$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft File: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft (raw, json) Hash identifier: 0txi/r5pNDq27QPK/MuLqLIh2aAUmfhTlcndfsa6iv0= Subject key identifier: DE:05:DC:3A:D8:12:B1:CC:04:18:0B:3D:CF:8D:65:77:B8:F6:90:F8 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0B29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft Manifest number: 0B11 Signing time: Sat 18 Oct 2025 20:19:31 +0000 Manifest this update: Sat 18 Oct 2025 20:19:31 +0000 Manifest next update: Sat 25 Oct 2025 20:19:31 +0000 Files and hashes: 1: ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl (hash: simt989Mx4wyMum5RXgKZxY31Rk3vy2v7gAFFa2u2cQ=) 2: EF29C95E69C311EF82BCE77AC4F9AE02.roa (hash: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA=) 3: BA7B024C04D811EDBE98F982C4F9AE02.roa (hash: GniYTYc+rkB55fqBkTbtJuPpFjVN9/DglrpXWuCGSdc=) 4: A2AF0622853711EFA09C892EC4F9AE02.roa (hash: DBysmfWMy9lYVGepCi0Ma5VGyIIRzRfP58+h2cMR+Ls=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:19:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2857 (0xb29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2, serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Oct 18 20:19:31 2025 GMT Not After : Oct 25 20:19:31 2025 GMT Subject: CN=68f3f653-0bf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:23:09:db:22:c1:4d:38:9e:b7:46:f7:0a:1c: 20:ee:47:23:a2:d8:5e:91:c7:f2:ba:82:c1:a8:4f: ae:7c:1f:ad:52:8a:a4:43:c6:8a:74:18:76:10:c6: c6:38:1e:26:d9:da:84:7a:f5:a3:d0:87:7f:cd:a6: 0f:46:f9:4c:f9:8c:48:2e:0d:1e:79:1c:9d:e8:4f: 27:da:ea:95:33:6b:68:57:2d:c1:84:4d:7d:01:84: 80:03:ad:2b:b6:d4:38:65:9d:c7:d9:c8:28:7d:32: 4a:5a:f3:a9:92:27:58:de:e3:80:7f:b4:3c:8b:9d: a1:8d:96:e6:f7:7a:76:48:6c:4d:10:7f:7c:c5:59: af:a4:6d:df:db:a7:de:8b:76:0d:53:4a:0a:80:22: 1c:7b:ad:80:82:06:5f:a6:d7:bb:e5:4c:97:f0:5a: b7:47:c1:6b:73:b7:c0:25:71:cc:71:89:7a:3c:e1: 4a:94:b1:96:39:e9:8c:56:00:13:bf:52:6d:a5:78: 30:48:13:ed:8d:c4:17:85:0b:15:27:27:2d:bf:40: de:fa:9a:f3:f7:50:63:27:c7:c1:46:63:bf:6e:4a: 8d:38:62:7d:32:50:47:cf:d1:6d:df:b4:1d:0f:f5: 8e:4e:80:a7:ee:8b:35:be:94:71:08:e5:85:12:84: 11:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:05:DC:3A:D8:12:B1:CC:04:18:0B:3D:CF:8D:65:77:B8:F6:90:F8 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e3:75:04:d3:da:64:b0:26:54:bd:f4:4d:76:47:32:a9:86:56: 0a:fb:7b:a1:19:fd:e4:46:2b:f6:ec:bc:4d:6c:42:67:6b:48: 9e:44:51:bd:3b:be:ca:49:77:cf:9b:1b:6f:68:0a:f3:2b:c4: 9e:7b:1b:fb:cf:73:a6:c5:c2:76:02:49:3c:84:de:ac:78:6e: 80:25:e1:36:7c:91:d2:37:69:29:91:32:60:64:af:c2:00:09: ac:9c:f9:66:42:48:f9:7f:6c:0b:ec:13:e5:be:21:39:07:b7: 39:cf:bd:b8:a7:ff:55:00:7b:b6:5d:15:df:3f:83:be:a1:80: bf:ef:a4:76:b9:a2:25:45:a7:7c:46:b7:85:0c:e5:70:fb:35: 5d:ff:29:88:42:7f:a7:01:a7:4b:ff:2d:95:e2:b8:64:d7:69: 2a:bd:c1:a9:47:61:77:5e:30:fa:a4:69:83:56:cb:f3:bb:e9: ee:6a:5a:12:2e:5c:f1:bf:3a:a1:80:0d:4f:c0:08:74:de:22: 27:ca:08:cb:b4:56:eb:eb:67:60:e9:3c:0e:37:00:bc:08:fb: 31:56:76:c2:58:5a:ef:ac:54:98:18:a5:73:2d:ab:72:d2:c2: 6d:cc:73:88:97:28:61:1a:54:7c:3a:78:ab:7d:b6:2a:92:b4: 2f:27:a4:80 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjUxMDE4MjAxOTMxWhcNMjUxMDI1MjAxOTMxWjAYMRYwFAYD VQQDEw02OGYzZjY1My0wYmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSMJ2yLBTTiet0b3Chwg7kcjothekcfyuoLBqE+ufB+tUoqkQ8aKdBh2EMbG OB4m2dqEevWj0Id/zaYPRvlM+YxILg0eeRyd6E8n2uqVM2toVy3BhE19AYSAA60r ttQ4ZZ3H2cgofTJKWvOpkidY3uOAf7Q8i52hjZbm93p2SGxNEH98xVmvpG3f26fe i3YNU0oKgCIce62AggZfpte75UyX8Fq3R8Frc7fAJXHMcYl6POFKlLGWOemMVgAT v1JtpXgwSBPtjcQXhQsVJyctv0De+prz91BjJ8fBRmO/bkqNOGJ9MlBHz9Ft37Qd D/WOToCn7os1vpRxCOWFEoQRWwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFN4F3DrY ErHMBBgLPc+NZXe49pD4MB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OEJBMi85OURGMzg2MjU0QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhS alM4cVhaOW5aV1VlV3RwZzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQDjdQTT2mSwJlS99E12RzKphlYK+3uhGf3kRiv27LxNbEJna0ieRFG9 O77KSXfPmxtvaArzK8Seexv7z3OmxcJ2Akk8hN6seG6AJeE2fJHSN2kpkTJgZK/C AAmsnPlmQkj5f2wL7BPlviE5B7c5z724p/9VAHu2XRXfP4O+oYC/76R2uaIlRad8 RreFDOVw+zVd/ymIQn+nAadL/y2V4rhk12kqvcGpR2F3XjD6pGmDVsvzu+nualoS LlzxvzqhgA1PwAh03iInygjLtFbr62dg6TwONwC8CPsxVnbCWFrvrFSYGKVzLaty 0sJtzHOIlyhhGlR8OnirfbYqkrQvJ6SA -----END CERTIFICATE-----Generated at Mon Oct 20 00:22:18 2025 by rpki-client