$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft File: 3YoriGVMM2b_5_z2VWqXhgAqpls.mft (raw, json) Hash identifier: nMkK0+o6vweb+S6NzBDNsUT12VYFShkmfqNjozkE6S8= Subject key identifier: DC:96:3F:33:03:A8:4B:7A:AA:BF:59:5A:FE:CB:29:70:6C:6B:F3:AC Authority key identifier: DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B Certificate issuer: /CN=A91CFAB9/serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Certificate serial: 03F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft Manifest number: 03E8 Signing time: Mon 03 Nov 2025 00:31:14 +0000 Manifest this update: Mon 03 Nov 2025 00:31:14 +0000 Manifest next update: Mon 10 Nov 2025 00:31:14 +0000 Files and hashes: 1: 3YoriGVMM2b_5_z2VWqXhgAqpls.crl (hash: xdC2sHKaUb1OpKHT7btYnkEDH1BRj+rJBjYAcudNk8w=) 2: 596CCC4E9F1911EC8FDFEA7DC4F9AE02.roa (hash: ctAElc1BM1zI8owbq6eyFwFyuzNUp7IAey45t5f8jpA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 00:31:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1008 (0x3f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFAB9, serialNumber=DD8A2B88654C3366FFE7FCF6556A9786002AA65B Validity Not Before: Nov 3 00:31:14 2025 GMT Not After : Nov 10 00:31:14 2025 GMT Subject: CN=6907f7d2-00e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:de:10:67:cd:30:0a:a6:8d:27:ad:e8:08:9e: 5c:6b:ac:5b:3e:7d:a9:9d:09:f3:6b:74:52:2b:c2: ab:db:9f:b8:ae:7c:94:4d:23:7a:5d:f5:72:61:6d: 39:69:a4:da:7b:d6:20:a8:d6:8e:d7:ec:77:e6:7c: 41:1f:84:c7:b8:38:ee:f5:eb:bb:e4:42:82:78:55: 50:c4:4c:14:42:3e:92:34:cd:cc:26:17:8a:79:22: 00:78:79:bc:00:b0:db:54:14:f7:db:bd:cb:e0:cb: f8:73:32:82:5a:a2:5c:db:50:7d:31:2d:92:e5:36: 13:51:85:6a:56:e4:8a:d0:4f:39:06:0f:01:36:5e: 5f:9b:22:22:17:2b:00:7b:17:5c:7b:df:d1:11:6b: a3:e4:7e:0b:cd:6d:b6:3a:a1:66:d6:8c:a0:28:2e: fc:ab:6a:22:99:64:44:ac:d4:03:70:54:bf:c6:3c: b1:de:8f:46:fb:7a:2b:6e:96:8e:55:3f:59:14:a2: cd:ad:98:96:7d:4e:1d:68:63:12:29:1d:28:2c:d9: 6e:03:c9:45:a4:39:5a:88:c6:29:95:b6:ec:e2:10: 8d:4d:8f:88:96:47:c6:0f:4c:4d:54:70:2b:36:df: 24:4d:ea:a6:a1:73:e0:f2:a9:9e:f3:e1:23:0d:53: 8f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:96:3F:33:03:A8:4B:7A:AA:BF:59:5A:FE:CB:29:70:6C:6B:F3:AC X509v3 Authority Key Identifier: keyid:DD:8A:2B:88:65:4C:33:66:FF:E7:FC:F6:55:6A:97:86:00:2A:A6:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3YoriGVMM2b_5_z2VWqXhgAqpls.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFAB9/E853382C9F1311EC9E45D572C4F9AE02/3YoriGVMM2b_5_z2VWqXhgAqpls.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:8e:cd:c8:97:fc:31:c2:fa:b4:df:18:f5:94:57:c0:41:7f: 47:2a:7f:1d:f3:23:e0:12:0f:b6:97:23:4c:21:fa:62:a6:c8: ff:2b:09:f9:35:16:14:53:c6:2d:74:ac:37:6a:ed:aa:98:59: ff:b4:c6:6c:08:62:52:09:8c:aa:c5:d4:37:ef:77:83:eb:8e: 93:60:31:1c:1b:7a:14:95:b1:07:28:a7:bc:0a:c1:f2:70:86: ba:8d:1f:62:4f:81:36:77:39:67:25:b4:f7:0c:b2:df:e0:3e: 51:f0:f6:45:a7:46:f9:21:ba:5d:7c:77:c9:53:c8:bd:57:20: 4c:ea:e5:26:f9:49:89:23:8f:af:3c:7b:4e:2f:79:0b:c1:b9: 1f:0b:a4:3e:59:1f:91:53:cf:e4:f1:35:7a:53:37:3d:3b:9f: 64:11:0f:a3:3b:53:de:50:c2:68:85:e4:dc:07:e7:0e:94:b7: fa:f5:1b:18:44:6e:4b:47:ef:13:8c:bf:00:2c:84:92:e7:98: fb:17:55:36:8a:f3:a3:b8:b0:6a:45:11:ae:23:ba:89:36:ed: 40:c2:65:a8:8e:01:5d:1b:e5:aa:86:e8:3d:d9:e8:cd:69:89: 9a:69:59:7c:c3:ca:8d:bd:ce:5a:84:fc:de:74:6d:ea:c5:ee: b1:ed:ff:e8 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICA/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZBQjkxMTAvBgNVBAUTKEREOEEyQjg4NjU0QzMzNjZGRkU3RkNGNjU1NkE5Nzg2 MDAyQUE2NUIwHhcNMjUxMTAzMDAzMTE0WhcNMjUxMTEwMDAzMTE0WjAYMRYwFAYD VQQDEw02OTA3ZjdkMi0wMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0d4QZ80wCqaNJ63oCJ5ca6xbPn2pnQnza3RSK8Kr25+4rnyUTSN6XfVyYW05 aaTae9YgqNaO1+x35nxBH4THuDju9eu75EKCeFVQxEwUQj6SNM3MJheKeSIAeHm8 ALDbVBT3273L4Mv4czKCWqJc21B9MS2S5TYTUYVqVuSK0E85Bg8BNl5fmyIiFysA exdce9/REWuj5H4LzW22OqFm1oygKC78q2oimWRErNQDcFS/xjyx3o9G+3orbpaO VT9ZFKLNrZiWfU4daGMSKR0oLNluA8lFpDlaiMYplbbs4hCNTY+IlkfGD0xNVHAr Nt8kTeqmoXPg8qme8+EjDVOPCwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNyWPzMD qEt6qr9ZWv7LKXBsa/OsMB8GA1UdIwQYMBaAFN2KK4hlTDNm/+f89lVql4YAKqZb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkFCOS9FODUzMzgyQzlG MTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0yYl81X3oyVldxWGhnQXFw bHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNZb3JpR1ZNTTJiXzVfejJWV3FYaGdBcXBscy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkFCOS9FODUzMzgyQzlGMTMxMUVDOUU0NUQ1NzJDNEY5QUUwMi8zWW9yaUdWTU0y Yl81X3oyVldxWGhnQXFwbHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAUjs3Il/wxwvq03xj1lFfAQX9HKn8d8yPgEg+2lyNMIfpipsj/Kwn5 NRYUU8YtdKw3au2qmFn/tMZsCGJSCYyqxdQ373eD646TYDEcG3oUlbEHKKe8CsHy cIa6jR9iT4E2dzlnJbT3DLLf4D5R8PZFp0b5IbpdfHfJU8i9VyBM6uUm+UmJI4+v PHtOL3kLwbkfC6Q+WR+RU8/k8TV6Uzc9O59kEQ+jO1PeUMJoheTcB+cOlLf69RsY RG5LR+8TjL8ALISS55j7F1U2ivOjuLBqRRGuI7qJNu1AwmWojgFdG+Wqhug92ejN aYmaaVl8w8qNvc5ahPzedG3qxe6x7f/o -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:03 2025 by rpki-client