$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft File: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft (raw, json) Hash identifier: zW/b3mbcMImytEw6A/Ed2fjDhASXw1BnE3AEq1+JWNc= Subject key identifier: C0:F7:76:19:85:91:70:49:43:F8:7F:BA:D2:A7:B5:38:E4:49:57:80 Authority key identifier: 62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE Certificate issuer: /CN=A91EB46B/serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Certificate serial: 0CC6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft Manifest number: 0CB7 Signing time: Sun 02 Nov 2025 18:14:01 +0000 Manifest this update: Sun 02 Nov 2025 18:14:01 +0000 Manifest next update: Sun 09 Nov 2025 18:14:01 +0000 Files and hashes: 1: Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl (hash: DOQbwuFJM/n7areJGBtMSj1NKvthKhNMWFpJwN4RO54=) 2: BE8369D6053711EA9A24E761C4F9AE02.roa (hash: g/Wu5qsnOXz/tO3fGn1wnKRg6cUfPAvWhJqnHgDxhLA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3270 (0xcc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB46B, serialNumber=622EE75436D6F2F39FB23D2CEB22337184573DFE Validity Not Before: Nov 2 18:14:01 2025 GMT Not After : Nov 9 18:14:01 2025 GMT Subject: CN=69079f69-05f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a9:c9:02:f8:5f:8a:4f:9d:6e:de:56:d2:9d: 13:8c:8b:0a:18:92:65:d5:98:d0:ad:1d:e8:1a:9a: ec:a6:03:61:0d:85:d9:c9:f3:91:67:57:7b:a5:bb: 2d:56:39:8a:96:56:33:fe:08:ee:57:ef:05:a8:e6: bf:46:39:98:d0:7e:df:7a:6e:69:e0:8e:09:c1:a7: 0c:76:2c:2d:fb:75:c4:b3:32:d2:3c:f9:60:48:75: 76:05:fc:18:87:14:2e:c2:03:7d:0b:a7:48:4b:bb: 12:82:4b:22:01:1d:a6:38:59:a2:67:92:d3:48:3b: 05:13:d6:52:6b:13:c5:26:e9:f6:73:24:b4:ab:85: b0:39:f9:39:0a:3c:e3:a0:ef:3b:39:ea:5e:fa:b6: ba:b0:91:03:15:44:e4:2c:2f:e4:fa:0c:b3:39:5b: 44:ef:2b:4e:3a:60:25:50:0c:d1:23:37:f9:fa:58: 3a:c7:16:6a:ec:69:d1:bf:7c:ea:8e:f3:b5:57:8b: ad:57:f0:45:24:a0:cf:ef:a9:81:70:e6:c2:39:57: 53:93:7d:40:b6:a8:c2:9b:7c:3a:cf:09:1f:77:32: 14:86:a1:e2:ce:04:b3:e2:61:08:e4:54:11:2f:74: 3c:ac:58:72:f3:7a:b1:bf:b8:cd:67:cf:8e:e9:0d: 38:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:F7:76:19:85:91:70:49:43:F8:7F:BA:D2:A7:B5:38:E4:49:57:80 X509v3 Authority Key Identifier: keyid:62:2E:E7:54:36:D6:F2:F3:9F:B2:3D:2C:EB:22:33:71:84:57:3D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB46B/4931EE46007D11EAB489131BC4F9AE02/Yi7nVDbW8vOfsj0s6yIzcYRXPf4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:97:90:eb:f6:a7:aa:58:1c:c6:61:00:f2:5f:8d:6b:01:cd: ea:bd:06:83:5b:ee:18:72:cf:b5:01:8e:68:48:65:9d:3e:ba: e6:98:06:05:22:d0:5e:92:b6:17:88:e2:d3:d6:f2:a4:36:67: 44:90:12:61:61:6a:b7:e9:cb:18:88:33:65:a0:9c:ea:27:23: ec:9f:e4:e1:c1:bd:10:e1:9e:61:7a:34:2e:1b:fe:77:e1:dc: d8:76:04:30:f9:8b:16:db:ce:b9:c7:09:63:eb:c2:00:dd:0f: 15:83:99:80:91:00:48:c0:cd:ba:83:64:a2:97:e5:b4:2e:29: 3d:94:b3:5e:c1:46:ea:65:2b:65:a1:41:27:d2:72:ba:51:2b: 4c:ad:8e:00:b4:49:df:0e:35:8e:af:34:50:bd:e0:e1:40:e0: 77:f2:d0:d8:9a:89:c3:75:c6:50:c0:02:5c:7c:a7:d1:56:53: 36:c3:a3:7b:b2:54:b9:c1:bb:36:93:16:4a:ea:b6:c4:8f:a9: 81:c1:7f:33:a5:e5:da:1a:46:0d:ae:2c:e4:4d:c3:f3:af:41: eb:0d:25:dc:7c:17:12:a9:e7:22:ff:7a:b0:29:27:29:5d:87: da:ea:16:58:0a:18:f1:72:4b:4c:93:c9:44:6c:21:7b:86:78: 09:4e:5f:e4 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI0NkIxMTAvBgNVBAUTKDYyMkVFNzU0MzZENkYyRjM5RkIyM0QyQ0VCMjIzMzcx ODQ1NzNERkUwHhcNMjUxMTAyMTgxNDAxWhcNMjUxMTA5MTgxNDAxWjAYMRYwFAYD VQQDEw02OTA3OWY2OS0wNWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2anJAvhfik+dbt5W0p0TjIsKGJJl1ZjQrR3oGprspgNhDYXZyfORZ1d7pbst VjmKllYz/gjuV+8FqOa/RjmY0H7fem5p4I4JwacMdiwt+3XEszLSPPlgSHV2BfwY hxQuwgN9C6dIS7sSgksiAR2mOFmiZ5LTSDsFE9ZSaxPFJun2cyS0q4WwOfk5Cjzj oO87Oepe+ra6sJEDFUTkLC/k+gyzOVtE7ytOOmAlUAzRIzf5+lg6xxZq7GnRv3zq jvO1V4utV/BFJKDP76mBcObCOVdTk31AtqjCm3w6zwkfdzIUhqHizgSz4mEI5FQR L3Q8rFhy83qxv7jNZ8+O6Q04vwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMD3dhmF kXBJQ/h/utKntTjkSVeAMB8GA1UdIwQYMBaAFGIu51Q21vLzn7I9LOsiM3GEVz3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjQ2Qi80OTMxRUU0NjAw N0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2T2ZzajBzNnlJemNZUlhQ ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lpN25WRGJXOHZPZnNqMHM2eUl6Y1lSWFBmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QjQ2Qi80OTMxRUU0NjAwN0QxMUVBQjQ4OTEzMUJDNEY5QUUwMi9ZaTduVkRiVzh2 T2ZzajBzNnlJemNZUlhQZjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAul5Dr9qeqWBzGYQDyX41rAc3qvQaDW+4Ycs+1AY5oSGWdPrrmmAYF ItBekrYXiOLT1vKkNmdEkBJhYWq36csYiDNloJzqJyPsn+Thwb0Q4Z5hejQuG/53 4dzYdgQw+YsW2865xwlj68IA3Q8Vg5mAkQBIwM26g2Sil+W0Lik9lLNewUbqZStl oUEn0nK6UStMrY4AtEnfDjWOrzRQveDhQOB38tDYmonDdcZQwAJcfKfRVlM2w6N7 slS5wbs2kxZK6rbEj6mBwX8zpeXaGkYNrizkTcPzr0HrDSXcfBcSqeci/3qwKScp XYfa6hZYChjxcktMk8lEbCF7hngJTl/k -----END CERTIFICATE-----Generated at Mon Nov 3 18:10:10 2025 by rpki-client