$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft File: yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft (raw, json) Hash identifier: 016hjjx7bFdFnMRETJasbtJoY/19i+S4aB4Bc0m6Ei0= Subject key identifier: 89:46:36:CC:48:29:8A:13:2D:14:08:91:1D:13:84:1C:EA:00:35:5E Authority key identifier: C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 Certificate issuer: /CN=A91AB3E3/serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Certificate serial: 0209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft Manifest number: 0206 Signing time: Mon 03 Nov 2025 02:17:56 +0000 Manifest this update: Mon 03 Nov 2025 02:17:55 +0000 Manifest next update: Mon 10 Nov 2025 02:17:55 +0000 Files and hashes: 1: yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl (hash: vCcJQEuAZ9KqLOQVRVIdDmLIx+Cot7kmClwboPnkWkU=) 2: 1E7B7BB4996C11EDA107E666C4F9AE02.roa (hash: /ERrUArKmo0KgEQ70S3Uf+U0E1QNCp3+3kkOG/O7FLo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:17:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 521 (0x209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E3, serialNumber=C8E0591E7E517D419CFC86171CDCA9FDE626E8F5 Validity Not Before: Nov 3 02:17:55 2025 GMT Not After : Nov 10 02:17:55 2025 GMT Subject: CN=690810d3-cb61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:d9:2f:4c:69:a7:1a:2c:dc:2b:71:6f:17:35: 73:c9:51:e8:87:9f:ce:90:0c:b8:64:37:37:bd:1e: f6:62:6e:7e:0c:23:2d:01:a2:a3:a3:e8:a7:85:5b: db:67:c5:30:74:02:7b:dd:56:3b:e1:6b:7b:ea:fb: 15:4d:33:6f:d6:b1:57:10:c4:77:fe:35:7e:4f:ad: a6:4f:9c:83:42:45:77:6a:c4:b6:d8:db:47:e5:22: 66:22:15:9e:d3:a9:ae:74:7f:78:21:ca:c8:4a:9d: e3:c4:9f:f0:f9:3e:db:17:f6:24:fa:66:f3:79:c0: e7:52:a9:e6:96:24:53:a4:a4:27:2a:87:c0:4d:2c: 3e:ba:56:fb:d9:3d:ad:ce:dc:88:21:d5:7d:06:8f: e8:c7:9a:e7:b0:b9:05:e1:12:b3:ad:ca:11:01:d7: 65:7f:03:d7:04:6b:5e:fc:95:ae:40:b0:6e:d0:d3: ae:c9:af:49:0c:24:53:32:fe:e8:7e:1e:72:54:5f: 92:05:92:b5:03:91:47:f8:b8:c9:e8:3f:11:f9:3c: 3b:ca:f3:52:f5:6d:d3:5f:cc:d1:66:c4:21:1a:3f: 07:f0:bc:9b:10:0e:67:5e:b7:8b:19:23:3f:3f:61: e6:89:2c:5e:b0:94:2c:57:1e:46:50:97:2d:9d:87: e8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:46:36:CC:48:29:8A:13:2D:14:08:91:1D:13:84:1C:EA:00:35:5E X509v3 Authority Key Identifier: keyid:C8:E0:59:1E:7E:51:7D:41:9C:FC:86:17:1C:DC:A9:FD:E6:26:E8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yOBZHn5RfUGc_IYXHNyp_eYm6PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E3/A94624B4996811EDB162F861C4F9AE02/yOBZHn5RfUGc_IYXHNyp_eYm6PU.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:76:6c:f2:80:c3:a6:6a:0b:e3:3c:9a:de:cb:f7:5e:3a:d9: 2d:8e:dd:bb:99:f6:09:c7:79:1b:39:7b:f2:1a:03:b6:19:62: 02:38:4a:6e:ea:95:f5:42:a5:eb:e4:0d:ae:41:27:b1:b7:0c: 6f:40:ff:65:36:a0:78:d2:d4:d5:80:05:45:a5:c9:07:51:69: 2d:03:38:d9:c0:90:55:08:85:93:ef:58:89:51:72:69:fa:b0: 85:69:34:9c:6d:1d:93:59:e0:4a:03:1c:4a:71:b6:89:f1:ca: 05:d6:87:11:03:c6:72:2a:4b:09:fb:22:dc:16:7a:05:29:3f: a0:13:fb:b4:31:2e:c8:6c:bf:2b:1d:45:52:f9:4a:14:7a:f7: a7:ff:cd:82:e0:95:06:ac:ab:a2:92:af:61:2c:8d:bb:69:b8: e9:5f:84:d1:0a:f5:4a:7c:dd:05:34:ff:01:68:95:67:4a:9a: bc:54:bc:44:40:a7:0e:68:0e:95:ca:4d:52:7a:ca:97:ab:fd: b6:3d:40:98:96:34:89:7a:a6:e6:f3:c8:18:f4:7e:95:5f:4d: 3c:c0:92:24:d2:8d:e1:23:51:e5:8b:6c:c5:1c:8e:31:7d:13: 45:d2:21:c3:7a:cb:09:48:9b:57:60:fc:69:4c:da:79:bf:33: 06:35:34:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTMxMTAvBgNVBAUTKEM4RTA1OTFFN0U1MTdENDE5Q0ZDODYxNzFDRENBOUZE RTYyNkU4RjUwHhcNMjUxMTAzMDIxNzU1WhcNMjUxMTEwMDIxNzU1WjAYMRYwFAYD VQQDEw02OTA4MTBkMy1jYjYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5tkvTGmnGizcK3FvFzVzyVHoh5/OkAy4ZDc3vR72Ym5+DCMtAaKjo+inhVvb Z8UwdAJ73VY74Wt76vsVTTNv1rFXEMR3/jV+T62mT5yDQkV3asS22NtH5SJmIhWe 06mudH94IcrISp3jxJ/w+T7bF/Yk+mbzecDnUqnmliRTpKQnKofATSw+ulb72T2t ztyIIdV9Bo/ox5rnsLkF4RKzrcoRAddlfwPXBGte/JWuQLBu0NOuya9JDCRTMv7o fh5yVF+SBZK1A5FH+LjJ6D8R+Tw7yvNS9W3TX8zRZsQhGj8H8LybEA5nXreLGSM/ P2HmiSxesJQsVx5GUJctnYfoTQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIlGNsxI KYoTLRQIkR0ThBzqADVeMB8GA1UdIwQYMBaAFMjgWR5+UX1BnPyGFxzcqf3mJuj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFMy9BOTQ2MjRCNDk5 NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZVR2NfSVlYSE55cF9lWW02 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lPQlpIbjVSZlVHY19JWVhITnlwX2VZbTZQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QjNFMy9BOTQ2MjRCNDk5NjgxMUVEQjE2MkY4NjFDNEY5QUUwMi95T0JaSG41UmZV R2NfSVlYSE55cF9lWW02UFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAndmzygMOmagvjPJrey/deOtktjt27mfYJx3kbOXvyGgO2GWICOEpu 6pX1QqXr5A2uQSextwxvQP9lNqB40tTVgAVFpckHUWktAzjZwJBVCIWT71iJUXJp +rCFaTScbR2TWeBKAxxKcbaJ8coF1ocRA8ZyKksJ+yLcFnoFKT+gE/u0MS7IbL8r HUVS+UoUeven/82C4JUGrKuikq9hLI27abjpX4TRCvVKfN0FNP8BaJVnSpq8VLxE QKcOaA6Vyk1SesqXq/22PUCYljSJeqbm88gY9H6VX008wJIk0o3hI1Hli2zFHI4x fRNF0iHDessJSJtXYPxpTNp5vzMGNTQl -----END CERTIFICATE-----Generated at Mon Nov 3 18:07:20 2025 by rpki-client