$ rpki-client -vvf rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft File: iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft (raw, json) Hash identifier: KJvmyEe1eC3xEX4tN2ppbptTXf0yuadDeqNcQGplhs4= Subject key identifier: 9F:F9:9D:7A:E4:F3:4E:58:18:B9:20:F7:0B:F6:40:92:E9:E0:5A:91 Authority key identifier: 8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 Certificate issuer: /CN=A91D3078/serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Certificate serial: 116D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft Manifest number: 1163 Signing time: Tue 04 Nov 2025 17:19:49 +0000 Manifest this update: Tue 04 Nov 2025 17:19:49 +0000 Manifest next update: Tue 11 Nov 2025 17:19:49 +0000 Files and hashes: 1: iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl (hash: rnKLuM3UPnMiTJjk6czlWf9DV5jApjL7FyvbjREYDlA=) 2: 6127B9001FE711ECB8454E83C4F9AE02.roa (hash: +yvtNS8LKQHKe3DTi4wIovOu3eQ4uVvjs9/gUB2eHD0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:19:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4461 (0x116d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D3078, serialNumber=8B261686BD92E2CF6BF548CD35596DEA95FF5833 Validity Not Before: Nov 4 17:19:49 2025 GMT Not After : Nov 11 17:19:49 2025 GMT Subject: CN=690a35b5-90e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:80:d3:c6:96:a4:cd:67:02:1e:2d:26:88:74: a2:03:66:73:73:aa:09:4f:ad:4f:db:01:81:a1:a7: e3:5b:94:60:e2:31:7e:7a:b8:af:50:d8:79:06:5f: 67:a6:61:2a:0d:e0:d5:32:e7:ae:ed:54:76:27:8e: e9:70:dd:87:ba:e7:33:e6:5c:da:28:1a:b2:fb:9e: 69:d5:6b:3b:80:95:cb:f5:f7:b8:dc:8f:36:dd:57: b5:55:ea:78:33:a0:23:a5:ff:ae:4e:28:34:17:74: a5:1a:b7:39:71:88:cf:11:42:e0:a2:97:3d:01:4b: d9:e8:f3:87:59:18:1f:5f:17:eb:73:e3:8e:b2:37: 0a:59:32:85:44:56:bc:d2:84:b8:b9:d2:7e:b1:59: ce:89:4d:b1:b5:0e:94:ae:04:66:17:75:be:2b:e9: e0:a4:51:95:df:c7:52:b6:b8:55:b3:e3:c2:1e:2b: ef:96:02:54:a2:8e:ce:39:a1:25:ba:fc:76:6c:5b: b3:28:38:63:ac:3f:d5:65:dd:82:90:21:24:8e:62: aa:85:48:41:d3:f7:db:b0:96:1f:b3:ac:6b:67:f7: 39:48:fa:24:63:a4:ed:90:01:c6:01:4a:aa:c8:87: f9:78:c5:e3:8e:3f:4d:24:73:09:75:82:27:3a:ee: a1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F9:9D:7A:E4:F3:4E:58:18:B9:20:F7:0B:F6:40:92:E9:E0:5A:91 X509v3 Authority Key Identifier: keyid:8B:26:16:86:BD:92:E2:CF:6B:F5:48:CD:35:59:6D:EA:95:FF:58:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iyYWhr2S4s9r9UjNNVlt6pX_WDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D3078/66C8302C13BC11E9987C4646C4F9AE02/iyYWhr2S4s9r9UjNNVlt6pX_WDM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:8a:41:2a:3a:e2:07:bc:77:86:e4:2a:a9:ce:49:17:68:df: f0:00:bf:5f:4d:81:b0:45:cd:4f:a2:44:2d:69:02:31:49:dc: 44:80:87:47:46:b2:5b:50:e2:fe:51:ee:43:68:00:9a:1e:f2: 4e:00:6f:1f:6f:f6:c5:30:31:00:bd:ee:6e:e6:c4:ab:a1:03: 28:13:7e:e3:50:33:85:34:f7:19:0f:fe:81:c4:97:90:07:1a: 8a:11:fc:fa:a7:ac:bc:97:46:c1:bb:07:c3:98:66:b9:59:7b: 60:46:ce:b0:4e:b4:ba:89:d3:55:ab:8a:f7:69:86:c1:ed:68: 37:09:dc:27:51:63:a4:db:d8:86:95:1b:eb:a8:30:b5:93:76: 06:07:d8:92:74:8b:d7:1f:7b:23:a4:1b:15:eb:41:99:96:e9: ff:08:59:02:49:5c:ea:6a:df:e3:54:dd:0b:bf:59:0c:42:8d: 69:02:81:c3:3b:2f:00:5e:f9:17:e8:1f:d0:f3:94:bf:54:f8: 36:53:63:20:40:0e:a6:cf:cc:f8:96:52:e3:15:51:e1:dc:50: ab:4b:a1:b8:7d:ea:b9:2e:04:f0:1d:a9:f5:78:b4:30:bc:1c: 95:96:4c:2d:9f:d0:c1:07:ee:89:ed:8b:50:09:7d:04:7a:df: ab:dc:a5:86 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICEW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDMwNzgxMTAvBgNVBAUTKDhCMjYxNjg2QkQ5MkUyQ0Y2QkY1NDhDRDM1NTk2REVB OTVGRjU4MzMwHhcNMjUxMTA0MTcxOTQ5WhcNMjUxMTExMTcxOTQ5WjAYMRYwFAYD VQQDEw02OTBhMzViNS05MGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4DTxpakzWcCHi0miHSiA2Zzc6oJT61P2wGBoafjW5Rg4jF+erivUNh5Bl9n pmEqDeDVMueu7VR2J47pcN2Huucz5lzaKBqy+55p1Ws7gJXL9fe43I823Ve1Vep4 M6Ajpf+uTig0F3SlGrc5cYjPEULgopc9AUvZ6POHWRgfXxfrc+OOsjcKWTKFRFa8 0oS4udJ+sVnOiU2xtQ6UrgRmF3W+K+ngpFGV38dStrhVs+PCHivvlgJUoo7OOaEl uvx2bFuzKDhjrD/VZd2CkCEkjmKqhUhB0/fbsJYfs6xrZ/c5SPokY6TtkAHGAUqq yIf5eMXjjj9NJHMJdYInOu6hFQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJ/5nXrk 805YGLkg9wv2QJLp4FqRMB8GA1UdIwQYMBaAFIsmFoa9kuLPa/VIzTVZbeqV/1gz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzA3OC82NkM4MzAyQzEz QkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRzOXI5VWpOTlZsdDZwWF9X RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l5WVdocjJTNHM5cjlVak5OVmx0NnBYX1dETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MzA3OC82NkM4MzAyQzEzQkMxMUU5OTg3QzQ2NDZDNEY5QUUwMi9peVlXaHIyUzRz OXI5VWpOTlZsdDZwWF9XRE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB5ikEqOuIHvHeG5CqpzkkXaN/wAL9fTYGwRc1PokQtaQIxSdxEgIdH RrJbUOL+Ue5DaACaHvJOAG8fb/bFMDEAve5u5sSroQMoE37jUDOFNPcZD/6BxJeQ BxqKEfz6p6y8l0bBuwfDmGa5WXtgRs6wTrS6idNVq4r3aYbB7Wg3CdwnUWOk29iG lRvrqDC1k3YGB9iSdIvXH3sjpBsV60GZlun/CFkCSVzqat/jVN0Lv1kMQo1pAoHD Oy8AXvkX6B/Q85S/VPg2U2MgQA6mz8z4llLjFVHh3FCrS6G4feq5LgTwHan1eLQw vByVlkwtn9DBB+6J7YtQCX0Eet+r3KWG -----END CERTIFICATE-----Generated at Wed Nov 5 12:05:28 2025 by rpki-client