$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft File: yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft (raw, json) Hash identifier: Nc1U50Ds4dosFRZml9JbKRacMwcpo3oxq9wShs4XaW8= Subject key identifier: 15:F6:62:B8:6B:99:9C:34:3A:17:FE:9E:A5:01:BD:87:66:77:09:11 Authority key identifier: C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A Certificate issuer: /CN=A91B3558/serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Certificate serial: 10C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft Manifest number: 10B1 Signing time: Mon 10 Nov 2025 16:50:18 +0000 Manifest this update: Mon 10 Nov 2025 16:50:17 +0000 Manifest next update: Mon 17 Nov 2025 16:50:17 +0000 Files and hashes: 1: yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl (hash: 84lY0Jn6ltc/Q8myybvTfV4BLY3UpF86+7k2udZkUcE=) 2: 9305EF46716511EFAA44E47BC4F9AE02.roa (hash: fEVsLbsqwk43zT4i9cB0QOn6Yu/KoGDrIvPTQDfkam8=) 3: BAE1D7A8716711EFBF91272AC4F9AE02.roa (hash: y8nzjZGMQib7WT4yCqeNAgHbrhJTL2UqXsshegz4sgE=) 4: B9E0D3EA716711EFBF91272AC4F9AE02.roa (hash: D2fBQ+WzSpKBrrM3Q6Z8cohOSpLekw4Ya8dTg5S7nEc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 17 Nov 2025 16:50:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4294 (0x10c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3558, serialNumber=C8909254F69666D585E310ACD8DFF2B1FB9A5F2A Validity Not Before: Nov 10 16:50:17 2025 GMT Not After : Nov 17 16:50:17 2025 GMT Subject: CN=691217ca-72da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:52:e7:56:9c:9c:66:bf:1c:7e:38:95:bf:f3: 8a:66:dc:cf:29:b9:04:5d:7f:9c:55:32:99:cb:1d: 87:ab:dc:f4:68:6e:86:bd:d8:00:f9:e3:eb:fa:ff: ff:d7:98:cb:c6:3f:1b:29:16:cd:e2:76:3d:c4:d2: 0c:4a:b0:a2:36:6d:ef:af:d8:22:bf:ae:fd:36:18: ec:6c:21:a3:67:dd:e5:ab:b8:f4:a3:30:86:30:d1: 56:7d:40:a5:87:37:c8:ff:a1:70:dd:9c:87:1b:18: 36:4c:90:32:ed:e2:e1:30:58:8c:08:fb:34:d5:68: 68:d8:4a:0e:6b:05:2a:59:6b:25:2e:0e:18:15:6e: 7f:9d:ab:09:aa:9e:5b:8d:8a:3f:4a:f0:43:72:48: b9:c9:0a:07:69:f3:6a:71:b4:8a:ba:74:39:32:1c: 60:90:21:e9:14:88:d1:8f:91:0a:3b:c8:22:54:72: 03:f5:12:37:be:88:46:7d:9e:4e:d3:c2:a7:0d:9c: 9c:7d:b2:dd:54:3a:bb:3c:f8:50:b5:05:65:5e:4b: 67:fa:f8:d2:1e:01:53:b8:bf:23:c4:08:15:e3:0f: 21:f7:d9:b3:09:3f:a3:e6:a9:39:c0:ce:36:1d:7a: a1:4b:f2:82:7a:18:b3:49:59:28:66:d2:14:84:5c: d2:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F6:62:B8:6B:99:9C:34:3A:17:FE:9E:A5:01:BD:87:66:77:09:11 X509v3 Authority Key Identifier: keyid:C8:90:92:54:F6:96:66:D5:85:E3:10:AC:D8:DF:F2:B1:FB:9A:5F:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yJCSVPaWZtWF4xCs2N_ysfuaXyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3558/0F21214E390511E99A330233C4F9AE02/yJCSVPaWZtWF4xCs2N_ysfuaXyo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:a1:1e:dc:1c:b6:55:bb:18:97:30:ea:cc:da:a0:18:1b:9b: 58:c5:65:38:57:e7:26:30:b4:96:94:8c:51:5a:9f:e1:14:52: 40:ec:bd:de:a2:78:59:46:c5:a0:bb:39:25:d5:92:bc:65:5b: d1:61:22:16:72:4c:f0:b3:f9:2d:6b:49:4f:0f:b5:7f:d9:35: 2e:b9:f7:0d:41:0c:97:77:32:02:d2:fa:5f:db:d9:90:2f:48: 5d:76:d5:7b:2b:8a:83:a0:04:ea:20:19:61:18:07:ed:58:cc: 8e:64:e5:f8:c6:d8:9e:e3:a6:c2:b0:f4:0d:d4:d5:da:81:46: 98:65:56:1a:c5:c2:04:aa:31:39:a1:8a:69:75:a1:d7:d9:fd: 50:15:5e:f1:e3:86:09:48:e7:7e:60:20:08:9f:c7:fa:6f:e1: 17:31:a4:84:b4:e6:51:32:b6:8d:1f:bf:33:80:a1:80:4a:e7: 5f:0a:b9:72:c4:7e:85:cd:d1:73:73:a5:23:33:02:57:58:72: 77:f9:c5:db:73:7f:e4:f2:f2:34:bb:b5:74:b1:13:0c:0b:24: 48:fd:12:10:a9:cb:25:24:1c:76:08:37:d2:e1:d6:9d:76:66: 73:f7:10:c8:b4:08:bb:3f:53:1b:d0:ca:8c:aa:c1:6a:ee:2a: 70:cb:fd:fe -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM1NTgxMTAvBgNVBAUTKEM4OTA5MjU0RjY5NjY2RDU4NUUzMTBBQ0Q4REZGMkIx RkI5QTVGMkEwHhcNMjUxMTEwMTY1MDE3WhcNMjUxMTE3MTY1MDE3WjAYMRYwFAYD VQQDEw02OTEyMTdjYS03MmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VLnVpycZr8cfjiVv/OKZtzPKbkEXX+cVTKZyx2Hq9z0aG6GvdgA+ePr+v// 15jLxj8bKRbN4nY9xNIMSrCiNm3vr9giv679NhjsbCGjZ93lq7j0ozCGMNFWfUCl hzfI/6Fw3ZyHGxg2TJAy7eLhMFiMCPs01Who2EoOawUqWWslLg4YFW5/nasJqp5b jYo/SvBDcki5yQoHafNqcbSKunQ5MhxgkCHpFIjRj5EKO8giVHID9RI3vohGfZ5O 08KnDZycfbLdVDq7PPhQtQVlXktn+vjSHgFTuL8jxAgV4w8h99mzCT+j5qk5wM42 HXqhS/KCehizSVkoZtIUhFzSPQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFBX2Yrhr mZw0Ohf+nqUBvYdmdwkRMB8GA1UdIwQYMBaAFMiQklT2lmbVheMQrNjf8rH7ml8q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzU1OC8wRjIxMjE0RTM5 MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0V0Y0eENzMk5feXNmdWFY eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lKQ1NWUGFXWnRXRjR4Q3MyTl95c2Z1YVh5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzU1OC8wRjIxMjE0RTM5MDUxMUU5OUEzMzAyMzNDNEY5QUUwMi95SkNTVlBhV1p0 V0Y0eENzMk5feXNmdWFYeW8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFoR7cHLZVuxiXMOrM2qAYG5tYxWU4V+cmMLSWlIxRWp/hFFJA7L3e onhZRsWguzkl1ZK8ZVvRYSIWckzws/kta0lPD7V/2TUuufcNQQyXdzIC0vpf29mQ L0hddtV7K4qDoATqIBlhGAftWMyOZOX4xtie46bCsPQN1NXagUaYZVYaxcIEqjE5 oYppdaHX2f1QFV7x44YJSOd+YCAIn8f6b+EXMaSEtOZRMraNH78zgKGASudfCrly xH6FzdFzc6UjMwJXWHJ3+cXbc3/k8vI0u7V0sRMMCyRI/RIQqcslJBx2CDfS4dad dmZz9xDItAi7P1Mb0MqMqsFq7ipwy/3+ -----END CERTIFICATE-----Generated at Tue Nov 11 21:05:28 2025 by rpki-client