$ rpki-client -vvf rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft File: ygBwrFIB1vandapSXVPY4zDjIJY.mft (raw, json) Hash identifier: gT9ZXlafowHIW0dOGV8uFSKutUY/vQAAIzp6comPBoQ= Subject key identifier: 23:AA:87:61:CC:54:5D:F8:EC:AD:4B:DC:F7:72:DE:A1:05:A4:07:4C Authority key identifier: CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 Certificate issuer: /CN=A9116907/serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Certificate serial: 0223 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft Manifest number: 021B Signing time: Sun 19 Oct 2025 04:28:39 +0000 Manifest this update: Sun 19 Oct 2025 04:28:39 +0000 Manifest next update: Sun 26 Oct 2025 04:28:39 +0000 Files and hashes: 1: ygBwrFIB1vandapSXVPY4zDjIJY.crl (hash: Jxec8wWgUBtbfMxLCBsQc+VO7jfmcNQ/FGLbV83mhN8=) 2: 9DE3DEAEAC9E11EFBAC6A027C4F9AE02.roa (hash: TvtT1Oa3KekcpLOO3lB33TtpOxnVn3h062NADWWRlOE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:28:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 547 (0x223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116907, serialNumber=CA0070AC5201D6F6A775AA525D53D8E330E32096 Validity Not Before: Oct 19 04:28:39 2025 GMT Not After : Oct 26 04:28:39 2025 GMT Subject: CN=68f468f7-1933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:cc:db:d9:56:4c:9d:77:e4:48:b2:1e:fb:92: ac:59:8b:2c:6e:3d:76:e0:8f:73:78:97:ba:0d:a1: b0:94:70:b8:7f:20:cd:23:1f:a9:53:0b:1f:67:fc: 6b:6f:b4:c1:5d:cc:da:d6:1c:78:96:61:16:9c:46: 05:35:1a:fb:7d:69:68:8d:54:d4:61:64:58:87:59: 02:3c:78:2c:57:6e:65:12:ed:3c:fc:73:6d:32:5c: 8a:df:09:ac:1a:5e:97:34:ba:df:f3:5b:dd:b0:94: 7c:e4:4d:fa:34:6a:38:92:a4:a1:e2:1f:4f:c6:2c: fc:6c:8f:93:4d:9b:b2:9a:89:e4:5d:7e:61:97:12: 90:f3:76:00:3b:c6:68:33:fd:c0:57:39:83:50:36: f3:cf:f6:58:fd:d7:0c:f6:bf:86:af:00:6c:30:52: 21:0c:1f:23:13:c7:fd:d4:f6:34:5a:e8:5b:b5:a4: 54:7c:03:46:29:a6:a4:b7:c5:ea:15:ce:f3:af:c3: fb:09:cc:23:f1:f9:8d:03:04:23:45:74:c3:98:b3: 48:5d:8a:e3:7f:cc:0b:26:48:39:47:98:b5:50:72: 96:5d:2a:c4:50:6c:ee:f6:83:c4:fa:2d:5f:76:5c: f3:b9:58:6c:39:69:d5:5c:80:15:8a:ba:d2:b9:08: f1:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:AA:87:61:CC:54:5D:F8:EC:AD:4B:DC:F7:72:DE:A1:05:A4:07:4C X509v3 Authority Key Identifier: keyid:CA:00:70:AC:52:01:D6:F6:A7:75:AA:52:5D:53:D8:E3:30:E3:20:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ygBwrFIB1vandapSXVPY4zDjIJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116907/B56A7CB07AB711ED9B953569C4F9AE02/ygBwrFIB1vandapSXVPY4zDjIJY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5a:d2:00:7b:b6:ff:21:be:b2:c8:60:e2:5a:05:88:13:87:ac: 37:72:f3:3f:15:8d:43:ed:47:61:e6:2d:25:8d:da:6a:39:0f: 78:23:9b:09:ac:a6:9c:9e:89:8c:ca:85:9b:c2:00:dc:bb:47: 1a:7b:39:ae:97:35:b3:72:7b:99:c5:61:38:17:48:c3:de:2e: 82:dd:36:49:24:12:e2:d1:d0:c9:50:32:11:66:df:05:aa:6d: 38:7d:25:cd:0c:de:97:87:ea:5a:a9:63:c7:da:ce:1b:5e:bb: 26:6e:1e:36:f6:40:ac:5d:20:14:df:e7:fd:e4:3c:33:72:bf: 0b:de:2f:78:36:ef:1c:f5:6f:f5:1c:58:89:68:a9:f0:11:59: 83:68:59:14:af:ef:28:22:d6:a5:90:9b:2e:48:0d:8d:f0:53: 05:55:48:5a:93:35:ad:8f:e0:d5:af:91:13:09:ab:3f:b9:76: 41:84:96:e5:e8:07:20:4d:e4:8f:7d:45:d2:4a:1c:e3:36:55: 1d:8d:0c:67:1b:34:af:a2:9c:40:9f:1f:0a:77:fb:d3:1d:d4: a6:4c:19:76:83:23:57:65:1d:97:30:af:84:80:7f:b1:3e:aa: 04:f9:70:3c:d1:78:40:8d:4c:2f:1f:59:09:b4:6e:bd:bd:cc: 56:b9:ab:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY5MDcxMTAvBgNVBAUTKENBMDA3MEFDNTIwMUQ2RjZBNzc1QUE1MjVENTNEOEUz MzBFMzIwOTYwHhcNMjUxMDE5MDQyODM5WhcNMjUxMDI2MDQyODM5WjAYMRYwFAYD VQQDEw02OGY0NjhmNy0xOTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8zb2VZMnXfkSLIe+5KsWYssbj124I9zeJe6DaGwlHC4fyDNIx+pUwsfZ/xr b7TBXcza1hx4lmEWnEYFNRr7fWlojVTUYWRYh1kCPHgsV25lEu08/HNtMlyK3wms Gl6XNLrf81vdsJR85E36NGo4kqSh4h9Pxiz8bI+TTZuymonkXX5hlxKQ83YAO8Zo M/3AVzmDUDbzz/ZY/dcM9r+GrwBsMFIhDB8jE8f91PY0WuhbtaRUfANGKaakt8Xq Fc7zr8P7Ccwj8fmNAwQjRXTDmLNIXYrjf8wLJkg5R5i1UHKWXSrEUGzu9oPE+i1f dlzzuVhsOWnVXIAVirrSuQjxSQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCOqh2HM VF347K1L3Pdy3qEFpAdMMB8GA1UdIwQYMBaAFMoAcKxSAdb2p3WqUl1T2OMw4yCW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjkwNy9CNTZBN0NCMDdB QjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2YW5kYXBTWFZQWTR6RGpJ SlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lnQndyRklCMXZhbmRhcFNYVlBZNHpEaklKWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjkwNy9CNTZBN0NCMDdBQjcxMUVEOUI5NTM1NjlDNEY5QUUwMi95Z0J3ckZJQjF2 YW5kYXBTWFZQWTR6RGpJSlkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBa0gB7tv8hvrLIYOJaBYgTh6w3cvM/FY1D7Udh5i0ljdpqOQ94I5sJ rKacnomMyoWbwgDcu0caezmulzWzcnuZxWE4F0jD3i6C3TZJJBLi0dDJUDIRZt8F qm04fSXNDN6Xh+paqWPH2s4bXrsmbh429kCsXSAU3+f95Dwzcr8L3i94Nu8c9W/1 HFiJaKnwEVmDaFkUr+8oItalkJsuSA2N8FMFVUhakzWtj+DVr5ETCas/uXZBhJbl 6AcgTeSPfUXSShzjNlUdjQxnGzSvopxAnx8Kd/vTHdSmTBl2gyNXZR2XMK+EgH+x PqoE+XA80XhAjUwvH1kJtG69vcxWuas7 -----END CERTIFICATE-----Generated at Mon Oct 20 10:34:37 2025 by rpki-client