$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft File: y4244fF7x3I0bdn_uyByz6j9plI.mft (raw, json) Hash identifier: TtUvwSWQHgGGS72jVRf/vAsNTv18IZENB93mONxj9rQ= Subject key identifier: D4:A9:E2:CA:EC:76:DF:0D:CC:0A:2D:B8:C5:82:D0:3B:9D:7C:5E:67 Authority key identifier: CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 Certificate issuer: /CN=A91DB7E9/serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Certificate serial: 0182 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft Manifest number: 0182 Signing time: Wed 05 Nov 2025 03:49:52 +0000 Manifest this update: Wed 05 Nov 2025 03:49:51 +0000 Manifest next update: Wed 12 Nov 2025 03:49:51 +0000 Files and hashes: 1: y4244fF7x3I0bdn_uyByz6j9plI.crl (hash: 68420nplQ+5yyAORmPQ+x4p/LIZqHA3FRYKYx5GnOk0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 386 (0x182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB7E9, serialNumber=CB8DB8E1F17BC772346DD9FFBB2072CFA8FDA652 Validity Not Before: Nov 5 03:49:51 2025 GMT Not After : Nov 12 03:49:51 2025 GMT Subject: CN=690ac960-ab50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:18:f0:ed:cb:68:bb:43:2a:10:1c:7c:db:a7: 6f:56:6b:f4:c9:da:15:b1:74:82:b8:e1:b3:44:34: 62:ad:79:87:cd:70:0f:48:68:8c:51:e5:dc:36:52: c6:fd:7f:dd:41:e6:d7:f1:85:1a:99:90:6f:c5:fd: 1c:37:3d:d0:86:53:12:5e:20:61:90:56:7f:76:6d: 03:72:03:c4:0b:c0:a2:43:32:99:d8:f9:01:52:dd: 38:54:41:e9:76:fa:7e:65:24:00:3a:88:06:a8:17: 12:ce:62:42:bc:d5:45:a2:60:bf:7f:c6:9a:32:0b: a2:c7:d1:b4:94:25:82:6e:57:97:07:a7:fb:7a:a2: 82:84:da:e8:26:0e:3d:ca:53:3b:86:9a:8d:08:ed: dc:57:9a:8e:b4:11:d2:4a:d2:93:3d:9c:7e:a5:ce: c1:0b:ff:63:1c:a7:01:cb:50:ac:2c:2e:62:a1:97: 86:d4:c4:7f:a4:65:30:51:8f:ee:d9:63:5c:40:7f: 37:5b:a9:10:97:14:1d:72:84:4d:51:09:e0:18:1f: fd:a7:1e:c0:d5:e4:a4:13:6e:cf:6c:e8:7c:9a:fe: bf:74:f5:de:13:0e:98:9c:66:0a:b7:f4:69:41:9e: 57:5d:42:f4:bd:d1:8d:a0:c0:91:5c:45:fc:de:8c: c6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A9:E2:CA:EC:76:DF:0D:CC:0A:2D:B8:C5:82:D0:3B:9D:7C:5E:67 X509v3 Authority Key Identifier: keyid:CB:8D:B8:E1:F1:7B:C7:72:34:6D:D9:FF:BB:20:72:CF:A8:FD:A6:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/y4244fF7x3I0bdn_uyByz6j9plI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB7E9/E0C461306E2E11EE85D92D32C4F9AE02/y4244fF7x3I0bdn_uyByz6j9plI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 41:76:6a:a5:e3:52:dd:c4:33:6b:35:47:15:97:3c:53:bb:e2: 7e:78:ed:fe:61:1e:53:6c:f8:15:d5:14:b9:79:9d:f7:07:e3: 9f:b1:15:2f:45:a4:98:6a:91:49:5e:77:64:fc:20:f0:af:ed: a7:54:e7:52:31:20:e9:40:e0:d0:13:cb:ed:96:37:07:80:8d: d9:30:a3:0d:69:a2:d3:08:29:a6:b9:be:fc:7e:a8:01:32:66: 63:35:b6:96:06:63:ba:b3:39:61:b9:ba:c4:ad:72:f3:59:b9: c3:a7:34:99:24:6d:7e:c5:7c:91:39:a7:7e:0a:2e:11:00:27: 2c:67:85:13:a9:de:a8:b7:1a:32:ec:dd:93:9f:3c:94:ae:0a: 86:90:94:0e:c0:b1:b0:dd:ef:8d:10:12:2f:2e:8e:a8:c8:8e: a8:41:03:1a:8f:a5:a1:07:8d:71:7a:32:bf:da:ac:e5:7a:7a: 51:d8:69:8c:4a:06:b7:d5:2b:f7:07:9b:5a:36:8e:5d:a6:68: b8:a1:1f:cb:53:d6:90:7c:10:a8:ed:6e:4e:e1:7e:56:8d:ff: ba:49:d9:20:c9:cf:75:21:8f:9f:35:96:33:1f:50:bf:8d:54: da:82:a6:43:83:de:9e:a3:b2:9e:91:2b:a4:1e:6a:91:6e:48: 8f:b4:52:20 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAYIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI3RTkxMTAvBgNVBAUTKENCOERCOEUxRjE3QkM3NzIzNDZERDlGRkJCMjA3MkNG QThGREE2NTIwHhcNMjUxMTA1MDM0OTUxWhcNMjUxMTEyMDM0OTUxWjAYMRYwFAYD VQQDEw02OTBhYzk2MC1hYjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7xjw7ctou0MqEBx826dvVmv0ydoVsXSCuOGzRDRirXmHzXAPSGiMUeXcNlLG /X/dQebX8YUamZBvxf0cNz3QhlMSXiBhkFZ/dm0DcgPEC8CiQzKZ2PkBUt04VEHp dvp+ZSQAOogGqBcSzmJCvNVFomC/f8aaMguix9G0lCWCbleXB6f7eqKChNroJg49 ylM7hpqNCO3cV5qOtBHSStKTPZx+pc7BC/9jHKcBy1CsLC5ioZeG1MR/pGUwUY/u 2WNcQH83W6kQlxQdcoRNUQngGB/9px7A1eSkE27PbOh8mv6/dPXeEw6YnGYKt/Rp QZ5XXUL0vdGNoMCRXEX83ozGuQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNSp4srs dt8NzAotuMWC0DudfF5nMB8GA1UdIwQYMBaAFMuNuOHxe8dyNG3Z/7sgcs+o/aZS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjdFOS9FMEM0NjEzMDZF MkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gzSTBiZG5fdXlCeXo2ajlw bEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3k0MjQ0ZkY3eDNJMGJkbl91eUJ5ejZqOXBsSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QjdFOS9FMEM0NjEzMDZFMkUxMUVFODVEOTJEMzJDNEY5QUUwMi95NDI0NGZGN3gz STBiZG5fdXlCeXo2ajlwbEkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBBdmql41LdxDNrNUcVlzxTu+J+eO3+YR5TbPgV1RS5eZ33B+OfsRUv RaSYapFJXndk/CDwr+2nVOdSMSDpQODQE8vtljcHgI3ZMKMNaaLTCCmmub78fqgB MmZjNbaWBmO6szlhubrErXLzWbnDpzSZJG1+xXyROad+Ci4RACcsZ4UTqd6otxoy 7N2TnzyUrgqGkJQOwLGw3e+NEBIvLo6oyI6oQQMaj6WhB41xejK/2qzlenpR2GmM Sga31Sv3B5taNo5dpmi4oR/LU9aQfBCo7W5O4X5Wjf+6Sdkgyc91IY+fNZYzH1C/ jVTagqZDg96eo7KekSukHmqRbkiPtFIg -----END CERTIFICATE-----Generated at Wed Nov 5 15:17:17 2025 by rpki-client