$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft File: YB71rSfD3A1NmC22u0dsBsvHAKA.mft (raw, json) Hash identifier: 7iPiAZ/OATKBekmGs+BHeilX48qdinC0fkWHHsqSooY= Subject key identifier: F1:6A:C6:30:63:CB:B4:01:A2:07:B9:51:1D:FA:F3:26:5A:44:36:FD Authority key identifier: 60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 Certificate issuer: /CN=A91BFE4E/serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Certificate serial: CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft Manifest number: CF Signing time: Mon 03 Nov 2025 05:41:19 +0000 Manifest this update: Mon 03 Nov 2025 05:41:18 +0000 Manifest next update: Mon 10 Nov 2025 05:41:18 +0000 Files and hashes: 1: YB71rSfD3A1NmC22u0dsBsvHAKA.crl (hash: 4psjoJtzVmIyjt9IE7i2UfWKAnAJXFEbY5jYTV6gKVc=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:41:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE4E, serialNumber=601EF5AD27C3DC0D4D982DB6BB476C06CBC700A0 Validity Not Before: Nov 3 05:41:18 2025 GMT Not After : Nov 10 05:41:18 2025 GMT Subject: CN=6908407f-205a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:35:cc:40:c8:97:86:f9:74:4b:ce:30:cb:48: e7:8b:b3:a6:c8:86:2a:5a:18:ee:6a:3f:89:cf:06: 3e:6c:db:e4:0f:64:eb:e2:23:3b:92:c3:48:2d:e4: 0f:7a:e3:09:7d:81:1e:5c:93:f2:8c:f9:1b:5a:1d: b9:b0:57:9f:71:b5:61:61:5d:65:c3:47:02:09:fa: a0:a9:c0:48:d2:13:3a:24:44:60:bf:f5:51:43:ba: 90:ec:c3:fe:d5:9b:82:10:58:e4:0a:e3:77:2e:2d: a1:c0:5d:d6:02:ab:07:bb:3d:43:f5:5a:cb:92:0f: ec:5a:be:28:3c:1f:b1:0f:4d:4c:2c:fe:7d:66:33: ac:5b:89:c4:f6:03:40:36:2f:9c:f1:b5:58:0f:21: 6d:36:b0:7c:9e:7a:a5:7a:93:26:6d:c3:e7:bf:54: b9:7c:87:75:31:b1:ee:4d:b5:b9:f2:98:f0:28:cd: d3:fc:56:c7:f5:67:04:c6:75:24:e5:b4:da:bb:81: 5c:34:51:4e:31:ab:97:a6:10:19:91:58:62:98:51: 09:d6:0a:1b:4a:68:63:ed:06:37:e2:0e:5f:0b:59: 6b:9b:72:18:8f:e9:f6:58:53:bc:1d:eb:f0:52:88: f6:0f:d6:1d:2c:95:eb:1c:14:c5:fb:b7:e0:97:23: 62:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6A:C6:30:63:CB:B4:01:A2:07:B9:51:1D:FA:F3:26:5A:44:36:FD X509v3 Authority Key Identifier: keyid:60:1E:F5:AD:27:C3:DC:0D:4D:98:2D:B6:BB:47:6C:06:CB:C7:00:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YB71rSfD3A1NmC22u0dsBsvHAKA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE4E/DA3D71A87BE311EF88D9C753C4F9AE02/YB71rSfD3A1NmC22u0dsBsvHAKA.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:ff:f7:ae:5c:f0:d2:56:a0:7f:b4:30:c2:fa:5e:4f:9a:c6: a3:d3:55:e6:a6:20:26:8c:49:58:45:6b:97:3f:51:cc:d8:5c: 35:0e:ca:7c:7d:f0:11:be:7f:6f:45:82:b4:f4:98:85:d5:10: ba:ca:3d:18:4c:17:38:98:31:e2:50:1b:c6:96:81:07:74:93: 7d:b6:83:a1:49:76:a7:0b:58:2d:54:5d:d4:e4:e2:d4:72:cf: 93:12:db:a3:5c:b8:d6:65:ec:1b:9a:40:c7:71:95:c5:b7:a6: c1:d9:11:8b:49:2e:5b:26:1e:0a:61:34:6b:24:d6:bc:a6:6d: 36:46:6e:e9:47:99:50:b5:15:79:99:36:5c:c5:20:ad:44:49: e6:02:28:5a:ce:c6:c5:34:59:40:ce:67:24:dc:8d:b5:12:a1: a8:b0:b8:8c:76:a5:c8:60:5b:66:2f:51:92:13:c4:52:f8:4b: 1e:44:a2:2f:f2:e2:f8:82:3c:b4:f3:46:70:74:15:f2:3f:d2: 37:8f:55:83:76:59:71:44:29:38:da:59:c5:05:14:3b:76:ab: 28:4f:6e:1d:ea:1f:19:7b:fe:16:fe:1c:c8:c0:0a:1f:fe:9f: 53:a2:b3:c8:5f:92:d5:a8:17:59:a1:53:9f:b2:b1:03:3b:34: 47:65:4c:b5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNEUxMTAvBgNVBAUTKDYwMUVGNUFEMjdDM0RDMEQ0RDk4MkRCNkJCNDc2QzA2 Q0JDNzAwQTAwHhcNMjUxMTAzMDU0MTE4WhcNMjUxMTEwMDU0MTE4WjAYMRYwFAYD VQQDEw02OTA4NDA3Zi0yMDVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5DXMQMiXhvl0S84wy0jni7OmyIYqWhjuaj+JzwY+bNvkD2Tr4iM7ksNILeQP euMJfYEeXJPyjPkbWh25sFefcbVhYV1lw0cCCfqgqcBI0hM6JERgv/VRQ7qQ7MP+ 1ZuCEFjkCuN3Li2hwF3WAqsHuz1D9VrLkg/sWr4oPB+xD01MLP59ZjOsW4nE9gNA Ni+c8bVYDyFtNrB8nnqlepMmbcPnv1S5fId1MbHuTbW58pjwKM3T/FbH9WcExnUk 5bTau4FcNFFOMauXphAZkVhimFEJ1gobSmhj7QY34g5fC1lrm3IYj+n2WFO8Hevw Uoj2D9YdLJXrHBTF+7fglyNiHwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPFqxjBj y7QBoge5UR368yZaRDb9MB8GA1UdIwQYMBaAFGAe9a0nw9wNTZgttrtHbAbLxwCg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU0RS9EQTNENzFBODdC RTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNBMU5tQzIydTBkc0JzdkhB S0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lCNzFyU2ZEM0ExTm1DMjJ1MGRzQnN2SEFLQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RkU0RS9EQTNENzFBODdCRTMxMUVGODhEOUM3NTNDNEY5QUUwMi9ZQjcxclNmRDNB MU5tQzIydTBkc0JzdkhBS0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAm//euXPDSVqB/tDDC+l5Pmsaj01XmpiAmjElYRWuXP1HM2Fw1Dsp8 ffARvn9vRYK09JiF1RC6yj0YTBc4mDHiUBvGloEHdJN9toOhSXanC1gtVF3U5OLU cs+TEtujXLjWZewbmkDHcZXFt6bB2RGLSS5bJh4KYTRrJNa8pm02Rm7pR5lQtRV5 mTZcxSCtREnmAihazsbFNFlAzmck3I21EqGosLiMdqXIYFtmL1GSE8RS+EseRKIv 8uL4gjy080ZwdBXyP9I3j1WDdllxRCk42lnFBRQ7dqsoT24d6h8Ze/4W/hzIwAof /p9TorPIX5LVqBdZoVOfsrEDOzRHZUy1 -----END CERTIFICATE-----Generated at Tue Nov 4 12:42:13 2025 by rpki-client