$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft File: 03yc1lDAIKNQDtybQKVGqEw_Jgs.mft (raw, json) Hash identifier: oSWNw0YD49NYi9iPUDeiI0ySNwQ3f8OvnsmYjHkiEtc= Subject key identifier: C0:1F:DF:A9:08:29:58:14:AE:2E:D1:B5:9B:F1:C9:11:AB:FC:9A:A4 Authority key identifier: D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B Certificate issuer: /CN=A9153C50/serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Certificate serial: 0507 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft Manifest number: 0501 Signing time: Sun 19 Oct 2025 01:26:17 +0000 Manifest this update: Sun 19 Oct 2025 01:26:17 +0000 Manifest next update: Sun 26 Oct 2025 01:26:17 +0000 Files and hashes: 1: 03yc1lDAIKNQDtybQKVGqEw_Jgs.crl (hash: 0ovn+4R1f0HQBJma8MZEAQ3oYoA8OS0rsdcBvc4GQQE=) 2: 8B97D7A22CD911ECA528B744C4F9AE02.roa (hash: ejQetAzLgqVtDolBJZWz4Zc5LEXRfg3VkvX111clMEY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 01:26:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C50, serialNumber=D37C9CD650C020A3500EDC9B40A546A84C3F260B Validity Not Before: Oct 19 01:26:17 2025 GMT Not After : Oct 26 01:26:17 2025 GMT Subject: CN=68f43e39-18bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8c:06:d7:f1:a0:1b:5e:3f:43:31:8d:24:f4: 2e:8d:26:b4:19:57:d1:1f:72:2d:fd:ed:82:1e:d6: 6c:62:a4:a9:91:48:79:2b:92:93:17:ce:7d:15:94: 7e:76:f2:fb:37:c4:47:ba:44:ae:a1:b3:79:4f:d3: bb:78:61:04:f4:4e:62:69:aa:4b:7b:ab:1a:0b:e9: cf:6b:f4:2f:e5:bd:e2:ad:21:c2:80:30:a7:85:09: 4c:c1:83:86:3d:09:6c:a7:38:14:a7:87:5a:c1:9e: f1:87:92:3b:6f:6d:80:29:b2:06:f6:a6:54:9d:e5: 31:f6:ff:7e:2c:e2:b0:51:27:b5:4d:96:75:71:ae: df:7b:d6:5f:4d:d6:24:02:53:e2:96:ed:e7:84:d7: 62:63:e9:b8:ef:f6:f1:f2:4a:cd:24:1b:9f:e3:f5: e0:da:25:13:7b:9a:4c:b4:24:5f:a5:20:ae:e4:eb: 91:7f:b2:8d:92:2d:e4:d4:4b:02:fa:27:5e:d1:97: ca:9e:24:1f:31:40:28:a1:f8:8f:be:42:1d:50:f9: 60:cb:84:8b:c1:3d:36:0a:5f:2d:5a:17:2b:c9:71: cd:81:bc:e0:06:12:8f:6e:ca:7d:ab:84:be:a5:34: ab:14:0e:a1:50:47:19:36:78:06:d0:29:8c:9d:c2: c9:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:1F:DF:A9:08:29:58:14:AE:2E:D1:B5:9B:F1:C9:11:AB:FC:9A:A4 X509v3 Authority Key Identifier: keyid:D3:7C:9C:D6:50:C0:20:A3:50:0E:DC:9B:40:A5:46:A8:4C:3F:26:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03yc1lDAIKNQDtybQKVGqEw_Jgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C50/4B9063022CD611ECA5DA3534C4F9AE02/03yc1lDAIKNQDtybQKVGqEw_Jgs.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 85:4e:f6:6f:f0:ab:54:70:f0:53:29:28:88:b9:96:81:f5:19: ce:68:e4:f6:c7:5e:84:cb:9b:30:e0:f4:33:f3:f3:ab:48:15: 53:26:f1:8d:90:47:4c:8a:b9:c0:64:9f:2f:53:aa:5f:0e:01: 43:8e:2a:40:64:be:12:75:7e:89:fb:4b:c5:96:b1:6e:fc:fb: 40:2a:e8:7b:4d:86:83:49:06:64:5c:4b:d7:ed:a3:ea:e3:4f: 4c:98:68:ac:e9:0d:7d:79:67:6e:a2:d5:84:8f:17:bd:cb:a8: af:17:2b:03:3d:8d:52:12:66:50:a5:1d:6e:96:62:4a:5a:a5: cf:f9:dd:96:24:62:40:e2:89:2f:a9:1b:e5:fe:47:81:ee:18: b7:f6:52:35:56:fd:5d:89:85:c3:35:b6:56:1f:b5:f0:88:26: 21:40:b2:96:7c:92:11:8d:74:92:9c:66:a1:60:7c:67:10:c3: d7:a7:a4:60:c1:7b:e6:4a:df:c7:04:cb:66:5d:fc:7b:8e:19: 9c:ae:ba:89:22:fb:8e:bd:ff:55:96:24:6a:40:a0:1f:55:16: f0:23:a8:88:b2:d5:0e:10:56:4f:3c:26:45:87:5e:5e:55:b5: 0f:90:77:5e:46:4a:ae:6d:97:23:ef:c1:7a:17:b8:d2:5c:20: b7:a2:e9:3b -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDNTAxMTAvBgNVBAUTKEQzN0M5Q0Q2NTBDMDIwQTM1MDBFREM5QjQwQTU0NkE4 NEMzRjI2MEIwHhcNMjUxMDE5MDEyNjE3WhcNMjUxMDI2MDEyNjE3WjAYMRYwFAYD VQQDEw02OGY0M2UzOS0xOGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxowG1/GgG14/QzGNJPQujSa0GVfRH3It/e2CHtZsYqSpkUh5K5KTF859FZR+ dvL7N8RHukSuobN5T9O7eGEE9E5iaapLe6saC+nPa/Qv5b3irSHCgDCnhQlMwYOG PQlspzgUp4dawZ7xh5I7b22AKbIG9qZUneUx9v9+LOKwUSe1TZZ1ca7fe9ZfTdYk AlPilu3nhNdiY+m47/bx8krNJBuf4/Xg2iUTe5pMtCRfpSCu5OuRf7KNki3k1EsC +ide0ZfKniQfMUAoofiPvkIdUPlgy4SLwT02Cl8tWhcryXHNgbzgBhKPbsp9q4S+ pTSrFA6hUEcZNngG0CmMncLJ/wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMAf36kI KVgUri7RtZvxyRGr/JqkMB8GA1UdIwQYMBaAFNN8nNZQwCCjUA7cm0ClRqhMPyYL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0M1MC80QjkwNjMwMjJD RDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlLTlFEdHliUUtWR3FFd19K Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzeWMxbERBSUtOUUR0eWJRS1ZHcUV3X0pncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 M0M1MC80QjkwNjMwMjJDRDYxMUVDQTVEQTM1MzRDNEY5QUUwMi8wM3ljMWxEQUlL TlFEdHliUUtWR3FFd19KZ3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCFTvZv8KtUcPBTKSiIuZaB9RnOaOT2x16Ey5sw4PQz8/OrSBVTJvGN kEdMirnAZJ8vU6pfDgFDjipAZL4SdX6J+0vFlrFu/PtAKuh7TYaDSQZkXEvX7aPq 409MmGis6Q19eWduotWEjxe9y6ivFysDPY1SEmZQpR1ulmJKWqXP+d2WJGJA4okv qRvl/keB7hi39lI1Vv1diYXDNbZWH7XwiCYhQLKWfJIRjXSSnGahYHxnEMPXp6Rg wXvmSt/HBMtmXfx7jhmcrrqJIvuOvf9VliRqQKAfVRbwI6iIstUOEFZPPCZFh15e VbUPkHdeRkqubZcj78F6F7jSXCC3ouk7 -----END CERTIFICATE-----Generated at Mon Oct 20 14:35:09 2025 by rpki-client