$ rpki-client -vvf rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft File: YNExg9Od5pVlYCMefgMX5py8bA8.mft (raw, json) Hash identifier: tjF/cBwvy1YcVtG2rYziIr8HIv9hBC1AYJTSPkMoYdc= Subject key identifier: A8:DC:B9:D9:B3:6D:7C:EF:50:5D:FF:B0:3E:EB:5B:55:B6:AB:C8:B3 Authority key identifier: 60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F Certificate issuer: /CN=A9131D31/serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Certificate serial: 111C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft Manifest number: 110B Signing time: Sat 18 Oct 2025 17:49:09 +0000 Manifest this update: Sat 18 Oct 2025 17:49:09 +0000 Manifest next update: Sat 25 Oct 2025 17:49:09 +0000 Files and hashes: 1: YNExg9Od5pVlYCMefgMX5py8bA8.crl (hash: rw3mjHkQyFPHgk3oWl5IZpLJjoBGfnzDZhvzuRNbtFc=) 2: 1F8D757623B811E9971D8168C4F9AE02.roa (hash: teyprXUhhu0eQN/HT8J3s42u5imFw2AiXDxoE1lRwMQ=) 3: BA310DEC23B611E98E5E6062C4F9AE02.roa (hash: Z2LA9kyLWJ5DSZqXR4GtE8WTNPkiU6v9mRONlsKS1tk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:49:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4380 (0x111c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131D31, serialNumber=60D13183D39DE6956560231E7E0317E69CBC6C0F Validity Not Before: Oct 18 17:49:09 2025 GMT Not After : Oct 25 17:49:09 2025 GMT Subject: CN=68f3d315-3b9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:96:0e:52:28:77:e4:a0:65:d2:96:7f:c9:df: a5:c5:71:73:2d:5a:4e:9c:c8:a6:42:cb:20:09:d1: ed:47:1a:71:82:62:ca:3c:47:64:eb:8a:8a:9a:7c: be:b2:2e:e0:b1:ee:39:dc:8d:6b:9c:ec:1a:2c:41: 0f:93:53:3a:bb:86:3f:43:4f:e8:f3:d6:a5:f9:bc: c0:c1:98:1d:3f:28:98:21:a8:1e:73:78:11:8c:cc: fe:4d:21:68:f1:34:7d:da:9f:d2:98:d6:bf:ad:fa: 68:9f:44:40:9e:eb:2f:b7:37:c3:1b:bb:1c:a0:87: a7:85:67:dd:7d:75:cc:cc:d5:9e:26:33:fe:b7:2f: f2:fa:23:18:c3:5d:0f:f2:5f:d7:37:85:29:18:92: db:f4:ec:ad:de:c2:43:96:e0:52:73:66:0b:3d:92: db:7a:39:ec:75:40:f3:52:f0:8c:09:2f:95:28:3c: ee:ff:5e:0b:66:4b:8a:7b:25:88:d7:c7:bf:0b:be: 17:f2:35:56:3e:59:13:20:fe:84:b1:7a:f4:7d:ce: 00:5f:f4:7f:10:d0:74:78:b1:f7:ff:7f:14:08:3c: 50:3b:ce:7d:67:09:62:08:e1:7d:43:82:42:7b:c6: 01:15:41:bb:e9:a9:4c:b5:96:27:5b:2a:bb:4e:63: 81:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:DC:B9:D9:B3:6D:7C:EF:50:5D:FF:B0:3E:EB:5B:55:B6:AB:C8:B3 X509v3 Authority Key Identifier: keyid:60:D1:31:83:D3:9D:E6:95:65:60:23:1E:7E:03:17:E6:9C:BC:6C:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YNExg9Od5pVlYCMefgMX5py8bA8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131D31/65EF296A231311E9A29BB174C4F9AE02/YNExg9Od5pVlYCMefgMX5py8bA8.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:cc:c6:fe:01:92:2e:06:c1:95:30:6d:1a:d4:ab:46:92:54: 57:ef:2c:0d:66:be:d6:4d:c9:fb:1d:d8:e9:60:6a:07:41:a2: 8e:51:f0:b0:dc:3f:1e:2f:99:88:6c:ac:0a:ad:13:10:90:32: 77:44:63:a7:45:aa:1b:11:5c:ae:0d:4e:fb:42:80:c2:b5:13: 23:75:3b:b6:29:dc:95:40:34:f8:34:81:af:b9:b4:83:3b:d1: aa:f0:27:a7:09:4d:12:02:b6:b8:c4:3f:63:5b:1e:96:57:67: ed:b6:2c:d1:4b:96:7c:67:64:be:58:07:e9:b8:52:f3:cc:ce: 38:b1:92:06:ce:02:5a:32:95:5d:ef:c5:43:d4:ad:40:a3:42: 72:1e:a0:79:12:f2:2c:07:04:a5:fc:3e:6a:7d:d4:62:de:e6: 11:01:98:25:48:4e:14:c2:50:fb:ba:bd:e4:7b:85:30:a3:aa: 70:81:75:57:c6:96:aa:61:6e:d3:94:3e:64:6b:cd:72:c3:15: 4d:ff:97:80:dd:c4:92:30:a4:9d:71:7c:b6:78:4a:a2:a9:50: 84:fb:df:9b:38:2e:ef:56:62:a1:8a:1a:1e:b9:e2:ae:72:d7: 27:d9:9d:5a:40:db:da:49:dd:9d:20:05:d0:55:61:d5:35:25: 1e:b9:d2:2e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICERwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFEMzExMTAvBgNVBAUTKDYwRDEzMTgzRDM5REU2OTU2NTYwMjMxRTdFMDMxN0U2 OUNCQzZDMEYwHhcNMjUxMDE4MTc0OTA5WhcNMjUxMDI1MTc0OTA5WjAYMRYwFAYD VQQDEw02OGYzZDMxNS0zYjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7JYOUih35KBl0pZ/yd+lxXFzLVpOnMimQssgCdHtRxpxgmLKPEdk64qKmny+ si7gse453I1rnOwaLEEPk1M6u4Y/Q0/o89al+bzAwZgdPyiYIagec3gRjMz+TSFo 8TR92p/SmNa/rfpon0RAnusvtzfDG7scoIenhWfdfXXMzNWeJjP+ty/y+iMYw10P 8l/XN4UpGJLb9Oyt3sJDluBSc2YLPZLbejnsdUDzUvCMCS+VKDzu/14LZkuKeyWI 18e/C74X8jVWPlkTIP6EsXr0fc4AX/R/ENB0eLH3/38UCDxQO859ZwliCOF9Q4JC e8YBFUG76alMtZYnWyq7TmOB7QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKjcudmz bXzvUF3/sD7rW1W2q8izMB8GA1UdIwQYMBaAFGDRMYPTneaVZWAjHn4DF+acvGwP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUQzMS82NUVGMjk2QTIz MTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVwVmxZQ01lZmdNWDVweThi QTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lORXhnOU9kNXBWbFlDTWVmZ01YNXB5OGJBOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz MUQzMS82NUVGMjk2QTIzMTMxMUU5QTI5QkIxNzRDNEY5QUUwMi9ZTkV4ZzlPZDVw VmxZQ01lZmdNWDVweThiQTgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB8zMb+AZIuBsGVMG0a1KtGklRX7ywNZr7WTcn7HdjpYGoHQaKOUfCw 3D8eL5mIbKwKrRMQkDJ3RGOnRaobEVyuDU77QoDCtRMjdTu2KdyVQDT4NIGvubSD O9Gq8CenCU0SAra4xD9jWx6WV2fttizRS5Z8Z2S+WAfpuFLzzM44sZIGzgJaMpVd 78VD1K1Ao0JyHqB5EvIsBwSl/D5qfdRi3uYRAZglSE4UwlD7ur3ke4Uwo6pwgXVX xpaqYW7TlD5ka81ywxVN/5eA3cSSMKSdcXy2eEqiqVCE+9+bOC7vVmKhihoeueKu ctcn2Z1aQNvaSd2dIAXQVWHVNSUeudIu -----END CERTIFICATE-----Generated at Mon Oct 20 01:44:48 2025 by rpki-client