$ rpki-client -vvf rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft File: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft (raw, json) Hash identifier: /q5y13M+ddZ4tovPaSKYqdAEQ1f8MySczl7BZhSpDIw= Subject key identifier: 9A:0B:3C:9E:46:20:64:3F:9B:D9:A9:B9:D2:5E:27:07:DD:02:D7:41 Authority key identifier: 83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 Certificate issuer: /CN=A9171669/serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Certificate serial: 02C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft Manifest number: 02C0 Signing time: Sun 19 Oct 2025 03:35:09 +0000 Manifest this update: Sun 19 Oct 2025 03:35:08 +0000 Manifest next update: Sun 26 Oct 2025 03:35:08 +0000 Files and hashes: 1: gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl (hash: mrYKwaiyprXnN8Atvin7ZGlLvuu4dWYl+K73U8Y66tA=) 2: 91BBC8880D9711ED8F09C27DC4F9AE02.roa (hash: KV+SoYHbA+Q51JP+NigJCe33FcHjWlimMC267ADRQGw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:35:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 708 (0x2c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171669, serialNumber=832FE5614E02D350F886790DE4BDC99F426455E4 Validity Not Before: Oct 19 03:35:08 2025 GMT Not After : Oct 26 03:35:08 2025 GMT Subject: CN=68f45c6d-0ad3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:64:35:e0:a1:db:74:39:22:de:10:16:71:34: 0d:d1:55:8a:b5:9c:2d:61:4a:80:ff:e1:ef:3d:54: 3f:2e:91:d2:66:2a:85:92:c8:6c:5b:a0:fd:c3:62: 70:23:d3:e9:e2:a8:9a:4c:53:f2:86:dc:dd:b5:a2: d9:28:21:46:40:88:a6:f2:b6:bb:47:a2:99:01:62: 6c:c0:8a:0d:91:9c:9e:52:f2:85:8c:67:c4:bc:4b: ea:60:a2:25:cd:f2:fb:c8:59:48:ae:3d:70:49:64: 7b:d4:32:72:8c:6c:e4:ff:e0:ba:8c:84:23:e3:08: 88:87:4a:3b:55:d3:0b:43:38:ac:db:c5:17:71:f4: 7c:17:30:2e:c0:d1:d7:6f:ee:d8:29:93:7f:d8:14: 4a:9e:d7:69:ad:36:ee:95:bb:5d:a7:81:34:d4:c9: 4e:7f:77:00:09:d2:4d:d8:ff:a5:d2:13:f7:8a:54: ef:34:79:a2:8d:08:6a:18:74:2a:42:89:ce:5a:72: 7f:38:ac:15:63:0b:f7:14:6d:79:e6:54:a2:83:19: 46:ae:7f:8a:d5:9c:f3:de:4a:14:c7:71:5b:72:5f: 03:c4:d0:e9:e6:dc:0c:6e:86:cd:33:73:b4:0c:88: d7:16:a0:34:52:4d:62:c5:14:e9:51:b6:73:db:25: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:0B:3C:9E:46:20:64:3F:9B:D9:A9:B9:D2:5E:27:07:DD:02:D7:41 X509v3 Authority Key Identifier: keyid:83:2F:E5:61:4E:02:D3:50:F8:86:79:0D:E4:BD:C9:9F:42:64:55:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171669/B558BA060D9411EDA5D4E051C4F9AE02/gy_lYU4C01D4hnkN5L3Jn0JkVeQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a5:1b:91:36:92:f6:0a:cd:1f:46:5e:3d:a7:69:a9:c3:16: 9b:93:0b:8e:d2:3d:b2:77:bc:53:b0:3c:42:b5:99:d9:f5:55: f9:d6:92:a0:16:e3:a5:cd:17:1f:26:4e:d2:07:db:02:96:c8: 5b:3d:56:2e:ec:85:e2:26:22:2f:94:58:f6:88:58:6c:e8:59: a4:fd:bc:88:07:e8:26:51:51:90:57:2a:6e:dd:36:1d:46:f1: c5:e4:78:fc:1d:24:d7:37:f0:49:63:a7:f1:5c:54:5e:fe:4a: ea:51:f9:0d:b0:bf:78:ab:0a:17:a5:d3:e1:b8:67:b3:cb:be: d5:a8:72:fd:e5:b4:ad:c9:5e:07:73:17:20:16:7d:f5:fd:b7: 98:8b:cb:c4:a0:fc:27:6b:76:b9:23:bb:7a:eb:63:82:c5:20: 38:c2:c4:d7:5b:7d:3a:34:a8:8e:84:83:2f:94:b5:37:ef:94: f6:90:1d:ce:21:b5:ca:e6:71:b6:aa:de:21:4a:e6:5d:f5:74: 2a:b0:22:f1:a8:e0:c0:58:22:4c:fd:c6:b6:1f:4d:ae:af:f6: 20:b7:04:ac:df:50:9c:8a:d4:2b:d6:35:52:8f:38:00:72:92: 61:8b:c5:bc:c8:66:98:64:8d:2c:95:07:19:4f:2e:95:51:1c: b0:85:f0:ae -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAsQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE2NjkxMTAvBgNVBAUTKDgzMkZFNTYxNEUwMkQzNTBGODg2NzkwREU0QkRDOTlG NDI2NDU1RTQwHhcNMjUxMDE5MDMzNTA4WhcNMjUxMDI2MDMzNTA4WjAYMRYwFAYD VQQDEw02OGY0NWM2ZC0wYWQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2WQ14KHbdDki3hAWcTQN0VWKtZwtYUqA/+HvPVQ/LpHSZiqFkshsW6D9w2Jw I9Pp4qiaTFPyhtzdtaLZKCFGQIim8ra7R6KZAWJswIoNkZyeUvKFjGfEvEvqYKIl zfL7yFlIrj1wSWR71DJyjGzk/+C6jIQj4wiIh0o7VdMLQzis28UXcfR8FzAuwNHX b+7YKZN/2BRKntdprTbulbtdp4E01MlOf3cACdJN2P+l0hP3ilTvNHmijQhqGHQq QonOWnJ/OKwVYwv3FG155lSigxlGrn+K1Zzz3koUx3Fbcl8DxNDp5twMbobNM3O0 DIjXFqA0Uk1ixRTpUbZz2yVG3QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFJoLPJ5G IGQ/m9mpudJeJwfdAtdBMB8GA1UdIwQYMBaAFIMv5WFOAtNQ+IZ5DeS9yZ9CZFXk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTY2OS9CNTU4QkEwNjBE OTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAxRDRobmtONUwzSm4wSmtW ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d5X2xZVTRDMDFENGhua041TDNKbjBKa1ZlUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MTY2OS9CNTU4QkEwNjBEOTQxMUVEQTVENEUwNTFDNEY5QUUwMi9neV9sWVU0QzAx RDRobmtONUwzSm4wSmtWZVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBgpRuRNpL2Cs0fRl49p2mpwxabkwuO0j2yd7xTsDxCtZnZ9VX51pKg FuOlzRcfJk7SB9sClshbPVYu7IXiJiIvlFj2iFhs6Fmk/byIB+gmUVGQVypu3TYd RvHF5Hj8HSTXN/BJY6fxXFRe/krqUfkNsL94qwoXpdPhuGezy77VqHL95bStyV4H cxcgFn31/beYi8vEoPwna3a5I7t662OCxSA4wsTXW306NKiOhIMvlLU375T2kB3O IbXK5nG2qt4hSuZd9XQqsCLxqODAWCJM/ca2H02ur/YgtwSs31CcitQr1jVSjzgA cpJhi8W8yGaYZI0slQcZTy6VURywhfCu -----END CERTIFICATE-----Generated at Mon Oct 20 17:49:25 2025 by rpki-client