$ rpki-client -vvf rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft File: yH_T4kCIpNnfHF0CaFII6Qph7_c.mft (raw, json) Hash identifier: v6HO6AJHdcY53YAGSbJ6r6M2k/4B5LpI3jxwCSQg1Ws= Subject key identifier: 7D:DC:44:04:C7:36:EB:67:A9:CD:65:2B:0D:58:82:59:38:0E:1D:6C Authority key identifier: C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 Certificate issuer: /CN=A9161065/serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Certificate serial: 01D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft Manifest number: 01D4 Signing time: Sun 19 Oct 2025 05:15:58 +0000 Manifest this update: Sun 19 Oct 2025 05:15:57 +0000 Manifest next update: Sun 26 Oct 2025 05:15:57 +0000 Files and hashes: 1: yH_T4kCIpNnfHF0CaFII6Qph7_c.crl (hash: Q9NO9SC62FGcffSVXa5pFDZwHSYxAlBrZ9+tzEsCBh4=) 2: CDE70CB2E52011EDB505E014C4F9AE02.roa (hash: pHgzN34iRPTaLcApX6DppL1Ukj9nGDxnuXFRn1kqOaw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 05:15:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 472 (0x1d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161065, serialNumber=C87FD3E24088A4D9DF1C5D02685208E90A61EFF7 Validity Not Before: Oct 19 05:15:57 2025 GMT Not After : Oct 26 05:15:57 2025 GMT Subject: CN=68f4740d-8b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9b:7d:c0:2b:81:5d:d4:ca:68:4e:ab:e1:a0: d5:63:cf:de:8d:ef:19:42:0f:8c:8c:2b:71:b0:98: 6b:ad:39:40:84:66:3d:d1:89:e5:4d:29:bf:25:e0: b7:ab:75:8e:45:fc:c5:15:25:70:2f:e2:86:d9:65: 07:e7:8c:af:55:ce:0c:64:9b:5e:f6:5d:17:8b:0d: a0:9a:1f:37:54:8e:e0:3d:f0:82:a5:65:b8:5f:39: 32:28:46:8d:94:b2:b6:55:bf:70:f8:cd:93:9c:af: 31:d6:5e:5d:fc:15:92:34:f7:86:37:63:0d:ef:14: 38:9c:1c:61:b5:a8:6b:30:49:a8:c0:85:ec:14:31: 44:11:20:59:1e:36:48:2e:b3:4a:a0:a7:43:f6:c0: c6:67:4c:87:ce:4d:a9:0e:65:8a:0d:10:e8:b2:0c: 4b:bc:bc:7a:a2:73:dc:ce:06:36:4c:47:fb:83:9a: 4b:93:a1:7a:3f:2c:9f:28:0e:c2:89:ec:8d:a7:4a: 18:de:8e:b5:26:ba:bf:66:83:71:9b:85:0b:5d:84: 00:87:fe:65:17:06:2a:da:ff:c1:70:d3:f8:b7:4f: 1e:36:9e:ce:0d:e5:4a:83:7f:0b:18:3b:9b:7f:61: 3d:a3:b6:e0:83:75:74:47:ff:ae:85:a4:cf:37:2e: a7:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:DC:44:04:C7:36:EB:67:A9:CD:65:2B:0D:58:82:59:38:0E:1D:6C X509v3 Authority Key Identifier: keyid:C8:7F:D3:E2:40:88:A4:D9:DF:1C:5D:02:68:52:08:E9:0A:61:EF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yH_T4kCIpNnfHF0CaFII6Qph7_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161065/1A25D274E51D11ED8538B246C4F9AE02/yH_T4kCIpNnfHF0CaFII6Qph7_c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:6f:20:80:aa:81:9c:ec:2a:52:7b:65:0a:e6:1c:67:84:87: 52:2d:29:7a:06:fc:e2:c5:a0:de:72:af:79:44:56:c4:62:ca: 86:a0:43:06:67:a2:e4:e8:0c:fe:41:1d:82:27:6d:bb:a2:67: b6:31:e8:a0:c5:8e:13:6c:31:49:c8:2a:61:ec:4d:ef:67:ea: 2a:18:dd:51:a7:a5:43:ba:25:39:72:2a:c5:6f:d4:cf:74:fc: 6f:ac:bc:e4:11:ab:8b:1b:32:f7:cb:a3:27:77:5a:f2:f6:40: da:4f:23:6c:4a:29:3a:6d:88:ae:18:07:80:1d:3b:88:e6:a6: 7e:98:9a:12:2d:a5:81:b0:5f:26:c3:45:1a:91:25:ac:73:24: 28:95:2f:5d:e7:9b:d6:eb:03:4c:f8:a8:cd:2c:8f:5a:1b:d9: 1a:90:b3:3a:8c:c8:e0:47:3b:41:0f:38:c4:4a:60:8c:cc:12: 15:8d:c5:af:94:77:75:37:3b:b1:0e:c5:fb:e1:6d:72:96:21: 47:34:1f:27:f4:63:26:18:97:6f:c4:a2:a1:63:f4:51:aa:1a: 60:e3:59:6a:85:19:0b:d3:aa:d6:72:ee:36:c1:b8:5a:b1:16: ee:88:7a:13:f6:64:f4:81:6f:a9:d5:ee:7c:8a:bd:4f:c1:dc: 67:b0:03:5a -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAdgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjEwNjUxMTAvBgNVBAUTKEM4N0ZEM0UyNDA4OEE0RDlERjFDNUQwMjY4NTIwOEU5 MEE2MUVGRjcwHhcNMjUxMDE5MDUxNTU3WhcNMjUxMDI2MDUxNTU3WjAYMRYwFAYD VQQDEw02OGY0NzQwZC04YjUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5t9wCuBXdTKaE6r4aDVY8/eje8ZQg+MjCtxsJhrrTlAhGY90YnlTSm/JeC3 q3WORfzFFSVwL+KG2WUH54yvVc4MZJte9l0Xiw2gmh83VI7gPfCCpWW4XzkyKEaN lLK2Vb9w+M2TnK8x1l5d/BWSNPeGN2MN7xQ4nBxhtahrMEmowIXsFDFEESBZHjZI LrNKoKdD9sDGZ0yHzk2pDmWKDRDosgxLvLx6onPczgY2TEf7g5pLk6F6PyyfKA7C ieyNp0oY3o61Jrq/ZoNxm4ULXYQAh/5lFwYq2v/BcNP4t08eNp7ODeVKg38LGDub f2E9o7bgg3V0R/+uhaTPNy6nbwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFH3cRATH Nutnqc1lKw1Yglk4Dh1sMB8GA1UdIwQYMBaAFMh/0+JAiKTZ3xxdAmhSCOkKYe/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTA2NS8xQTI1RDI3NEU1 MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBObmZIRjBDYUZJSTZRcGg3 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lIX1Q0a0NJcE5uZkhGMENhRklJNlFwaDdfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MTA2NS8xQTI1RDI3NEU1MUQxMUVEODUzOEIyNDZDNEY5QUUwMi95SF9UNGtDSXBO bmZIRjBDYUZJSTZRcGg3X2MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA3byCAqoGc7CpSe2UK5hxnhIdSLSl6BvzixaDecq95RFbEYsqGoEMG Z6Lk6Az+QR2CJ227ome2MeigxY4TbDFJyCph7E3vZ+oqGN1Rp6VDuiU5cirFb9TP dPxvrLzkEauLGzL3y6Mnd1ry9kDaTyNsSik6bYiuGAeAHTuI5qZ+mJoSLaWBsF8m w0UakSWscyQolS9d55vW6wNM+KjNLI9aG9kakLM6jMjgRztBDzjESmCMzBIVjcWv lHd1NzuxDsX74W1yliFHNB8n9GMmGJdvxKKhY/RRqhpg41lqhRkL06rWcu42wbha sRbuiHoT9mT0gW+p1e58ir1PwdxnsANa -----END CERTIFICATE-----Generated at Mon Oct 20 15:43:11 2025 by rpki-client