$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft File: RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft (raw, json) Hash identifier: ubRrGwzyAjxuma5Qc4lL8C4zPBIo3L71ascWRbGR710= Subject key identifier: EA:81:4C:F6:36:31:51:C6:DF:23:C2:D8:F3:84:F2:E7:47:7D:2F:92 Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft Manifest number: 0191 Signing time: Sun 19 Oct 2025 06:16:55 +0000 Manifest this update: Sun 19 Oct 2025 06:16:54 +0000 Manifest next update: Sun 26 Oct 2025 06:16:54 +0000 Files and hashes: 1: RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl (hash: sExJyZWEQk+beG/07I/8DrYVklKXw9BGe2pc0w8SCeo=) 2: 5D4FB6AA9AB711EE86E1D058C4F9AE02.roa (hash: /lY6MRoQmBol07GaZSzAkv2Tfx/7fsrdKUpKLuZMxDs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:16:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589, serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: Oct 19 06:16:54 2025 GMT Not After : Oct 26 06:16:54 2025 GMT Subject: CN=68f48256-ef1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:2c:ce:e6:d0:3a:0f:65:29:43:b4:cf:a8:ad: 24:d0:1b:e4:a7:ea:6c:05:07:ed:2f:75:36:6b:33: dd:e7:f8:b8:9d:a1:75:19:2a:8d:ad:a5:e8:a3:b0: e8:f5:ad:ac:2c:3a:51:34:8c:83:69:bd:3c:0f:0c: f7:e2:fe:a4:48:66:75:f5:b7:db:a7:51:97:88:05: 50:42:b4:f4:c7:fe:ac:83:62:8d:98:1f:16:b4:66: ac:6c:7b:d0:a3:87:19:01:69:77:5f:b3:aa:0c:63: ce:88:ec:0c:ac:77:9a:61:21:c7:32:53:f5:2a:24: 22:63:af:fe:08:a5:0f:9c:9a:9d:da:03:48:ee:be: 06:6a:f1:de:f5:50:c8:c4:81:a0:dd:cc:64:5d:1b: 2a:50:8a:36:10:51:5c:ab:43:d0:5c:f8:53:58:30: db:cb:ca:ea:a2:8d:a7:7a:2b:c3:60:a3:92:2a:a3: 58:67:9d:7b:7a:1d:c9:78:6b:95:a0:e0:e9:f7:ee: 47:f6:5c:8b:94:3e:3c:f0:62:94:51:87:98:fb:85: 59:ba:0d:85:df:e7:44:ec:ab:e8:ae:2e:a3:d6:05: 59:e6:01:d4:7c:47:3c:d6:2e:fc:20:57:63:23:e7: e0:c6:af:1f:38:95:ec:39:23:e7:a7:c3:16:51:71: 7e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:81:4C:F6:36:31:51:C6:DF:23:C2:D8:F3:84:F2:E7:47:7D:2F:92 X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:54:c6:8e:18:56:30:3b:2b:ed:32:d1:5c:7d:ac:40:2b:4f: fa:66:f2:61:68:b8:b6:a6:05:97:5a:6f:a9:cf:a0:0e:1c:df: d6:c7:86:54:60:80:59:5a:8b:59:dc:25:ee:d3:68:5d:90:6d: e0:2b:a0:0c:cf:75:5f:77:1d:85:30:e3:bf:42:83:d6:13:17: 6e:51:04:b4:df:01:b5:17:0d:20:8b:a3:08:43:bf:ee:4f:3c: 7d:84:7d:f2:df:c1:e1:a8:19:fa:71:7d:28:f4:c8:da:9b:d0: 1d:09:ed:da:e5:a1:6b:56:a7:d3:bc:9a:58:70:b4:98:f4:66: 15:24:d3:e1:6a:8b:e4:93:89:1a:dc:31:33:15:75:de:b5:a3: 38:e8:6b:80:c0:6e:b0:b3:9e:ec:e2:c9:1d:78:ba:af:51:3f: b9:26:84:1c:59:fa:e1:0c:1e:42:f2:9c:e9:c4:30:bb:b9:72: f8:ea:33:f8:6d:f3:26:8b:f9:44:a8:06:9d:55:8c:cc:4a:a9: bb:e2:c7:ef:df:da:b4:f5:ea:8c:94:6e:96:58:6d:76:61:e2: e6:de:86:ce:9e:e4:d7:dc:38:ae:6a:99:ed:4c:68:02:50:c1: b6:6b:03:f4:41:ba:ca:91:d1:75:65:35:27:54:ae:b2:1c:02: c7:54:4c:9c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjUxMDE5MDYxNjU0WhcNMjUxMDI2MDYxNjU0WjAYMRYwFAYD VQQDEw02OGY0ODI1Ni1lZjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCzO5tA6D2UpQ7TPqK0k0Bvkp+psBQftL3U2azPd5/i4naF1GSqNraXoo7Do 9a2sLDpRNIyDab08Dwz34v6kSGZ19bfbp1GXiAVQQrT0x/6sg2KNmB8WtGasbHvQ o4cZAWl3X7OqDGPOiOwMrHeaYSHHMlP1KiQiY6/+CKUPnJqd2gNI7r4GavHe9VDI xIGg3cxkXRsqUIo2EFFcq0PQXPhTWDDby8rqoo2neivDYKOSKqNYZ517eh3JeGuV oODp9+5H9lyLlD488GKUUYeY+4VZug2F3+dE7Kvori6j1gVZ5gHUfEc81i78IFdj I+fgxq8fOJXsOSPnp8MWUXF+XwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOqBTPY2 MVHG3yPC2POE8udHfS+SMB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NDU4OS81RkM2MjdDNDYxQzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRr eWRHaU5KSlNpNmQzX04walEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCfVMaOGFYwOyvtMtFcfaxAK0/6ZvJhaLi2pgWXWm+pz6AOHN/Wx4ZU YIBZWotZ3CXu02hdkG3gK6AMz3Vfdx2FMOO/QoPWExduUQS03wG1Fw0gi6MIQ7/u Tzx9hH3y38HhqBn6cX0o9Mjam9AdCe3a5aFrVqfTvJpYcLSY9GYVJNPhaovkk4ka 3DEzFXXetaM46GuAwG6ws57s4skdeLqvUT+5JoQcWfrhDB5C8pzpxDC7uXL46jP4 bfMmi/lEqAadVYzMSqm74sfv39q09eqMlG6WWG12YeLm3obOnuTX3DiuapntTGgC UMG2awP0QbrKkdF1ZTUnVK6yHALHVEyc -----END CERTIFICATE-----Generated at Mon Oct 20 13:49:48 2025 by rpki-client