$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: lz4iw3t8BqBImL+uSrAz47hH7fVEsjSJc87BmVeqp5I= Subject key identifier: 78:8B:D7:20:AB:AB:6A:A2:7D:CB:DF:23:91:31:8B:41:A0:BA:C3:54 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 71 Signing time: Mon 03 Nov 2025 06:54:57 +0000 Manifest this update: Mon 03 Nov 2025 06:54:56 +0000 Manifest next update: Mon 10 Nov 2025 06:54:56 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: jljzzBrPkRABSBVvNrAYUgeuOrlSiYKYcOFb9bT4+DM=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: 4W8JwWYdmlkoGSHKhs2UcR0Dtn0CNiavMVkInr6eJqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:54:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Nov 3 06:54:56 2025 GMT Not After : Nov 10 06:54:56 2025 GMT Subject: CN=690851c1-c3fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e6:e9:90:64:2a:d9:b9:e5:df:e5:26:fe:99: 84:e1:5d:ab:7c:9f:79:e9:e2:0a:cb:5c:4a:0e:7b: a4:bd:67:41:19:ed:f5:1f:56:1d:f8:ad:6d:ba:70: d1:81:54:d7:82:b5:4f:b7:c6:7c:2d:ff:4c:45:6e: 7f:40:7b:da:c7:49:29:ab:a2:4d:52:47:12:46:60: 1d:7f:1e:93:a0:41:31:e4:0d:99:76:77:1d:5d:55: 95:fc:0a:94:d0:d5:d9:c8:40:9f:33:d6:b5:48:a5: f0:cc:c4:a7:1b:71:b4:27:38:f9:ab:6d:3a:09:dc: a3:0f:03:7b:1a:0e:a3:4d:3a:a6:d1:9d:8a:ac:f3: 80:13:36:f1:a3:38:b8:01:4e:e9:2a:69:95:1e:c5: 7d:09:b7:20:23:5c:04:54:95:51:cf:69:9f:45:fd: 7c:32:0f:4d:f2:68:c8:af:d1:32:25:d1:22:33:75: 70:99:56:5f:ae:5c:59:b8:16:49:b3:93:55:63:04: 71:e4:f4:29:3f:72:b6:55:94:6c:32:d2:60:9c:9c: a3:8b:9e:ec:c9:9e:dc:a6:bd:04:5b:7f:5e:48:a6: 15:61:e0:c1:58:2b:9e:98:4d:a0:4d:08:bb:db:5c: b3:35:9a:50:0e:bf:48:2e:63:2a:bd:ed:9a:8e:81: 80:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:8B:D7:20:AB:AB:6A:A2:7D:CB:DF:23:91:31:8B:41:A0:BA:C3:54 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:2b:c2:ed:b6:9f:36:87:aa:84:b1:06:20:7f:3e:1f:2b:26: 59:a1:e7:e9:e0:2a:19:7c:47:e9:32:8d:5a:e5:49:13:ba:03: c4:49:a7:eb:98:85:cb:0d:46:03:8a:63:26:6e:0d:b3:75:ae: 66:40:79:77:7e:85:c1:4f:09:a5:68:63:b6:32:94:18:9c:ac: da:bc:93:0b:06:56:75:93:25:63:49:4d:69:47:e0:42:9e:f0: a1:af:ac:59:a0:60:e9:86:5b:5a:22:67:25:c7:88:c2:80:f1: 3a:ad:c8:ed:b6:ca:20:28:e1:62:6e:5d:0d:6b:2e:10:c7:19: 38:9e:c9:7b:36:cd:c5:b9:dd:e1:96:28:49:99:42:56:cc:e2: 09:dd:a6:68:21:70:f1:6f:f5:35:92:f2:3f:bd:e6:8f:dc:ad: 84:da:f2:b9:51:9c:d5:48:ee:8b:92:55:4b:03:75:97:55:30: 80:97:8a:2c:4e:bd:8c:e2:04:5c:e3:31:56:f7:fb:25:be:04: 2e:c8:b5:8d:db:40:c3:2b:7d:f1:d4:cb:46:71:c8:37:4d:05: 35:6b:7c:16:5e:f3:23:94:a1:b8:c2:d5:d1:1d:78:d9:2e:9b: 88:11:aa:29:41:6a:e5:c9:84:31:09:84:8e:c5:f9:85:b1:20: bf:f2:2f:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTExMDMwNjU0NTZaFw0yNTExMTAwNjU0NTZaMBgxFjAUBgNV BAMTDTY5MDg1MWMxLWMzZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc5umQZCrZueXf5Sb+mYThXat8n3np4grLXEoOe6S9Z0EZ7fUfVh34rW26cNGB VNeCtU+3xnwt/0xFbn9Ae9rHSSmrok1SRxJGYB1/HpOgQTHkDZl2dx1dVZX8CpTQ 1dnIQJ8z1rVIpfDMxKcbcbQnOPmrbToJ3KMPA3saDqNNOqbRnYqs84ATNvGjOLgB TukqaZUexX0JtyAjXARUlVHPaZ9F/XwyD03yaMiv0TIl0SIzdXCZVl+uXFm4Fkmz k1VjBHHk9Ck/crZVlGwy0mCcnKOLnuzJntymvQRbf15IphVh4MFYK56YTaBNCLvb XLM1mlAOv0guYyq97ZqOgYBBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUeIvXIKur aqJ9y98jkTGLQaC6w1QwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJErwu22nzaHqoSxBiB/Ph8rJlmh5+ngKhl8R+kyjVrlSRO6A8RJp+uY hcsNRgOKYyZuDbN1rmZAeXd+hcFPCaVoY7YylBicrNq8kwsGVnWTJWNJTWlH4EKe 8KGvrFmgYOmGW1oiZyXHiMKA8TqtyO22yiAo4WJuXQ1rLhDHGTieyXs2zcW53eGW KEmZQlbM4gndpmghcPFv9TWS8j+95o/crYTa8rlRnNVI7ouSVUsDdZdVMICXiixO vYziBFzjMVb3+yW+BC7ItY3bQMMrffHUy0ZxyDdNBTVrfBZe8yOUobjC1dEdeNku m4gRqilBauXJhDEJhI7F+YWxIL/yL+g= -----END CERTIFICATE-----Generated at Wed Nov 5 05:22:59 2025 by rpki-client