$ rpki-client -vvf rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft File: yAlz0WzMyeGME6aIAz3E0PDmHEo.mft (raw, json) Hash identifier: OsoKuY8Wf8kCjn7Tj5HfL12V6fgaF0PXHYg0hzMeUAI= Subject key identifier: CC:14:58:7E:48:93:81:C7:8A:44:85:8E:CB:A5:C3:94:60:A1:42:19 Authority key identifier: C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A Certificate issuer: /CN=A91657FE/serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Certificate serial: 4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft Manifest number: 49 Signing time: Mon 03 Nov 2025 07:21:49 +0000 Manifest this update: Mon 03 Nov 2025 07:21:49 +0000 Manifest next update: Mon 10 Nov 2025 07:21:49 +0000 Files and hashes: 1: yAlz0WzMyeGME6aIAz3E0PDmHEo.crl (hash: +8pAGnBVjSY22X1VKY59CQcr41iyLBvisMe2HAo6UUg=) 2: BFEE74284D9811F0930F6465C4F9AE02.roa (hash: utYcBcFgJK+aEaHZM9pNCTgsikhCHuFU4gRIhVACRLY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75 (0x4b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91657FE, serialNumber=C80973D16CCCC9E18C13A688033DC4D0F0E61C4A Validity Not Before: Nov 3 07:21:49 2025 GMT Not After : Nov 10 07:21:49 2025 GMT Subject: CN=6908580d-0867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:14:c4:c2:86:e3:46:78:84:43:89:1b:d5: 01:1b:d4:01:17:8c:ed:34:23:3a:c1:0b:cb:f4:f4: 8c:91:ca:ea:fd:77:ab:80:b9:b8:1d:7c:c5:6d:df: df:5d:a7:f7:16:b8:33:01:97:26:a4:dd:0a:e9:22: 33:cd:ba:5f:c5:4b:0f:7c:ab:e8:20:7d:78:06:eb: 2a:2a:a1:61:66:da:97:28:e4:50:39:bf:76:f8:da: 0c:de:8f:a2:5b:5b:98:e5:0b:4d:3d:dd:06:76:83: 19:1d:6c:77:ca:c4:f1:f4:2a:c5:57:38:43:76:d6: 30:ea:33:2a:e4:cf:7f:92:70:3e:51:51:2d:6e:0d: 90:00:3e:e0:36:0b:b5:8e:bf:1c:36:88:29:31:90: 5b:51:6e:6e:27:26:31:78:3d:62:64:4d:8d:db:9c: 1d:1c:aa:96:7f:77:ad:6e:af:1b:96:d1:fa:dc:5a: 70:d0:6e:74:71:22:c0:b1:c3:22:34:7c:7c:16:d8: 4c:b3:2a:33:a8:06:c3:6c:e4:97:d3:7d:38:db:2d: 76:b5:87:fe:d6:af:e6:3f:47:5b:35:50:00:7d:72: 3e:4e:47:93:8a:4d:30:67:aa:fc:10:2a:24:e3:e3: d3:8b:72:1c:f6:83:8b:2f:2a:d0:88:2a:b4:8c:1d: 0d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:14:58:7E:48:93:81:C7:8A:44:85:8E:CB:A5:C3:94:60:A1:42:19 X509v3 Authority Key Identifier: keyid:C8:09:73:D1:6C:CC:C9:E1:8C:13:A6:88:03:3D:C4:D0:F0:E6:1C:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAlz0WzMyeGME6aIAz3E0PDmHEo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91657FE/C08757224D8B11F08EAC5823C4F9AE02/yAlz0WzMyeGME6aIAz3E0PDmHEo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:eb:02:4b:e4:c4:ec:cc:b6:51:80:51:5b:07:16:6a:94:7f: 1f:4c:bc:96:4f:fe:6c:69:4b:61:56:e4:9f:89:54:38:b9:da: c8:2c:8c:a2:33:ba:05:d8:85:7b:1a:27:17:c2:08:52:9a:20: 0c:91:45:b1:c8:82:2e:74:a4:13:97:06:dc:18:b6:2f:b1:63: 1b:5a:43:f9:66:53:54:4a:c9:1e:91:01:ba:93:c8:63:df:b7: 63:3c:8f:97:2a:a6:d4:74:21:02:e7:ca:59:e1:89:e2:19:5a: 4c:1b:31:41:bf:58:fb:64:8a:8e:b0:12:60:fc:f4:7d:30:b5: 9c:6b:ac:8f:27:e3:9f:b0:b0:e4:95:58:76:a1:d0:02:3e:16: 21:84:c7:2b:b0:48:58:d6:8a:67:6d:8b:2e:8c:30:95:09:1b: bd:87:82:d7:50:35:b7:38:89:a6:d0:6e:bb:69:c5:06:77:39: e0:aa:7f:ba:b8:43:3c:c8:f0:d1:ee:d3:b2:53:c7:c3:71:83: 05:82:69:f9:56:07:aa:4f:19:4b:09:10:02:a4:61:cd:6e:49: 33:fa:fb:9d:8d:69:24:d1:49:6d:4a:76:e4:66:58:af:20:f8: 63:26:ac:33:57:28:32:9a:80:ba:8f:85:3b:bd:8c:40:58:23: 81:14:69:76 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBSzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTdGRTExMC8GA1UEBRMoQzgwOTczRDE2Q0NDQzlFMThDMTNBNjg4MDMzREM0RDBG MEU2MUM0QTAeFw0yNTExMDMwNzIxNDlaFw0yNTExMTAwNzIxNDlaMBgxFjAUBgNV BAMTDTY5MDg1ODBkLTA4NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDgiRTEwobjRniEQ4kb1QEb1AEXjO00IzrBC8v09IyRyur9d6uAubgdfMVt399d p/cWuDMBlyak3QrpIjPNul/FSw98q+ggfXgG6yoqoWFm2pco5FA5v3b42gzej6Jb W5jlC0093QZ2gxkdbHfKxPH0KsVXOEN21jDqMyrkz3+ScD5RUS1uDZAAPuA2C7WO vxw2iCkxkFtRbm4nJjF4PWJkTY3bnB0cqpZ/d61urxuW0frcWnDQbnRxIsCxwyI0 fHwW2EyzKjOoBsNs5JfTfTjbLXa1h/7Wr+Y/R1s1UAB9cj5OR5OKTTBnqvwQKiTj 49OLchz2g4svKtCIKrSMHQ3ZAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUzBRYfkiT gceKRIWOy6XDlGChQhkwHwYDVR0jBBgwFoAUyAlz0WzMyeGME6aIAz3E0PDmHEow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1N0ZFL0MwODc1NzIyNEQ4 QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVHTUU2YUlBejNFMFBEbUhF by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUFsejBXek15ZUdNRTZhSUF6M0UwUERtSEVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 N0ZFL0MwODc1NzIyNEQ4QjExRjA4RUFDNTgyM0M0RjlBRTAyL3lBbHowV3pNeWVH TUU2YUlBejNFMFBEbUhFby5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHjrAkvkxOzMtlGAUVsHFmqUfx9MvJZP/mxpS2FW5J+JVDi52sgsjKIz ugXYhXsaJxfCCFKaIAyRRbHIgi50pBOXBtwYti+xYxtaQ/lmU1RKyR6RAbqTyGPf t2M8j5cqptR0IQLnylnhieIZWkwbMUG/WPtkio6wEmD89H0wtZxrrI8n45+wsOSV WHah0AI+FiGExyuwSFjWimdtiy6MMJUJG72HgtdQNbc4iabQbrtpxQZ3OeCqf7q4 QzzI8NHu07JTx8NxgwWCaflWB6pPGUsJEAKkYc1uSTP6+52NaSTRSW1KduRmWK8g +GMmrDNXKDKagLqPhTu9jEBYI4EUaXY= -----END CERTIFICATE-----Generated at Tue Nov 4 18:58:50 2025 by rpki-client