$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: O4ARowDSxxLz6GSid3XztW2o6uBlNUBX5HASnG2ehfA= Subject key identifier: 78:00:08:21:54:E5:5C:00:21:97:6D:4E:36:D9:A6:97:E1:B8:C5:5B Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 98 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 96 Signing time: Wed 05 Nov 2025 06:40:55 +0000 Manifest this update: Wed 05 Nov 2025 06:40:55 +0000 Manifest next update: Wed 12 Nov 2025 06:40:55 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: 5yMIBmdfNrCk8Jd4An/Akr4kMx3CmMlyomzXXSBrynA=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:40:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 152 (0x98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Nov 5 06:40:55 2025 GMT Not After : Nov 12 06:40:55 2025 GMT Subject: CN=690af177-ddfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f1:61:44:c1:8a:8b:39:46:2b:ae:7e:48:0d: b5:04:84:c3:93:cd:19:f7:e7:d7:22:7a:89:2d:ce: 50:4b:4f:77:e5:87:31:cf:fa:ee:53:a9:ba:12:35: 5e:10:b5:f6:10:2c:2b:25:35:14:ce:65:90:21:43: 4f:3a:1c:9e:78:05:12:45:3d:e6:8d:f9:85:2e:bc: cc:72:6b:50:6d:75:41:af:e7:c5:1e:e2:e5:92:ce: 77:71:f1:89:51:26:3d:9a:7f:db:bd:c5:66:6d:06: 9c:e3:12:8a:75:55:68:0c:a8:aa:d7:7a:db:30:94: fb:08:e4:0d:b6:46:27:86:01:86:e1:b5:86:7b:c5: 2a:1b:51:97:99:db:e3:f1:15:5e:68:05:0e:9b:27: 05:fd:19:37:61:9b:0e:1f:a0:5f:40:93:0a:7f:a0: 6e:3c:c9:06:c0:eb:f8:e6:a8:50:6a:68:6c:b5:0e: 61:ed:8d:97:e4:d9:de:00:c5:fc:9e:2b:be:83:3a: bc:fd:32:89:9b:0a:f6:c1:a2:0b:d9:f8:0a:99:41: 0d:86:67:c5:5d:51:51:bb:2b:b2:03:17:e4:cd:1b: 93:e7:5b:ec:83:23:97:5a:0c:66:e4:91:54:f1:d6: 14:b8:6d:55:a6:88:97:15:fc:bf:f1:6c:d2:fe:e1: 51:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:00:08:21:54:E5:5C:00:21:97:6D:4E:36:D9:A6:97:E1:B8:C5:5B X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:0a:05:5b:07:1e:e5:cc:ec:ea:66:e5:ee:be:1b:d4:9a:9e: c5:bc:cd:17:cf:c1:6e:35:77:cf:91:d5:13:fb:84:8f:a5:ee: e0:3f:88:6a:5b:82:0f:f2:67:48:8c:dc:41:a9:7b:4b:56:cd: a0:df:c8:24:06:bd:a8:99:1d:c0:2b:ca:b4:6c:6e:36:5d:1b: c4:2c:14:50:39:55:c8:99:46:51:cc:d7:c2:f5:2d:36:b3:28: fc:17:aa:ef:c6:a8:61:9d:91:7c:5d:97:60:61:52:6b:d1:36: d3:93:db:d8:09:b6:cc:d0:9f:83:71:50:18:2f:b0:f1:ee:e3: 98:bb:ee:68:42:75:dd:c0:0e:00:60:97:78:0c:12:41:d5:86: b7:91:30:b2:c6:e6:d9:2e:99:ab:f8:c1:26:e3:9b:9c:d4:44: bb:a1:d5:9f:05:20:36:f4:77:04:81:de:77:c0:5f:78:c7:53: 73:2d:9e:93:44:55:ed:12:9c:00:65:4f:3c:49:6f:43:5a:95: c2:e8:73:a5:ae:6f:44:74:fd:38:e7:87:9e:34:a2:48:5d:63: e8:8b:35:4e:57:7e:c6:6f:44:fd:8e:7d:92:a1:46:2c:2d:0d: dd:79:71:e2:76:36:43:79:5f:55:2b:ec:3d:ea:c7:bc:b1:e9: 54:b1:79:a1 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE3QjAxMTAvBgNVBAUTKENBMjk3NzQ3NDMwQTFCRUIzNDBCQ0EzOUQ2MjIyRkQy NjQxOUI3REIwHhcNMjUxMTA1MDY0MDU1WhcNMjUxMTEyMDY0MDU1WjAYMRYwFAYD VQQDEw02OTBhZjE3Ny1kZGZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtfFhRMGKizlGK65+SA21BITDk80Z9+fXInqJLc5QS0935Ycxz/ruU6m6EjVe ELX2ECwrJTUUzmWQIUNPOhyeeAUSRT3mjfmFLrzMcmtQbXVBr+fFHuLlks53cfGJ USY9mn/bvcVmbQac4xKKdVVoDKiq13rbMJT7COQNtkYnhgGG4bWGe8UqG1GXmdvj 8RVeaAUOmycF/Rk3YZsOH6BfQJMKf6BuPMkGwOv45qhQamhstQ5h7Y2X5NneAMX8 niu+gzq8/TKJmwr2waIL2fgKmUENhmfFXVFRuyuyAxfkzRuT51vsgyOXWgxm5JFU 8dYUuG1VpoiXFfy/8WzS/uFRSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHgACCFU 5VwAIZdtTjbZppfhuMVbMB8GA1UdIwQYMBaAFMopd0dDChvrNAvKOdYiL9JkGbfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTdCMC9FMUFDODIxMEQ4 ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ctczBDOG81MWlJdjBtUVp0 OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTdCMC9FMUFDODIxMEQ4ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ct czBDOG81MWlJdjBtUVp0OXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBRCgVbBx7lzOzqZuXuvhvUmp7FvM0Xz8FuNXfPkdUT+4SPpe7gP4hq W4IP8mdIjNxBqXtLVs2g38gkBr2omR3AK8q0bG42XRvELBRQOVXImUZRzNfC9S02 syj8F6rvxqhhnZF8XZdgYVJr0TbTk9vYCbbM0J+DcVAYL7Dx7uOYu+5oQnXdwA4A YJd4DBJB1Ya3kTCyxubZLpmr+MEm45uc1ES7odWfBSA29HcEgd53wF94x1NzLZ6T RFXtEpwAZU88SW9DWpXC6HOlrm9EdP0454eeNKJIXWPoizVOV37Gb0T9jn2SoUYs LQ3deXHidjZDeV9VK+w96se8selUsXmh -----END CERTIFICATE-----Generated at Wed Nov 5 15:43:52 2025 by rpki-client