$ rpki-client -vvf rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft File: y6GXwEyqm9KV9XiEcqahCqP773A.mft (raw, json) Hash identifier: 5iF8xp2MIOfMUu72y2s3WDN17BvZ030GoVO/Ef2W8Jc= Subject key identifier: D2:39:F6:6A:3B:83:D3:4B:BB:73:16:79:A0:E1:F0:B8:01:46:45:EB Authority key identifier: CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 Certificate issuer: /CN=A9143CB3/serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Certificate serial: 1B7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft Manifest number: 1B4C Signing time: Sat 18 Oct 2025 16:38:08 +0000 Manifest this update: Sat 18 Oct 2025 16:38:08 +0000 Manifest next update: Sat 25 Oct 2025 16:38:08 +0000 Files and hashes: 1: y6GXwEyqm9KV9XiEcqahCqP773A.crl (hash: nh+Ha550e5Mo/2Y2kukh2WManDRgWjZdg71WA0H9QjU=) 2: D90961489C1311EFA0BF1480C4F9AE02.roa (hash: oDUDCtB16Or1sjmfh66q9QNKG7wVjA7QhKP9OaRJ6BM=) 3: DE0A76C805B511EE95562E2AC4F9AE02.roa (hash: nIAs30E8H29mzqDFrdKOfE9HHVMVMBE4sIisN1lJHH8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:38:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7034 (0x1b7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143CB3, serialNumber=CBA197C04CAA9BD295F5788472A6A10AA3FBEF70 Validity Not Before: Oct 18 16:38:08 2025 GMT Not After : Oct 25 16:38:08 2025 GMT Subject: CN=68f3c270-09eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:20:51:61:aa:2d:17:91:84:c3:26:96:ce:d7: 3b:1e:3b:b9:14:19:e5:b1:72:9f:96:95:bf:cb:15: 68:d8:60:ae:46:6e:62:8c:2a:17:99:2b:35:dd:64: c5:84:93:ab:65:67:b9:a8:61:f3:3d:55:88:db:d2: d5:82:8f:cb:eb:60:29:aa:a8:52:2f:5f:f0:b6:2f: 9a:18:e4:e2:44:d8:84:ab:bc:a3:3f:1c:a8:1b:48: e4:20:b6:ab:3f:19:28:ce:2a:a1:69:2b:08:1d:5f: cd:90:dd:0d:d5:07:32:f9:8c:50:2f:a3:7e:53:2a: 16:70:23:20:dc:9c:38:4c:3b:52:56:40:1d:b2:c8: 11:41:89:38:7c:67:81:f6:8a:fb:b4:8c:43:79:56: 6f:02:1b:a8:30:94:02:de:1e:3a:38:5f:bc:e4:09: e7:67:35:ad:06:50:93:a4:f5:d3:7c:dd:4c:bf:7f: b5:74:eb:36:52:5d:1b:99:08:03:29:be:47:0f:58: b2:45:d4:54:79:bb:2a:c4:e2:bc:6f:16:f0:52:79: c0:8b:f0:78:85:bf:7d:30:41:89:8c:8c:1e:9f:b0: 69:79:6e:81:90:fe:92:55:7a:7a:a7:4c:26:a8:24: a9:4a:63:0f:33:f1:bd:dd:68:a7:db:e1:37:8e:60: dc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:39:F6:6A:3B:83:D3:4B:BB:73:16:79:A0:E1:F0:B8:01:46:45:EB X509v3 Authority Key Identifier: keyid:CB:A1:97:C0:4C:AA:9B:D2:95:F5:78:84:72:A6:A1:0A:A3:FB:EF:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y6GXwEyqm9KV9XiEcqahCqP773A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143CB3/1DB7983C259D11E785D3250AC4F9AE02/y6GXwEyqm9KV9XiEcqahCqP773A.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4d:d8:ed:36:67:d3:ad:64:1e:d8:6f:cf:37:b3:35:55:35:72: 33:2c:bb:4c:3d:a6:e9:62:a0:8c:11:d8:40:7e:c2:08:1e:19: fa:d4:20:43:e4:ec:7e:a1:88:65:1f:cd:7d:ac:94:51:30:25: aa:9a:c7:9d:d4:45:49:90:cc:0f:b8:e9:89:01:bb:73:aa:d5: 03:5d:b8:bd:e2:ee:28:0a:15:c8:e9:9f:a2:0a:2a:47:11:67: 75:82:8c:43:4b:c9:b6:18:a6:ed:ff:fd:d2:a2:a2:ae:f6:6f: 54:b5:6b:47:b4:31:40:db:04:a3:a3:58:e1:3e:b5:2e:fc:c8: c0:c9:05:95:3c:ed:86:f1:4a:96:18:be:b8:2d:3e:92:d8:2c: f6:65:7a:fe:c0:1a:85:32:58:d9:53:28:40:41:cb:91:ff:38: cd:96:b1:14:48:df:b0:90:a8:45:c3:a1:91:45:2f:59:cd:26: cf:b7:84:d6:10:07:1f:13:5a:39:b9:27:ce:b7:73:76:cd:9c: 42:27:7f:ec:e0:6a:18:f5:6b:04:b8:29:f4:27:1b:99:20:38: 91:f7:75:24:d1:91:e3:81:a5:da:d7:d0:bb:86:96:7f:62:d1: 29:f0:0e:c0:1b:77:01:1b:c8:e2:00:9f:18:a5:ea:88:ec:d0: 24:2b:38:62 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICG3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNDQjMxMTAvBgNVBAUTKENCQTE5N0MwNENBQTlCRDI5NUY1Nzg4NDcyQTZBMTBB QTNGQkVGNzAwHhcNMjUxMDE4MTYzODA4WhcNMjUxMDI1MTYzODA4WjAYMRYwFAYD VQQDEw02OGYzYzI3MC0wOWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwiBRYaotF5GEwyaWztc7Hju5FBnlsXKflpW/yxVo2GCuRm5ijCoXmSs13WTF hJOrZWe5qGHzPVWI29LVgo/L62ApqqhSL1/wti+aGOTiRNiEq7yjPxyoG0jkILar PxkoziqhaSsIHV/NkN0N1Qcy+YxQL6N+UyoWcCMg3Jw4TDtSVkAdssgRQYk4fGeB 9or7tIxDeVZvAhuoMJQC3h46OF+85AnnZzWtBlCTpPXTfN1Mv3+1dOs2Ul0bmQgD Kb5HD1iyRdRUebsqxOK8bxbwUnnAi/B4hb99MEGJjIwen7BpeW6BkP6SVXp6p0wm qCSpSmMPM/G93Win2+E3jmDcxwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNI59mo7 g9NLu3MWeaDh8LgBRkXrMB8GA1UdIwQYMBaAFMuhl8BMqpvSlfV4hHKmoQqj++9w MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0NCMy8xREI3OTgzQzI1 OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05S1Y5WGlFY3FhaENxUDc3 M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k2R1h3RXlxbTlLVjlYaUVjcWFoQ3FQNzczQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 M0NCMy8xREI3OTgzQzI1OUQxMUU3ODVEMzI1MEFDNEY5QUUwMi95NkdYd0V5cW05 S1Y5WGlFY3FhaENxUDc3M0EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBN2O02Z9OtZB7Yb883szVVNXIzLLtMPabpYqCMEdhAfsIIHhn61CBD 5Ox+oYhlH819rJRRMCWqmsed1EVJkMwPuOmJAbtzqtUDXbi94u4oChXI6Z+iCipH EWd1goxDS8m2GKbt//3SoqKu9m9UtWtHtDFA2wSjo1jhPrUu/MjAyQWVPO2G8UqW GL64LT6S2Cz2ZXr+wBqFMljZUyhAQcuR/zjNlrEUSN+wkKhFw6GRRS9ZzSbPt4TW EAcfE1o5uSfOt3N2zZxCJ3/s4GoY9WsEuCn0JxuZIDiR93Uk0ZHjgaXa19C7hpZ/ YtEp8A7AG3cBG8jiAJ8YpeqI7NAkKzhi -----END CERTIFICATE-----Generated at Mon Oct 20 08:58:53 2025 by rpki-client