$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft File: yq3LrMUbKkZS3XMHTygsM00BAnc.mft (raw, json) Hash identifier: gEhA0k9S+n4TT9LHEqLAhE1v4pW9BjOTRxD84PBYQ8g= Subject key identifier: 3F:BB:3B:E4:44:DE:74:3B:F2:DE:56:01:79:A2:49:97:57:54:BF:2C Authority key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 Certificate issuer: /CN=A91DCCB3/serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Certificate serial: 09EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft Manifest number: 09E9 Signing time: Sun 02 Nov 2025 19:51:02 +0000 Manifest this update: Sun 02 Nov 2025 19:51:02 +0000 Manifest next update: Sun 09 Nov 2025 19:51:02 +0000 Files and hashes: 1: yq3LrMUbKkZS3XMHTygsM00BAnc.crl (hash: uhBuTdVHr8piqevKnYPu6UB11JApJkdPN9Y5JS9Suz4=) 2: 57EE11D0895D11EA81B43245C4F9AE02.roa (hash: LX76oihYc6Vcq0IqMjxINDxugVvobb/j/buf30BAPmQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:51:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2543 (0x9ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCCB3, serialNumber=CAADCBACC51B2A4652DD73074F282C334D010277 Validity Not Before: Nov 2 19:51:02 2025 GMT Not After : Nov 9 19:51:02 2025 GMT Subject: CN=6907b626-9856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1c:c2:5b:a3:60:2c:eb:61:62:f8:27:bf:49: 73:3b:55:80:0a:73:ad:5d:8d:93:39:b2:3a:d9:85: 23:31:eb:4d:81:14:0f:a7:4d:55:a7:43:6a:3c:51: 1d:53:af:a2:1a:db:c9:a6:dc:69:69:c9:d6:41:c8: 79:0b:ab:73:96:86:14:e6:e7:a2:23:05:d9:fa:50: 00:a8:96:fa:c6:1d:b4:ab:a3:88:e5:53:86:26:dd: 34:70:97:df:35:0f:7b:ef:e8:c9:cc:d6:6f:7c:b9: e7:7b:a9:a8:1c:74:51:65:f7:e3:ed:f5:07:79:08: 0d:f2:f3:7d:70:5b:13:cd:a9:ea:23:0d:7e:c2:ff: 1c:bc:90:5e:66:ff:83:93:25:c6:e1:e7:77:b5:92: ec:6f:ba:e3:7d:86:7b:4b:ae:b5:5c:0a:6d:93:21: 98:a0:16:a5:e7:ea:b7:23:8b:b7:49:8f:dd:d5:a0: 78:43:fa:38:e5:95:78:55:9b:77:7f:7a:6e:20:43: dc:96:98:1b:87:e1:ba:dd:ed:dc:dc:2c:65:ff:af: 36:a3:a2:d7:62:74:fc:87:05:73:e3:8a:a2:2f:6f: 4e:d3:a1:dd:87:31:5c:20:2f:87:b5:0b:6f:55:68: 2c:1f:eb:af:da:5f:ab:14:d2:9f:09:cf:93:93:20: 0c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BB:3B:E4:44:DE:74:3B:F2:DE:56:01:79:A2:49:97:57:54:BF:2C X509v3 Authority Key Identifier: keyid:CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0b:e5:98:ca:e1:14:e0:db:ca:cd:fe:69:a2:56:d8:fe:d4:e5: 5a:2d:87:9e:3d:83:2d:1b:3d:06:0b:36:b8:66:e4:32:31:b5: 8c:40:4f:2e:d4:06:1e:95:e7:72:9b:b4:13:d6:6b:2e:19:20: 0d:b6:e9:fb:64:dd:6e:70:a1:1f:c6:7d:f3:ae:3a:22:c1:24: fd:fe:b2:3f:de:f9:57:b3:c1:d6:d9:5d:52:3e:7a:b9:a8:61: ae:ef:76:b3:5f:28:f5:95:44:5f:d8:ea:03:99:65:bd:cd:67: 36:26:b5:52:a3:90:e1:d2:b0:a7:8a:ab:c7:8e:74:7b:83:44: c3:5d:a6:62:b8:9d:96:5f:95:82:e5:40:56:e2:16:a3:9c:70: 46:09:fb:7b:dc:e2:c7:02:4c:6d:99:cd:ca:8f:ad:f0:87:37: bd:f7:03:35:d2:52:e4:45:1e:d4:a5:73:0f:18:40:d9:62:c2: c3:60:e1:4f:7b:6d:50:71:00:fc:49:33:4d:bf:1e:a1:fd:4e: d3:d9:93:4e:cb:83:28:53:aa:d8:81:b6:ed:01:a5:97:57:5b: 74:d5:e5:f1:f3:12:4e:b2:9a:7b:b1:82:a8:d8:d1:8d:47:5a: 83:60:50:7a:2a:4e:e0:a3:6c:e0:ed:6f:1c:6e:a2:c7:58:67: 1f:a1:b3:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENDQjMxMTAvBgNVBAUTKENBQURDQkFDQzUxQjJBNDY1MkRENzMwNzRGMjgyQzMz NEQwMTAyNzcwHhcNMjUxMTAyMTk1MTAyWhcNMjUxMTA5MTk1MTAyWjAYMRYwFAYD VQQDEw02OTA3YjYyNi05ODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBzCW6NgLOthYvgnv0lzO1WACnOtXY2TObI62YUjMetNgRQPp01Vp0NqPFEd U6+iGtvJptxpacnWQch5C6tzloYU5ueiIwXZ+lAAqJb6xh20q6OI5VOGJt00cJff NQ977+jJzNZvfLnne6moHHRRZffj7fUHeQgN8vN9cFsTzanqIw1+wv8cvJBeZv+D kyXG4ed3tZLsb7rjfYZ7S661XAptkyGYoBal5+q3I4u3SY/d1aB4Q/o45ZV4VZt3 f3puIEPclpgbh+G63e3c3Cxl/682o6LXYnT8hwVz44qiL29O06HdhzFcIC+HtQtv VWgsH+uv2l+rFNKfCc+TkyAM4wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFD+7O+RE 3nQ78t5WAXmiSZdXVL8sMB8GA1UdIwQYMBaAFMqty6zFGypGUt1zB08oLDNNAQJ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0NCMy80MUZENjAxNjg5 NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktrWlMzWE1IVHlnc00wMEJB bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxM0xyTVViS2taUzNYTUhUeWdzTTAwQkFuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Q0NCMy80MUZENjAxNjg5NUMxMUVBODkwQzYzNDNDNEY5QUUwMi95cTNMck1VYktr WlMzWE1IVHlnc00wMEJBbmMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAL5ZjK4RTg28rN/mmiVtj+1OVaLYeePYMtGz0GCza4ZuQyMbWMQE8u 1AYeledym7QT1msuGSANtun7ZN1ucKEfxn3zrjoiwST9/rI/3vlXs8HW2V1SPnq5 qGGu73azXyj1lURf2OoDmWW9zWc2JrVSo5Dh0rCniqvHjnR7g0TDXaZiuJ2WX5WC 5UBW4hajnHBGCft73OLHAkxtmc3Kj63whze99wM10lLkRR7UpXMPGEDZYsLDYOFP e21QcQD8STNNvx6h/U7T2ZNOy4MoU6rYgbbtAaWXV1t01eXx8xJOspp7sYKo2NGN R1qDYFB6Kk7go2zg7W8cbqLHWGcfobO6 -----END CERTIFICATE-----Generated at Tue Nov 4 19:03:09 2025 by rpki-client