$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft File: yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft (raw, json) Hash identifier: AxGZUMmZcX9LYnYiGYyxG10m5hiPHZdLHtF/EdZyT2Q= Subject key identifier: 1F:32:F3:F4:93:2F:75:7C:DF:E6:B0:C3:8D:B0:76:7E:B9:10:E5:9F Authority key identifier: CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D Certificate issuer: /CN=A91DE352/serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Certificate serial: 0575 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft Manifest number: 056F Signing time: Sun 02 Nov 2025 23:19:04 +0000 Manifest this update: Sun 02 Nov 2025 23:19:03 +0000 Manifest next update: Sun 09 Nov 2025 23:19:03 +0000 Files and hashes: 1: yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl (hash: 9pB+XBtQcslOD0yGnEl+ZbfPaa3MOsXsjjzWRUDY7Z4=) 2: F1C77A3C73E711ECA415F87FC4F9AE02.roa (hash: azq2/w0vOg+2swjHdLzDRr5hvzTCb3H9CNSdtAvO6hc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1397 (0x575) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE352, serialNumber=CAA6EB99B3FE0EFB65D38F15B2AAE4DC39DAB31D Validity Not Before: Nov 2 23:19:03 2025 GMT Not After : Nov 9 23:19:03 2025 GMT Subject: CN=6907e6e7-c40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ac:97:6c:51:e0:b2:31:3a:2d:53:20:9b:13: f8:c3:20:cf:98:1f:25:cf:bb:1c:1b:37:2d:87:d0: 24:4f:fd:da:6a:5d:e0:b7:73:6c:48:0d:21:8a:73: 9a:9c:b1:06:75:40:52:27:fe:b6:8c:98:71:6b:fa: 98:fd:da:55:06:94:39:bf:3b:5d:4f:80:59:fc:2b: 95:da:7d:a3:ba:a8:62:00:fd:8e:bc:75:96:59:b0: 7d:be:a2:7f:20:15:59:82:b7:01:94:0d:ec:69:78: 2e:df:2d:33:b8:1e:77:f4:c4:77:fe:df:2c:68:c9: 26:c5:d5:c2:ab:e3:dc:24:80:ca:8e:5c:6e:89:34: df:a8:e0:cd:85:3f:d2:7e:48:59:57:e7:82:65:86: ba:5e:d5:57:f0:28:cc:d6:4f:18:70:1d:10:cb:9b: 7b:01:53:fb:0f:6a:5e:4c:6d:ff:cf:3b:75:a5:45: 81:05:f6:69:1e:4d:6d:eb:ea:79:a1:49:1c:6c:c8: c8:42:69:61:0e:16:7c:b5:c7:f8:eb:45:15:bd:b9: 64:d3:68:bf:f0:27:bf:a5:ee:1b:c8:be:0b:cd:b6: a4:f3:76:4e:01:97:fd:04:c8:ff:28:47:f1:7c:84: 38:ed:48:19:2f:5a:1b:06:fa:02:ce:8a:47:85:82: 11:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:32:F3:F4:93:2F:75:7C:DF:E6:B0:C3:8D:B0:76:7E:B9:10:E5:9F X509v3 Authority Key Identifier: keyid:CA:A6:EB:99:B3:FE:0E:FB:65:D3:8F:15:B2:AA:E4:DC:39:DA:B3:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqbrmbP-Dvtl048Vsqrk3Dnasx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE352/C8E22E8A011611EC9CCDE722C4F9AE02/yqbrmbP-Dvtl048Vsqrk3Dnasx0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b6:f2:f4:c0:0f:8f:05:a2:86:8e:11:f5:6e:1a:b9:88:b3:73: d6:2b:03:c6:5a:fa:9e:6c:d6:b5:c4:61:f3:63:e4:13:b2:57: 5a:24:84:15:1e:ec:93:71:a1:a1:91:fa:a8:e3:99:6f:af:c6: ea:08:d9:1d:e4:4d:47:1e:70:bd:59:3d:38:41:7d:9b:83:e0: 63:5d:05:d8:79:8b:5a:4e:d2:ba:44:d4:ea:3c:59:3f:4a:f5: 5e:de:55:65:9f:f0:fb:17:dd:6e:31:f9:f2:4a:a9:b3:84:2f: d5:fc:8f:3d:26:64:75:fb:62:cd:d5:e7:2b:b1:af:7d:d1:8a: f8:19:e8:a6:ac:ce:84:45:b1:9a:ce:5a:63:56:32:04:74:18: 07:10:d2:c9:a7:ea:94:1d:bb:d7:69:f9:bd:0a:08:5d:40:ed: 9e:dd:c5:7f:d9:4b:7b:28:e1:3d:6b:c4:7d:f0:19:6b:52:2d: 3d:6a:8f:be:f5:88:d5:9d:fb:cc:d4:22:ff:f2:36:50:54:5d: 16:f9:19:ce:66:34:dc:38:ee:99:c5:e0:10:37:c3:6b:3e:dc: c6:ad:20:e4:94:b1:4e:c8:91:e3:ed:83:8b:24:bf:3e:f5:4c: f8:74:b7:58:3d:fd:45:f6:2d:eb:b5:89:bb:72:d0:ef:14:af: 16:d0:44:38 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REUzNTIxMTAvBgNVBAUTKENBQTZFQjk5QjNGRTBFRkI2NUQzOEYxNUIyQUFFNERD MzlEQUIzMUQwHhcNMjUxMTAyMjMxOTAzWhcNMjUxMTA5MjMxOTAzWjAYMRYwFAYD VQQDEw02OTA3ZTZlNy1jNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxKyXbFHgsjE6LVMgmxP4wyDPmB8lz7scGzcth9AkT/3aal3gt3NsSA0hinOa nLEGdUBSJ/62jJhxa/qY/dpVBpQ5vztdT4BZ/CuV2n2juqhiAP2OvHWWWbB9vqJ/ IBVZgrcBlA3saXgu3y0zuB539MR3/t8saMkmxdXCq+PcJIDKjlxuiTTfqODNhT/S fkhZV+eCZYa6XtVX8CjM1k8YcB0Qy5t7AVP7D2peTG3/zzt1pUWBBfZpHk1t6+p5 oUkcbMjIQmlhDhZ8tcf460UVvblk02i/8Ce/pe4byL4Lzbak83ZOAZf9BMj/KEfx fIQ47UgZL1obBvoCzopHhYIRTwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFB8y8/ST L3V83+aww42wdn65EOWfMB8GA1UdIwQYMBaAFMqm65mz/g77ZdOPFbKq5Nw52rMd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTM1Mi9DOEUyMkU4QTAx MTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2dGwwNDhWc3FyazNEbmFz eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxYnJtYlAtRHZ0bDA0OFZzcXJrM0RuYXN4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTM1Mi9DOEUyMkU4QTAxMTYxMUVDOUNDREU3MjJDNEY5QUUwMi95cWJybWJQLUR2 dGwwNDhWc3FyazNEbmFzeDAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQC28vTAD48FooaOEfVuGrmIs3PWKwPGWvqebNa1xGHzY+QTsldaJIQV HuyTcaGhkfqo45lvr8bqCNkd5E1HHnC9WT04QX2bg+BjXQXYeYtaTtK6RNTqPFk/ SvVe3lVln/D7F91uMfnySqmzhC/V/I89JmR1+2LN1ecrsa990Yr4GeimrM6ERbGa zlpjVjIEdBgHENLJp+qUHbvXafm9CghdQO2e3cV/2Ut7KOE9a8R98BlrUi09ao++ 9YjVnfvM1CL/8jZQVF0W+RnOZjTcOO6ZxeAQN8NrPtzGrSDklLFOyJHj7YOLJL8+ 9Uz4dLdYPf1F9i3rtYm7ctDvFK8W0EQ4 -----END CERTIFICATE-----Generated at Tue Nov 4 07:23:40 2025 by rpki-client