$ rpki-client -vvf rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft File: yil3R0MKG-s0C8o51iIv0mQZt9s.mft (raw, json) Hash identifier: HuXOue49SPYuz8z5Uht5PbKGamXfI2CqEeKm6R9SKZo= Subject key identifier: FB:FA:32:2B:C0:65:C0:04:19:A8:48:1E:A4:E4:71:8B:26:DB:29:08 Authority key identifier: CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB Certificate issuer: /CN=A91417B0/serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Certificate serial: 90 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft Manifest number: 8E Signing time: Sun 19 Oct 2025 09:50:35 +0000 Manifest this update: Sun 19 Oct 2025 09:50:34 +0000 Manifest next update: Sun 26 Oct 2025 09:50:34 +0000 Files and hashes: 1: yil3R0MKG-s0C8o51iIv0mQZt9s.crl (hash: UVxzzlKGhxexK+mIOJHWK8Mw4rBV+xublc+y0KtSyH8=) 2: 5909D86203DB11F0B7D5DD29C4F9AE02.roa (hash: vXg2V9oSq+UecV6UR/hi4Z0CckYReJT3wpjl4H/MqsM=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:50:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91417B0, serialNumber=CA297747430A1BEB340BCA39D6222FD26419B7DB Validity Not Before: Oct 19 09:50:34 2025 GMT Not After : Oct 26 09:50:34 2025 GMT Subject: CN=68f4b46a-c31e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:35:c9:a8:ae:b9:20:48:0d:3a:eb:9e:0e: 9d:85:65:64:11:9e:33:0c:5e:63:fd:e2:e0:6d:ec: c7:63:a2:56:90:20:fd:86:3e:34:1d:9a:9e:24:61: e4:5b:d6:39:a4:05:22:ce:b0:20:51:98:19:69:ac: 4b:c1:9f:65:2a:a6:1b:6b:93:0b:50:11:62:09:86: a5:02:82:22:28:8b:d2:0c:3c:7a:31:69:f8:22:71: 9f:82:15:9d:88:c1:9b:e0:76:38:a2:6c:bc:90:b0: 2c:53:2c:8c:50:16:79:e6:07:40:75:c0:18:96:b7: 3d:1f:86:ba:a1:60:78:cd:c5:9c:b4:82:34:03:16: 6b:04:2c:0d:59:5a:98:ca:21:14:a6:c4:1b:5b:46: 49:b5:88:34:39:fc:53:e4:fd:93:59:70:29:a5:ab: 4d:e5:16:f8:83:37:54:5b:3f:12:34:bb:32:3f:d6: a5:8d:f8:65:2a:92:c2:b2:de:80:de:69:e7:41:d9: 82:65:a2:8b:bd:4b:ad:0d:4e:aa:86:2d:7e:90:af: 59:90:f2:f3:4b:aa:a8:02:43:4b:69:5d:55:6d:49: 5c:a3:c1:fe:f1:af:68:dd:0d:7f:0e:6a:ea:72:54: 18:12:2a:6a:8c:b5:ae:bb:67:d8:89:de:35:12:cc: 02:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:FA:32:2B:C0:65:C0:04:19:A8:48:1E:A4:E4:71:8B:26:DB:29:08 X509v3 Authority Key Identifier: keyid:CA:29:77:47:43:0A:1B:EB:34:0B:CA:39:D6:22:2F:D2:64:19:B7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yil3R0MKG-s0C8o51iIv0mQZt9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91417B0/E1AC8210D88311EF954A3D70C4F9AE02/yil3R0MKG-s0C8o51iIv0mQZt9s.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:aa:e7:cc:a5:31:25:86:cd:20:45:c0:cf:2c:96:c8:c0:75: 6f:bf:88:02:68:11:46:c6:ef:48:0a:5d:64:8a:e7:10:16:f4: db:cb:4b:f1:db:d5:27:af:c7:fc:44:10:33:85:21:c2:ac:17: 48:af:04:a3:f9:d0:84:30:74:db:4a:a3:b1:2d:b6:b9:df:d3: 28:d5:0d:9b:b5:72:22:0c:23:44:cc:ec:d5:78:c4:f3:e5:d3: 19:80:60:f4:46:77:7e:24:94:02:8b:23:4c:a0:ec:df:23:ba: 0f:15:76:30:40:a0:09:07:3c:69:c9:fe:f1:39:17:5a:10:0a: b5:11:ce:67:4f:06:94:2f:62:d0:c0:93:bd:66:f5:04:66:5c: 15:e6:e0:c3:de:ce:6d:20:38:ff:62:fa:fc:64:08:91:f5:91: c4:35:3e:80:f3:96:ec:2f:51:22:70:19:69:b2:a5:a9:31:49: 1c:a2:76:43:17:6f:60:13:86:29:46:c1:66:19:6c:5c:34:a2: 10:95:2e:9e:71:f7:e6:42:98:45:ef:36:ce:c8:b8:0e:31:3c: 48:29:e5:13:f5:cc:3e:2d:ef:71:bd:13:2f:f4:db:9e:44:a8: 10:a4:11:de:1f:39:17:0b:5f:e7:4b:42:42:71:98:bc:00:17: 39:09:81:2d -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE3QjAxMTAvBgNVBAUTKENBMjk3NzQ3NDMwQTFCRUIzNDBCQ0EzOUQ2MjIyRkQy NjQxOUI3REIwHhcNMjUxMDE5MDk1MDM0WhcNMjUxMDI2MDk1MDM0WjAYMRYwFAYD VQQDEw02OGY0YjQ2YS1jMzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXM1yaiuuSBIDTrrng6dhWVkEZ4zDF5j/eLgbezHY6JWkCD9hj40HZqeJGHk W9Y5pAUizrAgUZgZaaxLwZ9lKqYba5MLUBFiCYalAoIiKIvSDDx6MWn4InGfghWd iMGb4HY4omy8kLAsUyyMUBZ55gdAdcAYlrc9H4a6oWB4zcWctII0AxZrBCwNWVqY yiEUpsQbW0ZJtYg0OfxT5P2TWXAppatN5Rb4gzdUWz8SNLsyP9aljfhlKpLCst6A 3mnnQdmCZaKLvUutDU6qhi1+kK9ZkPLzS6qoAkNLaV1VbUlco8H+8a9o3Q1/Dmrq clQYEipqjLWuu2fYid41EswChwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFPv6MivA ZcAEGahIHqTkcYsm2ykIMB8GA1UdIwQYMBaAFMopd0dDChvrNAvKOdYiL9JkGbfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTdCMC9FMUFDODIxMEQ4 ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ctczBDOG81MWlJdjBtUVp0 OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lpbDNSME1LRy1zMEM4bzUxaUl2MG1RWnQ5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MTdCMC9FMUFDODIxMEQ4ODMxMUVGOTU0QTNENzBDNEY5QUUwMi95aWwzUjBNS0ct czBDOG81MWlJdjBtUVp0OXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB7qufMpTElhs0gRcDPLJbIwHVvv4gCaBFGxu9ICl1kiucQFvTby0vx 29Unr8f8RBAzhSHCrBdIrwSj+dCEMHTbSqOxLba539Mo1Q2btXIiDCNEzOzVeMTz 5dMZgGD0Rnd+JJQCiyNMoOzfI7oPFXYwQKAJBzxpyf7xORdaEAq1Ec5nTwaUL2LQ wJO9ZvUEZlwV5uDD3s5tIDj/Yvr8ZAiR9ZHENT6A85bsL1EicBlpsqWpMUkconZD F29gE4YpRsFmGWxcNKIQlS6ecffmQphF7zbOyLgOMTxIKeUT9cw+Le9xvRMv9Nue RKgQpBHeHzkXC1/nS0JCcZi8ABc5CYEt -----END CERTIFICATE-----Generated at Tue Oct 21 08:14:04 2025 by rpki-client