$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft File: yL8GWnSCLvjMYvSlTlnVhxILb0c.mft (raw, json) Hash identifier: PIRFb1PNeVoRIzJbfEhmR9hFX5EV8mNPzfCICAENbnk= Subject key identifier: 1F:F2:73:89:4A:22:3C:EC:6E:32:58:42:F6:14:43:6B:20:D3:E7:D6 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft Manifest number: 72 Signing time: Wed 05 Nov 2025 07:06:15 +0000 Manifest this update: Wed 05 Nov 2025 07:06:14 +0000 Manifest next update: Wed 12 Nov 2025 07:06:14 +0000 Files and hashes: 1: yL8GWnSCLvjMYvSlTlnVhxILb0c.crl (hash: O14r1QguQQap24JkNTr44fOxGm3PC98smaY6z5xeaIc=) 2: 4D144B780DFE11F09C46E054C4F9AE02.roa (hash: 4W8JwWYdmlkoGSHKhs2UcR0Dtn0CNiavMVkInr6eJqg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 116 (0x74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Nov 5 07:06:14 2025 GMT Not After : Nov 12 07:06:14 2025 GMT Subject: CN=690af767-b9f7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6e:7a:1f:3f:54:b4:e8:9a:30:46:a7:2b:ca: 8f:6f:44:2e:73:3e:ab:09:cc:c7:ca:e5:10:ee:01: 53:df:9f:7f:28:5d:e5:ac:db:5a:aa:d5:41:29:47: 80:af:dd:8d:64:d3:13:f9:e4:2d:56:13:c2:b4:ce: da:d9:ca:3c:a4:8f:3c:d1:7b:96:a1:e6:30:04:6c: a6:af:b9:bb:4c:06:16:e8:ce:49:3b:80:ac:c9:b9: 1f:f8:2c:e3:dd:07:9f:bf:80:fb:17:81:19:06:bc: 6f:e8:59:15:0b:16:87:fb:58:1b:bb:b7:e7:60:22: 84:ab:e8:95:ad:a1:16:f3:96:04:d7:1a:58:63:33: cf:e4:8b:29:ca:3e:2c:d9:e3:50:66:89:8f:74:2c: cd:89:5a:a0:10:15:1d:0f:3d:89:23:57:46:ea:26: 6f:27:d4:b7:77:cb:50:43:c4:c6:6f:c5:e0:9b:98: c9:4b:c5:c8:d1:60:95:85:be:fa:43:4a:c7:e2:18: b4:72:3b:b9:06:04:81:c2:7a:c1:8e:2c:9c:26:f4: ac:13:45:11:0e:a7:e7:be:ab:64:ad:61:e8:75:26: 83:49:bd:f3:4a:67:17:42:54:b4:e4:1a:ba:bd:c0: ec:14:40:08:d7:db:35:49:e9:aa:0c:cb:db:7e:2f: b3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F2:73:89:4A:22:3C:EC:6E:32:58:42:F6:14:43:6B:20:D3:E7:D6 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:1e:9a:93:a6:97:2d:93:84:4b:20:7a:5d:56:3f:62:42:bb: f2:96:6a:cb:e8:5e:e4:ca:2b:62:dd:d3:03:31:3a:60:c0:72: 9e:6c:10:be:c1:c7:3a:4f:f8:a3:fa:c3:b8:c9:aa:e8:fb:c3: 63:e8:b7:d8:0c:4f:f5:f9:6a:78:70:9f:84:67:6c:ec:61:25: be:f0:1b:ac:22:2b:bf:1d:e9:a3:d8:e7:14:d4:06:6e:20:f3: 8b:9f:30:4b:37:2c:9e:a9:06:e4:9c:7b:c9:d8:1b:c1:83:1a: 6f:6f:d1:32:bb:5b:85:57:ec:20:07:54:e1:46:51:a5:f1:2d: 42:2f:f9:40:4e:2c:11:54:5a:57:d3:b5:8b:e0:ac:ca:d7:dc: e0:63:a7:be:8c:7a:af:01:cf:f3:bc:1d:ea:3d:e3:66:5e:20: 3e:26:bc:13:ca:65:ff:14:00:8a:99:22:1f:5d:4f:ae:55:f4: f2:87:e6:c4:28:99:9d:0f:d6:29:83:f5:be:a8:72:9d:64:96: 99:b1:7d:38:02:6b:0c:61:ed:12:16:05:1e:41:c9:27:0a:c1: f2:95:cf:30:96:3f:07:7a:27:71:c8:7c:4f:f7:b6:a7:fa:7d: dd:a8:77:52:87:c7:41:70:a3:9e:89:df:cf:f9:47:6e:42:6f: c5:e6:5b:0e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBdDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTExMDUwNzA2MTRaFw0yNTExMTIwNzA2MTRaMBgxFjAUBgNV BAMTDTY5MGFmNzY3LWI5ZjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTbnofP1S06JowRqcryo9vRC5zPqsJzMfK5RDuAVPfn38oXeWs21qq1UEpR4Cv 3Y1k0xP55C1WE8K0ztrZyjykjzzRe5ah5jAEbKavubtMBhbozkk7gKzJuR/4LOPd B5+/gPsXgRkGvG/oWRULFof7WBu7t+dgIoSr6JWtoRbzlgTXGlhjM8/kiynKPizZ 41BmiY90LM2JWqAQFR0PPYkjV0bqJm8n1Ld3y1BDxMZvxeCbmMlLxcjRYJWFvvpD SsfiGLRyO7kGBIHCesGOLJwm9KwTRREOp+e+q2StYeh1JoNJvfNKZxdCVLTkGrq9 wOwUQAjX2zVJ6aoMy9t+L7NbAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUH/JziUoi POxuMlhC9hRDayDT59YwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4 NUYxLzZBQTRENjBBMERGQzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZq TVl2U2xUbG5WaHhJTGIwYy5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAAkempOmly2ThEsgel1WP2JCu/KWasvoXuTKK2Ld0wMxOmDAcp5sEL7B xzpP+KP6w7jJquj7w2Pot9gMT/X5anhwn4RnbOxhJb7wG6wiK78d6aPY5xTUBm4g 84ufMEs3LJ6pBuSce8nYG8GDGm9v0TK7W4VX7CAHVOFGUaXxLUIv+UBOLBFUWlfT tYvgrMrX3OBjp76Meq8Bz/O8Heo942ZeID4mvBPKZf8UAIqZIh9dT65V9PKH5sQo mZ0P1imD9b6ocp1klpmxfTgCawxh7RIWBR5ByScKwfKVzzCWPwd6J3HIfE/3tqf6 fd2od1KHx0Fwo56J38/5R25Cb8XmWw4= -----END CERTIFICATE-----Generated at Wed Nov 5 20:06:13 2025 by rpki-client