$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: yAqTRIttAsDiQU7w8GM69G9JdUd6aEZxcmCATbOZecY= Subject key identifier: 02:AE:0F:CD:2C:89:AC:CD:E0:A2:65:8E:74:7F:2E:7A:46:7A:BE:33 Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 09F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09EA Signing time: Tue 04 Nov 2025 19:58:49 +0000 Manifest this update: Tue 04 Nov 2025 19:58:48 +0000 Manifest next update: Tue 11 Nov 2025 19:58:48 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: +TheFZFD3bC+XkUYaFWF8O4sI+N4pH3hmOSpbWFqn38=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:58:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2544 (0x9f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Nov 4 19:58:48 2025 GMT Not After : Nov 11 19:58:48 2025 GMT Subject: CN=690a5af8-00dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:d4:96:d4:2c:85:d9:55:61:c9:a1:d8:ad:41: f2:57:fd:ed:e4:b9:c4:43:68:c1:f5:f3:d4:bd:b1: 4b:b8:12:66:0c:72:4b:13:b8:da:6c:be:d8:9e:2a: 21:32:94:de:3a:13:53:20:80:03:3d:a2:8c:0d:be: 1f:51:7f:1a:4c:b5:39:6f:ce:6e:93:1c:1e:fc:05: 09:8d:c1:32:13:fa:a4:82:64:60:3d:34:8b:09:5b: 24:90:b8:b1:a9:94:d7:5c:6d:70:13:a4:17:97:e1: 33:2c:6f:e4:50:16:bc:a0:44:8e:6f:6e:fc:d9:03: 5f:d4:d2:83:40:91:d5:c2:5f:33:d7:90:b1:be:d7: 2b:72:15:ac:02:72:c9:01:5b:3f:85:0d:cb:cb:60: 45:47:e9:1e:94:f7:ca:ed:d8:bd:0c:df:bf:a3:af: ca:ae:d7:b6:b6:cf:c6:10:8d:61:27:a8:cb:8b:47: be:1c:30:34:91:bd:76:dd:86:6b:bc:52:8b:ed:b5: 67:95:10:10:0f:8d:f0:85:9a:d1:ca:cd:fb:02:e5: b3:a7:0d:bb:b5:9a:41:2a:f5:7b:3e:f4:e6:bb:48: 08:d0:8c:79:8d:ff:13:da:bd:41:b1:38:78:d9:6d: a1:d1:95:a9:f8:8a:fb:68:c5:a5:cc:b4:fb:a0:83: 3e:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AE:0F:CD:2C:89:AC:CD:E0:A2:65:8E:74:7F:2E:7A:46:7A:BE:33 X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:76:ab:e2:41:47:cd:25:07:56:8c:67:8d:60:fe:88:1c:82: a9:c0:db:bd:b0:61:63:fb:9a:dc:e3:db:2f:b5:55:45:3e:c8: a2:b9:51:36:a9:4d:c1:cb:70:32:c4:85:0a:ce:c7:96:f9:cf: e2:5b:ce:1a:fe:ea:e0:c6:79:97:7c:32:1f:6c:20:6f:e4:a1: 33:f1:1a:ef:86:71:4b:33:17:f4:60:36:cf:6a:d8:87:fe:89: 69:fd:67:3b:3b:f3:61:40:68:e2:8c:2e:5d:58:51:85:f0:f2: 98:c1:da:ec:6f:b7:89:08:74:db:c2:8f:a4:83:8f:ae:84:e7: a6:16:7a:e4:a9:d8:59:a2:c4:40:76:bf:93:51:de:3e:7f:36: a3:e8:11:4c:a0:a9:2b:af:c9:4e:4d:a0:58:1e:ff:b3:8a:bc: 89:36:1d:fb:83:cc:f5:f7:fe:c7:eb:b2:7f:77:3f:e4:b2:30: 06:b4:e1:8b:fb:e4:14:a7:e0:13:ab:f8:57:50:45:f3:29:69: 21:21:fc:c5:b0:ff:d7:60:d6:4c:29:03:23:d2:54:5b:e2:65: 45:09:fa:86:95:38:30:03:6a:6f:8a:3c:f3:bd:3d:91:0d:af: 74:43:64:06:b8:10:58:4d:1c:18:bf:1a:a5:96:91:d8:c0:ea: e2:4b:52:84 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUxMTA0MTk1ODQ4WhcNMjUxMTExMTk1ODQ4WjAYMRYwFAYD VQQDEw02OTBhNWFmOC0wMGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA69SW1CyF2VVhyaHYrUHyV/3t5LnEQ2jB9fPUvbFLuBJmDHJLE7jabL7Ynioh MpTeOhNTIIADPaKMDb4fUX8aTLU5b85ukxwe/AUJjcEyE/qkgmRgPTSLCVskkLix qZTXXG1wE6QXl+EzLG/kUBa8oESOb2782QNf1NKDQJHVwl8z15CxvtcrchWsAnLJ AVs/hQ3Ly2BFR+kelPfK7di9DN+/o6/Krte2ts/GEI1hJ6jLi0e+HDA0kb123YZr vFKL7bVnlRAQD43whZrRys37AuWzpw27tZpBKvV7PvTmu0gI0Ix5jf8T2r1BsTh4 2W2h0ZWp+Ir7aMWlzLT7oIM+kQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFAKuD80s iazN4KJljnR/LnpGer4zMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAVdqviQUfNJQdWjGeNYP6IHIKpwNu9sGFj+5rc49svtVVFPsiiuVE2 qU3By3AyxIUKzseW+c/iW84a/urgxnmXfDIfbCBv5KEz8RrvhnFLMxf0YDbPatiH /olp/Wc7O/NhQGjijC5dWFGF8PKYwdrsb7eJCHTbwo+kg4+uhOemFnrkqdhZosRA dr+TUd4+fzaj6BFMoKkrr8lOTaBYHv+ziryJNh37g8z19/7H67J/dz/ksjAGtOGL ++QUp+ATq/hXUEXzKWkhIfzFsP/XYNZMKQMj0lRb4mVFCfqGlTgwA2pvijzzvT2R Da90Q2QGuBBYTRwYvxqllpHYwOriS1KE -----END CERTIFICATE-----Generated at Wed Nov 5 05:23:07 2025 by rpki-client