$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft File: 3YoriGVMM2b_5_z2VWqXhgAqpls.mft (raw, json) Hash identifier: prHKsfG9X6oxMZ1Y4qELE6jXzQJE7hU6dc0TIRTlg8k= Subject key identifier: 7B:18:18:23:B2:E4:53:BD:A5:6E:32:DF:1A:27:98:41:1A:E7:B0:35 Authority key identifier: DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B Certificate issuer: /CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Certificate serial: 03D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft Manifest number: 03CD Signing time: Tue 09 Sep 2025 00:44:04 +0000 Manifest this update: Tue 09 Sep 2025 00:44:04 +0000 Manifest next update: Tue 16 Sep 2025 00:44:04 +0000 Files and hashes: 1: 3YoriGVMM2b_5_z2VWqXhgAqpls.crl (hash: ZL21e4jaAq++nG+dihRcDuAyG9RZs+dhlnPU+5R4wKw=) 2: 596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa (hash: ctAElc1BM1zI8owbq6eyFwFyuzNUp7IAey45t5f8jpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 00:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 981 (0x3d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Validity Not Before: Sep 9 00:44:04 2025 GMT Not After : Sep 16 00:44:04 2025 GMT Subject: CN=68bf7854-9fef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fa:79:f8:d6:01:70:8b:65:ea:89:67:4c:db: ff:21:21:83:9d:cd:1e:54:8f:44:a3:b7:50:c9:00: d6:34:48:ce:24:5b:24:11:c5:90:95:fc:33:bf:84: fe:e9:2b:7a:d0:58:c2:c8:26:ad:d8:8a:dc:14:69: f7:68:20:af:7e:95:16:b3:00:14:4a:40:a6:58:96: 92:a4:7c:56:95:c1:55:be:ee:c8:bd:55:45:31:09: b6:ea:40:1d:ee:e4:7b:f7:0c:cf:64:10:27:77:2c: a8:5a:1b:3b:84:06:27:a3:3d:92:56:cd:8a:ec:4d: b9:0c:16:3b:cf:c9:b9:fc:a5:5e:b4:1d:e3:ae:eb: e8:17:bb:c9:41:5d:d2:79:bd:53:a3:4d:82:e5:b6: cf:b7:8c:c4:cf:7b:e8:dd:6c:54:22:b8:76:60:a9: 0b:d2:0a:c6:8b:45:0d:eb:7c:60:a8:04:44:87:7a: 8a:fb:15:91:14:4e:6f:9c:49:6c:31:42:7e:fc:38: df:b4:b7:45:0e:fb:4e:ee:6e:8c:b8:ea:38:b2:f9: 90:9c:c4:1d:f4:2f:ea:b1:d3:60:e5:80:47:59:4e: 9c:72:bf:81:db:27:4c:a2:a1:4c:f4:10:71:45:a2: e7:9a:1d:a1:f6:65:c5:52:74:86:eb:58:83:09:fd: c8:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:18:18:23:B2:E4:53:BD:A5:6E:32:DF:1A:27:98:41:1A:E7:B0:35 X509v3 Authority Key Identifier: keyid:DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption be:0c:7a:91:a5:f6:1d:12:de:a2:00:da:fa:44:af:9d:ca:58: 08:b2:3a:12:87:2e:27:ac:7e:da:63:bf:04:cb:df:66:85:ac: ea:bf:10:87:a3:97:5d:dc:20:dc:24:fc:42:01:8f:26:70:d9: f0:bb:ae:12:7a:20:19:0a:b2:43:90:39:a2:05:20:89:1f:c8: 06:71:d9:69:65:d5:aa:95:d8:4a:83:d9:b3:32:e2:03:88:5e: ff:66:90:b2:08:a0:f8:96:d5:ec:f8:90:e4:7e:44:fe:b6:fd: ef:b2:fc:69:96:71:c7:98:f9:c6:6b:ff:23:2a:88:c5:36:c3: b6:6b:71:51:55:7c:25:1e:34:5c:b6:53:5f:0f:95:f2:81:a3: 92:b7:75:ce:9a:0f:18:26:43:d9:64:9e:81:68:73:e3:9d:19: 1f:4b:77:e7:26:b8:de:50:d2:24:a8:4a:33:8c:c5:38:ed:c3: 78:68:33:9e:ea:ac:e8:f6:88:2e:28:75:bb:fd:d0:0d:fd:58: ae:f2:c0:d2:46:41:f2:08:c5:eb:a0:34:68:75:d4:8d:36:28: 00:c1:d6:ad:76:9d:d9:1c:ca:6b:d9:7f:3d:92:bb:f7:d5:f2: 7a:9b:0f:a0:10:6b:88:a2:93:a1:9e:94:e7:a8:87:c1:48:a3: 3b:19:f7:71 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA9UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKEREOEEyQjg4NjU0QzMzNjZGRkU3RkNGNjU1NkE5Nzg2 MDAyQUE2NUIwHhcNMjUwOTA5MDA0NDA0WhcNMjUwOTE2MDA0NDA0WjAYMRYwFAYD VQQDEw02OGJmNzg1NC05ZmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqfp5+NYBcItl6olnTNv/ISGDnc0eVI9Eo7dQyQDWNEjOJFskEcWQlfwzv4T+ 6St60FjCyCat2IrcFGn3aCCvfpUWswAUSkCmWJaSpHxWlcFVvu7IvVVFMQm26kAd 7uR79wzPZBAndyyoWhs7hAYnoz2SVs2K7E25DBY7z8m5/KVetB3jruvoF7vJQV3S eb1To02C5bbPt4zEz3vo3WxUIrh2YKkL0grGi0UN63xgqAREh3qK+xWRFE5vnEls MUJ+/DjftLdFDvtO7m6MuOo4svmQnMQd9C/qsdNg5YBHWU6ccr+B2ydMoqFM9BBx RaLnmh2h9mXFUnSG61iDCf3IRwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHsYGCOy 5FO9pW4y3xonmEEa57A1MB8GA1UdIwQYMBaAFN2KK4hlTDNm/+f89lVql4YAKqZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS9FODUzMzgyQzlG MTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0yYl81X3oyVldxWGhnQXFw bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZb3JpR1ZNTTJiXzVfejJWV3FYaGdBcXBscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS9FODUzMzgyQzlGMTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0y Yl81X3oyVldxWGhnQXFwbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC+DHqRpfYdEt6iANr6RK+dylgIsjoShy4nrH7aY78Ey99mhazqvxCH o5dd3CDcJPxCAY8mcNnwu64SeiAZCrJDkDmiBSCJH8gGcdlpZdWqldhKg9mzMuID iF7/ZpCyCKD4ltXs+JDkfkT+tv3vsvxplnHHmPnGa/8jKojFNsO2a3FRVXwlHjRc tlNfD5XygaOSt3XOmg8YJkPZZJ6BaHPjnRkfS3fnJrjeUNIkqEozjMU47cN4aDOe 6qzo9oguKHW7/dAN/Viu8sDSRkHyCMXroDRoddSNNigAwdatdp3ZHMpr2X89krv3 1fJ6mw+gEGuIopOhnpTnqIfBSKM7Gfdx -----END CERTIFICATE-----Generated at Tue Sep 9 18:30:59 2025 by rpki-client