:e0:ef:f8:4b:3e:50: a0:44:34:27:10:96:9b:67:e4:62:bf:07:34:51:3d:37:fc:a8: 57:bf:e3:18:bc:3d:a9:95:42:02:44:57:f7:1a:2f:9b:52:c4: a5:24:da:4e:5b:8a:b2:8f:59:52:28:b6:56:f8:3d:4a:b4:37: 0e:15:1b:37:21:82:d3:a9:30:ee:ca:da:45:31:8b:f8:d9:79: e9:0e:94:4b:a2:61:f8:76:14:25:57:46:9a:64:26:7a:34:64: 55:f2:2b:e0 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA1RDcxMTAvBgNVBAUTKDYxRTRGODYxNkI2MjQyNjYxQTkxRjdEMDEyQjZDRDFF NDA5Mzg5MEIwHhcNMjUxMTA1MDQ0MTM3WhcNMjUxMTEyMDQ0MTM3WjAYMRYwFAYD VQQDEw02OTBhZDU4MS1jYWUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/xksyfgYHXQe5s2i1gwwCtS8y8Ybmq1X9AA4UaaChlJohaheYYidoOppaf8 Aso1vk7FR0QoWGLmfh0gQKlF+ey56Af4e6o007go9An1Y1uS3gYSmOqA43Yt2EKy nKPIu4EtM0Z4tZTe6Q0umSsDSWGnzA3eQLomGXL2s80Egd51fYpNc9dDkb778x7c G9g6F3/9OVlk69vPyMz4rHDfBXbtpZmZjTSDzooTQQFA//oBYihObZ42a3WqcEMT tBuqNh79sX6xetWghpVXCEwDOf/broy8Sx9Nzb67UR2sHPravrxv1bYSsLU/gsxJ cm+HumUjMndc3x9LDMC0+eICOwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAIKwaAO S35KchVVvnAKr1pkutufMB8GA1UdIwQYMBaAFGHk+GFrYkJmGpH30BK2zR5Ak4kL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDVENy8zQjUwRjEzMkU1 N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFtWWFrZmZRRXJiTkhrQ1Rp UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1llVDRZV3RpUW1ZYWtmZlFFcmJOSGtDVGlRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDVENy8zQjUwRjEzMkU1N0YxMUVFQUYxRDI5MUJDNEY5QUUwMi9ZZVQ0WVd0aVFt WWFrZmZRRXJiTkhrQ1RpUXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBKYXQFN0wkpXzhWfWOysiX79vahjT1uFvGspWCQnfi1ucH66aYeSjI ihO9EuunHofJ9Rn2hOzXPwD3WjGJRxsyF+HDg7iQgV6Md2uDczugQJOXEkTrIFT6 f5usTYY0vm2giixJFSODjPLMLioYz4JqkPtk/ve1a7Ba1rigpwgpbzLOXYlAME8x 4rPaXaYvCNnm2D9ZncKHeNxfpS3g7/hLPlCgRDQnEJabZ+Rivwc0UT03/KhXv+MY vD2plUICRFf3Gi+bUsSlJNpOW4qyj1lSKLZW+D1KtDcOFRs3IYLTqTDuytpFMYv4 2XnpDpRLomH4dhQlV0aaZCZ6NGRV8ivg -----END CERTIFICATE-----Generated at Wed Nov 5 18:09:26 2025 by rpki-client