$ rpki-client -vvf rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft File: yyTPMxKhYnFYzDraiI5bywxnzqE.mft (raw, json) Hash identifier: zS+PHw43UQWQ/okHO1zQSKQe7c0Gqu6lyl+eo565T+8= Subject key identifier: A7:FB:C1:DE:2E:9A:19:B9:4E:2E:0B:E2:B0:EF:7B:B8:47:0E:98:7F Authority key identifier: CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 Certificate issuer: /CN=A9122342/serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Certificate serial: 09D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft Manifest number: 09CC Signing time: Mon 20 Oct 2025 20:46:45 +0000 Manifest this update: Mon 20 Oct 2025 20:46:44 +0000 Manifest next update: Mon 27 Oct 2025 20:46:44 +0000 Files and hashes: 1: yyTPMxKhYnFYzDraiI5bywxnzqE.crl (hash: EBdjHLQrpV5UcPbQs0CG53Ku98j3MafyNVTedT7dJyg=) 2: 4D23A77E8E8F11EAB30DCA1AC4F9AE02.roa (hash: lg62QlYMqjfdPrlhdfFEapPKxJAEOZfWw6bA0op19ko=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 20:46:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2515 (0x9d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122342, serialNumber=CB24CF3312A1627158CC3ADA888E5BCB0C67CEA1 Validity Not Before: Oct 20 20:46:44 2025 GMT Not After : Oct 27 20:46:44 2025 GMT Subject: CN=68f69fb4-e7af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d5:5d:92:ad:62:cb:d2:42:fb:ec:35:3e:28: 06:7d:eb:61:2e:6a:f6:8c:93:82:af:a7:bd:d5:c9: 0a:09:14:db:c0:90:30:ce:42:d7:f6:a8:aa:6b:00: af:9d:6f:ca:14:ef:08:32:29:dc:40:31:02:3d:ae: 9b:03:c9:a4:82:b8:28:53:80:34:52:cd:f9:7b:42: 6a:86:e0:a7:2a:a1:ba:af:95:d0:f6:cb:67:e9:62: 7e:55:3d:e4:8f:01:9f:33:53:17:e7:3d:91:9c:e5: c8:8e:aa:7f:a1:da:f3:1e:b1:0c:06:88:99:5e:2a: 81:fb:5f:7d:e8:13:28:81:a8:99:94:32:c1:41:45: c0:1f:0a:28:64:eb:5b:1e:50:1a:7b:36:fd:48:41: 3d:a0:6e:b3:76:8d:dd:c7:36:15:29:f7:f7:e0:d1: 2c:e3:9d:85:ea:9c:5e:1c:96:f9:7a:a4:5b:b8:28: de:39:fe:79:83:78:71:1c:60:54:82:92:30:99:ec: 2b:e2:bd:09:7c:8f:a6:bf:60:19:ea:16:04:23:91: 37:37:8b:48:2d:17:f7:da:f7:25:fa:de:96:64:d6: 1b:9d:47:9a:4e:b0:a1:b4:1b:f4:ee:fb:d4:2e:7a: 7f:6b:23:b0:fe:5d:99:8a:1c:81:fb:bf:ec:1f:86: 7f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:FB:C1:DE:2E:9A:19:B9:4E:2E:0B:E2:B0:EF:7B:B8:47:0E:98:7F X509v3 Authority Key Identifier: keyid:CB:24:CF:33:12:A1:62:71:58:CC:3A:DA:88:8E:5B:CB:0C:67:CE:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yyTPMxKhYnFYzDraiI5bywxnzqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122342/0B4100C08E8C11EABD345811C4F9AE02/yyTPMxKhYnFYzDraiI5bywxnzqE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2e:be:be:ab:fa:a6:9f:5b:ab:8e:34:b7:51:aa:79:6f:fd:7c: 6e:b0:fd:62:2a:e0:80:75:41:2c:04:9f:1d:37:8f:1e:fc:f7: a5:ec:2f:10:74:2d:c5:ef:f8:03:fc:a5:7e:77:e1:40:fd:c0: cf:53:ef:05:3c:a0:60:a3:e4:1c:c3:08:0f:91:2d:37:ac:34: f3:f0:51:0c:27:40:13:06:0f:68:dd:eb:d0:6a:4f:d4:c4:68: 31:5a:1b:61:5d:d3:15:77:40:86:7d:89:d3:81:aa:5c:25:df: 3d:04:44:fb:5d:38:6e:f3:4b:33:8f:47:db:1d:52:f6:25:e7: eb:7a:7d:b0:78:bc:01:4b:5a:b9:93:6b:d0:b1:85:34:a3:0e: 4f:ea:22:09:59:82:8e:39:77:97:29:bd:d9:e9:05:20:09:2c: 08:23:3f:78:ba:1e:9b:ae:80:c7:b5:ba:be:35:cf:f2:64:0a: 6b:15:f7:3b:ab:61:4f:a3:07:e7:65:9f:4a:60:bd:64:da:5c: fa:ed:5a:cb:32:7a:60:35:cb:d2:52:42:64:33:30:eb:19:56: cd:7d:fe:60:cc:d0:c0:5e:ce:4c:7a:a4:e4:d0:2a:37:80:15: bd:b7:c2:78:1e:b4:e6:67:33:e2:04:ae:47:ae:7d:56:16:81: 19:58:79:9f -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIzNDIxMTAvBgNVBAUTKENCMjRDRjMzMTJBMTYyNzE1OENDM0FEQTg4OEU1QkNC MEM2N0NFQTEwHhcNMjUxMDIwMjA0NjQ0WhcNMjUxMDI3MjA0NjQ0WjAYMRYwFAYD VQQDEw02OGY2OWZiNC1lN2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAodVdkq1iy9JC++w1PigGfethLmr2jJOCr6e91ckKCRTbwJAwzkLX9qiqawCv nW/KFO8IMincQDECPa6bA8mkgrgoU4A0Us35e0JqhuCnKqG6r5XQ9stn6WJ+VT3k jwGfM1MX5z2RnOXIjqp/odrzHrEMBoiZXiqB+1996BMogaiZlDLBQUXAHwooZOtb HlAaezb9SEE9oG6zdo3dxzYVKff34NEs452F6pxeHJb5eqRbuCjeOf55g3hxHGBU gpIwmewr4r0JfI+mv2AZ6hYEI5E3N4tILRf32vcl+t6WZNYbnUeaTrChtBv07vvU Lnp/ayOw/l2ZihyB+7/sH4Z/awIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKf7wd4u mhm5Ti4L4rDve7hHDph/MB8GA1UdIwQYMBaAFMskzzMSoWJxWMw62oiOW8sMZ86h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjM0Mi8wQjQxMDBDMDhF OEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFluRll6RHJhaUk1Ynl3eG56 cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l5VFBNeEtoWW5GWXpEcmFpSTVieXd4bnpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjM0Mi8wQjQxMDBDMDhFOEMxMUVBQkQzNDU4MTFDNEY5QUUwMi95eVRQTXhLaFlu Rll6RHJhaUk1Ynl3eG56cUUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAuvr6r+qafW6uONLdRqnlv/XxusP1iKuCAdUEsBJ8dN48e/Pel7C8Q dC3F7/gD/KV+d+FA/cDPU+8FPKBgo+QcwwgPkS03rDTz8FEMJ0ATBg9o3evQak/U xGgxWhthXdMVd0CGfYnTgapcJd89BET7XThu80szj0fbHVL2Jefren2weLwBS1q5 k2vQsYU0ow5P6iIJWYKOOXeXKb3Z6QUgCSwIIz94uh6broDHtbq+Nc/yZAprFfc7 q2FPowfnZZ9KYL1k2lz67VrLMnpgNcvSUkJkMzDrGVbNff5gzNDAXs5MeqTk0Co3 gBW9t8J4HrTmZzPiBK5Hrn1WFoEZWHmf -----END CERTIFICATE-----Generated at Tue Oct 21 00:38:21 2025 by rpki-client