$ rpki-client -vvf rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft File: yZ1gB81HfYmzWcM8k8qptbsQYBo.mft (raw, json) Hash identifier: jKzmFDyBEplJbNIVrHtpQdgTLt4dCblKA/Ovh90mFLY= Subject key identifier: 21:D3:48:B9:7E:6F:B0:46:B4:B4:DE:FB:4F:48:21:F6:7E:BF:BD:60 Authority key identifier: C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A Certificate issuer: /CN=A9173F03/serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Certificate serial: 0C77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft Manifest number: 0C67 Signing time: Sat 18 Oct 2025 19:19:44 +0000 Manifest this update: Sat 18 Oct 2025 19:19:43 +0000 Manifest next update: Sat 25 Oct 2025 19:19:43 +0000 Files and hashes: 1: yZ1gB81HfYmzWcM8k8qptbsQYBo.crl (hash: iq0d3MNGTWJS3cS59kdji0cnLR8SPA6tTODgO5NbgV4=) 2: 1F3C6E3C6E6811EF93F0A64EC4F9AE02.roa (hash: KCbvW2+iTb2FhCUJSCAthuyvDnx7MU5+U8PZ8z1pu+g=) 3: 7D16D03C861A11EF99D32B66C4F9AE02.roa (hash: LFZ6uBkW6voau17buZXmD8B1WuozeZe536RV9ixDxuw=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:19:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173F03, serialNumber=C99D6007CD477D89B359C33C93CAA9B5BB10601A Validity Not Before: Oct 18 19:19:43 2025 GMT Not After : Oct 25 19:19:43 2025 GMT Subject: CN=68f3e850-f00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d0:9f:5d:eb:47:b2:e9:78:da:22:b3:72:6d: 2f:4b:6a:1c:40:89:23:7e:7a:06:3f:aa:93:db:f1: 1e:53:f9:d4:a0:5b:20:e3:dc:92:35:a5:2b:1c:c3: 7b:6b:97:60:ca:d1:3a:69:c8:06:7a:c9:22:fd:9e: 21:61:c2:a2:c3:a2:42:00:15:96:95:b3:75:30:a0: d4:c0:22:c8:62:d6:b8:04:fc:90:04:c2:7a:d1:af: 27:0d:77:68:aa:cf:8d:00:53:99:1f:21:9a:83:2d: ba:c8:9c:41:15:f9:24:3a:a4:e5:95:1d:a2:a6:fd: 88:9f:46:6b:f9:36:d8:b7:65:bd:94:85:f4:6d:f8: 06:66:fa:cc:4e:69:e0:a3:69:56:98:1e:d6:c0:b9: d3:bf:43:1c:9e:83:2a:01:8d:d8:fe:ab:46:1c:f2: 67:25:04:76:dc:b1:98:72:ec:fa:44:9a:b8:2f:5a: ee:35:50:0e:90:fd:0e:f7:7b:db:7b:e2:bc:2e:ce: 84:64:19:ee:eb:41:fa:56:33:1a:23:bd:9c:d9:5d: 1d:74:73:bb:47:99:d8:ee:a4:67:7a:80:43:6b:01: a9:d6:48:d4:29:4e:67:d7:b0:72:33:59:1d:72:a8: 48:e9:ef:7a:33:e7:9f:1a:22:63:25:96:03:91:75: 93:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:D3:48:B9:7E:6F:B0:46:B4:B4:DE:FB:4F:48:21:F6:7E:BF:BD:60 X509v3 Authority Key Identifier: keyid:C9:9D:60:07:CD:47:7D:89:B3:59:C3:3C:93:CA:A9:B5:BB:10:60:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yZ1gB81HfYmzWcM8k8qptbsQYBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173F03/64F6C28E0DE111EA99669885C4F9AE02/yZ1gB81HfYmzWcM8k8qptbsQYBo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 62:1a:88:f2:81:38:c4:3e:ae:a9:a8:f3:24:c8:ef:68:fb:ed: f5:28:eb:ec:ba:7b:e3:84:3c:72:6b:50:7d:75:67:98:6e:1c: 0a:d3:ef:fd:65:54:b8:85:78:0d:f7:61:e9:d2:ff:c2:e0:76: b3:d6:57:23:6e:7d:7e:17:9f:80:20:f7:fc:c1:21:c2:cc:46: 91:ec:32:09:89:37:d5:b3:e5:14:81:a9:df:f8:9e:86:4e:86: 2c:bd:9a:87:26:b6:7a:26:37:06:1b:5a:63:43:5c:9e:c0:0d: 1d:88:a5:a6:71:b1:59:75:e1:60:04:d5:b9:83:de:85:1c:a2: 00:d4:99:01:73:66:9d:33:8c:14:59:e5:99:05:9c:e6:0f:98: 2f:d7:ba:38:29:5c:fe:7a:22:a4:f7:a6:a3:b9:69:7c:af:2b: ed:a7:2b:49:54:1a:9d:ea:76:60:3c:ac:48:93:a3:b0:ff:ac: cf:1c:37:b7:56:20:1f:8b:8b:16:11:1d:6a:cb:0d:40:09:21: 7d:6b:a2:5b:7c:94:37:ed:1e:72:46:f3:ee:f8:4a:3d:d1:ee: 42:0b:9b:68:08:6a:95:23:ff:a3:13:14:5e:c4:c4:0d:5f:bc: fb:ce:5f:66:bc:8c:97:e6:90:f0:cd:d8:41:63:a7:16:64:56: 97:5e:04:42 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNGMDMxMTAvBgNVBAUTKEM5OUQ2MDA3Q0Q0NzdEODlCMzU5QzMzQzkzQ0FBOUI1 QkIxMDYwMUEwHhcNMjUxMDE4MTkxOTQzWhcNMjUxMDI1MTkxOTQzWjAYMRYwFAYD VQQDEw02OGYzZTg1MC1mMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAztCfXetHsul42iKzcm0vS2ocQIkjfnoGP6qT2/EeU/nUoFsg49ySNaUrHMN7 a5dgytE6acgGeski/Z4hYcKiw6JCABWWlbN1MKDUwCLIYta4BPyQBMJ60a8nDXdo qs+NAFOZHyGagy26yJxBFfkkOqTllR2ipv2In0Zr+TbYt2W9lIX0bfgGZvrMTmng o2lWmB7WwLnTv0McnoMqAY3Y/qtGHPJnJQR23LGYcuz6RJq4L1ruNVAOkP0O93vb e+K8Ls6EZBnu60H6VjMaI72c2V0ddHO7R5nY7qRneoBDawGp1kjUKU5n17ByM1kd cqhI6e96M+efGiJjJZYDkXWTowIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFCHTSLl+ b7BGtLTe+09IIfZ+v71gMB8GA1UdIwQYMBaAFMmdYAfNR32Js1nDPJPKqbW7EGAa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0YwMy82NEY2QzI4RTBE RTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZbXpXY004azhxcHRic1FZ Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3laMWdCODFIZllteldjTThrOHFwdGJzUVlCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0YwMy82NEY2QzI4RTBERTExMUVBOTk2Njk4ODVDNEY5QUUwMi95WjFnQjgxSGZZ bXpXY004azhxcHRic1FZQm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBiGojygTjEPq6pqPMkyO9o++31KOvsunvjhDxya1B9dWeYbhwK0+/9 ZVS4hXgN92Hp0v/C4Haz1lcjbn1+F5+AIPf8wSHCzEaR7DIJiTfVs+UUganf+J6G ToYsvZqHJrZ6JjcGG1pjQ1yewA0diKWmcbFZdeFgBNW5g96FHKIA1JkBc2adM4wU WeWZBZzmD5gv17o4KVz+eiKk96ajuWl8ryvtpytJVBqd6nZgPKxIk6Ow/6zPHDe3 ViAfi4sWER1qyw1ACSF9a6JbfJQ37R5yRvPu+Eo90e5CC5toCGqVI/+jExRexMQN X7z7zl9mvIyX5pDwzdhBY6cWZFaXXgRC -----END CERTIFICATE-----Generated at Sun Oct 19 23:31:38 2025 by rpki-client