$ rpki-client -vvf rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft File: yozvXh2MPaWsm67lsZbvBmCaOVk.mft (raw, json) Hash identifier: XwPXx+cqr9buLJe6i8n5SEidUQmptnHvJSpWaDSgZ1w= Subject key identifier: BC:4C:E2:B9:13:D5:98:0E:32:37:43:4E:FE:D4:29:90:91:40:FC:B1 Authority key identifier: CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 Certificate issuer: /CN=A911B5BA/serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Certificate serial: 0B6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft Manifest number: 0B68 Signing time: Mon 20 Oct 2025 19:46:42 +0000 Manifest this update: Mon 20 Oct 2025 19:46:41 +0000 Manifest next update: Mon 27 Oct 2025 19:46:41 +0000 Files and hashes: 1: yozvXh2MPaWsm67lsZbvBmCaOVk.crl (hash: k5w/3QjwrPQ2UslJ8wYZlbQ5yY1ZIug8smkepSlGcUA=) 2: 410BAD2095F011EFA9137C67C4F9AE02.roa (hash: 3u5hviV9wYqSDD6MZKgqds2XhBaPvlTgTPQdfbhFev0=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2923 (0xb6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B5BA, serialNumber=CA8CEF5E1D8C3DA5AC9BAEE5B196EF06609A3959 Validity Not Before: Oct 20 19:46:41 2025 GMT Not After : Oct 27 19:46:41 2025 GMT Subject: CN=68f691a1-a205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e6:e5:ba:dd:94:7a:31:21:d0:46:f8:13:5b: f3:c3:d5:64:32:15:2f:4f:0b:13:cd:ae:79:5c:76: 1a:ce:3b:85:b2:ef:23:0d:d7:9c:59:42:3d:88:f4: 0e:be:f6:ec:79:b8:e1:3b:82:ae:8c:78:a4:c1:90: be:10:66:a0:05:e3:46:f9:eb:a7:a4:1d:e1:0e:f4: 8c:50:aa:98:27:e5:2a:84:89:60:27:1b:10:fd:0b: 4e:e5:e9:9a:e0:eb:24:36:35:1d:de:39:1a:db:4b: fc:18:47:0e:60:7d:71:73:27:73:c4:1d:f1:80:5b: 85:33:5e:4c:f1:82:8c:75:70:54:4e:76:51:ae:e3: a9:d8:49:41:8e:7b:f3:27:cf:1d:c2:99:a9:7b:af: ee:20:f9:90:d0:01:d6:dd:13:46:d1:86:63:a9:03: b7:28:86:c5:f9:ab:95:92:85:80:29:90:e5:ac:6e: 7f:a7:fc:16:34:60:e2:b4:24:ca:d2:9c:e6:46:c4: 63:f9:a4:b1:13:b2:8d:dd:1c:6a:bc:4a:8a:24:2b: c8:21:f0:f2:7b:7f:2b:52:ec:b5:89:91:c5:3f:ca: 68:bf:b7:f7:08:ce:fb:6a:54:a5:47:f1:20:3e:02: f2:4e:d1:78:43:07:18:36:ba:72:e0:a1:51:b1:af: a8:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:4C:E2:B9:13:D5:98:0E:32:37:43:4E:FE:D4:29:90:91:40:FC:B1 X509v3 Authority Key Identifier: keyid:CA:8C:EF:5E:1D:8C:3D:A5:AC:9B:AE:E5:B1:96:EF:06:60:9A:39:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yozvXh2MPaWsm67lsZbvBmCaOVk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B5BA/93E2FB0C3DA311EAA4DC3A59C4F9AE02/yozvXh2MPaWsm67lsZbvBmCaOVk.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:bf:9b:d1:6c:c7:54:7e:cb:99:f2:8f:a3:3f:f9:0e:f3:60: 1f:5c:65:e8:11:a9:6e:56:06:b6:30:27:a0:9e:11:ff:b5:ce: 4b:ec:e8:74:69:c5:40:24:74:b0:10:7e:14:4d:20:49:b0:5d: e0:56:81:cb:dc:40:11:d8:cb:a8:51:ff:7b:ff:4f:81:e4:0e: eb:fa:d8:30:21:30:19:bd:40:b2:2d:c9:37:ce:53:61:d3:60: ac:9f:1f:ae:63:b7:10:16:2e:a4:9f:38:0d:39:6e:10:ad:41: ce:8f:1f:9a:c7:8a:72:a7:5d:2e:fa:d8:93:20:9f:62:35:15: ad:6c:65:1c:85:3b:d0:34:cf:d7:b2:a1:e3:ef:0c:5a:a8:2b: 93:29:d2:ee:c4:a2:49:1a:af:1e:02:09:da:de:6f:ac:fc:03: bd:e8:93:c5:7f:ab:2b:74:07:42:08:23:ff:8b:00:6e:62:f2: 22:c2:3a:2e:7c:a8:68:b2:f5:8c:67:87:b7:7a:78:ba:5b:75: df:c3:02:95:49:10:90:88:de:9f:05:42:b5:95:4d:20:4d:c7: f0:7e:47:d0:ac:3b:47:0c:44:ef:46:26:b0:42:04:6e:13:49: 99:12:0a:1c:7c:2d:c4:75:b7:c8:fc:f0:52:c4:ff:26:0f:d0: d7:36:53:9b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICC2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI1QkExMTAvBgNVBAUTKENBOENFRjVFMUQ4QzNEQTVBQzlCQUVFNUIxOTZFRjA2 NjA5QTM5NTkwHhcNMjUxMDIwMTk0NjQxWhcNMjUxMDI3MTk0NjQxWjAYMRYwFAYD VQQDEw02OGY2OTFhMS1hMjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApublut2UejEh0Eb4E1vzw9VkMhUvTwsTza55XHYazjuFsu8jDdecWUI9iPQO vvbsebjhO4KujHikwZC+EGagBeNG+eunpB3hDvSMUKqYJ+UqhIlgJxsQ/QtO5ema 4OskNjUd3jka20v8GEcOYH1xcydzxB3xgFuFM15M8YKMdXBUTnZRruOp2ElBjnvz J88dwpmpe6/uIPmQ0AHW3RNG0YZjqQO3KIbF+auVkoWAKZDlrG5/p/wWNGDitCTK 0pzmRsRj+aSxE7KN3RxqvEqKJCvIIfDye38rUuy1iZHFP8pov7f3CM77alSlR/Eg PgLyTtF4QwcYNrpy4KFRsa+ozQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLxM4rkT 1ZgOMjdDTv7UKZCRQPyxMB8GA1UdIwQYMBaAFMqM714djD2lrJuu5bGW7wZgmjlZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjVCQS85M0UyRkIwQzNE QTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBhV3NtNjdsc1pidkJtQ2FP VmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvenZYaDJNUGFXc202N2xzWmJ2Qm1DYU9Way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QjVCQS85M0UyRkIwQzNEQTMxMUVBQTREQzNBNTlDNEY5QUUwMi95b3p2WGgyTVBh V3NtNjdsc1pidkJtQ2FPVmsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCav5vRbMdUfsuZ8o+jP/kO82AfXGXoEaluVga2MCegnhH/tc5L7Oh0 acVAJHSwEH4UTSBJsF3gVoHL3EAR2MuoUf97/0+B5A7r+tgwITAZvUCyLck3zlNh 02Csnx+uY7cQFi6knzgNOW4QrUHOjx+ax4pyp10u+tiTIJ9iNRWtbGUchTvQNM/X sqHj7wxaqCuTKdLuxKJJGq8eAgna3m+s/AO96JPFf6srdAdCCCP/iwBuYvIiwjou fKhosvWMZ4e3eni6W3XfwwKVSRCQiN6fBUK1lU0gTcfwfkfQrDtHDETvRiawQgRu E0mZEgocfC3EdbfI/PBSxP8mD9DXNlOb -----END CERTIFICATE-----Generated at Mon Oct 20 23:34:57 2025 by rpki-client